Automating NIS2 Compliance in Kubernetes with Kyverno: A Practical Guide
2025 is the year when NIS2 measures will start to bite. Is your platform team ready for the challenge? This post gives a brief overview of NIS2 in the context of platform engineering. Then it gives… ⌘ Read more
Dapr in Two Minutes: Simplifying Distributed Application Development
Dapr (Distributed Application Runtime) takes the pain out of building distributed applications by offering developers simple “building block” APIs to manage the challenges of connecting with complex infrastructure. Developers can use these APIs to interact with… ⌘ Read more
Why Java endures: The foundation of modern enterprise development
For 30 years, Java has been a cornerstone of enterprise software development. Here’s why—and how to learn Java.
The post Why Java endures: The foundation of modern enterprise development appeared first on The GitHub Blog. ⌘ Read more
Full exposure: A practical approach to handling sensitive data leaks
Treating exposures as full and complete can help you respond more effectively to focus on what truly matters: securing systems, protecting sensitive data, and maintaining the trust of stakeholders.
The post Full exposure: A practical approach to handling sensitive data leaks appeared first on [The GitHu … ⌘ Read more
Falcoctl: Artifact Management for Falco
Artifact management is the process of storing, organising, and securing the essential components generated throughout software development. Cloudsmith defines artifacts as the tangible outputs of the development lifecycle, including compiled source code, libraries, executables, and configuration… ⌘ Read more
CNCF Joins Google Summer of Code 2025 – Calling All Contributors!
We’re thrilled to share that the Cloud Native Computing Foundation has once again been accepted as a Google Summer of Code (GSoC) mentoring organization for 2025! This program is a fantastic opportunity for new contributors—especially students—to… ⌘ Read more
On my blog: Developer Diary, Harriet Tubman Day https://john.colagioia.net/blog/2025/03/10/tubman.html #programming #project #devjournal
The NixOS Foundation Board Announced ⌘ Read more
Datalagring, igen!
Some of my usual readers will have to excuse me. This post will be in
Swedish. It’s about proposed Swedish legislation for forcing someone
who offers a message system to the public to cooperate with the law.
— — —
InledningNytt lagförslag: Även chatsystem ska vara “anpassningsskyldiga” för
hemlig avlyssning och hemlig övervakning!
Det är väl ingen överraskning bland mina läsare vad jag tycker om det.
Går förslaget igenom gör vi det mer komplicerat för vanliga användare
att meddela sig med varan … ⌘ Read more
On my blog: Free Culture Book Club — acoustic (yin) https://john.colagioia.net/blog/2025/03/08/acoustic-yin.html #freeculture #bookclub
On my blog: Toots 🦣 from 03/03 to 03/07 https://john.colagioia.net/blog/2025/03/07/week.html #linkdump #socialmedia #quotes #week
Why Infrastructure as Code Needs to be Secure by Default
Infrastructure as Code (IaC) has become the standard for managing cloud infrastructure, but it introduces significant challenges, particularly around security and compliance. Issues such as misconfigurations, secret management, policy enforcement, and auditing can complicate workflows. These… ⌘ Read more
Welcome StrimziCon 2025!
We are very pleased to announce the return of StrimziCon, scheduled later this year! After the huge success of StrimziCon 2024, the Strimzi community decided to repeat the event for 2025. Like last year, this is… ⌘ Read more
[ANN] How Monero Fulfilled Satoshi’s Promise
Links:
- https://zola.ink/blog/posts/how-monero-fulfilled-satoshis-promies
- https://news.ycombinator.com/item?id=43290408
@basses:matrix.org ⌘ Read more
On my blog: Real Life in Star Trek, Birthright, part 1 https://john.colagioia.net/blog/2025/03/06/birthright-1.html #scifi #startrek #closereading
Too Complex: It’s Not Kubernetes, It’s What It Does
The open-source container orchestration system for automating software deployment, scaling, and management has earned a bad rep for being too complicated. In this post, let’s explore whether that reputation is well deserved. The Steep Learning Curve… ⌘ Read more
Kubestronaut in Orbit: Gerardo López
Get to know Gerardo Gerardo is a passionate Cloud Native Advocate, Kubernetes expert, and Docker Captain with a strong focus on DevOps, software development, and security. Based in Costa Rica, he has earned several certifications, including… ⌘ Read more
Desktop 4.39: Smarter AI Agent, Docker CLI in GA, and Effortless Multi-Platform Builds
Docker Desktop 4.39 brings Docker AI Agent for real-time help, plus Bake for faster builds and Multi-Node Kubernetes for better testing. Learn more! ⌘ Read more
I did not want to miss the chance to take one (maybe) last picture of this beautiful symmetrical view. ⌘ Read more
Four steps toward building an open source community
Three maintainers talk about how they fostered their open source communities.
