Podcasts about cncf

Play Episode Listen Later Jan 30, 2026

Debt and the cost of daily living often make us question how we are to do God's work when we are struggling to find money to survive. On episode #466 of “Let's Talk Money with Dave and Reb”, the co-hosts listen as Dylan Armstrong shares his story of God's provision and how he went from below broke to home ownership in two years! Dylan inspires listeners as he shares how trusting God and giving everything led him to places and opportunities that he did not plan or expect. Today's episode is sponsored by the Canadian National Christian Foundation which helps Canadians connect God's money with God's work. Through their Donor-Advised Funds, CNCF makes giving simple and impactful, so you can focus on supporting the causes that matter most. Learn more about how they can help you CNCF.ca To order Reb's book Cultivating Trust Expanded Edition: Finding God's Hope and Freedom for Your Finances, go to https://www.amazon.ca/dp/1998412164/ref=sr_1_3?crid=XUVAMAN0TFEY&dib=eyJ2IjoiMSJ9.8x0mkzEbAurMet_Q02DjC1uI9_HBqWQlnPySUgf62Ik9smNv5IQUJVSYBOXp4dhvsmfU3vzJivqJWwrvkTfyLe4uDWay18JChGQ1QWENY4FXHjdhLEkWMLQT8BHP9Lz18vRbIHFrvkyO6ocnHFx7rS2jtZ7WVzmIhw0U7cFRtGtRdvaw7gj3W2qigq_7EBTDZBOEfMVxxeuk405kn921-o-irE3XdWX2KrJ8e0G9W1usTiTi2j-EANx4MC_ygttzlzwj_1qmQC8MCk5LxF6jXTDr1ETe1v3O1q5o0rO4H2g.pybaC103ktXcDYR0puZtPXOBpswpMjPmU0vYc-KTAnc&dib_tag=se&keywords=cultivating+trust&qid=1732127878&sprefix=cultivating+trust%2Caps%2C117&sr=8-3. To listen to the audiobook please find it here: https://open.spotify.com/show/7FCzANDapS7Eni6YIdIWM5?si=6dc65d94c1c44a2c&nd=1&dlsi=cbb53cbd7ccf4e02. To contact Dylan, go to www.revdcoaching.ca #morethanenough #finances #money #financialfitness #provisionstory

Find Your K8s Happy Path with RawKode Academy

DevOps and Docker Talk

Play Episode Listen Later Jan 23, 2026 52:50

I talk with David Flanagan, aka Rawkode, about his new opinionated Tech Matrix that helps you navigate the overwhelming CNCF landscape. https://rawkode.academy/technology/matrix

Preparing for Tax Season with Stephen Tibben

Play Episode Listen Later Jan 23, 2026

It's everyone's favorite time of year… Tax Season! On episode #465 of “Let's Talk Money with Dave and Reb” the co-hosts talk with Stephen Tibben, More Than Enough's tax specialist, about how to prepare for tax season. While taxes often bring anxiety and frustration, Stephen reminds listeners of the important deadlines coming up for Canadians and how to best prepare and access documents for filing your income tax, whether you are doing it yourself or through a third party. Today's episode is sponsored by the Canadian National Christian Foundation which helps Canadians connect God's money with God's work. Through their Donor-Advised Funds, CNCF makes giving simple and impactful, so you can focus on supporting the causes that matter most. Learn more about how they can help you CNCF.ca To order Reb's book Cultivating Trust Expanded Edition: Finding God's Hope and Freedom for Your Finances, go to https://www.amazon.ca/dp/1998412164/ref=sr_1_3?crid=XUVAMAN0TFEY&dib=eyJ2IjoiMSJ9.8x0mkzEbAurMet_Q02DjC1uI9_HBqWQlnPySUgf62Ik9smNv5IQUJVSYBOXp4dhvsmfU3vzJivqJWwrvkTfyLe4uDWay18JChGQ1QWENY4FXHjdhLEkWMLQT8BHP9Lz18vRbIHFrvkyO6ocnHFx7rS2jtZ7WVzmIhw0U7cFRtGtRdvaw7gj3W2qigq_7EBTDZBOEfMVxxeuk405kn921-o-irE3XdWX2KrJ8e0G9W1usTiTi2j-EANx4MC_ygttzlzwj_1qmQC8MCk5LxF6jXTDr1ETe1v3O1q5o0rO4H2g.pybaC103ktXcDYR0puZtPXOBpswpMjPmU0vYc-KTAnc&dib_tag=se&keywords=cultivating+trust&qid=1732127878&sprefix=cultivating+trust%2Caps%2C117&sr=8-3. To listen to the audiobook please find it here: https://open.spotify.com/show/7FCzANDapS7Eni6YIdIWM5?si=6dc65d94c1c44a2c&nd=1&dlsi=cbb53cbd7ccf4e02. Prosper Canada information about what you need to know: https://www.newswire.ca/news-releases/tax-tip-important-changes-to-the-2025-income-tax-package-what-you-need-to-know-896553524.html?utm_source=Prosper+Canada+Subscriptions+%5BAll%5D&utm_campaign=f63e2ce849-Media_Monitoring_January_8_COPY_01&utm_medium=email&utm_term=0_536ea6808f-f63e2ce849-209782524&mc_cid=f63e2ce849&mc_eid=e2030b7b95 To find the CRA tax portal go here: https://www.canada.ca/en/revenue-agency/services/e-services/cra-login-services.html #morethanenough #finances #money #financialfitness #tax

CTO Chris Aniszczyk on the CNCF push for AI interoperability

Play Episode Listen Later Jan 22, 2026 23:33

Chris Aniszczyk, co-founder and CTO of the Cloud Native Computing Foundation (CNCF), argues that AI agents resemble microservices at a surface level, though they differ in how they are scaled and managed. In an interview ahead of KubeCon/CloudNativeCon Europe, he emphasized that being “AI native” requires being cloud native by default. Cloud-native technologies such as containers, microservices, Kubernetes, gRPC, Prometheus, and OpenTelemetry provide the scalability, resilience, and observability needed to support AI systems at scale. Aniszczyk noted that major AI platforms like ChatGPT and Claude already rely on Kubernetes and other CNCF projects.To address growing complexity in running generative and agentic AI workloads, the CNCF has launched efforts to extend its conformance programs to AI. New requirements—such as dynamic resource allocation for GPUs and TPUs and specialized networking for inference workloads—are being handled inconsistently across the industry. CNCF aims to establish a baseline of compatibility to ensure vendor neutrality. Aniszczyk also highlighted CNCF incubation projects like Metal³ for bare-metal Kubernetes and OpenYurt for managing edge-based Kubernetes deployments. Learn more from The New Stack about CNCF and what to expect in 2026:Why the CNCF's New Executive Director Is Obsessed With InferenceCNCF Dragonfly Speeds Container, Model Sharing with P2PJoin our community of newsletter subscribers to stay on top of the news and at the top of your game. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Episode 555: After the Dream

Software Defined Talk

Play Episode Listen Later Jan 16, 2026 69:05

This week, we discuss Gemini powering Siri, AWS's biggest competitor, and AWS strategy choices. Plus, when should your next meeting actually start? Watch the YouTube Live Recording of Episode (https://www.youtube.com/live/bkN3SDWXYZE?si=5RoIyZ6lz_Hfi7nE) 555 (https://www.youtube.com/live/bkN3SDWXYZE?si=5RoIyZ6lz_Hfi7nE) Runner-up Titles Swedish Death Cleaning Give it a best effort Trying it bad for profits. That pen better be really good You do all the nerd shit, we'll be cool Looking at a hundred rabbits' assholes. The Kremlinologist of AWS The aaSes of Cloud They'll like our apples better Running on hopes and dreams until you're sure they don't exist What we have is a situation Rundown Apple gets AI from Google Joint statement from Google and Apple (https://blog.google/company-news/inside-google/company-announcements/joint-statement-google-apple/) Kuo: Apple's AI Deal With Google Is Temporary and Buys It Time (https://www.macrumors.com/2026/01/13/apple-google-ai-deal-is-temporary/) Google's Apple AI deal marks 'huge loss' for OpenAI (https://finance.yahoo.com/news/googles-apple-ai-deal-marks-huge-loss-for-openai-110002996.html) AWS in 2026: The Year of Proving They Still Know How to Operate (https://www.lastweekinaws.com/blog/aws-in-2026-the-year-of-proving-they-still-know-how-to-operate/?ck_subscriber_id=512840665&utm_source=convertkit&utm_medium=email&utm_campaign=[Last%20Week%20in%20AWS]%20AWS%20in%202026:%20The%20Year%20of%20Proving%20They%20Still%20Know%20How%20to%20Operate%20-%2020306960) Relevant to your Interests Anthropic reportedly raising $10B at $350B valuation (https://techcrunch.com/2026/01/07/anthropic-reportedly-raising-10b-at-350b-valuation/) Dell Reverses Course, Brings Back XPS Laptops (https://www.cnet.com/tech/computing/dell-reverses-course-brings-back-xps-laptops/) Google is unleashing Gemini AI features on Gmail. Users will have to opt out (https://www.cnbc.com/2026/01/08/google-adds-gemini-features-to-gmail-message-summaries-proofreading-.html) Bose is open-sourcing its old smart speakers instead of bricking them (https://www.theverge.com/news/858501/bose-soundtouch-smart-speakers-open-source) Google Guys Say Bye to California (https://www.nytimes.com/2026/01/09/technology/google-founders-california-wealth-tax.html) Amazon gives managers a new way to spot who's barely coming into the office (https://www.businessinsider.com/amazon-flags-employees-rto-office-2026-1) A decade of open source in CNCF with 300,000+ contributors and counting (https://www.cncf.io/blog/2026/01/12/a-decade-of-open-source-in-cncf-with-300000-contributors-and-counting/) CrowdStrike to Acquire SGNL to Transform Identity Security for the AI Era (https://www.crowdstrike.com/en-us/press-releases/crowdstrike-to-acquire-sgnl-to-transform-identity-security-for-ai-era/) Snowflake Announces Intent to Acquire Observe to Deliver AI-Powered Observability (https://www.snowflake.com/en/news/press-releases/snowflake-announces-intent-to-acquire-observe-to-deliver-ai-powered-observability-at-enterprise-scale/) Nvidia Hires Google Veteran as Its First Chief Marketing Officer (https://www.wsj.com/articles/nvidia-hires-google-veteran-as-its-first-chief-marketing-officer-3dc2163f?gaa_at=eafs&gaa_n=AWEtsqc78O9yWpx28YbHsHhkY4UbuzPDNulddaijRt3y9rnPs3uRo18V4ghRRgo3AzQ%3D&gaa_ts=6966a608&gaa_sig=B3ADjcK4inCRjSkACod4QU-1HTE-j0gP27wIE9LUarawkBMmDw9Pap591kz2CPTAjiCKbOqUkbQyYLlxQr0Nmw%3D%3D) The Fediverse Experiment (https://www.searchengine.show/the-fediverse-experiment/) RIP the metaverse (https://sherwood.news/tech/rip-the-metaverse/) Nonsense American Airlines rolls out free Wi-Fi to loyalty members (https://www.customerexperiencedive.com/news/american-airlines-rolls-out-free-wi-fi-loyalty-members/809135/) Conferences cfgmgmtcamp 2026 (https://cfgmgmtcamp.org/ghent2026/), February 2nd to 4th, Ghent, BE. Coté speaking - anyone interested in being a SDI guest? DevOpsDayLA at SCALE23x (https://www.socallinuxexpo.org/scale/23x), March 6th, Pasadena, CA Use code: DEVOP for 50% off. Devnexus 2026 (https://devnexus.com), March 4th to 6th, Atlanta, GA. Coté has a discount code, but he's not sure if he can give it out. He's asking! Send him a DM in the meantime. KubeCon EU, March 23rd to 26th, 2026 - Coté will be there on a media pass. Whole bunch of VMUGs: Amsterdam (March 17-19, 2026), Minneapolis (April 7-9, 2026), Toronto (May 12-14, 2026), Dallas (June 9-11, 2026), Orlando (October 20-22, 2026) SDT News & Community Join our Slack community (https://softwaredefinedtalk.slack.com/join/shared_invite/zt-1hn55iv5d-UTfN7mVX1D9D5ExRt3ZJYQ#/shared-invite/email) Email the show: questions@softwaredefinedtalk.com (mailto:questions@softwaredefinedtalk.com) Free stickers: Email your address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) Follow us on social media: Twitter (https://twitter.com/softwaredeftalk), Threads (https://www.threads.net/@softwaredefinedtalk), Mastodon (https://hachyderm.io/@softwaredefinedtalk), LinkedIn (https://www.linkedin.com/company/software-defined-talk/), BlueSky (https://bsky.app/profile/softwaredefinedtalk.com) Watch us on: Twitch (https://www.twitch.tv/sdtpodcast), YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured), Instagram (https://www.instagram.com/softwaredefinedtalk/), TikTok (https://www.tiktok.com/@softwaredefinedtalk) Book offer: Use code SDT for $20 off "Digital WTF" by Coté (https://leanpub.com/digitalwtf/c/sdt) Sponsor the show (https://www.softwaredefinedtalk.com/ads) Recommendations Brandon: Google Nest Doorbell (Wired, 3rd Gen) (https://www.amazon.com/dp/B0FN7GWSHV?ref=ppx_yo2ov_dt_b_fed_asin_title&th=1) Matt: MTV Rewind (https://wantmymtv.vercel.app/) Coté: “These 36 Airlines Offer iPhone Feature That Helps Find Your Lost Bags.” (https://www.macrumors.com/2026/01/12/iphone-airtag-bag-tracking-airlines-list/) Distroless, Helm Charts, & Hardened Images: Security That Ships (with William Jimenez) (https://www.youtube.com/live/9Jc1xH65msg) Photo Credits Header (https://unsplash.com/photos/talking-people-sitting-beside-table-PTRzqc_h1r4)

amazon california tiktok ai google apple dm twitch ga wifi rip threads relevant slack siri gemini openai blue sky users gmail aws pasadena mastodon devops operate crowdstrike bose ghent cot gemini ai sdi cncf sdt matt ray toronto may kuo apple orlando october minneapolis april

