Worked on modernizing Kubernetes attestation within the spiffe/spire repository by replacing the deprecated k8s_sat node attestor with the k8s_psat plugin. This involved comprehensive code refactoring and deprecation management, including the removal of all k8s_sat references from configuration files, documentation, and internal plugin catalogs. The transition to PSAT-based attestation aimed to reduce configuration drift and mitigate security risks associated with legacy components. Leveraged Go and HCL to implement these changes, focusing on maintainability and alignment with current Kubernetes integration standards. The work enhanced the project’s security posture and streamlined future plugin development within the SPIRE ecosystem.