Suvidya Mhatre enhanced the security posture of the canonical/k8s-snap repository by implementing TLS cipher suite hardening for the Kubernetes API server. Using Go and leveraging expertise in DevOps and Kubernetes, Suvidya aligned the server’s configuration with the Mozilla intermediate profile, removing deprecated and weak ciphers to reduce cryptographic risk. The update maintained client compatibility and ensured production stability throughout the rollout, addressing compliance and risk management requirements. This focused engineering effort delivered a measurable improvement in API security without introducing regressions or reported bugs, demonstrating a methodical approach to security enhancement within a complex, production-grade Kubernetes environment.