The post Four steps toward building an open source community appeared first on The GitHub Blog. ⌘ Read more
Just a few more days before I leave Kassel after two and a half years. Feeling grateful for everything this city has given me and excited for what’s ahead! ⌘ Read more
Erlang Solutions: Understanding Big Data in Healthcare
Healthcare generates large amounts of data every day. From patient records and medical scans to treatment plans and clinical trials. This information, known as big data, has the potential to improve patient care, improve efficiency, and drive innovation. But many organisations are still figuring out how to use it effectively.
With AI-driven analytics, wearable technology, and real-time monitoring, healthcare providers, insurers, and phar … ⌘ Read more
KubeCon + CloudNativeCon Europe 2025 co-located event deep dive: OpenFeature Summit
Co-chairs: Michael Beemer, Jonathan Norris, Thomas PoignantApril 1, 2025London At the OpenFeature Summit, we want attendees to leave with a deep understanding of the latest trends and real-world use cases in feature flagging. This event is… ⌘ Read more
AI Cloud: What, Why, and How?
The rapid growth of AI applications across industries has led to significant changes, particularly with the adoption of deep learning and generative AI, which provide a competitive advantage in industries such as drug discovery in pharmaceutical… ⌘ Read more
Tailscale is pretty useful
Article URL: https://blog.6nok.org/tailscale-is-pretty-useful/
Comments URL: https://news.ycombinator.com/item?id=43270835
Points: 505
# Comments: 273 ⌘ Read more
Video: How to run dependency audits with GitHub Copilot
Learn to automate dependency management using GitHub Copilot, GitHub Actions, and Dependabot to eliminate manual checks, improve security, and save time for what really matters.
The post Video: How to run dependency audits with GitHub Copilot appeared first on The GitHub Blog. ⌘ Read more
Not just for developers: How product and security teams can use GitHub Copilot
GitHub Copilot isn’t just for developers! Discover how product managers, security professionals, scrum masters, and more use GitHub Copilot to streamline tasks, automate workflows, and boost productivity across teams.
The post [Not just for developers: How product and security teams can use GitHub Copilot](https://github.blog/ai-and-ml/github-copilot/not-just-for-dev … ⌘ Read more
Volcano v1.11 Released! A New Era of Cloud-Native Scheduling for AI and Big Data
As the de facto standard in cloud-native batch computing, Volcano has been widely adopted across various scenarios, including AI, Big Data, and High-Performance Computing (HPC). With over 800 contributors from more than 30 countries and tens… ⌘ Read more
Aligning Language Practices for KubeCon + CloudNativeCon Japan and KubeCon + CloudNativeCon China
The global cloud native community thrives on diversity and collaboration, bringing together contributors, users, and enthusiasts worldwide. As we continue to grow and expand, we are committed to creating an inclusive and effective environment for learning… ⌘ Read more
Observability Trends in 2025 – What’s Driving Change?
Observability has evolved beyond traditional monitoring, integrating AI, automation, and security. Initially, monitoring focused on collecting logs and metrics separately, often leading to silos and limited visibility. The rise of distributed systems and microservices has increased… ⌘ Read more
お知らせ:JPCERT/CC Eyes「JSAC2025 開催レポート~DAY 2~」 ⌘ Read more
Finding leaked passwords with AI: How we built Copilot secret scanning
Passwords are notoriously difficult to detect with conventional programming approaches. AI can help us find passwords better because it understands context. This blog post will explore the technical challenges we faced with building the feature and the novel and creative ways we solved them.