LCC 335 - 200 terminaux en prod vendredi

Les Cast Codeurs Podcast

Play Episode Listen Later Jan 16, 2026 103:16

De retour à cinq dans l'épisode, les cast codeurs démarrent cette année avec un gros épisode pleins de news et d'articles de fond. IA bien sûr, son impact sur les pratiques, Mockito qui tourne un page, du CSS (et oui), sur le (non) mapping d'APIs REST en MCP et d'une palanquée d'outils pour vous. Enregistré le 9 janvier 2026 Téléchargement de l'épisode LesCastCodeurs-Episode-335.mp3 ou en vidéo sur YouTube. News Langages 2026 sera-t'elle l'année de Java dans le terminal ? (j'ai ouïe dire que ça se pourrait bien…) https://xam.dk/blog/lets-make-2026-the-year-of-java-in-the-terminal/ 2026: Année de Java dans le terminal, pour rattraper son retard sur Python, Rust, Go et Node.js. Java est sous-estimé pour les applications CLI et les TUIs (interfaces utilisateur terminales) malgré ses capacités. Les anciennes excuses (démarrage lent, outillage lourd, verbosité, distribution complexe) sont obsolètes grâce aux avancées récentes : GraalVM Native Image pour un démarrage en millisecondes. JBang pour l'exécution simplifiée de scripts Java (fichiers uniques, dépendances) et de JARs. JReleaser pour l'automatisation de la distribution multi-plateforme (Homebrew, SDKMAN, Docker, images natives). Project Loom pour la concurrence facile avec les threads virtuels. PicoCLI pour la gestion des arguments. Le potentiel va au-delà des scripts : création de TUIs complètes et esthétiques (ex: dashboards, gestionnaires de fichiers, assistants IA). Excuses caduques : démarrage rapide (GraalVM), légèreté (JBang), distribution simple (JReleaser), concurrence (Loom). Potentiel : créer des applications TUI riches et esthétiques. Sortie de Ruby 4.0.0 https://www.ruby-lang.org/en/news/2025/12/25/ruby-4-0-0-released/ Ruby Box (expérimental) : Une nouvelle fonctionnalité permettant d'isoler les définitions (classes, modules, monkey patches) dans des boîtes séparées pour éviter les conflits globaux. ZJIT : Un nouveau compilateur JIT de nouvelle génération développé en Rust, visant à surpasser YJIT à terme (actuellement en phase expérimentale). Améliorations de Ractor : Introduction de Ractor::Port pour une meilleure communication entre Ractors et optimisation des structures internes pour réduire les contentions de verrou global. Changements syntaxiques : Les opérateurs logiques (||, &&, and, or) en début de ligne permettent désormais de continuer la ligne précédente, facilitant le style "fluent". Classes Core : Set et Pathname deviennent des classes intégrées (Core) au lieu d'être dans la bibliothèque standard. Diagnostics améliorés : Les erreurs d'arguments (ArgumentError) affichent désormais des extraits de code pour l'appelant ET la définition de la méthode. Performances : Optimisation de Class#new, accès plus rapide aux variables d'instance et améliorations significatives du ramasse-miettes (GC). Nettoyage : Suppression de comportements obsolètes (comme la création de processus via IO.open avec |) et mise à jour vers Unicode 17.0. Librairies Introduction pour créer une appli multi-tenant avec Quarkus et http://nip.io|nip.io https://www.the-main-thread.com/p/quarkus-multi-tenant-api-nipio-tutorial Construction d'une API REST multi-tenant en Quarkus avec isolation par sous-domaine Utilisation de http://nip.io|nip.io pour la résolution DNS automatique sans configuration locale Extraction du tenant depuis l'en-tête HTTP Host via un filtre JAX-RS Contexte tenant géré avec CDI en scope Request pour l'isolation des données Service applicatif gérant des données spécifiques par tenant avec Map concurrent Interface web HTML/JS pour visualiser et ajouter des données par tenant Configuration CORS nécessaire pour le développement local Pattern acme.127-0-0-1.nip.io résolu automatiquement vers localhost Code complet disponible sur GitHub avec exemples curl et tests navigateur Base idéale pour prototypage SaaS, tests multi-tenants Hibernate 7.2 avec quelques améliorations intéressantes https://docs.hibernate.org/orm/7.2/whats-new/%7Bhtml-meta-canonical-link%7D read only replica (experimental), crée deux session factories et swap au niveau jdbc si le driver le supporte et custom sinon. On ouvre une session en read only child statelesssession (partage le contexte transactionnel) hibernate vector module ajouter binary, float16 and sparse vectors Le SchemaManager peut resynchroniser les séquences par rapport aux données des tables Regexp dans HQL avec like Nouvelle version de Hibernate with Panache pour Quarkus https://quarkus.io/blog/hibernate-panache-next/ Nouvelle extension expérimentale qui unifie Hibernate ORM with Panache et Hibernate Reactive with Panache Les entités peuvent désormais fonctionner en mode bloquant ou réactif sans changer de type de base Support des sessions sans état (StatelessSession) en plus des entités gérées traditionnelles Intégration de Jakarta Data pour des requêtes type-safe vérifiées à la compilation Les opérations sont définies dans des repositories imbriqués plutôt que des méthodes statiques Possibilité de définir plusieurs repositories pour différents modes d'opération sur une même entité Accès aux différents modes (bloquant/réactif, géré/sans état) via des méthodes de supertype Support des annotations @Find et @HQL pour générer des requêtes type-safe Accès au repository via injection ou via le métamodèle généré Extension disponible dans la branche main, feedback demandé sur Zulip ou GitHub Spring Shell 4.0.0 GA publié - https://spring.io/blog/2025/12/30/spring-shell-4-0-0-ga-released Sortie de la version finale de Spring Shell 4.0.0 disponible sur Maven Central Compatible avec les dernières versions de Spring Framework et Spring Boot Modèle de commandes revu pour simplifier la création d'applications CLI interactives Intégration de jSpecify pour améliorer la sécurité contre les NullPointerException Architecture plus modulaire permettant meilleure personnalisation et extension Documentation et exemples entièrement mis à jour pour faciliter la prise en main Guide de migration vers la v4 disponible sur le wiki du projet Corrections de bugs pour améliorer la stabilité et la fiabilité Permet de créer des applications Java autonomes exécutables avec java -jar ou GraalVM native Approche opinionnée du développement CLI tout en restant flexible pour les besoins spécifiques Une nouvelle version de la librairie qui implémenter des gatherers supplémentaires à ceux du JDK https://github.com/tginsberg/gatherers4j/releases/tag/v0.13.0 gatherers4j v0.13.0. Nouveaux gatherers : uniquelyOccurringBy(), moving/runningMedian(), moving/runningMax/Min(). Changement : les gatherers "moving" incluent désormais par défaut les valeurs partielles (utiliser excludePartialValues() pour désactiver). LangChain4j 1.10.0 https://github.com/langchain4j/langchain4j/releases/tag/1.10.0 Introduction d'un catalogue de modèles pour Anthropic, Gemini, OpenAI et Mistral. Ajout de capacités d'observabilité et de monitoring pour les agents. Support des sorties structurées, des outils avancés et de l'analyse de PDF via URL pour Anthropic. Support des services de transcription pour OpenAI. Possibilité de passer des paramètres de configuration de chat en argument des méthodes. Nouveau garde-fou de modération pour les messages entrants. Support du contenu de raisonnement pour les modèles. Introduction de la recherche hybride. Améliorations du client MCP. Départ du lead de mockito après 10 ans https://github.com/mockito/mockito/issues/3777 Tim van der Lippe, mainteneur majeur de Mockito, annonce son départ pour mars 2026, marquant une décennie de contribution au projet. L'une des raisons principales est l'épuisement lié aux changements récents dans la JVM (JVM 22+) concernant les agents, imposant des contraintes techniques lourdes sans alternative simple proposée par les mainteneurs du JDK. Il pointe du doigt le manque de soutien et la pression exercée sur les bénévoles de l'open source lors de ces transitions technologiques majeures. La complexité croissante pour supporter Kotlin, qui utilise la JVM de manière spécifique, rend la base de code de Mockito plus difficile à maintenir et moins agréable à faire évoluer selon lui. Il exprime une perte de plaisir et préfère désormais consacrer son temps libre à d'autres projets comme Servo, un moteur web écrit en Rust. Une période de transition est prévue jusqu'en mars pour assurer la passation de la maintenance à de nouveaux contributeurs. Infrastructure Le premier intérêt de Kubernetes n'est pas le scaling - https://mcorbin.fr/posts/2025-12-29-kubernetes-scale/ Avant Kubernetes, gérer des applications en production nécessitait de multiples outils complexes (Ansible, Puppet, Chef) avec beaucoup de configuration manuelle Le load balancing se faisait avec HAProxy et Keepalived en actif/passif, nécessitant des mises à jour manuelles de configuration à chaque changement d'instance Le service discovery et les rollouts étaient orchestrés manuellement, instance par instance, sans automatisation de la réconciliation Chaque stack (Java, Python, Ruby) avait sa propre méthode de déploiement, sans standardisation (rpm, deb, tar.gz, jar) La gestion des ressources était manuelle avec souvent une application par machine, créant du gaspillage et complexifiant la maintenance Kubernetes standardise tout en quelques ressources YAML (Deployment, Service, Ingress, ConfigMap, Secret) avec un format déclaratif simple Toutes les fonctionnalités critiques sont intégrées : service discovery, load balancing, scaling, stockage, firewalling, logging, tolérance aux pannes La complexité des centaines de scripts shell et playbooks Ansible maintenus avant était supérieure à celle de Kubernetes Kubernetes devient pertinent dès qu'on commence à reconstruire manuellement ces fonctionnalités, ce qui arrive très rapidement La technologie est flexible et peut gérer aussi bien des applications modernes que des monolithes legacy avec des contraintes spécifiques Mole https://github.com/tw93/Mole Un outil en ligne de commande (CLI) tout-en-un pour nettoyer et optimiser macOS. Combine les fonctionnalités de logiciels populaires comme CleanMyMac, AppCleaner, DaisyDisk et iStat Menus. Analyse et supprime en profondeur les caches, les fichiers logs et les résidus de navigateurs. Désinstallateur intelligent qui retire proprement les applications et leurs fichiers cachés (Launch Agents, préférences). Analyseur d'espace disque interactif pour visualiser l'occupation des fichiers et gérer les documents volumineux. Tableau de bord temps réel (mo status) pour surveiller le CPU, le GPU, la mémoire et le réseau. Fonction de purge spécifique pour les développeurs permettant de supprimer les artefacts de build (node_modules, target, etc.). Intégration possible avec Raycast ou Alfred pour un lancement rapide des commandes. Installation simple via Homebrew ou un script curl. Des images Docker sécurisées pour chaque développeur https://www.docker.com/blog/docker-hardened-images-for-every-developer/ Docker rend ses "Hardened Images" (DHI) gratuites et open source (licence Apache 2.0) pour tous les développeurs. Ces images sont conçues pour être minimales, prêtes pour la production et sécurisées dès le départ afin de lutter contre l'explosion des attaques sur la chaîne logistique logicielle. Elles s'appuient sur des bases familières comme Alpine et Debian, garantissant une compatibilité élevée et une migration facile. Chaque image inclut un SBOM (Software Bill of Materials) complet et vérifiable, ainsi qu'une provenance SLSA de niveau 3 pour une transparence totale. L'utilisation de ces images permet de réduire considérablement le nombre de vulnérabilités (CVE) et la taille des images (jusqu'à 95 % plus petites). Docker étend cette approche sécurisée aux graphiques Helm et aux serveurs MCP (Mongo, Grafana, GitHub, etc.). Des offres commerciales (DHI Enterprise) restent disponibles pour des besoins spécifiques : correctifs critiques sous 7 jours, support FIPS/FedRAMP ou support à cycle de vie étendu (ELS). Un assistant IA expérimental de Docker peut analyser les conteneurs existants pour recommander l'adoption des versions sécurisées correspondantes. L'initiative est soutenue par des partenaires majeurs tels que Google, MongoDB, Snyk et la CNCF. Web La maçonnerie ("masonry") arrive dans la spécification des CSS et commence à être implémentée par les navigateurs https://webkit.org/blog/17660/introducing-css-grid-lanes/ Permet de mettre en colonne des éléments HTML les uns à la suite des autres. D'abord sur la première ligne, et quand la première ligne est remplie, le prochain élément se trouvera dans la colonne où il pourra être le plus haut possible, et ainsi de suite. après la plomberie du middleware, la maçonnerie du front :laughing: Data et Intelligence Artificielle On ne devrait pas faire un mapping 1:1 entre API REST et MCP https://nordicapis.com/why-mcp-shouldnt-wrap-an-api-one-to-one/ Problématique : Envelopper une API telle quelle dans le protocole MCP (Model Context Protocol) est un anti-pattern. Objectif du MCP : Conçu pour les agents d'IA, il doit servir d'interface d'intention, non de miroir d'API. Les agents comprennent les tâches, pas la logique complexe des API (authentification, pagination, orchestration). Conséquences du mappage un-à-un : Confusion des agents, erreurs, hallucinations. Difficulté à gérer les orchestrations complexes (plusieurs appels pour une seule action). Exposition des faiblesses de l'API (schéma lourd, endpoints obsolètes). Maintenance accrue lors des changements d'API. Meilleure approche : Construire des outils MCP comme des SDK pour agents, encapsulant la logique nécessaire pour accomplir une tâche spécifique. Pratiques recommandées : Concevoir autour des intentions/actions utilisateur (ex. : "créer un projet", "résumer un document"). Regrouper les appels en workflows ou actions uniques. Utiliser un langage naturel pour les définitions et les noms. Limiter la surface d'exposition de l'API pour la sécurité et la clarté. Appliquer des schémas d'entrée/sortie stricts pour guider l'agent et réduire l'ambiguïté. Des agents en production avec AWS - https://blog.ippon.fr/2025/12/22/des-agents-en-production-avec-aws/ AWS re:Invent 2025 a massivement mis en avant l'IA générative et les agents IA Un agent IA combine un LLM, une boucle d'appel et des outils invocables Strands Agents SDK facilite le prototypage avec boucles ReAct intégrées et gestion de la mémoire Managed MLflow permet de tracer les expérimentations et définir des métriques de performance Nova Forge optimise les modèles par réentraînement sur données spécifiques pour réduire coûts et latence Bedrock Agent Core industrialise le déploiement avec runtime serverless et auto-scaling Agent Core propose neuf piliers dont observabilité, authentification, code interpreter et browser managé Le protocole MCP d'Anthropic standardise la fourniture d'outils aux agents SageMaker AI et Bedrock centralisent l'accès aux modèles closed source et open source via API unique AWS mise sur l'évolution des chatbots vers des systèmes agentiques optimisés avec modèles plus frugaux Debezium 3.4 amène plusieurs améliorations intéressantes https://debezium.io/blog/2025/12/16/debezium-3-4-final-released/ Correction du problème de calcul du low watermark Oracle qui causait des pertes de performance Correction de l'émission des événements heartbeat dans le connecteur Oracle avec les requêtes CTE Amélioration des logs pour comprendre les transactions actives dans le connecteur Oracle Memory guards pour protéger contre les schémas de base de données de grande taille Support de la transformation des coordonnées géométriques pour une meilleure gestion des données spatiales Extension Quarkus DevServices permettant de démarrer automatiquement une base de données et Debezium en dev Intégration OpenLineage pour tracer la lignée des données et suivre leur flux à travers les pipelines Compatibilité testée avec Kafka Connect 4.1 et Kafka brokers 4.1 Infinispan 16.0.4 et .5 https://infinispan.org/blog/2025/12/17/infinispan-16-0-4 Spring Boot 4 et Spring 7 supportés Evolution dans les metriques Deux bugs de serialisation Construire un agent de recherche en Java avec l'API Interactions https://glaforge.dev/posts/2026/01/03/building-a-research-assistant-with-the-interactions-api-in-java/ Assistant de recherche IA Java (API Interactions Gemini), test du SDK implémenté par Guillaume. Workflow en 4 phases : Planification : Gemini Flash + Google Search. Recherche : Modèle "Deep Research" (tâche de fond). Synthèse : Gemini Pro (rapport exécutif). Infographie : Nano Banana Pro (à partir de la synthèse). API Interactions : gestion d'état serveur, tâches en arrière-plan, réponses multimodales (images). Appréciation : gestion d'état de l'API (vs LLM sans état). Validation : efficacité du SDK Java pour cas complexes. Stephan Janssen (le papa de Devoxx) a créé un serveur MCP (Model Context Protocol) basé sur LSP (Language Server Protocol) pour que les assistants de code analysent le code en le comprenant vraiment plutôt qu'en faisant des grep https://github.com/stephanj/LSP4J-MCP Le problème identifié : Les assistants IA utilisent souvent la recherche textuelle (type grep) pour naviguer dans le code, ce qui manque de contexte sémantique, génère du bruit (faux positifs) et consomme énormément de tokens inutilement. La solution LSP4J-MCP : Une approche "standalone" (autonome) qui encapsule le serveur de langage Eclipse (JDTLS) via le protocole MCP (Model Context Protocol). Avantage principal : Offre une compréhension sémantique profonde du code Java (types, hiérarchies, références) sans nécessiter l'ouverture d'un IDE lourd comme IntelliJ. Comparaison des méthodes : AST : Trop léger (pas de compréhension inter-fichiers). IntelliJ MCP : Puissant mais exige que l'IDE soit ouvert (gourmand en ressources). LSP4J-MCP : Le meilleur des deux mondes pour les workflows en terminal, à distance (SSH) ou CI/CD. Fonctionnalités clés : Expose 5 outils pour l'IA (find_symbols, find_references, find_definition, document_symbols, find_interfaces_with_method). Résultats : Une réduction de 100x des tokens utilisés pour la navigation et une précision accrue (distinction des surcharges, des scopes, etc.). Disponibilité : Le projet est open source et disponible sur GitHub pour intégration immédiate (ex: avec Claude Code, Gemini CLI, etc). A noter l'ajout dans claude code 2.0.74 d'un tool pour supporter LSP ( https://github.com/anthropics/claude-code/blob/main/CHANGELOG.md#2074 ) Awesome (GitHub) Copilot https://github.com/github/awesome-copilot Une collection communautaire d'instructions, de prompts et de configurations pour optimiser l'utilisation de GitHub Copilot. Propose des "Agents" spécialisés qui s'intègrent aux serveurs MCP pour améliorer les flux de travail spécifiques. Inclut des prompts ciblés pour la génération de code, la documentation et la résolution de problèmes complexes. Fournit des instructions détaillées sur les standards de codage et les meilleures pratiques applicables à divers frameworks. Propose des "Skills" (compétences) sous forme de dossiers contenant des ressources pour des tâches techniques spécialisées. (les skills sont dispo dans copilot depuis un mois : https://github.blog/changelog/2025-12-18-github-copilot-now-supports-agent-skills/ ) Permet une installation facile via un serveur MCP dédié, compatible avec VS Code et Visual Studio. Encourage la contribution communautaire pour enrichir les bibliothèques de prompts et d'agents. Aide à augmenter la productivité en offrant des solutions pré-configurées pour de nombreux langages et domaines. Garanti par une licence MIT et maintenu activement par des contributeurs du monde entier. IA et productivité : bilan de l'année 2025 (Laura Tacho - DX)) https://newsletter.getdx.com/p/ai-and-productivity-year-in-review?aid=recNfypKAanQrKszT En 2025, l'ingénierie assistée par l'IA est devenue la norme : environ 90 % des développeurs utilisent des outils d'IA mensuellement, et plus de 40 % quotidiennement. Les chercheurs (Microsoft, Google, GitHub) soulignent que le nombre de lignes de code (LOC) reste un mauvais indicateur d'impact, car l'IA génère beaucoup de code sans forcément garantir une valeur métier supérieure. Si l'IA améliore l'efficacité individuelle, elle pourrait nuire à la collaboration à long terme, car les développeurs passent plus de temps à "parler" à l'IA qu'à leurs collègues. L'identité du développeur évolue : il passe de "producteur de code" à un rôle de "metteur en scène" qui délègue, valide et exerce son jugement stratégique. L'IA pourrait accélérer la montée en compétences des développeurs juniors en les forçant à gérer des projets et à déléguer plus tôt, agissant comme un "accélérateur" plutôt que de les rendre obsolètes. L'accent est mis sur la créativité plutôt que sur la simple automatisation, afin de réimaginer la manière de travailler et d'obtenir des résultats plus impactants. Le succès en 2026 dépendra de la capacité des entreprises à cibler les goulots d'étranglement réels (dette technique, documentation, conformité) plutôt que de tester simplement chaque nouveau modèle d'IA. La newsletter avertit que les titres de presse simplifient souvent à l'excès les recherches sur l'IA, masquant parfois les nuances cruciales des études réelles. Un développeur décrit dans un article sur Twitter son utilisation avancée de Claude Code pour le développement, avec des sous-agents, des slash-commands, comment optimiser le contexte, etc. https://x.com/AureaLibe/status/2008958120878330329?s=20 Outillage IntelliJ IDEA, thread dumps et project Loom (virtual threads) - https://blog.jetbrains.com/idea/2025/12/thread-dumps-and-project-loom-virtual-threads/ Les virtual threads Java améliorent l'utilisation du matériel pour les opérations I/O parallèles avec peu de changements de code Un serveur peut maintenant gérer des millions de threads au lieu de quelques centaines Les outils existants peinent à afficher et analyser des millions de threads simultanément Le débogage asynchrone est complexe car le scheduler et le worker s'exécutent dans des threads différents Les thread dumps restent essentiels pour diagnostiquer deadlocks, UI bloquées et fuites de threads Netflix a découvert un deadlock lié aux virtual threads en analysant un heap dump, bug corrigé dans Java 25. Mais c'était de la haute voltige IntelliJ IDEA supporte nativement les virtual threads dès leur sortie avec affichage des locks acquis IntelliJ IDEA peut ouvrir des thread dumps générés par d'autres outils comme jcmd Le support s'étend aussi aux coroutines Kotlin en plus des virtual threads Quelques infos sur IntelliJ IDEA 2025.3 https://blog.jetbrains.com/idea/2025/12/intellij-idea-2025-3/ Distribution unifiée regroupant davantage de fonctionnalités gratuites Amélioration de la complétion des commandes dans l'IDE Nouvelles fonctionnalités pour le débogueur Spring Thème Islands devient le thème par défaut Support complet de Spring Boot 4 et Spring Framework 7 Compatibilité avec Java 25 Prise en charge de Spring Data JDBC et Vitest 4 Support natif de Junie et Claude Agent pour l'IA Quota d'IA transparent et option Bring Your Own Key à venir Corrections de stabilité, performance et expérience utilisateur Plein de petits outils en ligne pour le développeur https://blgardner.github.io/prism.tools/ génération de mot de passe, de gradient CSS, de QR code encodage décodage de Base64, JWT formattage de JSON, etc. resumectl - Votre CV en tant que code https://juhnny5.github.io/resumectl/ Un outil en ligne de commande (CLI) écrit en Go pour générer un CV à partir d'un fichier YAML. Permet l'exportation vers plusieurs formats : PDF, HTML, ou un affichage direct dans le terminal. Propose 5 thèmes intégrés (Modern, Classic, Minimal, Elegant, Tech) personnalisables avec des couleurs spécifiques. Fonctionnalité d'initialisation (resumectl init) permettant d'importer automatiquement des données depuis LinkedIn et GitHub (projets les plus étoilés). Supporte l'ajout de photos avec des options de filtre noir et blanc ou de forme (rond/carré). Inclut un mode "serveur" (resumectl serve) pour prévisualiser les modifications en temps réel via un navigateur local. Fonctionne comme un binaire unique sans dépendances externes complexes pour les modèles. mactop - Un moniteur "top" pour Apple Silicon https://github.com/metaspartan/mactop Un outil de surveillance en ligne de commande (TUI) conçu spécifiquement pour les puces Apple Silicon (M1, M2, M3, M4, M5). Permet de suivre en temps réel l'utilisation du CPU (E-cores et P-cores), du GPU et de l'ANE (Neural Engine). Affiche la consommation électrique (wattage) du système, du CPU, du GPU et de la DRAM. Fournit des données sur les températures du SoC, les fréquences du GPU et l'état thermique global. Surveille l'utilisation de la mémoire vive, de la swap, ainsi que l'activité réseau et disque (E/S). Propose 10 mises en page (layouts) différentes et plusieurs thèmes de couleurs personnalisables. Ne nécessite pas l'utilisation de sudo car il s'appuie sur les API natives d'Apple (SMC, IOReport, IOKit). Inclut une liste de processus détaillée (similaire à htop) avec la possibilité de tuer des processus directement depuis l'interface. Offre un mode "headless" pour exporter les métriques au format JSON et un serveur optionnel pour Prometheus. Développé en Go avec des composants en CGO et Objective-C. Adieu direnv, Bonjour misehttps://codeka.io/2025/12/19/adieu-direnv-bonjour-mise/ L'auteur remplace ses outils habituels (direnv, asdf, task, just) par un seul outil polyvalent écrit en Rust : mise. mise propose trois fonctions principales : gestionnaire de paquets (langages et outils), gestionnaire de variables d'environnement et exécuteur de tâches. Contrairement à direnv, il permet de gérer des alias et utilise un fichier de configuration structuré (mise.toml) plutôt que du scripting shell. La configuration est hiérarchique, permettant de surcharger les paramètres selon les répertoires, avec un système de "trust" pour la sécurité. Une "killer-feature" soulignée est la gestion des secrets : mise s'intègre avec age pour chiffrer des secrets (via clés SSH) directement dans le fichier de configuration. L'outil supporte une vaste liste de langages et d'outils via un registre interne et des plugins (compatibilité avec l'écosystème asdf). Il simplifie le workflow de développement en regroupant l'installation des outils et l'automatisation des tâches au sein d'un même fichier. L'auteur conclut sur la puissance, la flexibilité et les excellentes performances de l'outil après quelques heures de test. Claude Code v2.1.0 https://github.com/anthropics/claude-code/blob/main/CHANGELOG.md#210 Rechargement à chaud des "skills" : Les modifications apportées aux compétences dans ~/.claude/skills sont désormais appliquées instantanément sans redémarrer la session. Sous-agents et forks : Support de l'exécution de compétences et de commandes slash dans un contexte de sous-agent forké via context: fork. Réglages linguistiques : Ajout d'un paramètre language pour configurer la langue de réponse par défaut (ex: language: "french"). Améliorations du terminal : Shift+Enter fonctionne désormais nativement dans plusieurs terminaux (iTerm2, WezTerm, Ghostty, Kitty) sans configuration manuelle. Sécurité et correction de bugs : Correction d'une faille où des données sensibles (clés API, tokens OAuth) pouvaient apparaître dans les logs de débogage. Nouvelles commandes slash : Ajout de /teleport et /remote-env pour les abonnés claude.ai afin de gérer des sessions distantes. Mode Plan : Le raccourci /plan permet d'activer le mode plan directement depuis le prompt, et la demande de permission à l'entrée de ce mode a été supprimée. Vim et navigation : Ajout de nombreux mouvements Vim (text objects, répétitions de mouvements f/F/t/T, indentations, etc.). Performance : Optimisation du temps de démarrage et du rendu terminal pour les caractères Unicode/Emoji. Gestion du gitignore : Support du réglage respectGitignore dans settings.json pour contrôler le comportement du sélecteur de fichiers @-mention. Méthodologies 200 déploiements en production par jour, même le vendredi : retours d'expérience https://mcorbin.fr/posts/2025-03-21-deploy-200/ Le déploiement fréquent, y compris le vendredi, est un indicateur de maturité technique et augmente la productivité globale. L'excellence technique est un atout stratégique indispensable pour livrer rapidement des produits de qualité. Une architecture pragmatique orientée services (SOA) facilite les déploiements indépendants et réduit la charge cognitive. L'isolation des services est cruciale : un développeur doit pouvoir tester son service localement sans dépendre de toute l'infrastructure. L'automatisation via Kubernetes et l'approche GitOps avec ArgoCD permettent des déploiements continus et sécurisés. Les feature flags et un système de permissions solide permettent de découpler le déploiement technique de l'activation fonctionnelle pour les utilisateurs. L'autonomie des développeurs est renforcée par des outils en self-service (CLI maison) pour gérer l'infrastructure et diagnostiquer les incidents sans goulot d'étranglement. Une culture d'observabilité intégrée dès la conception permet de détecter et de réagir rapidement aux anomalies en production. Accepter l'échec comme inévitable permet de concevoir des systèmes plus résilients capables de se rétablir automatiquement. "Vibe Coding" vs "Prompt Engineering" : l'IA et le futur du développement logiciel https://www.romenrg.com/blog/2025/12/25/vibe-coding-vs-prompt-engineering-ai-and-the-future-of-software-development/ L'IA est passée du statut d'expérimentation à celui d'infrastructure essentielle pour le développement de logiciels en 2025. L'IA ne remplace pas les ingénieurs, mais agit comme un amplificateur de leurs compétences, de leur jugement et de la qualité de leur réflexion. Distinction entre le "Vibe Coding" (rapide, intuitif, idéal pour les prototypes) et le "Prompt Engineering" (délibéré, contraint, nécessaire pour les systèmes maintenables). L'importance cruciale du contexte ("Context Engineering") : l'IA devient réellement puissante lorsqu'elle est connectée aux systèmes réels (GitHub, Jira, etc.) via des protocoles comme le MCP. Utilisation d'agents spécialisés (écriture de RFC, revue de code, architecture) plutôt que de modèles génériques pour obtenir de meilleurs résultats. Émergence de l'ingénieur "Technical Product Manager" capable d'abattre seul le travail d'une petite équipe grâce à l'IA, à condition de maîtriser les fondamentaux techniques. Le risque majeur : l'IA permet d'aller très vite dans la mauvaise direction si le jugement humain et l'expérience font défaut. Le niveau d'exigence global augmente : les bases techniques solides deviennent plus importantes que jamais pour éviter l'accumulation de dette technique rapide. Une revue de code en solo (Kent Beck) ! https://tidyfirst.substack.com/p/party-of-one-for-code-review?r=64ov3&utm_campaign=post&utm_medium=web&triedRedirect=true La revue de code traditionnelle, héritée des inspections formelles d'IBM, s'essouffle car elle est devenue trop lente et asynchrone par rapport au rythme du développement moderne. Avec l'arrivée de l'IA ("le génie"), la vitesse de production du code dépasse la capacité de relecture humaine, créant un goulot d'étranglement majeur. La revue de code doit évoluer vers deux nouveaux objectifs prioritaires : un "sanity check" pour vérifier que l'IA a bien fait ce qu'on lui demandait, et le contrôle de la dérive structurelle de la base de code. Maintenir une structure saine est crucial non seulement pour les futurs développeurs humains, mais aussi pour que l'IA puisse continuer à comprendre et modifier le code efficacement sans perdre le contexte. Kent Beck expérimente des outils automatisés (comme CodeRabbit) pour obtenir des résumés et des schémas d'architecture afin de garder une conscience globale des changements rapides. Même si les outils automatisés sont utiles, le "Pair Programming" reste irremplaçable pour la richesse des échanges et la pression sociale bénéfique qu'il impose à la réflexion. La revue de code solo n'est pas une fin en soi, mais une adaptation nécessaire lorsque l'on travaille seul avec des outils de génération de code augmentés. Loi, société et organisation Lego lance les Lego Smart Play, avec des Brique, des Smart Tags et des Smart Figurines pour faire de nouvelles constructions interactives avec des Legos https://www.lego.com/fr-fr/smart-play LEGO SMART Play : technologie réactive au jeu des enfants. Trois éléments clés : SMART Brique : Brique LEGO 2x4 "cerveau". Accéléromètre, lumières réactives, détecteur de couleurs, synthétiseur sonore. Réagit aux mouvements (tenir, tourner, taper). SMART Tags : Petites pièces intelligentes. Indiquent à la SMART Brique son rôle (ex: hélicoptère, voiture) et les sons à produire. Activent sons, mini-jeux, missions secrètes. SMART Minifigurines : Activées près d'une SMART Brique. Révèlent des personnalités uniques (sons, humeurs, réactions) via la SMART Brique. Encouragent l'imagination. Fonctionnement : SMART Brique détecte SMART Tags et SMART Minifigurines. Réagit aux mouvements avec lumières et sons dynamiques. Compatibilité : S'assemble avec les briques LEGO classiques. Objectif : Créer des expériences de jeu interactives, uniques et illimitées. Conférences La liste des conférences provenant de Developers Conferences Agenda/List par Aurélie Vache et contributeurs : 14-17 janvier 2026 : SnowCamp 2026 - Grenoble (France) 22 janvier 2026 : DevCon #26 : sécurité / post-quantique / hacking - Paris (France) 28 janvier 2026 : Software Heritage Symposium - Paris (France) 29-31 janvier 2026 : Epitech Summit 2026 - Paris - Paris (France) 2-5 février 2026 : Epitech Summit 2026 - Moulins - Moulins (France) 3 février 2026 : Cloud Native Days France 2026 - Paris (France) 3-4 février 2026 : Epitech Summit 2026 - Lille - Lille (France) 3-4 février 2026 : Epitech Summit 2026 - Mulhouse - Mulhouse (France) 3-4 février 2026 : Epitech Summit 2026 - Nancy - Nancy (France) 3-4 février 2026 : Epitech Summit 2026 - Nantes - Nantes (France) 3-4 février 2026 : Epitech Summit 2026 - Marseille - Marseille (France) 3-4 février 2026 : Epitech Summit 2026 - Rennes - Rennes (France) 3-4 février 2026 : Epitech Summit 2026 - Montpellier - Montpellier (France) 3-4 février 2026 : Epitech Summit 2026 - Strasbourg - Strasbourg (France) 3-4 février 2026 : Epitech Summit 2026 - Toulouse - Toulouse (France) 4-5 février 2026 : Epitech Summit 2026 - Bordeaux - Bordeaux (France) 4-5 février 2026 : Epitech Summit 2026 - Lyon - Lyon (France) 4-6 février 2026 : Epitech Summit 2026 - Nice - Nice (France) 5 février 2026 : Web Days Convention - Aix-en-Provence (France) 12 février 2026 : Strasbourg Craft #1 - Strasbourg (France) 12-13 février 2026 : Touraine Tech #26 - Tours (France) 19 février 2026 : ObservabilityCON on the Road - Paris (France) 6 mars 2026 : WordCamp Nice 2026 - Nice (France) 18-19 mars 2026 : Agile Niort 2026 - Niort (France) 20 mars 2026 : Atlantique Day 2026 - Nantes (France) 26 mars 2026 : Data Days Lille - Lille (France) 26-27 mars 2026 : SymfonyLive Paris 2026 - Paris (France) 26-27 mars 2026 : REACT PARIS - Paris (France) 27-29 mars 2026 : Shift - Nantes (France) 31 mars 2026 : ParisTestConf - Paris (France) 1 avril 2026 : AWS Summit Paris - Paris (France) 2 avril 2026 : Pragma Cannes 2026 - Cannes (France) 9-10 avril 2026 : AndroidMakers by droidcon - Paris (France) 16-17 avril 2026 : MiXiT 2026 - Lyon (France) 22-24 avril 2026 : Devoxx France 2026 - Paris (France) 23-25 avril 2026 : Devoxx Greece - Athens (Greece) 24-25 avril 2026 : Faiseuses du Web 5 - Dinan (France) 6-7 mai 2026 : Devoxx UK 2026 - London (UK) 22 mai 2026 : AFUP Day 2026 Lille - Lille (France) 22 mai 2026 : AFUP Day 2026 Paris - Paris (France) 22 mai 2026 : AFUP Day 2026 Bordeaux - Bordeaux (France) 22 mai 2026 : AFUP Day 2026 Lyon - Lyon (France) 29 mai 2026 : NG Baguette Conf 2026 - Paris (France) 5 juin 2026 : TechReady - Nantes (France) 5 juin 2026 : Fork it! - Rouen - Rouen (France) 6 juin 2026 : Polycloud - Montpellier (France) 11-12 juin 2026 : DevQuest Niort - Niort (France) 11-12 juin 2026 : DevLille 2026 - Lille (France) 12 juin 2026 : Tech F'Est 2026 - Nancy (France) 17-19 juin 2026 : Devoxx Poland - Krakow (Poland) 17-20 juin 2026 : VivaTech - Paris (France) 2 juillet 2026 : Azur Tech Summer 2026 - Valbonne (France) 2-3 juillet 2026 : Sunny Tech - Montpellier (France) 3 juillet 2026 : Agile Lyon 2026 - Lyon (France) 2 août 2026 : 4th Tech Summit on Artificial Intelligence & Robotics - Paris (France) 4 septembre 2026 : JUG Summer Camp 2026 - La Rochelle (France) 17-18 septembre 2026 : API Platform Conference 2026 - Lille (France) 24 septembre 2026 : PlatformCon Live Day Paris 2026 - Paris (France) 1 octobre 2026 : WAX 2026 - Marseille (France) 1-2 octobre 2026 : Volcamp - Clermont-Ferrand (France) 5-9 octobre 2026 : Devoxx Belgium - Antwerp (Belgium) Nous contacter Pour réagir à cet épisode, venez discuter sur le groupe Google https://groups.google.com/group/lescastcodeurs Contactez-nous via X/twitter https://twitter.com/lescastcodeurs ou Bluesky https://bsky.app/profile/lescastcodeurs.com Faire un crowdcast ou une crowdquestion Soutenez Les Cast Codeurs sur Patreon https://www.patreon.com/LesCastCodeurs Tous les épisodes et toutes les infos sur https://lescastcodeurs.com/

