Radar

Product Introduction

1. Definition: Radar is a high-performance, open-source Kubernetes (K8s) user interface and observability engine designed to provide comprehensive cluster visibility. It is distributed as a lightweight, single ~30MB binary under the Apache 2.0 license, functioning as both a local desktop application and a self-hosted in-cluster dashboard. Technically, it integrates real-time resource tracking, event streaming, and security auditing into a unified web-based UI.

2. Core Value Proposition: Radar exists to solve the "understanding gap" in Kubernetes management where raw data from kubectl is easily accessible but difficult to interpret during high-pressure incidents. Its primary value lies in consolidating fragmented workflows—topology mapping, event logging, GitOps synchronization, and security posture management—into a single, fast interface. By leveraging keywords like "Kubernetes real-time topology," "open-source K8s dashboard," and "multi-cluster observability," Radar positions itself as the modern successor to traditional IDEs and CLI-based tools.

Main Features

1. Live Topology and Traffic Flows: Radar utilizes an ELK.js-laid-out graph engine to generate real-time visualizations of cluster resources. Unlike static diagrams, these graphs use Server-Sent Events (SSE) for instant updates. It maps dependencies between Ingress, Services, Deployments, and Pods, including east-west traffic flows and TLS certificate health, allowing operators to identify architectural bottlenecks or misconfigurations visually.

2. Extended Event Timeline and Delta Tracking: One of the critical technical limitations of standard Kubernetes is the 1-hour event retention TTL (Time-To-Live). Radar overcomes this by capturing and persisting cluster events and resource deltas. This feature provides a "rewind" capability, allowing SREs to see exactly what changed in a YAML manifest or pod state hours or days after the incident occurred.

3. Image Filesystem Inspection: Radar enables deep-dive container forensics without requiring "kubectl exec" or local Docker installations. Users can browse the filesystem of any container image directly within the UI. This is critical for verifying environment variables, configuration files, and binary versions in distroless images or locked-down production environments.

4. Model Context Protocol (MCP) for AI Agents: Radar serves as an MCP server, a specialized protocol designed to connect AI agents (like Claude, Cursor, or GitHub Copilot) to live data sources. This allows LLMs to query cluster state, logs, and events with token-optimized context, enabling safe and accurate AI-assisted troubleshooting of Kubernetes infrastructure.

5. Automated Cluster Audits and Best-Practice Checks: The platform includes a built-in auditing engine that runs over 30 security and reliability checks based on industry frameworks. It automatically flags issues such as missing resource limits, insecure privilege escalation, and deprecated API versions, labeling them by framework and severity.

Problems Solved

1. Pain Point: Tool Sprawl and Context Switching. Platform teams typically juggle 5+ tools (monitoring, logging, CLI, IDE, GitOps UI) to debug a single incident. Radar consolidates these into one "search-everything" bar that works across regions and clouds.

2. Target Audience: This product is engineered for Site Reliability Engineers (SREs), Platform Engineers, DevOps Leads, and Kubernetes Operators who manage multi-cluster environments or complex microservice architectures. It is also highly effective for "Homelab" enthusiasts seeking a lightweight, no-cost alternative to enterprise dashboards.

3. Use Cases:

• Incident Response: Rapidly identifying a crashing pod across dozens of namespaces and jumping directly to its logs and event history.
• GitOps & Helm Visibility: Verifying the sync state of ArgoCD or Flux applications alongside the actual resources they produced.
• Security Compliance: Performing a real-time audit of cluster configurations to ensure adherence to CIS benchmarks or internal security policies.

Unique Advantages

1. Differentiation from Lens and k9s: Unlike Lens, which has moved toward a proprietary subscription model, Radar is fully open-source (Apache 2.0) with no feature gates or "call for pricing" limitations in the OSS version. While k9s is excellent for terminal-based power users, Radar provides superior visual context for topology and traffic flows that a CLI cannot replicate.

2. Key Innovation: The "Zero-Agent" and "Single Binary" architecture. Radar requires no complex installation of agents on nodes. It runs as a local binary reading your kubeconfig or as a simple Helm release. The inclusion of the MCP server specifically for AI agents makes it the first Kubernetes UI built for the era of AI-driven operations.

Frequently Asked Questions (FAQ)

1. Is Radar a direct replacement for Lens or k9s? Radar can replace Lens for users seeking an open-source, high-performance UI that handles multi-cluster management without a subscription. For k9s users, Radar provides a complementary visual layer, particularly for topology mapping and image inspection, which are difficult to execute in a terminal environment.

2. How does Radar handle multi-cluster security and RBAC? Radar supports self-hosting with OIDC and SAML integration (Google, GitHub, etc.). It respects existing Kubernetes RBAC, ensuring that users only see and interact with resources they have permission to access. In-cluster deployments can be scoped to specific namespaces or clusters to maintain strict security boundaries.

3. What is the difference between Radar OSS and Radar Cloud? The Open Source (OSS) version contains the full UI and all core features for individual clusters. Radar Cloud is designed for enterprise fleet management, adding centralized aggregation of multiple clusters, persistent long-term data retention beyond the local instance, routed alerts to Slack/PagerDuty, and centralized SSO for large teams.

4. Does Radar require a persistent database for the event timeline? In the single-binary local mode, Radar caches events in memory to provide immediate visibility. For long-term persistence of events beyond the 1-hour Kubernetes limit, the self-hosted or Cloud versions provide storage backends to ensure historical data is available for post-mortem analysis.