· 1 min read
Hello, World — Why I'm Starting to Write Here
After years of writing for other publications, I'm starting a blog of my own. Here's what I plan to cover and why having a home base matters.
Read more →Writing
Writing
Posts from this blog, plus articles published elsewhere on Kubernetes, cloud-native security, platform engineering, and open source.
On this site
From the Blog
External
Published Elsewhere
Cloud Native Now
Software Supply Chain Security: Why 99% of Your Container is Mystery Code
A single container base image introduces thousands of vulnerabilities and unknown binaries alongside your actual business logic. Why securing software supply chains requires provenance, attestation, and SBOMs — not just vulnerability scanning.
supply-chain-security containers sbom security
The New Stack
Speed Plus Safety: Ending the Dev vs. Platform Engineer Clash
The tension between developer velocity and platform reliability doesn't have to be a zero-sum game. An argument for how platform teams and developers can align around shared goals without sacrificing speed or safety.
platform-engineering developer-experience kubernetes devops
SUSE Rancher Blog
Ending the IngressNightmare: How SUSE Secures Your Kubernetes Clusters from External and Internal Threats
A deep dive into the critical IngressNightmare vulnerabilities affecting ingress-nginx controllers and how SUSE's layered security ecosystem — NeuVector, KubeWarden, and Application Collection — mitigates both external and internal cluster threats.
kubernetes security ingress suse
SUSE Blog
SUSE Revolutionizes Observability for CNCF Projects: A Case Study on the Longhorn Project
How SUSE Observability (formerly StackState) helped the Longhorn project rapidly identify orphaned Kubernetes services through automated discovery and topology mapping — a case study in what enhanced observability can catch that manual review misses.
observability longhorn cncf kubernetes