I’m a DevOps engineer. I hope that’s still a thing because, apparently, nowadays, “DevOps is dead; long live platform engineering”. There is no denying that since 2022, we started to see terms like “platform engineering”, “developer portal”, or even “Backstage” a lot more often than before. This article will answer…

Hey there! In case you missed it, we’ve been talking about supply chain security in a few posts. We covered the SLSA framework in our first post, and in the second one, we did a deep dive into sigstore/cosign and how it helps with the integrity and origin of software…

In the first part of the supply chain security series, we had an overview of the supply chain, its attacks, and the SLSA framework to understand where supply chain security is headed. If you still need to read it, here's the link for you. In this second part, we are…

1 Background Recently I’m tasked to bring an Apache open-source product to the cloud, creating a SaaS version. As of now, the product is configured with HTTP basic authentication on the Nginx server, which is kind of OK, since the users deploy it in their company’s own infrastructure (be it cloud or…

0 Background “DevOps is dead; long live platform engineering.” “Developer portal.” “Backstage.” In 2023, we started seeing these terms more often in DevOps. While I wouldn’t go so far as to say that DevOps is dead, Backstage is undoubtedly becoming more popular. If you haven’t heard of Backstage yet, you can give…

1. Quick Introduction to the Software Supply Chain Recently, “software supply chain attack” has been breaking all the news headlines. One infamous example is the SolarWinds attack or the 2020 United States federal government data breach. In fact, according to a report from Gartner (done in 2021, get the report here): By 2025, 45% of organizations worldwide will…

In the first part of the supply chain security series, we had an overview of the supply chain, its attacks, and the SLSA framework to understand where supply chain security is headed. If you still need to read it, here’s the link for you: Supply Chain Security: What is the SLSA? (Part I) Attacks on software supply chains have been around for some time, but recently they have evolved into much more…medium.com

As you guys all already know, I’m a DevOps engineer, if that’s still a thing. Because apparently nowadays, “DevOps is dead; long live platform engineering”. Me and my team/company (start-up, not too big, not too small) use Backstage (backstage.io), which brings some value, but I don’t like it. I don’t…

Author’s note: this blog post ISN’T a beginner’s guide to Python or DevOps. Basic knowledge of Python, DevOps, Kubernetes, and Helm is assumed. 0 Background 0.1 Why Python Programming languages rise and fall over time. TIOBE, a Dutch software quality assurance company, has been tracking the popularity of programming languages. According to its programming community…