Thumbnail image

KUBERNETES HOME LAB IN 2025: PART 1 - CNI & GITOPS

Last time, we left our Cluster in a semi-happy state: The nodes were up, the control plane was available, but we had no cluster network. Today, we will fix that, and a bit more.

Read more
Wed, Feb 12, 2025 k8shome labkuberneteslibvirtkubeadmterraform
Thumbnail image

KUBERNETES HOME LAB IN 2025: PART 0 - BOOTSTRAPPING THE CLUSTER

First things first, we need some nodes that make up our cluster.

Read more
Wed, Feb 5, 2025 k8shome labkuberneteslibvirtkubeadmterraform
Thumbnail image

KUBERNETES HOME LAB IN 2025: INTRODUCTION

The year was 2024, Cyber Monday was rolling by and my manager pointed out that I still had a budget available for training and certifications. One purchase of a Kubestronaut Certification Bundle and a few weeks later, I kinda have to face it: I need a new home lab.

Read more
Tue, Feb 4, 2025 k8shome labkubernetes
Thumbnail image

GETTING STARTED WITH OPEN SOURCE: MAKING MY FIRST CONTRIBUTION TO HUGO.

Lots of people ask for advice on how to get started in open source.

Read more
Tue, Dec 17, 2024 hugoopen sourcewasmMIME
Thumbnail image

THE HIDDEN RISKS OF HIGH-QUALITY CODE

Popularized by Google[1][2], Haunted Graveyards are pieces of code that, while providing a business value, are so ancient, obtuse, or complex that no one dares enter them.

Read more
Wed, Dec 4, 2024 consultingsoftware engineeringcode quality
Thumbnail image

MAKE CHROME GO BRRRRRR....

Everything started with a simple question: “Why does my laptop get hot watching YouTube?”, and led to a rabbit hole of hardware acceleration, Chrome flags, and Intel iGPU monitors.

Read more
Sun, Jun 2, 2024 ChromeInteliGPUHardware Acceleration
Thumbnail image

GITSIGN IN REMOTE ENVIRONMENTS

After attending SigstoreCon, I got inspired by Priya Wadhwa’s Keynote: Signing Git Commits with Gitsign, to finally set up gitsign for my dev environment. It seemed straightforward enough, right?

Read more
Wed, Nov 2, 2022 gitgitsignsupply-chain-securityOIDCsigstore
Thumbnail image

BRINGING FIRST-CLASS SUPPORT TO SBOMS AND ATTESTATIONS FOR CONSTELLATION CONTAINERS

In a previous post, we explored how to generate a Software Bill of Materials (SBOM) and subsequently scan them for vulnerabilities. In this post, we show you how SBOMs can be signed and then stored in the same container registry as the scanned image. This improves security & discoverability!

Read more
Thu, Oct 27, 2022 SBOMSoftware Bill Of MaterialConfidential ComputingConstellationSigstore
Thumbnail image

MY FAVORITE TOOLS TO KEEP A ZERO VULNERABILITIES POSTURE FOR CONSTELLATION

In our last post, we explored how Software Bill of Materials (SBOMs) provide us with a transparent view of all dependencies in Constellation. In this post, we explore how we can use this information to continuously monitor vulnerabilities and upgrade to patched versions as soon as they are available.

Read more
Mon, Oct 10, 2022 Software Bill Of MaterialConfidential ComputingConfidential KubernetesSoftwareCybersecurity
Thumbnail image

GENERATING SBOMS FOR CONFIDENTIAL KUBERNETES IS EASIER THAN YOU THINK!

Constellation is an infrastructure product and includes several different components:

Read more
Mon, Oct 3, 2022 Software Bill Of MaterialConfidential ComputingConfidential KubernetesSBOM