netflix google guide secret service tech spring evolution data microsoft mit modern chefs class code skills web ga difficult lego construction base confusion ces oracle cons classic saas encourage excuses ia react pattern assistant year in review gemini openai faire cv maintenance distribution combine extension analyse correction blue sky validation rust acc api map qr conf puppets materials islands io sous elles python ui aws nouvelle nouveau expose toutes java trois quelques minimal guillaume github bonjour fork corrections workflow int distinction prometheus aur probl helm extraction alpine installation mole loom llm macos exposition documentation html aide kafka apache invent nouvelles gestion prod prise plein wax changement gpu cpu nouveaux propose gc els interface css vendredi dns adieu jars meilleure construire ide synth soc anthropic diagnostics homebrew objectif dram docker elegant node bedrock loi kubernetes utiliser sortie m2 tableau sdks m3 offre accepter cdi contrairement servo enregistr mongodb approche pratiques changements m4 ci cd tui json mistral mcp jira london uk potentiel permet paris france cli cve appr vim github copilot soa loc fonctionne limiter possibilit fonction ssh utilisation vs code maintenir m5 rfc visual studio apple silicon prompt engineering comparaison 7d jit lippe kotlin ingress oauth panache e s ansible jvm avantage debian vache unicode lsp affiche hibernate jwt snyk appliquer mixit garanti objective c concevoir yaml grafana cncf cgo pair programming changelog ajout tech summit gitops kent beck devcon spring boot technical product manager cleanmymac jdk gemini pro lyon france nice france intellij surveille raycast spring framework intellij idea base64 tuis provence france haproxy devoxx strasbourg france argocd istat menus cannes france lille france iterm2 daisydisk regexp kafka connect devoxx france appcleaner