The post [Finding leaked passwords with AI: How we built Copilot secret scanning](https … ⌘ Read more
KubeCon + CloudNativeCon Europe 2025 co-located event deep dive: Cloud Native + Kubernetes AI Day
Co-chairs: Rajas Kakodkar, Ricardo Rocha, Thiago Gil, Yuan TangApril 1, 2025London Cloud Native & Kubernetes AI Day brings together a diverse range of technical enthusiasts, open source contributors, practitioners, researchers and end users, all united in… ⌘ Read more
Open Networking & Edge Summit: A Must-Attend for KubeCon + CloudNativeCon Attendees
For over a decade, the Open Networking & Edge Summit has been the premier gathering for leaders in open networking, edge, cloud, and IoT industries. It’s a unique event that fosters a neutral, collaborative environment, bringing… ⌘ Read more
Apple’s Software Quality Crisis
Article URL: https://www.eliseomartelli.it/blog/2025-03-02-apple-quality
Comments URL: https://news.ycombinator.com/item?id=43243075
Points: 501
# Comments: 593 ⌘ Read more
Announcing the Beta Release of OpenTelemetry Go Auto-Instrumentation using eBPF
The OpenTelemetry community is excited to announce the beta release of the OpenTelemetry Go Auto-Instrumentation project! This milestone brings us closer to our mission of making observability simple, accessible, and effective for Go applications. What is… ⌘ Read more
Data Protection Working Group Deep Dive Session at KubeCon + CloudNativeCon London
Data on Kubernetes is a growing field, with databases, object stores, and other stateful applications moving to the platform. The Data Protection Working Group focuses on data availability and preservation for Kubernetes – including backup, restore,… ⌘ Read more
New Phippy Book Guidelines: Enhancing Community Access & Engagement
Phippy and Friends have long been a beloved part of the cloud native ecosystem, making complex technologies more approachable through storytelling. As interest in these books grows, CNCF is introducing new guidelines to better support, distribute,… ⌘ Read more
GitHub for Beginners: How to get started with GitHub Copilot
Get started with GitHub Copilot and navigate features like Copilot Chat in this installment of the GitHub for Beginners series.
The post GitHub for Beginners: How to get started with GitHub Copilot appeared first on The GitHub Blog. ⌘ Read more
On my blog: Developer Diary, World Wildlife Day https://john.colagioia.net/blog/2025/03/03/wildlife.html #programming #project #devjournal
My February ‘25 in Review
Now February is also over – another eventful month. While world politics had some lows with the German federal election and events in the USA, there were at least some highs in my private life. ⌘ Read more
On my blog: Free Culture Book Club — Stories by Matthew DeBlock https://john.colagioia.net/blog/2025/03/01/deblock.html #freeculture #bookclub
On my blog: Toots 🦣 from 02/24 to 02/28 https://john.colagioia.net/blog/2025/02/28/week.html #linkdump #socialmedia #quotes #week
How to gain code execution on hundreds of millions of people and popular apps
Article URL: https://kibty.town/blog/todesktop/
Comments URL: https://news.ycombinator.com/item?id=43210858
Points: 506
# Comments: 120 ⌘ Read more
Docker Engine v28: Hardening Container Networking by Default
Learn how Docker streamlines developer onboarding and helps organizations set up the right guardrails to give developers the flexibility to innovate within the boundaries of company policies. ⌘ Read more
お知らせ:JPCERT/CC Eyes「TSUBAMEレポート Overflow(2024年10~12月)」 ⌘ Read more
On my blog: Real Life in Star Trek, Tapestry https://john.colagioia.net/blog/2025/02/27/tapestry.html #scifi #startrek #closereading
Mathieu Pasquet: slixmpp v1.9.0
It has not been too long since 1.8.6 and here we are with 1.9.0, which is kind of a major release (following the well-known pridever numbering scheme).
Long story short, there are at least two major changes warranting the new number (and plenty of other things, read on!):
- switching the cython jid implementation for a rust one, which will be faster and more correct
- removing the xmpp.process() method (planned since the 1.8.0 release)
Special thanks to nicoco … ⌘ Read more
Alibaba, Datadog, and Quesma Join Forces on Go Compile-Time Instrumentation
Standards are only useful if they’re widely adopted, and adoption is only effective if the available tooling facilitates it. I imagine SI units would not have been too popular when they were introduced if you had to build… ⌘ Read more
Erlang Solutions: Top 5 IoT Business Security Basics
IoT is now a fundamental part of modern business. With more than 17 billion connected devices worldwide, IoT business security is more important than ever. A single breach can expose sensitive data, disrupt operations, and damage a company’s reputation.
To help safeguard your business, we’ll cover five essential IoT security basics: data encryption, strong password policies, regular security audits, employee awareness tr … ⌘ Read more