DZone.com Feed

Why Catalogs Really Break (and How a Copilot Prevents It) (Wed, 31 Dec 2025)
Most catalog incidents aren’t exotic; they’re actually repeatable mistakes. The pattern goes like this: Someone copies an old JSON A few fields get changed One constraint gets missed The downstream service chokes Think of a “Launched” offer with a future start date, or a retail-only promo that accidentally ships to WEB. The blast radius is significant: wrong price on site, agents can’t quote, orders stuck in validation.
>> Read More

How Unified Data Pipelines Transform Modern AI Infrastructure (Wed, 31 Dec 2025)
Over time, the rate of improvement in AI models has outpaced that of pipelines intended to support them. Teams are moving towards more complex signals and higher workloads, but it becomes increasingly difficult for the pipelines to support this. This gap widens with every new data source that adds to this stack, forcing the engineers to hold together workflows that were never designed to work together. Performance slows, iteration decreases, and now the system begins to limit the very models it was built to support. This issue is solved by a unified data flow, which ensures that AI has a scalable structure. The sections below will break down the key details on why this change is so important.
>> Read More

Security and Governance Patterns for Your Conversational AI (Wed, 31 Dec 2025)
How many times have we heard people talk about the "dream of a SOC copilot?" A copilot woåuld allow an analyst to type something like, "Show me all the SSH login attempts for 10.0.0.5 over the last hour and compare those to the CrowdStrike alerts," and get the results instantly. This concept suggests the possibility of reducing mean time to resolution (MTTR) and providing Tier 3 knowledge to junior analysts. However, in a secure environment, this dream may become a nightmare. In order to connect a probabilistic, hallucinating conversational AI (LLM) to your SIEM (Splunk, Sentinel) or EDR, you will require a fundamentally different security architecture than what you use for a typical chatbot. If the LLM can write to your systems, it could wipe out logs. 
>> Read More

Avoid BigQuery SQL Injection in Go With saferbq (Wed, 31 Dec 2025)
You can build dynamic queries in BigQuery using the Go SDK. When building applications that allow users to select tables or datasets dynamically, you need to include those identifiers in your SQL queries. I was surprised to find that the BigQuery manual and code examples do not warn about SQL injection vulnerabilities when doing this.  Even more surprising: BigQuery does not provide a built-in mechanism to safely handle user input in table or dataset names. The official SDK supports parameterized queries for data values using @ and ? syntax, but these cannot be used for identifiers that need backtick escaping. You’re forced to use string concatenation, which opens the door to SQL injection. This post explains the problem and introduces a package I wrote to tackle this shortcoming.
>> Read More

DevOps Cafe Podcast

DevOps Cafe Ep 79 - Guests: Joseph Jacks and Ben Kehoe (Mon, 13 Aug 2018)
Triggered by Google Next 2018, John and Damon chat with Joseph Jacks (stealth startup) and Ben Kehoe (iRobot) about their public disagreements — and agreements — about Kubernetes and Serverless. 
>> Read More

DevOps Cafe Ep 78 - Guest: J. Paul Reed (Mon, 23 Jul 2018)
John and Damon chat with J.Paul Reed (Release Engineering Approaches) about the field of Systems Safety and Human Factors that studies why accidents happen and how to minimize the occurrence and impact. Show notes at http://devopscafe.org
>> Read More

DevOps Cafe Ep. 77 - Damon interviews John (Wed, 20 Jun 2018)
A new season of DevOps Cafe is here. The topic of this episode is "DevSecOps." Damon interviews John about what this term means, why it matters now, and the overall state of security.  Show notes at http://devopscafe.org
>> Read More