Why We Don't Want to Change with Amanda Van Noppen

Play Episode Listen Later Jan 16, 2026

January brings New Year's resolutions and the inspiration to make change but often ends up in disappointment when we can't stick with our goals. Dave and Reb invite Amanda van Noppen on the show to explain why change, and change in our money habits, can feel so hard. On episode #464 of “Let's Talk Money with Dave and Reb” the co-hosts explore neuroplasticity, neural networks, and the unconscious paths that define how we develop habits and what makes it hard to change. Amanda encourages listeners that although it can be hard to create new paths, we can grow and change into new habits that create more positive financial change. Today's episode is sponsored by the Canadian National Christian Foundation which helps Canadians connect God's money with God's work. Through their Donor-Advised Funds, CNCF makes giving simple and impactful, so you can focus on supporting the causes that matter most. Learn more about how they can help you CNCF.ca To order Reb's book Cultivating Trust Expanded Edition: Finding God's Hope and Freedom for Your Finances, go to https://www.amazon.ca/dp/1998412164/ref=sr_1_3?crid=XUVAMAN0TFEY&dib=eyJ2IjoiMSJ9.8x0mkzEbAurMet_Q02DjC1uI9_HBqWQlnPySUgf62Ik9smNv5IQUJVSYBOXp4dhvsmfU3vzJivqJWwrvkTfyLe4uDWay18JChGQ1QWENY4FXHjdhLEkWMLQT8BHP9Lz18vRbIHFrvkyO6ocnHFx7rS2jtZ7WVzmIhw0U7cFRtGtRdvaw7gj3W2qigq_7EBTDZBOEfMVxxeuk405kn921-o-irE3XdWX2KrJ8e0G9W1usTiTi2j-EANx4MC_ygttzlzwj_1qmQC8MCk5LxF6jXTDr1ETe1v3O1q5o0rO4H2g.pybaC103ktXcDYR0puZtPXOBpswpMjPmU0vYc-KTAnc&dib_tag=se&keywords=cultivating+trust&qid=1732127878&sprefix=cultivating+trust%2Caps%2C117&sr=8-3. To listen to the audiobook please find it here: https://open.spotify.com/show/7FCzANDapS7Eni6YIdIWM5?si=6dc65d94c1c44a2c&nd=1&dlsi=cbb53cbd7ccf4e02. To connect with Amanda go to https://vannoppentherapy.com/ Or on instagram: vannoppenpsychotherapy. To hear our previous conversation with Amanda about Shame and Money please go here: Released from Shame #morethanenough #finances #money #financialfitness #shame #habits #newyear #goals

Jesus' Money Story with Ray Borg

Play Episode Listen Later Jan 9, 2026

We all have a money story that defines how we navigate our finances. This story often involves how we have encountered God in our life and how we respond to God at work in our finances. But what would Jesus say about his own money story? On episode #463 of “Let's Talk Money with Dave and Reb”, the co-hosts invite Rev. Ray Borg to interview Jesus on how poverty, faithfulness, and love have been threaded throughout his money story. Dave, Reb, and Ray examine how their personal money stories influence how they hear the mystery of Christ's money story. Today's episode is sponsored by the Canadian National Christian Foundation which helps Canadians connect God's money with God's work. Through their Donor-Advised Funds, CNCF makes giving simple and impactful, so you can focus on supporting the causes that matter most. Learn more about how they can help you CNCF.ca To order Reb's book Cultivating Trust Expanded Edition: Finding God's Hope and Freedom for Your Finances, go to https://www.amazon.ca/dp/1998412164/ref=sr_1_3?crid=XUVAMAN0TFEY&dib=eyJ2IjoiMSJ9.8x0mkzEbAurMet_Q02DjC1uI9_HBqWQlnPySUgf62Ik9smNv5IQUJVSYBOXp4dhvsmfU3vzJivqJWwrvkTfyLe4uDWay18JChGQ1QWENY4FXHjdhLEkWMLQT8BHP9Lz18vRbIHFrvkyO6ocnHFx7rS2jtZ7WVzmIhw0U7cFRtGtRdvaw7gj3W2qigq_7EBTDZBOEfMVxxeuk405kn921-o-irE3XdWX2KrJ8e0G9W1usTiTi2j-EANx4MC_ygttzlzwj_1qmQC8MCk5LxF6jXTDr1ETe1v3O1q5o0rO4H2g.pybaC103ktXcDYR0puZtPXOBpswpMjPmU0vYc-KTAnc&dib_tag=se&keywords=cultivating+trust&qid=1732127878&sprefix=cultivating+trust%2Caps%2C117&sr=8-3. To listen to the audiobook please find it here: https://open.spotify.com/show/7FCzANDapS7Eni6YIdIWM5?si=6dc65d94c1c44a2c&nd=1&dlsi=cbb53cbd7ccf4e02. #morethanenough #finances #money #financialfitness #moneystory

Short #75: IBM kupuje Confluent, Skills vs Agents, WAL Patterns

Patoarchitekci

Play Episode Listen Later Jan 9, 2026 32:55

Noworoczny Short - pierwszy w 2026! Łukasz i Szymon wracają po przerwie świątecznej, a newsy technologiczne nie czekały. Postanowienia noworoczne? “Mniej YAML-a, więcej Postgresa” - jak zwykle nierealne.

netflix ai skills ibm patterns jak gin tam kafka instacart materia pato sql anthropic thunderbolt wal nowy nasze sprawd mac studio tymczasem npm szymon najlepszy buna confluent idzie cncf elastica kupuj postanowienia discorda minio chainguard netflixem

A Decade of CNCF: Fireside Chat with the CTO - OpenObservability Talks S6E07

Heavybit Podcast Network: Master Feed

Play Episode Listen Later Jan 8, 2026 54:56

In the opening episode of 2026, we mark a major milestone—a decade to the Cloud Native Computing Foundation (CNCF)—with none other than the CNCF's CTO and co-founder, Chris Aniszczyk. Chris joins host Dotan Horovits on a fascinating fireside chat, looking back at the CNCF's journey from a bold experiment into a central pillar of modern infrastructure. They discuss the current state of cloud-native, across Kubernetes and an ecosystem of over 200 projects, and share their grounded predictions for 2026 and into the second decade.Beyond his role at the CNCF, Chris Aniszczyk serves as Executive Director of the Open Container Initiative (OCI), and CTO, Cloud & Infrastructure, at The Linux Foundation, the parent organization of the CNCF, OCI, OpenInfra and more. At Twitter, he created their open source program and led their open source efforts. You can read the recap post: https://medium.com/p/479e6bbf793c/Show Notes:00:00 - intro01:51 - 10th anniversary to the CNCF06:18 - the expanding scope of cloud native and Kubernetes14:58 - the community expansion around the world20:49 - KubeCon Europe29:30 - consolidation of observability and security34:00 - intersection of CNCF, FinOps and AI37:35 - AI-generated code contribution for open source43:46 - announcing the Agentic AI Foundation and MCP donation53:00 - outro Resources:Observability for AI workloads: https://medium.com/p/b8972ba1b6baCNCF Ambassador'sReflections on 10 Years of CNCF: https://medium.com/p/a796646db552Agentic AI Foundation formation: https://www.linuxfoundation.org/press/linux-foundation-announces-the-formation-of-the-agentic-ai-foundationSocials:BlueSky: https://bsky.app/profile/openobservability.bsky.socialTwitter: ⁠https://twitter.com/OpenObserv⁠LinkedIn: https://www.linkedin.com/company/openobservability/YouTube: ⁠https://www.youtube.com/@openobservabilitytalks⁠Dotan Horovits============Twitter: @horovitsLinkedIn: www.linkedin.com/in/horovitsMastodon: @horovits@fosstodonBlueSky: @horovits.bsky.socialChris Aniszczyk===============Twitter: @craLinkedIn: https://www.linkedin.com/in/caniszczyk/ Mastodon: @cra@macaw.socialOpenObservability Talks episodes are released monthly, on the last Thursday of each month and are available for listening on your favorite podcast app and on YouTube.

ai executive director cloud decade infrastructure cto mastodon fireside chat kubernetes mcp linux foundation oci finops cncf chris aniszczyk

Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

The Kubelist Podcast

Play Episode Listen Later Dec 23, 2025 64:59

On episode 48 of The Kubelist Podcast, Marc Campbell and Benjie De Groot sit down with Justin Cappos, professor at NYU and a pioneer in software supply chain security. They explore the origins of modern package manager security, the real-world limits of SBOMs, and why systems should be designed assuming compromise. The conversation spans CNCF governance, in-toto, TUF, Git security, and the emerging role of AI in securing software.

ai unpacking supply chains nyu git tuf cncf sboms software supply chain security

Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

Play Episode Listen Later Dec 23, 2025 64:59

ai unpacking supply chains nyu git tuf cncf sboms software supply chain security

Why the CNCF's New Executive Director is Obsessed With Inference

Software Lifecycle Stories

Play Episode Listen Later Dec 9, 2025 25:09

Jonathan Bryce, the new CNCF executive director, argues that inference—not model training—will define the next decade of computing. Speaking at KubeCon North America 2025, he emphasized that while the industry obsesses over massive LLM training runs, the real opportunity lies in efficiently serving these models at scale. Cloud-native infrastructure, he says, is uniquely suited to this shift because inference requires real-time deployment, security, scaling, and observability—strengths of the CNCF ecosystem. Bryce believes Kubernetes is already central to modern inference stacks, with projects like Ray, KServe, and emerging GPU-oriented tooling enabling teams to deploy and operationalize models. To bring consistency to this fast-moving space, the CNCF launched a Kubernetes AI Conformance Program, ensuring environments support GPU workloads and Dynamic Resource Allocation. With AI agents poised to multiply inference demand by executing parallel, multi-step tasks, efficiency becomes essential. Bryce predicts that smaller, task-specific models and cloud-native routing optimizations will drive major performance gains. Ultimately, he sees CNCF technologies forming the foundation for what he calls “the biggest workload mankind will ever have.” Learn more from The New Stack about inference: Confronting AI's Next Big Challenge: Inference Compute Deep Infra Is Building an AI Inference Cloud for Developers Join our community of newsletter subscribers to stay on top of the news and at the top of your game. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Empowering Developers with Yaron Schneider

Play Episode Listen Later Dec 5, 2025 36:18

In this episode of Software People Stories, Shiv is in conversation with Yaron Schneider, co-founder of Diagrid and a seasoned developer and entrepreneur deeply involved in the open source movement.Yaron shares his origin story, starting from programming at age 11 to his current role as co-founder of Diagrid. He discusses his early foray into university education, experience in the military, and his progression within the software industry, including a notable tenure at Microsoft.Yaron delves into the joys and pains of working in open source, detailing the challenges and rewards of maintaining a project with thousands of contributors and balancing corporate and community needs. The discussion also touches on the complexities of scaling in hybrid environments, the risks associated with supply chain attacks, and the evolving role of developers in the age of AI and low-code solutions.Yaron concludes by offering advice for those aspiring to contribute to open source and sharing personal strategies for managing the stresses of startup life. 00:00 Introduction and Welcome00:25 Yaron's Origin Story02:39 Joys and Pains of Open Source05:21 Challenges of Open Source Coordination06:14 Role Differences: Architect vs. CTO08:21 Corporate Influence on Open Source10:00 On-Prem vs. Cloud-Based Models11:34 Scalability in Hybrid Environments13:22 Introduction to Dapper and D Grid18:05 Security and Supply Chain Challenges23:27 Low-Code and No-Code Development25:29 Transition from Corporate to Startup27:04 Balancing Work and Personal Life28:31 Music and Software Development Parallels31:14 Getting Involved in Open Source32:21 Future of AI and Software Jobs33:50 Conclusion and Final ThoughtsThe timestamps are approximate, and after the intro that is about 90 seconds.For more closer timestamps, add 90 seconds to the labels aboveYaron Schneider is a visionary technologist and open source pioneer who has fundamentally shaped how developers build distributed applications. As co-creator of Dapr and KEDA—both graduated CNCF projects—he has enabled tens of thousands of enterprises to build more resilient, scalable cloud-native systems. Dapr is currently used by an estimated 30,000 to 40,000 enterprise users worldwide, while KEDA adoption may be even broader, though it is more difficult to estimate precisely.Now co-founder of Diagrid, Yaron is building the next generation of platforms that make it easier to develop and operate distributed applications and AI agents. His deep expertise in distributed systems, combined with years of leadership at Microsoft on scalable cloud architecture, positions him at the forefront of the agentic AI revolution.Recognized as an industry innovator in open source and platform engineering, Yaron bridges the gap between cutting-edge research and practical developer tools. His work continues to define how modern applications are built, deployed, and scaled in the cloud-native era.

Helm 4: What's New in the Open Source Kubernetes Package Manager?

Play Episode Listen Later Dec 3, 2025 24:45

Helm — originally a hackathon project called Kate's Place — turned 10 in 2025, marking the milestone with the release of Helm 4, its first major update in six years. Created by Matt Butcher and colleagues as a playful take on “K8s,” the early project won a small prize but quickly grew into a serious effort when Deus leadership recognized the need for a Kubernetes package manager. Renamed Helm, it rapidly expanded with community contributors and became one of the first CNCF graduating projects.Helm 4 reflects years of accumulated design debt and evolving use cases. After the rapid iterations of Helm 1, 2, and 3, the latest version modernizes logging, improves dependency management, and introduces WebAssembly-based plugins for cross-platform portability—addressing the growing diversity of operating systems and architectures. Beyond headline features, maintainers emphasize that mature projects increasingly deliver “boring” but essential improvements, such as better logging, which simplify workflows and integrate more cleanly with other tools. Helm's re-architected internals also lay the foundation for new chart and package capabilities in upcoming 4.x releases. Learn more from The New Stack about Helm: The Super Helm Chart: To Deploy or Not To Deploy?Kubernetes Gets a New Resource Orchestrator in the Form of KroJoin our community of newsletter subscribers to stay on top of the news and at the top of your game. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

tech created deus package open source helm software engineers simplecast kubernetes software developers tech podcast suse webassembly cncf k8s ai engineer new stack matt butcher new stack makers

All About Cedar, an Open Source Solution for Fine-Tuning Kubernetes Authorization

Play Episode Listen Later Dec 2, 2025 16:13

Kubernetes has relied on role-based access control (RBAC) since 2017, but its simplicity limits what developers can express, said Micah Hausler, principal engineer at AWS, on The New Stack Makers. RBAC only allows actions; it can't enforce conditions, denials, or attribute-based rules. Seeking a more expressive authorization model for Kubernetes, Hausler explored Cedar, an authorization engine and policy language created at AWS in 2022 and later open-sourced. Although not designed specifically for Kubernetes, Cedar proved capable of modeling its authorization needs in a concise, readable way. Hausler highlighted Cedar's clarity—nontechnical users can often understand policies at a glance—as well as its schema validation, autocomplete support, and formal verification, which ensures policies are correct and produce only allow or deny outcomes.Now onboarding to the CNCF sandbox, Cedar is used by companies like Cloudflare and MongoDB and offers language-agnostic tooling, including a Go implementation donated by StrongDM. The project is actively seeking contributors, especially to expand bindings for languages like TypeScript, JavaScript, and Python.Learn more from The New Stack about Cedar:Ceph: 20 Years of Cutting-Edge Storage at the Edge The Cedar Programming Language: Authorization SimplifiedJoin our community of newsletter subscribers to stay on top of the news and at the top of your game. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

tech seeking solution open source python aws javascript amazon web services software engineers simplecast cedar cloudflare kubernetes software developers fine tuning mongodb authorization tech podcast typescript cncf ai engineer rbac policy management new stack new stack makers

From Cloud Native to AI Native: Where Are We Going?

