Agentic AI is reintroducing ClickOps
AI agents with direct write access to production reintroduce the risks we eliminated with IaC — state drift, broken audit trails, and silent mutations.
Read moreWriting on cloud security, DevSecOps practices, compliance, and building security into the infrastructure delivery pipeline.
dgoss: Testing the Container, Not Just the Image
Static scanners miss whether a built image behaves like the runtime you intend to ship. dgoss turns images into testable runtime contracts for CI/CD.
Read moreHow Serverless Shrinks PCI Scope
Serverless compute reduces PCI-DSS scope by eliminating infrastructure layers that require patching and monitoring. Compliance becomes configuration.
Read moreIdempotent Dockerfiles: Desirable Ideal or Misplaced Objective?
Why idempotent or fully reproducible Dockerfiles are frequently promoted but often misplaced objectives compared to immutable artifacts and regular CI rebuilds.
Read more