Operations | Monitoring | ITSM | DevOps | Cloud

The latest News and Information on DevOps, CI/CD, Automation and related technologies.

Goodbye imagePullSecrets, Hello Kubernetes Credential Providers

Previously, we showed you how to securely pull Docker images from Cloudsmith to Kubernetes using OIDC with a CronJob-based approach. We concluded the post discussing credential provider plugins from Kubernetes 1.20 and an enhancement in Kubernetes 1.33 that offers a new approach for external registries like Cloudsmith. We have now built a credential provider that takes advantage of this new capability. This article explores what this means for the future of pulling images from Cloudsmith on Kubernetes.

Managed IT Services in Mississauga: Reliable Solutions

In today's fast-paced business environment, having reliable IT support is crucial for success. Companies in Mississauga are no exception, as they face unique challenges in maintaining their technology infrastructure. With the increasing demand for efficient and secure IT systems, businesses are turning to managed IT services to stay ahead of the curve.

Access Logs: Format Specification and Practical Usage

Your server's been logging everything—it’s just easy to overlook until something breaks. Every incoming request, database call, or auth check ends up in your access logs. They’re not flashy, but they quietly document every interaction your system handles. For developers, they’re often the most reliable starting point when things go wrong. In this blog, we'll take a look at what an access log is, its format, types, and a few best practices.

AI is now writing code at scale - but who's checking it?

As Generative AI (GenAI) reshapes the software development landscape, the risks and complexities around managing what gets built, where it comes from, and how it’s secured are growing just as fast. The Cloudsmith 2025 Artifact Management Report dives into this shift, offering critical insights into how teams are adapting their infrastructure and software supply chain security practices in response to the AI-generated code.

Fewer Bindings, More Power: Rancher's RBAC Boost for Enhanced Performance and Scalability

Managing permissions in sprawling Kubernetes landscapes can often feel like untangling an ever-growing knot. As clusters and user bases expand, so does the intricate web of RoleBindings, impacting everything from UI responsiveness to the very stability of etcd. This complexity, if unaddressed, can become a significant hurdle to achieving scalability and maintaining optimal performance in Rancher. SUSE is committed to improving its container management platform.

Engineering Excellence Summits Recap

The best engineering teams ship quality software quickly, but doing that consistently requires more than just speed. It requires careful attention to reliability, security, ease of maintenance, and developer experience. The Engineering Excellence Summits were designed to create a community of engineering leaders looking to connect with others facing similar challenges, share approaches that are working, and learn what “better” can look like.

Platform engineering with a product-management mindset

To really make an impact, platform engineering teams need to start thinking like product managers. That means deeply understanding their users, measuring outcomes instead of outputs, and tying everything they do to real business value. Organizations who care about total cost of ownership and fast time to value are adopting this mindset.

Securing AI with AI-SPM: The Next Step in AI Risk Management

The conversations around artificial intelligence (AI) typically revolve around its vast potential: writing applications, automating tasks, or transforming entire industries. However, despite the excitement around AI’s potential, the more pressing issue for many organizations is how to manage the risks of deploying it at scale across the enterprise. This is where AI Security Posture Management (AI-SPM) comes into play.

What we learned from load testing Shopware at scale

We ran real-world load tests across seven different infrastructure plans—from Grid to Dedicated Split—using realistic conversion rates, bot traffic blends, and ERP-driven API imports. The findings were clear: performance scales predictably with resources, but only if your code, cache, and configuration keep up. This blog post walks through key results, why API load is disproportionately expensive, and what metrics matter most. How well does Shopware actually perform under load?