Mar 24 · 6 min read · You encrypted the disk. You enabled TLS. You stored your secrets in a KMS. But what if a cloud provider administrator, a compromised hypervisor, or a malicious insider could directly read your virtual machine's memory? This isn't a hypothetical threa...
Join discussionFeb 16 · 10 min read · Kubernetes Sidecar Injection Control Patterns When you deploy a service mesh like Istio or Linkerd into a Kubernetes cluster, the automatic sidecar injection feature seems like magic—until it isn't. Teams quickly discover that blanket injection polic...
Join discussion
Feb 16 · 9 min read · Service Mesh Traffic Shadowing for Zero-Risk Deployments Most teams discover their deployment strategy is broken only after a production incident. You've tested in staging, run integration tests, and validated everything locally—yet somehow, the new ...
Join discussionFeb 12 · 4 min read · Dapr Microservices Building Blocks: Cloud-Native Simplified The 3 AM Production Incident That Changed Everything Six months ago, our infrastructure failed spectacularly. Here's what I learned. Table of Contents Why Traditional Approaches Break Moder...
Join discussionFeb 11 · 6 min read · For any application, securely storing credentials such as passwords and API keys is critical. Kubernetes provides an inbuilt resource called Secrets, which can be injected into pods as environment variables. However, these secrets are only Base64-enc...
Join discussionFeb 6 · 4 min read · Kubernetes often feels like a black box — we run a command, and things magically happen. But behind every “kubectl apply“, there is a carefully designed request flow that ensures security, consistency, and reliability. In this blog, we’ll break down ...
Join discussionFeb 4 · 16 min read · I’ve been slow with the blog posts, I’ve been very busy getting to grips with new tools, systems, ways of working, and just trying to learn as much as I can since starting my new role at a new company 6 months ago and not making my head explode… All ...
Join discussion
Jan 15 · 3 min read · In this article, I’ll walk you through how I deployed Jenkins on Kubernetes, configured dynamic agent pods, and successfully executed a pipeline using Kubernetes-native Jenkins agents. This setup reflects real-world CI/CD architecture where Jenkins s...
Join discussion
Dec 26, 2025 · 5 min read · Project A: Single-Service Production Container (Python App) Goal: Build a production ready containerized service using Docker best practices: secure, optimized, observable, and resilient. Project Structure Why this matters• Clean separation of conc...
Join discussion
