DZone.com Feed

Enterprise Kubernetes Failures: 20 Critical Misconfigurations Guardon Catches Before Outages (Thu, 08 Jan 2026)
Kubernetes incidents in large organizations don’t come from exotic zero-days — they come from basic YAML mistakes made thousands of times a year by developers under pressure. While we commonly talk about 15–20 misconfigurations that appear in every enterprise, the truth is much deeper: Kubernetes is an ecosystem of complexity, and prevention requires more than static checks. Guardon, a lightweight, developer-first Kubernetes guardrail extension, helps organizations detect these issues early — but it also does far more. It acts as a standardization layer, a cost-optimization tool, a security enforcer, and a compliance assistant, all directly inside GitHub, GitLab, or Bitbucket, long before code reaches CI/CD.
>> Read More

Platform Engineering Golden Paths: Stop Building Developer Portals, Start Shipping Code (Thu, 08 Jan 2026)
Here’s the uncomfortable truth: if your platform team is spending 80% of its time building portals and only 20% paving paths, you’re doing platform engineering backward. The revolution isn’t about prettier UIs — it’s about invisible automation that makes the right thing the easiest thing. The Portal Problem Nobody Talks About Platform teams are solving the wrong problem. They’re building museums of infrastructure when developers need highways to production. I’ve seen this pattern repeat at companies ranging from scrappy Series A startups to multinational corporations: hire a platform team, mandate Backstage or Humanitec, spend six months integrating everything, launch with fanfare — and then watch adoption plateau at 30% while developers continue cowboy-coding in production.
>> Read More

Building a Containerized Quarkus API and a CI/CD Pipeline on AWS EKS/Fargate with CDK (Thu, 08 Jan 2026)
In a recent post, I have demonstrated the benefits of using AWS ECS (Elastic Container Service), with Quarkus and the CDK (Cloud Development Kit), in order to implement an API for the customer management. In the continuity of this previous post, the current one will try to go a bit further and replace ECS by EKS (Elastic Kubernetes Service) as the environment for running containerized workloads. Additionally, an automated CI/CD pipeline, using AWS CodePipeline and AWS CodeBuild, is provided.
>> Read More

Secure Log Tokenization Using Aho–Corasick and Spring (Thu, 08 Jan 2026)
Modern microservices, payment engines, and event-driven systems are generating massive volumes of logs every second. These logs are critical for debugging, monitoring, observability, and compliance audits. But there is an increasing and hazardous problem: Sensitive data — things like credit card numbers, email addresses, phone numbers, SSNs, API keys, and session tokens — often accidentally appear in logs. Once it's stored in log aggregators such as ELK, Splunk, CloudWatch, Datadog, or S3, this sensitive data becomes a high-risk liability.
>> Read More

DevOps Cafe Podcast

DevOps Cafe Ep 79 - Guests: Joseph Jacks and Ben Kehoe (Mon, 13 Aug 2018)
Triggered by Google Next 2018, John and Damon chat with Joseph Jacks (stealth startup) and Ben Kehoe (iRobot) about their public disagreements — and agreements — about Kubernetes and Serverless. 
>> Read More

DevOps Cafe Ep 78 - Guest: J. Paul Reed (Mon, 23 Jul 2018)
John and Damon chat with J.Paul Reed (Release Engineering Approaches) about the field of Systems Safety and Human Factors that studies why accidents happen and how to minimize the occurrence and impact. Show notes at http://devopscafe.org
>> Read More

DevOps Cafe Ep. 77 - Damon interviews John (Wed, 20 Jun 2018)
A new season of DevOps Cafe is here. The topic of this episode is "DevSecOps." Damon interviews John about what this term means, why it matters now, and the overall state of security.  Show notes at http://devopscafe.org
>> Read More