Play Episode Listen Later Nov 28, 2025 44:20

At KubeCon + CloudNativeCon 2025 in Atlanta, the panel of experts - Kate Goldenring of Fermyon Technologies, Idit Levine of Solo.io, Shaun O'Meara of Mirantis, Sean O'Dell of Dynatrace and James Harmison of Red Hat - explored whether the cloud native era has evolved into an AI native era — and what that shift means for infrastructure, security and development practices. Jonathan Bryce of the CNCF argued that true AI-native systems depend on robust inference layers, which have been overshadowed by the hype around chatbots and agents. As organizations push AI to the edge and demand faster, more personalized experiences, Fermyon's Kate Goldenring highlighted WebAssembly as a way to bundle and securely deploy models directly to GPU-equipped hardware, reducing latency while adding sandboxed security.Dynatrace's Sean O'Dell noted that AI dramatically increases observability needs: integrating LLM-based intelligence adds value but also expands the challenge of filtering massive data streams to understand user behavior. Meanwhile, Mirantis CTO Shaun O'Meara emphasized a return to deeper infrastructure awareness. Unlike abstracted cloud native workloads, AI workloads running on GPUs require careful attention to hardware performance, orchestration, and energy constraints. Managing power-hungry data centers efficiently, he argued, will be a defining challenge of the AI native era.Learn more from The New Stack about evolving cloud native ecosystem to an AI native eraCloud Native and AI: Why Open Source Needs Standards Like MCPA Decade of Cloud Native: From CNCF, to the Pandemic, to AICrossing the AI Chasm: Lessons From the Early Days of CloudJoin our community of newsletter subscribers to stay on top of the news and at the top of your game. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

ai pandemic solo managing open source llm early days gpu simplecast red hat gpus cloud native webassembly alex williams cncf dynatrace kubecon new stack mirantis fermyon infrastucture

DOP 326: Stop Reinventing The Wheel - Use Dapr Instead

DevOps Paradox

Play Episode Listen Later Nov 26, 2025 52:13

#326: Microservices architecture has evolved far beyond simple distributed systems, but most development teams are still rebuilding the same foundational patterns over and over again. Mark Fussell, co-founder of Dapr and Diagrid, explains how his team at Microsoft identified this repetitive reinvention problem and created a solution that abstracts away the complexity of service discovery, messaging, state management, and security while providing true cloud portability. Dapr emerged from Microsoft's Azure incubations team with a clear mission: stop forcing developers to rebuild distributed systems patterns from scratch. The runtime provides standardized APIs for common microservices needs while allowing teams to swap underlying infrastructure components without changing application code. Whether using Kafka, RabbitMQ, Redis, or cloud-native messaging services, developers write against consistent APIs while platform teams maintain control over infrastructure choices. The conversation covers Dapr's journey from Microsoft internal project to CNCF graduated status, the technical decisions behind its multi-language approach, and how it integrates with existing frameworks like Spring Boot and .NET. Mark also discusses Diagrid's platform play around durable workflows and the emerging role of Dapr in AI agent development. Darin and Viktor explore the practical adoption challenges, the balance between developer productivity and platform engineering concerns, and why experienced developers tend to embrace abstraction layers more readily than those building their first distributed systems. Mark's contact information: X: https://x.com/mfussell LinkedIn: https://www.linkedin.com/in/mfussell/ YouTube channel: https://youtube.com/devopsparadox Review the podcast on Apple Podcasts: https://www.devopsparadox.com/review-podcast/ Slack: https://www.devopsparadox.com/slack/ Connect with us at: https://www.devopsparadox.com/contact/

ai microsoft wheel slack reinventing darin apis viktor azure kafka microservices redis d'apr cncf spring boot rabbitmq

OpenTelemetry for GenAI and the OpenLLMetry project - OpenObservability Talks S6E06

ai running system newsletter blue sky containers cloud security weaken inference vms security challenges cncf infoq

Play Episode Listen Later Nov 26, 2025 61:08

Generative AI is everywhere, but how do we monitor and observe it? OpenTelemetry has been a prominent tool and standard for observability, and recently the OTel community has been aiming to expand its scope and cover GenAI workloads with semantic conventions and tools.In this episode, Horovits is joined by Nir Gazit, creator of the OpenLLMetry project, and member of the OpenTelemetry Generative AI SIG. We discuss new semantic conventions, tracing prompts and model behavior, the OpenLLMetry project's journey, and what observability even means for modern AI systems.Nir Gazit is the CEO and co-founder of Traceloop, and brings a wealth of data and AI experience, with previous experience leading AI teams at Google and serving as the Chief Architect at Fiverr.You can read the recap post: https://medium.com/p/81b9cea6a771/Show Notes:00:00 - intro 04:09 - what is observability for AI18:07 - AI observability differences from traditional observability25:22 - OpenLLMetry intro41:21 - OpenLLMetry latest updates and roadmap47:00 - OpenTelemetry GenAI Semantic Conventions SIG56:03 - KubeCon updates: CrossPlane, Knative, Dragonfly, in-toto reached CNCF graduation 1:00:08 - outroResources:OpenTelemetry Generative AI Observability SIG: https://github.com/open-telemetry/community/blob/1c71595874e5d125ca92ec3b0e948c4325161c8a/projects/llm-semconv.mdhttps://github.com/traceloop/openllmetryhttps://github.com/traceloop/hubhttps://github.com/traceloop/opentelemetry-mcp-serverSocials:BlueSky: https://bsky.app/profile/openobservability.bsky.socialTwitter: ⁠https://twitter.com/OpenObserv⁠LinkedIn: https://www.linkedin.com/company/openobservability/YouTube: ⁠https://www.youtube.com/@openobservabilitytalks⁠Dotan Horovits============Twitter: @horovitsLinkedIn: www.linkedin.com/in/horovitsMastodon: @horovits@fosstodonBlueSky: @horovits.bsky.socialNir Gazit========Twitter: https://x.com/nir_gaLinkedIn: https://www.linkedin.com/in/nirga/OpenObservability Talks episodes are released monthly, on the last Thursday of each month and are available for listening on your favorite podcast app and on YouTube.

ceo ai google project fiverr genai dragonfly chief architect cncf kubecon otel knative crossplane

DOP 325: KubeCon North America 2025 Review

DevOps Paradox

Play Episode Listen Later Nov 19, 2025 44:28

#325: KubeCon NA 2025 wrapped in Atlanta with unseasonably cold weather and some significant shifts in the cloud native ecosystem. The conference showed fewer vendors backing CNCF projects on the show floor, with key concerns emerging around maintainer burnout—exemplified by NGINX Ingress being deprecated despite running on 40% of Kubernetes clusters worldwide. The event revealed a maturing ecosystem where AI moved from buzzword to operational reality, with focus shifting toward conformance standards, security policies, and enterprise readiness rather than the hype cycle of previous years. The discussions revealed a consolidation pattern where larger corporations like AWS, Microsoft, and Google are increasingly the only ones who can sustain open source project maintenance. Startups and smaller companies face difficult choices: maintain existing revenue streams, pivot entirely to AI, or attempt both and fail at both. Meanwhile, AI adoption in the ops space remains behind other sectors, with developers emerging as the primary buyers for AI tooling—a shift that's reshaping go-to-market strategies across vendors. Platform engineering continues as a parallel major theme, focusing on operationalizing infrastructure at scale. Whitney's contact information: X: https://x.com/wiggitywhitney LinkedIn: https://www.linkedin.com/in/whitneylee/ YouTube channel: https://youtube.com/devopsparadox Review the podcast on Apple Podcasts: https://www.devopsparadox.com/review-podcast/ Slack: https://www.devopsparadox.com/slack/ Connect with us at: https://www.devopsparadox.com/contact/

ai google microsoft startups platform slack aws kubernetes cncf kubecon north america kubecon na

Cloud Security Challenges in the AI Era - How Running Containers and Inference Weaken Your System

The InfoQ Podcast

Play Episode Listen Later Nov 17, 2025 31:57

Marina Moore, a security researcher and the co-chair of the security and compliance TAG of CNCF, shares her concerns about the security vulnerabilities of containers. She explains where the issues originate, providing solutions and discussing alternative routes to using micro-VMs rather than containers. Additionally, she highlights the risks associated with AI inference. Read a transcript of this interview: https://bit.ly/4qUCcyi Subscribe to the Software Architects' Newsletter for your monthly guide to the essential news and experience from industry peers on emerging patterns and technologies: https://www.infoq.com/software-architects-newsletter Upcoming Events: QCon San Francisco 2025 (November 17-21, 2025) Get practical inspiration and best practices on emerging software trends directly from senior software developers at early adopter companies. https://qconsf.com/ QCon AI New York 2025 (December 16-17, 2025) https://ai.qconferences.com/ QCon London 2026 (March 16-19, 2026) https://qconlondon.com/ The InfoQ Podcasts: Weekly inspiration to drive innovation and build great teams from senior software leaders. Listen to all our podcasts and read interview transcripts: - The InfoQ Podcast https://www.infoq.com/podcasts/ - Engineering Culture Podcast by InfoQ https://www.infoq.com/podcasts/#engineering_culture - Generally AI: https://www.infoq.com/generally-ai-podcast/ Follow InfoQ: - Mastodon: https://techhub.social/@infoq - X: https://x.com/InfoQ?from=@ - LinkedIn: https://www.linkedin.com/company/infoq/ - Facebook: https://www.facebook.com/InfoQdotcom# - Instagram: https://www.instagram.com/infoqdotcom/?hl=en - Youtube: https://www.youtube.com/infoq - Bluesky: https://bsky.app/profile/infoq.com Write for InfoQ: Learn and share the changes and innovations in professional software development. - Join a community of experts. - Increase your visibility. - Grow your career. https://www.infoq.com/write-for-infoq

CNCF, Arm Standardize AI on Kubernetes at KubeCon | Tech Field Day News Rundown: November 12, 2025

Gestalt IT Rundown

Play Episode Listen Later Nov 12, 2025 33:52

At KubeCon 2025, the CNCF launched the Certified Kubernetes AI Conformance Program to standardize AI and ML workloads on Kubernetes, ensuring portability across hybrid and sovereign clouds and preventing platform lock-in. Supported by companies like Google, Microsoft, Oracle, Broadcom, and Red Hat, the initiative promotes interoperability, scalability, and efficient production deployment. Arm showcased its Neoverse platform alongside Google Cloud's Axion N4A VMs, enabling energy-efficient, scalable AI workloads, while partnerships with CNCF projects like Harbor, OPA, Kedify, and AuthZed help developers build secure, portable, and cost-effective cloud-native systems from edge to cloud. This and more on the Tech Field Day News Rundown recorded live at Commvault Shift with Tom Hollingsworth and Stephen Foskett. Time Stamps:0:00 - Welcome to the Tech Field Day News Rundown1:17 - VAST Data makes $1.17B Deal with CoreWeave4:42 - Spektrum Labs Uses Cryptography to Prove Cyber Resilience7:37 - HPE Drops Qumulo, Scality, and WEKA to Focus on Its Own Storage10:56 - Red Hat Unveils Major OpenShift 4.20 Updates for AI, Security, and Edge13:57 - AWS Builds Transatlantic Fastnet Cable to Boost Cloud and AI17:31 - Pentagon Expects Industry to Train AI, Not Pay for It20:34 - CNCF Standardizes AI Workloads on Kubernetes25:17 - Arm and CNCF Showcase Efficient Cloud-Native Systems at KubeCon 202529:26 - Thank You Commvault for Hosting Tech Field Day31:01 - The Weeks Ahead32:55 - Thanks for Watching the Tech Field Day News RundownFollow our hosts ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Tom Hollingsworth⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Alastair Cooke⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, and ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Stephen Foskett⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠. Follow Tech Field Day ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠on LinkedIn⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, on ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠X/Twitter⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, on ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Bluesky⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, and on ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Mastodon⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠.

ai google focus microsoft security watching oracle arm blue sky ml mastodon harbor opa google cloud red hat kubernetes broadcom standardize cncf kubecon train ai weka scality tech field day stephen foskett neoverse tom hollingsworth

#117 How Policy as Code Is Changing Kubernetes Forever

De Nederlandse Kubernetes Podcast

Play Episode Listen Later Nov 4, 2025 36:46

In this episode of De Nederlandse Kubernetes Podcast, we talk with Jim Bugwadia, founder and CEO of Nirmata, and Shuting Zhao, Staff Engineer and one of the maintainers of Kyverno — the CNCF project for Kubernetes policy management.Jim and Shuting share how Kyverno was born from Nirmata's commercial work and has since become one of the most widely adopted open source projects in Kubernetes governance, with over 3.4 billion image pulls.We explore the real question: Why does Kubernetes need policies if it's already declarative? Jim explains how policy as code helps developers, operators, and security teams collaborate on cluster configuration at scale — from pod security to resource quotas, network policies, and automation.Shuting dives deeper into how Kyverno enables granular control, policy exceptions, and flexible enforcement modes — from audit to enforce. They discuss how large organizations use policy automation to improve compliance, security, and even cost efficiency, citing use cases like Adidas saving 50% in dev/test environments using policy-driven resource management.We also touch on:

ceo ai forever shift code policy adidas kubernetes stuur devsecops cncf staff engineer

332: Knative graduates from CNCF (with Knative maintainer Dave Protasowski)

What the Dev?

Play Episode Listen Later Oct 28, 2025 18:47

In this episode, Dave interviews Dave Protasowski, a member of the steering committee for Knative, about the project's recent graduation from the CNCF. They discuss: An overview of what Knative doesThe history of the project at the CNCFWhat's in store for Knative in the future

graduates cncf maintainer knative

GKE 10 years and SIG Networking, With Antonio Ojea

google news testing networking kubernetes steering committee tech leads cncf

Play Episode Listen Later Oct 1, 2025 36:52

Today we talk to Antonio Ojea. Antonio is a software engineer at Google and one of the core maintainers of Kubernetes. He is one of the Tech Lead of SIG Networking and Testing and a member of the Steering Committee. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod - bluesky: @kubernetespodcast.com News of the week GKE Autopilot Mode inside Standard clusters KCD H1 2026 Metal Kubed joined the CNCF as an incubating project Links from the interview Antonio Ojea on LinkedIn Antonio Ojea on X Virtual Networks Kubernetes Networking Kubernetes Dynamic Resource Allocation (DRA) Kubernetes Gateway API Calico Cilium Multi-Service CIDR DRANet

Cloud Native Spotlight: KEDA & Dapr Projects - OpenObservability Talks S6E04

Play Episode Listen Later Sep 28, 2025 61:00

In this episode we explore how Dapr and KEDA—two CNCF graduated projects—are reshaping cloud-native application development and what that means for observability. From event-driven architectures to autoscaling and service runtime, we discuss how these building blocks fit into modern systems. We discuss major capabilities around resilience, scalability, observability and even agentic AI support.Our guest for this episode is Yaron Schneider, co-creator of both Dapr and KEDA projects, and co-founder and CTO of Diagrid. He also brings years of leadership at Microsoft on scalable cloud architecture.You can read the recap posts: Part 1 - Dapr: https://medium.com/p/eb2f4013d9a1/Part 2 - KEDA: https://medium.com/p/d74f75c0021a/Show Notes:00:00 - episode intro01:19 - guest intro and Dapr & KEDA intro04.53 - why Microsoft created KEDA14:43 - why Microsoft decided to open-source KEDA16:58 - why Microsoft created Dapr24:52 - observability in Dapr33:38 - shifting from logs to traces 37:46 - building a startup around foundation-led open source46:22 - agentic AI support in Dapr49:11 - Dapr updates and roadmap52:15 - KEDA updates and roadmap53:50 - Dapr at KubeCon NA55:08 - Jaeger celebrates 10th anniversary56:13 - OpenTelemetry Collector user survey56:58 - proposal for a new OTel SIG for resource metadata semantic conventions1:00:00 - outro Resources:Dapr: https://dapr.io/KEDA: https://keda.sh/ Dapr accepted to graduation, Dec 2024, my LI post: https://www.linkedin.com/embed/feed/update/urn:li:share:7262354292794159105 Announcing Dapr AI Agents: https://www.cncf.io/blog/2025/03/12/announcing-dapr-ai-agents/ Jaeger 10th anniversary: https://medium.com/jaegertracing/jaeger-at-10-forged-in-community-reborn-in-opentelemetry-621d4eabdedaJaeger v2 and alignment with OpenTelemetry: https://medium.com/p/be612dbee774Proposal for a new OpenTelemetry SIG: Service and Deployment Semantic Conventions: https://github.com/open-telemetry/community/pull/2837/ OTel Collector Follow-up Survey: https://docs.google.com/forms/d/e/1FAIpQLSfbpqBcCVfmRj_Rk_Sd6zaBGpfzGSBvSZ6CdVn6PPBbbmPIOw/viewform Socials:BlueSky: https://bsky.app/profile/openobservability.bsky.socialTwitter: ⁠https://twitter.com/OpenObserv⁠LinkedIn: https://www.linkedin.com/company/openobservability/YouTube: ⁠https://www.youtube.com/@openobservabilitytalks⁠Dotan Horovits============Twitter: https://twitter.com/horovits LinkedIn: https://www.linkedin.com/in/horovits/ BlueSky: https://bsky.app/profile/horovits.bsky.social Mastodon: https://fosstodon.org/@horovitsYaron Schneider==============Twitter: https://x.com/yaronschneiderLinkedIn: https://www.linkedin.com/in/yaron-schneider-2130b7a3/ The podcast episodes are available for listening on your favorite podcast app and on YouTube.

