docs/ADRs/adr002.md

@@ -48,6 +48,8 @@ We evaluated the following Kubernetes distributions:
 
 **k3s**: Lightweight and easy to deploy, but lacks full integration with the underlying operating system. We would still need to manage a traditional Linux distribution separately, which adds operational burden.
 
+**Flatcar Container Linux**: A container-optimized OS forked from CoreOS Container Linux. Provides automatic updates, immutable infrastructure patterns, and is designed for running containers. However, it still requires a separate Kubernetes distribution to be installed on top (like k3s or kubeadm), adding another layer to manage. While more secure than traditional Linux distributions, it retains SSH access and a shell, which increases the attack surface compared to Talos.
+
 **Talos Linux**: Purpose-built for Kubernetes with an immutable, API-driven design. No SSH, no shell, minimal attack surface. The OS and Kubernetes are managed as a single unit with declarative configuration. Produces consistent behavior across all environments.
 
 ## Decision