Kubernetes is all about containers at scale. But what does that mean? Learn more with this illustrated intro to Kubernetes!

Have you ever wondered what it takes to build a serverless software as a service (SaaS) offering in under a year? In this blog post, ClickHouse describes how they built ClickHouse Cloud from the ground up.

Post discussing the many ways to restrict access to a DynamoDB instance at both a framework and implementation level, utilizing patterns and tools such as RBAC, IAM, Terraform.

A look at how Docker containers use namespaces for isolation.

A hands-on guide to monitoring and logging at different layers in the GKE stack.

With the help of container checkpointing, it is possible to create a checkpoint of a running container without stopping the container and without the container knowing that it was checkpointed.

A collection of threat detection rules / rules engines.

An overview of service meshes that clarifies the benefits they offer as well as the extra complexity.

A Step-by-Step Guide, including working demo and complete source code for both frontend and backend.

Fetch a GitHub auth token for a GitHub App installation.

Code security scanning tool (SAST) that discover, filter and prioritize security risks and vulnerabilities leading to sensitive data exposures (PII, PHI, PD).

Provisions EC2 web instance running former2 for generating IaC scripts from existing AWS resources.

Easily generate reproducible infrastructure.

CLI tool which enables you to login and retrieve AWS temporary credentials using a SAML IDP.

How to set up Google Workspace as an external identity provider (IdP) for AWS IAM Identity Center, how to configure permissions for your users and the roles that they will assume, and how they can access different accounts.

AWS announced the general availability of Amazon Linux 2023 (AL2023), a cloud-optimized Linux distribution.

On AWS, a resource perimeter is a set of AWS Identity and Access Management (IAM) features and capabilities that you can use to build your defense-in-depth protection against unintended data transfers.

AWS announced the alpha release of Mountpoint for S3, a new open source file client that delivers high throughput access, lowering compute costs for data lakes on Amazon S3.

GCP announced the general availability of service account key expiry via a constraint in organization policy. You can easily configure an expiration time at the org/folder/project level and all new service account keys created will have that expiration time.

Session length is a configuration parameter that administrators can set to control how long users can access Google Cloud without having to reauthenticate.

Tutorial explaining how to deploy and test VPC service controls in GCP using Terraform.

Google Cloud Secure Web Proxy now supports TLS inspection. Security and network admins can set policy-based rules to allow or block HTTPS traffic leveraging the full URL path.

Immutable vaults help you protect your backups against threats like ransomware attacks and malicious actors by ensuring that your backup data cannot be deleted before its intended expiry time.

Azure announced the general availability of Azure Firewall Basic, a new SKU of Azure Firewall built for SMBs.

Azure Backup is announcing public preview of Backup for AKS allowing customers to protect their applications by providing ability to backup and restore AKS clusters.

Customers can now collect Syslog from their AKS Clusters using Azure Monitor container insights.

You can now choose different destinations for your Azure Container Apps logs.