ai microsoft projects survey cto li blue sky mastodon jaeger cloud native d'apr cncf keda

The Linux Foundation In The Age Of AI

Play Episode Listen Later Sep 2, 2025 29:04

In a recent episode of The New Stack Agents from the Open Source Summit in Amsterdam, Jim Zemlin, executive director of the Linux Foundation, discussed the evolving landscape of open source AI. While the Linux Foundation has helped build ecosystems like the CNCF for cloud-native computing, there's no unified umbrella foundation yet for open source AI. Existing efforts include the PyTorch Foundation and LF AI & Data, but AI development is still fragmented across models, tooling, and standards. Zemlin highlighted the industry's shift from foundational models to open-weight models and now toward inference stacks and agentic AI. He suggested a collective effort may eventually form but cautioned against forcing structure too early, stressing the importance of not hindering innovation. Foundations, he said, must balance scale with agility. On the debate over what qualifies as "open source" in AI, Zemlin adopted a pragmatic view, acknowledging the costs of creating frontier models. He supports open-weight models and believes fully open models, from data to deployment, may emerge over time. Learn more from The New Stack about the latest in AI and open source, AI in China, Europe's AI and security regulations, and more: Open Source Is Not Local Source, and the Case for Global Cooperation US Blocks Open Source ‘Help' From These Countries Open Source Is Worth Defending Join our community of newsletter subscribers to stay on top of the news and at the top of your game./

ai europe china amsterdam foundations open source existing software developers linux foundation ai development cncf new stack open source summit new stack makers

LLM-D, with Clayton Coleman and Rob Shaw

google news eng red hat kubernetes ai ml cncf engineering director openshift rob shaw gke

Play Episode Listen Later Aug 20, 2025 52:30

Guests are Clayton Coleman and Rob Shaw. Clayton is a Core contributor to Kubernetes, the containerized cluster manager, and founding architect for OpenShift, the open source platform as a service. Clayton helped launch the shift to cloud native applications and the platforms that enable them. At Google my mission is to make Kubernetes and GKE the best place to run workloads, especially accelerated AI/ML workloads, and especially especially very large model inference at scale with the inference gateway and llm-d. Rob Shaw is an Engineering Director at Redhat and is a contributor to the vLLM project. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod - bluesky: @kubernetespodcast.com News of the week Kubernetes 1.34 is expected to release end of August Kubecrash.io: A platform Eng conference with a purpose CNCF top 30 project of 2025 Links from the interview LLM-D KubeCon EU 25 Keynote: LLM-Aware Load Balancing in Kubernetes WG Serving vLLM Disaggregated Prefilling LWS: LeaderWorkerSet

Platform Engineering is not just a trend and why Terraform is not dead with Artem Lajko

PurePerformance

Play Episode Listen Later Aug 11, 2025 47:46

Did you know that the average salary for a Platform Engineer is 42.5% more than a DevOps engineer? But why is that?We sat down with Artem Lajko, CNCF Kubestronaut and Ambassador as well as Author of the book Implementing GitOps with Kubernetes. We dive into the role of a platform engineer, the common pitfalls in implementing IDPs and why Backstage and AI won't solve all your problems. And we touch upon a topic hot off the press around Terraform: Its not dead!Links we discussedArtem's LinkedIn: https://www.linkedin.com/in/lajko/Talk slides from Cloud Land: https://lajko10-my.sharepoint.com/personal/artem_lajko_dev/_layouts/15/onedrive.aspx?id=%2Fpersonal%2Fartem%5Flajko%5Fdev%2FDocuments%2FAttachments%2Fcloud%20land%2D2025%5F%2Epdf&parent=%2Fpersonal%2Fartem%5Flajko%5Fdev%2FDocuments%2FAttachments&ga=1State of Platform Engineering Report: https://platformengineering.org/reports/state-of-platform-engineering-vol-3Upjet GitHub Project: https://github.com/crossplane/upjet

ai talk engineering ambassadors platform trend backstage devops kubernetes artem terraform idps cncf platform engineering dynatrace k8s gitops perfmatters

The Cloud Native Attitude • Anne Currie & Sarah Wells

GOTO - Today, Tomorrow and the Future

Play Episode Listen Later Aug 5, 2025 38:58 Transcription Available

This interview was recorded for the GOTO Book Club.http://gotopia.tech/bookclubRead the full transcription of the interview hereAnne Currie - Co-Author of "The Cloud Native Attitude" & "Building Green Software"Sarah Wells - Independent Consultant & Author & Author of "Enabling Microservice Success"RESOURCESAnnehttps://bsky.app/profile/annecurrie.bsky.socialhttps://www.strategically.greenSarahhttps://bsky.app/profile/sarahjwells.bsky.socialhttps://www.sarahwells.devhttps://linkedin.com/in/sarahjwells1DESCRIPTIONSarah Wells and Anne Currie dive into “The Cloud Native Attitude” and uncover why it's more than just using cloud infrastructure. It's about breaking bottlenecks, embracing rapid change, and aligning the entire organization.Anne reflects on how Kubernetes has risen since the book's first edition, but the core principles remain. They discuss why CI/CD is key, how cloud native supports sustainability, and why true transformation demands more than just a lift-and-shift. The conversation wraps up with practical advice on identifying real bottlenecks and securing buy-in for a successful cloud native journey.RECOMMENDED BOOKSAnne Currie & Jamie Dobson • The Cloud Native AttitudeAnne Currie, Sarah Hsu, & Sara Bergman • Building Green SoftwareSarah Wells • Enabling Microservice SuccessBill Gates • How to Avoid a Climate DisasterLiz Rice • Container SecurityBurns, Beda & Hightower • Kubernetes: Up & RunningMatthew Skelton & Manuel Pais • Team TopologiesBlueskyTwitterInstagramLinkedInFacebookCHANNEL MEMBERSHIP BONUSJoin this channel to get early access to videos & other perks:https://www.youtube.com/channel/UCs_tLP3AiwYKwdUHpltJPuA/joinLooking for a unique learning experience?Attend the next GOTO conference near you! Get your ticket: gotopia.techSUBSCRIBE TO OUR YOUTUBE CHANNEL - new videos posted daily!

sustainability attitude programming monolith docker kubernetes software engineering currie beda ci cd microservices cloud native cncf distributed systems software architecture sarah wells

Highlights from CNCF's First Open Observability Summit - OpenObservability Talks S6E02

Play Episode Listen Later Jul 30, 2025 67:03

We are overdue for a vendor neutral industry wide event dedicated to our favorite topic - open observability.Last month (June 2025) the Cloud Native Computing Foundation (CNCF) ran the first-ever Open Observability Summit, bringing together the world's best experts in the field in a day packed with talks from project maintainers, end users and practitioners.We're proud partners of the event, and are here to bring you the highlights from this industry-shaping event.This special episode has two parts, one recorded onsite before the event, covering conference goals, and insights from the talk submissions, and the other recorded after the event, covering the highlights of the events and the talks. The guests for is episode are two observability veterans: Alok Bhide, member of the event's content committee and head of product innovation at Chronosphere; and Henrik Rexed, developer advocate at Dynatrace, CNCF Ambassador, and host of Is It Observable podcast.Catch up on everything you need to know from the first-ever Open Observability Summit.You can read the recap post: https://medium.com/p/d42c8826d6a5/Show Notes:00:00 - intro02:52 - Part 1 pre-event03:40 - guest intro Alok Bhide04:49 - a new community event for open observability06:58 - talk submission highlights from the CFP content reviewer12:34 - a view of the open observability stack and its use 16:42 - Fluent Bit alignment with OpenTelemetry20:08 - AI in observability25:34 - Part 2 talk highlights26:22 - Fluent Bit vs. OpenTelemetry Collector benchmark analysis37:51 - OpenSearch 3.1 release40:47 - eBay's observability talk47:00 - Kotlin SDK for OTel talk for Android developers51:45 - Otel Collector fine-tuning talk53:52 - Broadcom OTel use case from mobile to mainframe56:43 - Spotify migration from in-house TSDB to VictoriaMetrics and Prometheus58:20 - OTel Collector replacement in Rust with the Rotel project1:00:58 - Noisy neighbors network observability1:03:04 - rising awareness of OTel semantic conventions 1:05:50 - outro Resources:Open Observability Summit + OTel Community Day: https://events.linuxfoundation.org/open-observability-summit-otel-community-day/eBay innovation with open source observability: https://www.youtube.com/watch?v=6ycNhzRVSbU&list=PLj6h78yzYM2NFT2PGItX2idBf7v8fHcy7&index=35 More on eBay's journey to planet-scale observability: https://www.youtube.com/watch?v=-UsU3nRglhA&list=PLd57eY2edRXz4djMETYTm-2p8WGTdoX3D Spotify talk: https://www.youtube.com/watch?v=87koDlpKDR4&list=PLj6h78yzYM2NFT2PGItX2idBf7v8fHcy7Kotlin SDK for OTel: https://www.youtube.com/watch?v=di5nhYvUh6w&list=PLj6h78yzYM2NFT2PGItX2idBf7v8fHcy7More on mobile observability with OTel: https://medium.com/p/2eb847c41941 OpenTelemtry Collector vs. Fluent Bit: https://www.youtube.com/watch?v=tZho5W9L_Z8&list=PLj6h78yzYM2NFT2PGItX2idBf7v8fHcy7&index=8Telemetry Pipelines: https://www.youtube.com/watch?v=0d1g5ZWAc1Y&list=PLj6h78yzYM2NFT2PGItX2idBf7v8fHcy7&index=30 OTel Collector in Rust with Rotel: https://www.youtube.com/watch?v=xeQnP8Ct7qY&list=PLj6h78yzYM2NFT2PGItX2idBf7v8fHcy7&index=16 Rotel project repo: https://github.com/streamfold/rotel Noisy neighbor detection: https://www.youtube.com/watch?v=xVqiOtXTEFA Socials:BlueSky: https://bsky.app/profile/openobservability.bsky.socialTwitter: ⁠https://twitter.com/OpenObserv⁠LinkedIn: https://www.linkedin.com/company/openobservability/YouTube: ⁠https://www.youtube.com/@openobservabilitytalks⁠Dotan Horovits============Twitter: https://twitter.com/horovits LinkedIn: https://www.linkedin.com/in/horovits/ BlueSky: https://bsky.app/profile/horovits.bsky.social Mastodon: https://fosstodon.org/@horovitsHenrik Rexed===========LinkedIn: https://www.linkedin.com/in/hrexed/BlueSky: @hrexed.bsky.socialYouTube: https://www.youtube.com/@isitobservable Alok Bhide=========LinkedIn: https://www.linkedin.com/in/albhide/

spotify ai android summit ebay blue sky rust cfp mastodon noisy observability cncf dynatrace otel chronosphere henrik rexed

HPC Workload Scheduling, with Ricardo Rocha

live news scheduling cern workload cncf ricardo rocha

Play Episode Listen Later Jul 9, 2025 42:58

Ricardo Rocha leads the Platform Infrastructure team at CERN with a strong focus on cloud native deployments and machine learning. He has led the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination and training for several years. Ricardo got CERN to join the CNCF and is a member of the Technical Oversight Committee (TOC), currently chairs the End User Technical Advisory Board (TAB), as well as leading the Research User Group (RUG). Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod - bluesky: @kubernetespodcast.com News of the week Kubernetes Blog: Image Compatibility In Cloud Native Environments Gemini CLI on GitHub Cloud Native Glossary — The Vietnamese Version is Live! CNCF Blog: Joining CNCF as Executive Director: Let's Build What's Next OpenStack Foundation OpenInfra Foundation Links from the interview Ricardo Rocha on LinkedIn CERN Infiniband Kubernetes Jobs HTCondor Slurm Workload Manager Kueue Volcano Kube-batch (archived) Kubefed (archived) Yunikorn (Unicorn) KubeAdmiral (formerly Kubefed v2) CNCF End User Awards - CERN Dynamic Resource Allocation (DRA) CNCF TAG & WG Restructure (Reboot) Interlink Slinky (Slurm-Kubernetes integration) XPK: a container-native platform for HPC Gateway API KubeRay

Dapr: The Secret Sauce to Simplifying Distributed Applications with Mark Fussell

The .NET Core Podcast

Play Episode Listen Later Jun 13, 2025 69:47

RJJ Software's Software Development Service This episode of The Modern .NET Show is supported, in part, by RJJ Software's Software Development Services, whether your company is looking to elevate its UK operations or reshape its US strategy, we can provide tailored solutions that exceed expectations. Show Notes "Yeah, exactly. In fact, one of the central premises of Dapr has, you know, one of its goals is not only to be multi-language, in that anyone can use the APIs from any language they come from. So it has SDKs. First, you can call it HTTP if that's all you care about. But it has SDKs for Java, JavaScript, of course, .NET, Python, and Go."— Mark Fussell Welcome friends to The Modern .NET Show; the premier .NET podcast, focusing entirely on the knowledge, tools, and frameworks that all .NET developers should have in their toolbox. We are the go-to podcast for .NET developers worldwide, and I am your host: Jamie “GaProgMan” Taylor. In this episode, Mark Fussell from Diagrid joins us to talk about Dapr—that's D-A-P-R—the Distributed Application Runtime, which aims to make it trivial to build applications in a distributed manner: covering things like service discovery, Pubsub messaging, and distribution of your microservice-based applications. "And the reason why I mentioned that is because, going to your AI discussion, is that we had an amazing contributor actually from Microsoft, actually he's ex-Microsoft now, a guy called Roberto Rodriguez, who worked in Microsoft Research, We built an agentic AI framework on top of Dapr workflows because it had this power of being able to do recoverability and coordination."— Mark Fussell Along the way, we cover the history of Dapr, how it started as a Microsoft incubator project (and was heavily inspired by Project Tye), and how it's now a full graduated project of the CNCF (Cloud Native Computing Foundation). Anyway, without further ado, let's sit back, open up a terminal, type in `dotnet new podcast` and we'll dive into the core of Modern .NET. Supporting the Show If you find this episode useful in any way, please consider supporting the show by either leaving a review (check our review page for ways to do that), sharing the episode with a friend or colleague, buying the host a coffee, or considering becoming a Patron of the show. Full Show Notes The full show notes, including links to some of the things we discussed and a full transcription of this episode, can be found at: https://dotnetcore.show/season-7/dapr-the-secret-sauce-to-simplifying-distributed-applications-with-mark-fussell/ Useful Links: DAPR Web Services Enhancement Diagrid Dapper Tye Spiffie mTLS istio Linkerd Dapr/quickstarts Dapr university Diagrid Conductor Workflow Engines: Comunda Apache Airflow Azure Logic Apps AWS Step Functions Episode 21 - Orleans with Russell Hammett CNCF Dapr Catalyst Dapr on Discord Supporting the show: Leave a rating or review Buy the show a coffee Become a patron Getting in Touch: Via the contact page Joining the Discord Remember to rate and review the show on Apple Podcasts, Podchaser, or wherever you find your podcasts, this will help the show's audience grow. Or you can just share the show with a friend. And don't forget to reach out via our Contact page. We're very interested in your opinion of the show, so please get in touch. You can support the show by making a monthly donation on the show's Patreon page at: https://www.patreon.com/TheDotNetCorePodcast. Music created by Mono Memory Music, licensed to RJJ Software for use in The Modern .NET Show

