So yeah I spent like 2 hours deep dive debugging into this only to discover a bug. https://github.com/kubernetes-client/javascript/blob/3283cb12f146baf0ced6061d06697a3ecd25917a/src/config.ts#L527-L551 more specifically https://github.com/kubernetes-client/javascript/blob/3283cb12f146baf0ced6061d06697a3ecd25917a/src/config.ts#L533-L536 if no `proxyUrl` is set, then the default will be an HTTPS agent, which does not work with `kubectl proxy` environments.