The State of Cloud Native for 2025

The Cloudcast

Play Episode Listen Later Jun 11, 2025 23:24

Tobi Knaup (@superguenter, VP/GM of Cloud Native @Nutanix) talks about the evolution of the cloud-native ecosystem, the intersection of AI and Kubernetes, and expectations of the next few years. SHOW: 931SHOW TRANSCRIPT: The Cloudcast #931 TranscriptSHOW VIDEO: https://youtube.com/@TheCloudcastNET CLOUD NEWS OF THE WEEK: http://bit.ly/cloudcast-cnotwNEW TO CLOUD? CHECK OUT OUR OTHER PODCAST: "CLOUDCAST BASICS" SPONSORS:[VASION] Vasion Print eliminates the need for print servers by enabling secure, cloud-based printing from any device, anywhere. Get a custom demo to see the difference for yourself.[US CLOUD] Cut Enterprise IT Support Costs by 30-50% with US CloudSHOW NOTES:Nutanix Cloud NativeThe Cloudcast #211 - Mesosphere DCOSTopic 1 - Welcome to the show! Full disclosure for everyone out there, I worked for Tobi at Nutanix. Give everyone a brief introduction and a little about your background.Topic 2 - This is a throwback for our long-time listeners. We had Ben Hindman on episode #211 almost 10 years ago, when D2IQ was Mesosphere, and we also spoke to Dave Lester, who was at Twitter back in 2014. I'm not going to ask you to catch everyone up on 10 years of your company and the history… but I will encourage everyone to go back and listen to that podcast. It is an excellent snapshot of the early days of cloud native and containers. Today, we will talk a bit about the state of cloud native. The most recent KubeCon EU was a few months ago. What were your thoughts around the event and the current state of the industry? Topic 3 - What are the most prominent challenges organizations face today with Cloud Native adoption? You hear about the complexity, you hear about Kubernetes is a platform to build platforms… still true?Topic 4 - Where do you think Cloud Native goes in the next 2-3 years? What technologies or design patterns (besides AI, we'll talk about that later) evolve, and where does the next round of adoption come from?Topic 5 - Let's talk about storage and data services quickly. Data services for K8s is messy, really messy at times. Give everyone an overview of the problem at scale and the challenges, especially in multi-cloud environments, which I'm finding more and more.Topic 6 - I'd be remiss if I didn't mention AI and its impact in the space. AI came along and sucked all the air out of the room for a time. How do you think about AI today, now that the dust has settled a bit? Is it just an “app” to run on top? How will AI impact cloud native longer term?FEEDBACK?Email: show at the cloudcast dot netBluesky: @cloudcastpod.bsky.socialTwitter/X: @cloudcastpodInstagram: @cloudcastpodTikTok: @cloudcastpod

ai data gm kubernetes cloud native nutanix cncf k8s mesosphere dcos dave lester ben hindman

Democratizing Kubernetes for AI and ML with Kubeflow

Open at Intel

Play Episode Listen Later May 29, 2025 20:54

In this episode, we hear from Andrey Velichkevich, a key contributor to the Kubeflow project, an ecosystem of open source projects to streamline the AI and ML lifecycle on Kubernetes. Andrey shares his extensive experience with the project, explains the various components and their use cases, and discusses the community's focus on accessibility and collaboration. They cover the project's evolution, the unique challenges and solutions offered, and the importance of engaging new contributors through initiatives like Google Summer of Code. The conversation highlights the future roadmap for Kubeflow, the significance of cross-project collaboration, and the key to creating a supportive and rewarding contributor environment. 00:00 Introduction and Greetings 00:14 Overview of the Kubeflow Project 01:20 Kubeflow's Ecosystem and Components 02:54 Target Audience and Use Cases 05:12 Future Roadmap and Goals 09:38 Community Engagement and Contributions 19:09 Conclusion and Final Thoughts Guest: Andrey Velichkevich is a member of Kubeflow Steering Committee and a co-chair of Kubeflow AutoML and Training WG. Additionally, Andrey is an active member of the CNCF WG AI. He is one of the authors of the CNCF AI white paper and he is helping with various AI initiatives from the CNCF community.

ai code conclusion ecosystem community engagement ml kubernetes democratizing target audience andrey cncf google summer

Why Contributing to Open Source Matters for the Mission

Defense Unicorns, A Podcast

Play Episode Listen Later May 19, 2025 59:56

On this episode of The Defense Unicorns Podcast, host Rebecca Lively sits down with Brandt Keller, software engineer and CNCF ambassador, to explore what happens when a former Marine brings his frontline mindset to DevSecOps. Brandt's story is one of relentless problem-solving, especially in disconnected, air-gapped environments where “cloud-native” has to mean something entirely different.Brandt unpacks how open source can be both a lifeline and a liability in government systems, and why just consuming it isn't enough—real security means showing up, contributing, and understanding what's under the hood. He shares his perspective on trust, transparency, and why the U.S. government's lack of contribution to critical tools like Kubernetes might be the real risk. The conversation also explores the cultural shift required to embrace open ecosystems in highly regulated spaces.From debates over supply chain security and SBOMs to the practical challenges of deploying software in classified settings, this episode offers a grounded, behind-the-scenes look at what it takes to build tools that truly work at the tactical edge. Key Quote:“ When you try to take something that is not airgap friendly and make it airgap friendly, you quickly find out that you made a lot of assumptions about how this thing would be used and where, and kind of the underlying infrastructure and when you try to work back for them that it's, it, it's difficult. It's not something you can't overcome. It's not insurmountable, but it is difficult. But you also find out that there's just a lot of areas for. Resiliency that you didn't also plan for, that applied to connected environments. And so this is where I've kind of been diving into this more and more lately to try and to describe, and build some knowledge to around why this is important for kind of building any application today. It may be a little niche to go to the extreme of air gap, but I believe like there's still some of these underlying cloud native fundamentals that is like, if you start with the ability for knowing how your architecture adapts to varying levels of connectivity, then you're probably building a stronger, more resilient system overall.”Brandt KellerTime Stamps:(03:19) The Defense Sector and Career Path(06:15) Becoming a Cloud Native Computing Foundation Ambassador(09:48) Open Source Contributions and the Challenges(14:14) Government and the lack of Open Source(32:53) Kubernetes and Foreign Contributions(37:24) The Importance of Air Gap in Cloud Native Tools(53:16) Lightning Round Links:Connect with Brandt KellerConnect with Rebecca LivelyLearn More About Defense Unicorns

mission challenges government marine resiliency open source career path brandt contributing kubernetes devsecops cncf sboms

NATS and the CNCF kerfuffle (Interview)

The Changelog

Play Episode Listen Later May 16, 2025 96:21

Derek Collison — creator of NATS and Co-founder & CEO of Synadia — joins the show to dive into the origins, design, and evolution of NATS, a high-performance, open-source messaging system built for modern cloud-native systems and part of the CNCF. Derek shares the story behind NATS, what makes it unique, and unpacks the recent tensions between Synadia and the CNCF over the future of the project.

ceo nats kerfuffle cncf adam stacoviak jerod santo

NATS and the CNCF kerfuffle (Changelog Interviews #641)

Changelog Master Feed

Play Episode Listen Later May 16, 2025 96:21 Transcription Available

ceo nats kerfuffle cncf changelog adam stacoviak jerod santo

Flatcar Linux: Made for Containers

Open at Intel

Play Episode Listen Later May 15, 2025 22:24

In this episode, Danielle Tal and Thilo Fromm join us to discuss Flatcar Linux. They introduce Flatcar as a Linux operating system designed specifically for containers and Kubernetes workloads, highlighting its automation, self-healing capabilities, and security features. They emphasize how Flatcar simplifies operations for startups and large companies alike by automating OS provisioning and maintenance. We discussed contributor engagement and the project's involvement with the CNCF. They also share intriguing use cases, like a Kubernetes cluster running on a tractor fleet, and stress the importance of community contributions, not just in code but in evangelism and documentation. 00:00 Introduction 01:05 What is Flatcar? 02:01 Flatcar's Automation and Self-Healing Capabilities 04:10 User Experience and Testing 05:06 Ideal Users and Use Cases 10:36 Community and Contributions 13:38 Getting Started with Contributions 16:59 Impact and Future Directions 19:58 Conclusion and Final Thoughts Guest: Danielle Tal is a Program Manager at Microsoft and an integral part of the team responsible for maintaining Flatcar Container Linux. The team is contributes to Linux OS distributions and Linux Security within Azure and other upstream projects. With a background in supporting diverse enterprise cloud applications as a support engineer, Danielle has transitioned into a management role, overseeing Docker EMEA support before joining the Flatcar team. Thilo Fromm is an engineering manager and works on Community Linux distributions and Linux Security at Azure. Thilo's team helps maintaining Flatcar Container Linux. He has given talks at FOSDEM, FrOSCon, KubeCon, Open Source Summit, Cloud-Native Rejekts, and various meetups like Kubernetes Community Days. Thilo started his career in embedded systems with hardware design and roll-your-own /from scratch embedded Linux, kernel and plumbing level development, and later virtualisation. After working for various cloud providers in engineering and management positions, he went full cloud native in 2019. Nowadays Thilo works on operating systems for cloud-native environments with a special focus on Flatcar Container Linux.

community microsoft impact os conclusion automation getting started linux program managers azure user experience containers kubernetes thilo cncf kubecon fosdem linux os linux security open source summit froscon

Episode 518: It Is What It Is

Software Defined Talk

Play Episode Listen Later May 9, 2025 54:15

This week, we unpack what Uber's CEO said, why the CNCF exists, and how companies chase the money. Plus, Coté stands alone in his love for rice cakes. Watch the YouTube Live Recording of Episode 518 (https://www.youtube.com/live/h0RVI_IOZvo?si=tbRl4R8iwhDsLzu7) Runner-up Titles Go feral You've ruined eating for me Cultural tombstone The next step is “I told you so” Culture is what happens when you're not talking about culture. You know, it's terrible to run over someone The robots are just fine Center of Attention Rundown Uber CEO says changing employee benefits 'is a risk we decided to take' (https://www.cnbc.com/2025/05/06/uber-ceo-says-changing-employee-benefits-is-a-risk-we-decided-to-take.html) Waymo is reducing serious crashes and making streets safer for those most at risk (https://waymo.com/blog/2025/05/waymo-making-streets-safer-for-vru) CNCF and Synadia Align on Securing the Future of the NATS.io Project (https://www.cncf.io/announcements/2025/05/01/cncf-and-synadia-align-on-securing-the-future-of-the-nats-io-project/) Oxide and Friends | Shootout at the CNCF Corral (https://oxide-and-friends.transistor.fm/episodes/shootout-at-the-cncf-corral) New D&D core rules are now CC-BY (https://www.dndbeyond.com/srd?srsltid=AfmBOorzpL2Y57RWJ966OdFDTICTiWTAAQL6Dn8FFvcB09HJClZkbWli). ‘Cook chose poorly': how Apple blew up its control over the App Store (https://www.theverge.com/apple/659296/apple-failed-compliance-court-ruling-breakdown) Relevant to your Interests I use Zip Bombs to Protect my Server (https://idiallo.com/blog/zipbomb-protection) "AI-first" is the new Return To Office - Anil Dash (https://www.anildash.com/2025/04/19/ai-first-is-the-new-return-to-office/) Find and Buy with AI: Visa Unveils New Era of Commerce (https://www.businesswire.com/news/home/20250430580204/en/Find-and-Buy-with-AI-Visa-Unveils-New-Era-of-Commerce?utm_source=www.therundown.ai&utm_medium=newsletter&utm_campaign=visa-mastercard-give-ai-credit-cards&_bhlid=3ec615c11c0429835c326dbeaabe5bca0dddaf66) Google dusts off Google Voice and adds three-way calling (https://www.theverge.com/news/659719/google-voice-app-update-call-ui-merge-three-way) Anthropic to Buy Back Employee Shares at $61.5 Billion Valuation (https://www.theinformation.com/articles/anthropic-buy-back-employee-shares-61-5-billion-valuation) IBM unveils capabilities meant to accelerate AI agent adoption (https://siliconangle.com/2025/05/06/ibm-unveils-capabilities-meant-accelerate-ai-agent-adoption/) Getting things "done" in large tech companies (https://www.seangoedecke.com/getting-things-done/) A.I. Is Getting More Powerful, but Its Hallucinations Are Getting Worse (https://www.nytimes.com/2025/05/05/technology/ai-hallucinations-chatgpt-google.html?campaign_id=9&emc=edit_nn_20250505&instance_id=153899&nl=the-morning®i_id=55370892&segment_id=197320&user_id=861fd8fcc0091c6690e3b338636d5995) This NAS brand just called out the competition and says you should own your hardware (https://www.techradar.com/pro/asustor-makes-veiled-dig-at-synologys-proprietary-hard-drive-philosophy-with-open-and-unlocked-stance) Microsoft Earnings, Microsoft's Core Capability, Amazon Earnings (https://stratechery.com/2025/microsoft-earnings-microsofts-core-capability-amazon-earnings/) Amazon beats on top and bottom line but issues light second quarter guidance (https://www.cnbc.com/2025/05/01/amazon-amzn-q1-earnings-report-2025.html) Amazon Takes Aim at Cursor With New AI Coding Service (https://www.theinformation.com/articles/amazon-takes-aim-cursor-new-ai-coding-service) OpenAI caves to pressure, keeps nonprofit in charge (https://www.theregister.com/2025/05/05/openai_keep_nonprofit_in_charge/) OpenAI Reaches Agreement to Buy Startup Windsurf for $3 Billion (https://www.bloomberg.com/news/articles/2025-05-06/openai-reaches-agreement-to-buy-startup-windsurf-for-3-billion) Anysphere, which makes Cursor, has reportedly raised $900M at $9B valuation (https://techcrunch.com/2025/05/04/cursor-is-reportedly-raising-funds-at-9-billion-valuation-from-thrive-a16z-and-accel/) Clouded Judgement 5.2.25 - Cloud Giants Report Q1 '25 (https://open.substack.com/pub/cloudedjudgement/p/clouded-judgement-5225-cloud-giants?r=2l9&utm_medium=ios) Nine Emerging Developer Patterns for the AI Era | Andreessen Horowitz (https://a16z.com/nine-emerging-developer-patterns-for-the-ai-era/?trk=feed_main-feed-card_feed-article-content) Nonsense AI Brings Play-by-Play Commentary To Pong (https://hackaday.com/2025/05/06/ai-brings-play-by-play-commentary-to-pong/) Conferences Fr (https://vmwarereg.fig-street.com/051325-tanzu-workshop/)ee AI workshop (https://vmwarereg.fig-street.com/051325-tanzu-workshop/), May 13th. day before C (https://events.linuxfoundation.org/cloud-foundry-day-north-america/)loud (https://events.linuxfoundation.org/cloud-foundry-day-north-america/) (https://events.linuxfoundation.org/cloud-foundry-day-north-america/)Foundry (https://events.linuxfoundation.org/cloud-foundry-day-north-america/) Day (https://events.linuxfoundation.org/cloud-foundry-day-north-america/). Melbourne Wiz Meet-Up (https://www.wiz.io/events/melbourne-wizdom-meet-up-may-2025), May 13. Matt will be there. Cloud Foundry Day US (https://events.linuxfoundation.org/cloud-foundry-day-north-america/), May 14th, Palo Alto, CA, Coté speaking. KCD Texas Austin 2025 (https://community.cncf.io/events/details/cncf-kcd-texas-presents-kcd-texas-austin-2025/), May 15th, Whitney Lee speaking NDC Oslo (https://ndcoslo.com/), May 21st-23th, Coté speaking. POST/CON 25 (https://fnf.dev/43irTu1), June 3-4, Los Angeles, CA, Brandon representing SDT. Use Code: BRANDON, first 20 people get a free pass SREDay Cologne, June 12th, 2025 (https://sreday.com/2025-cologne-q2/#tickets) - Coté speaking, discount: CLG10, 10% off. SDT News & Community Join our Slack community (https://softwaredefinedtalk.slack.com/join/shared_invite/zt-1hn55iv5d-UTfN7mVX1D9D5ExRt3ZJYQ#/shared-invite/email) Email the show: questions@softwaredefinedtalk.com (mailto:questions@softwaredefinedtalk.com) Free stickers: Email your address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) Follow us on social media: Twitter (https://twitter.com/softwaredeftalk), Threads (https://www.threads.net/@softwaredefinedtalk), Mastodon (https://hachyderm.io/@softwaredefinedtalk), LinkedIn (https://www.linkedin.com/company/software-defined-talk/), BlueSky (https://bsky.app/profile/softwaredefinedtalk.com) Watch us on: Twitch (https://www.twitch.tv/sdtpodcast), YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured), Instagram (https://www.instagram.com/softwaredefinedtalk/), TikTok (https://www.tiktok.com/@softwaredefinedtalk) Book offer: Use code SDT for $20 off "Digital WTF" by Coté (https://leanpub.com/digitalwtf/c/sdt) Sponsor the show (https://www.softwaredefinedtalk.com/ads): ads@softwaredefinedtalk.com (mailto:ads@softwaredefinedtalk.com) Recommendations Brandon: UniFi Express (https://store.ui.com/us/en/products/ux) , FlexHD (https://store.ui.com/us/en/products/uap-flexhd), U6+ (https://store.ui.com/us/en/products/u6-plus) and US 8 60W (https://store.ui.com/us/en/products/us-8-60w) Matt: Andor (https://www.google.com/aclk?sa=L&ai=DChcSEwi_k_SJq5KNAxVtbn8AHTM9LiAYABAAGgJvYQ&co=1&gclid=CjwKCAjwiezABhBZEiwAEbTPGJm543I3_qXVgfjHny9-ZLEw01E6SYCKzXEqXnLCpru-2Wjkg92ybRoCF8EQAvD_BwE&cce=1&sig=AOD64_1ZVJAYtB5pJD_f0aUN-mZqKPFYXQ&q&adurl&ved=2ahUKEwigq--Jq5KNAxV248kDHbzcLIoQ0Qx6BAgHEAQ) Season 2 (https://www.google.com/aclk?sa=L&ai=DChcSEwi_k_SJq5KNAxVtbn8AHTM9LiAYABAAGgJvYQ&co=1&gclid=CjwKCAjwiezABhBZEiwAEbTPGJm543I3_qXVgfjHny9-ZLEw01E6SYCKzXEqXnLCpru-2Wjkg92ybRoCF8EQAvD_BwE&cce=1&sig=AOD64_1ZVJAYtB5pJD_f0aUN-mZqKPFYXQ&q&adurl&ved=2ahUKEwigq--Jq5KNAxV248kDHbzcLIoQ0Qx6BAgHEAQ) Coté: Batman (https://www.rottentomatoes.com/m/1001781-batman) and Batman Returns (https://www.imdb.com/title/tt0103776/). Photo Credits Header (https://unsplash.com/photos/text-QUQwhUa_B7E)

Demystifying Cyber Resilience and the Tools That Help

Open at Intel

Play Episode Listen Later May 8, 2025 21:16

In this episode, Michael Lieberman, Co-founder and CTO of Kusari, walks us through the intersection of open source software and security. We discuss Mike's extensive involvement in OpenSSF projects like SLSA and GUAC, which provide essential frameworks for securing the software development life cycle (SDLC) and managing software supply chains. He explains how these tools help verify software provenance and manage vulnerabilities. Additionally, we explore regulatory concerns such as the Cyber Resilience Act (CRA) and the vital role of the recently released Open SSF Security Baseline (OSPS Baseline) in helping organizations comply with such regulations. Mike also shares insights into the evolution of open source security practices, the importance of reducing complexity for developers, and the potential benefits of orchestrating security similarly to Kubernetes. We conclude with a look at upcoming projects and current pilots aiming to simplify and enhance open source security. 00:00 Introduction and Guest Welcome 00:19 Mike's Background and Role in Open Source 01:35 Exploring SLSA and GUAC Projects 04:57 Cyber Resiliency Act Overview 06:54 OpenSSF Security Baseline 11:29 Encouraging Community Involvement 18:39 Final Thoughts Resources: OpenSSF's OSPS Baseline GUAC SLSA KubeCon Keynote: Cutting Through the Fog: Clarifying CRA Compliance in C... Eddie Knight & Michael Lieberman Guest: Michael Lieberman is co-founder and CTO of Kusari where he helps build transparency and security in the software supply chain. Michael is an active member of the open-source community, co-creating the GUAC and FRSCA projects and co-leading the CNCF's Secure Software Factory Reference Architecture whitepaper. He is an elected member of the OpenSSF Governing Board and Technical Advisory Council along with CNCF TAG Security Lead and an SLSA steering committee member.

tools cto demystifying kubernetes guac cyber resilience sdlc cncf openssf

Episode 517: Trademark's in the Mail

Software Defined Talk

Play Episode Listen Later May 2, 2025 63:56

This week, we discuss the new Slate Pickup, Synadia's attempt to reclaim NATS from the CNCF, and the latest DORA AI report. Plus, Google leaves old Nest thermostats out in the cold. Watch the YouTube Live Recording of Episode (https://www.youtube.com/watch?v=Is2JhdgLpIg) 517 (https://www.youtube.com/watch?v=Is2JhdgLpIg) Runner-up Titles We have a dumb house Ultimately I blame myself You can educate people, but they're not going to listen It's hard to have the same level of empathy with a talking logo I don't want a subscription car No Take Backs Rugpulls are part of the landscape now Vacuum Hypothesis Major releases forever Making bad developers 10x faster Spaces or Braces Don't bring tabs into this Rundown Google will stop supporting early Nest thermostats on October 25 (https://techcrunch.com/2025/04/26/google-will-stop-supporting-early-nest-thermostats-on-october-25/) The Slate Truck is a whole new kind of car (https://www.theverge.com/the-vergecast/657836/slate-truck-auto-pickup-screen-time-vergecast) Open Source Regret Syndrome How Synadia's attempt to exit the CNCF by holding a trademark hostage might have backfired (https://www.runtime.news/how-synadias-attempt-to-exit-the-cncf-by-holding-a-trademark-hostage-might-have-backfired/) Protecting NATS and the integrity of open source: CNCF's commitment to the community (https://www.cncf.io/blog/2025/04/24/protecting-nats-and-the-integrity-of-open-source-cncfs-commitment-to-the-community/?ref=runtime.news) DORA Impact of Generative AI in Software Development (https://cloud.google.com/resources/content/dora-impact-of-gen-ai-software-development?hl=en) Duolingo will replace contract workers with AI (https://www.theverge.com/news/657594/duolingo-ai-first-replace-contract-workers) Google launches AI tools for practicing languages through personalized lessons (https://techcrunch.com/2025/04/29/google-launches-ai-tools-for-practicing-languages-through-personalized-lessons/?guccounter=1&guce_referrer=aHR0cHM6Ly9uZXdzLmdvb2dsZS5jb20v&guce_referrer_sig=AQAAACKh9xMr7tOVcmFQP-5C8PDElghg3W1m2SmQAVKY4UhlHXs69qyd-CrNSI5aLcFTcZCQ0_crhAmIf4h3m816HtKLF1FfYof3Tcfai-qMt_sbXeTLDn2ap8l_X54hB-MNXCQtjjpNo0rHs9yMrXlXQbcRqLKfEAERgEh3piRMF_KM) Viral Shopify CEO Manifesto Says AI Now Mandatory For All Employees (https://www.forbes.com/sites/douglaslaney/2025/04/09/selling-ai-strategy-to-employees-shopify-ceos-manifesto/) Introducing the Meta AI App: A New Way to Access Your AI Assistant (https://about.fb.com/news/2025/04/introducing-meta-ai-app-new-way-access-ai-assistant/) Relevant to your Interests 2D Chip Breakthrough: 6,000 Transistors, 3 Atoms Thick (https://spectrum.ieee.org/2d-semiconductors-molybdenum-disulfide) AMD 2.0 – New Sense of Urgency (https://semianalysis.com/2025/04/23/amd-2-0-new-sense-of-urgency-mi450x-chance-to-beat-nvidia-nvidias-new-moat/) Apple Partner TSMC Unveils Advanced 1.4nm Process for 2028 Chips (https://www.macrumors.com/2025/04/24/apple-partner-tsmc-1-4nm-process-2028-chips/) Elon Musk forced back to the boardroom as Doge ‘blowback' pummels Tesla (https://on.ft.com/3Rx0z4z) Amazon CEO Andy Jassy's 2024 Letter to Shareholders—Annotated (https://www.lastweekinaws.com/2024-amazon-ceo-letter-to-shareholders/?ck_subscriber_id=512840665&utm_source=convertkit&utm_medium=email&utm_campaign=%20[Last%20Week%20in%20AWS%20Extras]:%20Amazon%20CEO%20Andy%20Jassy) How Commodore Invented the Mass Market Computer (https://every.to/the-crazy-ones/the-first-king-of-home-computing) Yahoo wants to buy Chrome (https://www.theverge.com/policy/655975/yahoo-search-web-browser-prototype-google-trial-antitrust-chrome) Microsoft launches Recall and AI-powered Windows search for Copilot Plus PCs (https://www.theverge.com/news/656106/microsoft-recall-copilot-plus-pc-available) Tech Workers Are Just Like the Rest of Us: Miserable at Work (https://www.msn.com/en-us/money/companies/tech-workers-are-just-like-the-rest-of-us-miserable-at-work/ar-AA1DDKjh) Backblaze: A Loss-Making Data Storage Business Mired in Lawsuits, Sham Accounting, and Brazen Insider Dumping (https://www.morpheus-research.com/backblaze/) IBM pledges $150 billion to boost U.S. tech growth, computer manufacturing (https://www.cnbc.com/2025/04/28/ibm-to-invest-150-billion-to-boost-us-tech-growth-computer-manufacturing.html) Economic Termites Are Everywhere (https://www.thebignewsletter.com/p/economic-termites-are-everywhere) 40 years ago, Acorn fired up the first Arm processor (https://www.theregister.com/2025/04/29/arm_40/) Nonsense Between 2 Servers - S1E2 - Not THAT Hasselhoff feat. Dr. Kate Holterhoff (https://www.youtube.com/watch?v=v6VrO8rl-iM) Fold 'N Fly » Paper Airplane Folding Instructions (https://www.foldnfly.com/) Conferences Cloud Foundry Day US (https://events.linuxfoundation.org/cloud-foundry-day-north-america/), May 14th, Palo Alto, CA, Coté speaking. KCD Texas Austin 2025 (https://community.cncf.io/events/details/cncf-kcd-texas-presents-kcd-texas-austin-2025/), May 15th, Whitney Lee Speaking Fr (https://vmwarereg.fig-street.com/051325-tanzu-workshop/)ee AI workshop (https://vmwarereg.fig-street.com/051325-tanzu-workshop/), May 13th. day before C (https://events.linuxfoundation.org/cloud-foundry-day-north-america/)loud (https://events.linuxfoundation.org/cloud-foundry-day-north-america/) (https://events.linuxfoundation.org/cloud-foundry-day-north-america/)Foundry (https://events.linuxfoundation.org/cloud-foundry-day-north-america/) Day (https://events.linuxfoundation.org/cloud-foundry-day-north-america/) Melbourne Wiz Meet-Up (https://www.wiz.io/events/melbourne-wizdom-meet-up-may-2025), May 13. Matt will be there NDC Oslo (https://ndcoslo.com/), May 21st-23th, Coté speaking. SDT News & Community Join our Slack community (https://softwaredefinedtalk.slack.com/join/shared_invite/zt-1hn55iv5d-UTfN7mVX1D9D5ExRt3ZJYQ#/shared-invite/email) Email the show: questions@softwaredefinedtalk.com (mailto:questions@softwaredefinedtalk.com) Free stickers: Email your address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) Follow us on social media: Twitter (https://twitter.com/softwaredeftalk), Threads (https://www.threads.net/@softwaredefinedtalk), Mastodon (https://hachyderm.io/@softwaredefinedtalk), LinkedIn (https://www.linkedin.com/company/software-defined-talk/), BlueSky (https://bsky.app/profile/softwaredefinedtalk.com) Watch us on: Twitch (https://www.twitch.tv/sdtpodcast), YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured), Instagram (https://www.instagram.com/softwaredefinedtalk/), TikTok (https://www.tiktok.com/@softwaredefinedtalk) Book offer: Use code SDT for $20 off "Digital WTF" by Coté (https://leanpub.com/digitalwtf/c/sdt) Sponsor the show (https://www.softwaredefinedtalk.com/ads): ads@softwaredefinedtalk.com (mailto:ads@softwaredefinedtalk.com) Recommendations Brandon: Airpod Cleaner Kit (https://www.amazon.com/dp/B0B3CKVRK3?ref=ppx_yo2ov_dt_b_fed_asin_title&th=1) Matt: Soul Coughing Live 2024 (https://li.sten.to/soulcoughinglive2024) Cooking with Beagles (https://www.instagram.com/beagleskiko/) Photo Credits Header (https://unsplash.com/photos/white-thermostat-at-62-mAwE-fqgDXc)

KubeCon and Cloud Native

Next in Tech

Play Episode Listen Later Apr 22, 2025 26:08 Transcription Available

Cloud native patterns and open source developments were on display at the KubeCon + CloudNativeCon Europe conference. The biannual gathering was showing how the container ecosystem continues to mature and analysts Jean Atelsek and William Fellows join host Eric Hanselman to explore their insights. The Cloud Native Computing Foundation (CNCF), part of the Linux Foundation, continues to expand the event and advance the maturity of the open source projects that are part of its purview. Day 2 operations have been gaining focus and the pre-conference FinOps X event was an indication of the emphasis on operational controls as it digs into infrastructure cost management. The opening “Day 0” events at KubeCon, which have been the forum for specialized project meetings, have become a key part of the conference, with over 6,000 attendees, almost half of the reported 13,000 total. The Kubernetes container management project is now over ten years old and one of the other signs of technology evolution was the integration of the OpenInfra Foundation, which managed the OpenStack project and other infrastructure elements, into the Linux Foundation. Open source projects are gaining wider adoption and one of the messages from projects and vendors at KubeCon, was the hope that it could offer alternatives to enterprise infrastructure stalwart, VMware. The CNCF is expanding its investments in improving security across the projects under its umbrella. There was also continued development of platform engineering initiatives. Bounding the expanding world of open source projects to create consistent development and operational tool chains for enterprise is one more sign of maturity in the container world. More S&P Global Content: AWS, Microsoft Azure and Google Cloud enter the FinOps vortex For S&P Global subscribers: Kubernetes meets the AI moment in Europe with technology, security, investment Data management, GenAI, hybrid cloud are top Kubernetes workloads – Highlights from VotE: DevOps Kubernetes ecosystem tackles new technical and market challenges Kubernetes, serverless adoption evolve with cloud-native maturity – Highlights from VotE: DevOps Credits: Host/Author: Eric Hanselman Guests: Jean Atelsek, William Fellows Producer/Editor: Adam Kovalsky Published With Assistance From: Sophie Carr, Feranmi Adeoshun, Kyra Smith

ai europe data open cloud genai vmware google cloud kubernetes microsoft azure cloud native linux foundation openstack finops cncf kubecon bounding

#55 Decarbonizing Kubernetes with Flavia Paganelli and Niki Manoledaki

Green IO

Play Episode Listen Later Mar 25, 2025 44:41

Did containerization ship away our environmental responsibility? Containers come with the promise of automation, scalability and reliability. The question is how to add sustainability to the list without breaking its other benefits. To talk about these challenges, Gaël Duez welcomes Flavia Paganelli and Niki Manoledaki, 2 experts in Kubernetes who are also pillars of the CNCF TAG Environmental Sustainability workgroup. This episode might beat the record of acronyms: KEIT, CNCF, TAG … And yet Flavia Paganelli and Niki Manoledaki provided crystal clear explanations when they covered:

new york ga open source containers cloud computing kubernetes flavia environmental sustainability cncf keit digital sustainability

Kubernetes Ingress & Gateway API Updates, with Lior Lieberman

trucks hyundai kj microwave truck drivers galentines cncf deputy premier

Play Episode Listen Later Mar 11, 2025 45:15

Lior Lieberman is a software engineer lead at Google Cloud focusing on GCE, Kubernetes, and Service Mesh. He is a leading contributor to Gateway API and the maintainer of Ingress2gateway. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod - bluesky: @kubernetespodcast.com News of the week NFTables mode for kube-proxy | Kubernetes Kubescape becomes a CNCF incubating project Announcing the Beta Release of OpenTelemetry Go Auto-Instrumentation using eBPF | CNCF New Phippy Book Guidelines: Enhancing Community Access & Engagement | CNCF Links from the interview Lightning Talk: Why Service Is the Worst API in Kubernetes, & What We're Doing About It - Tim Hockin GitHub - kubernetes-sigs/ingress2gateway: Convert Ingress resources to Gateway API resources Migrating from Ingress Gateway API Inference Extension 0.1.0 release README on GitHub kubernetes-sigs/ingate - an Ingress & Gateway API Controller GAMMA - https://gateway-api.sigs.k8s.io/mesh/

news gateway github google cloud kubernetes lieberman migrating lior readme ingress cncf gce beta release

Episode 128 | “Microwave Truck Driver”

The LINK Up

Play Episode Listen Later Feb 26, 2025 104:44

Send us a textOn this episode: Joined by special guest KJ, the cast talks with the CNCF's Cassandra Shea to discuss upcoming CayFest & Red Sky @ Night events. Is the country progressing forward for artists? We share some behind the scenes & get a weekend recap. Who has your Hyundai & what can you do?? An ode to vintage commercials, Honda FiTs, & Galentines. Before taking a call from the Deputy Premier, the cast looks at the racial divide, more robberies but no calls action. RIP Spikey, this & much more! Support the show

Kubernetes History Inspector, with Kakeru Ishii

Play Episode Listen Later Feb 13, 2025 18:09

Kakeru is the initiator of the Kubernetes History Inspector or KHI. An open source tool that allows you to visualise Kubernetes Logs and troubleshoot issues. We discussed what the tool does, how it's built and what was the motivation behind Open sourcing it. Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod - bluesky: @kubernetespodcast.com News of the week The Schedule for the KubeCon and CloudNativeCon 2025 Maintainers Summit is live The CNCF 2024 review of the top 30 projects The CNCF End User Case Study for KubeCon Contest Kubernetes Resource Orchestrator Blog Kubernetes Resource Orchestrator Github EKS Hybrid nodes CoreWeave Nvidia GB200 NLV-72 GA Links from the interview KHI: Kubernetes History Inspector DAG WebGL

history news open ga inspectors kubernetes khi ishii cncf kubecon kakeru

Linkerd, with William Morgan