Join us
Updates and recent posts about Sigstore..
Cloud-native breaches keep slipping through the cracks, not because no oneâs watching, but because theyâre watching the wrong things. Static checks and posture tools canât catch what happens in motion. Thatâs where most attacks live now: at runtime. Think app-layer exploits, poisoned dependencies, s.. read more Â
A seasoned Google engineer drops 21 sharp principles for scaling engineering beyond just writing code. Think:clarity beats cleverness,users over egos,alignment over being âright.âThe core message? Build systems humans can work with - especially under stress. Favorites: kill pointless work, treat pro.. read more Â
When managing infrastructure with Terraform, enforcing tagging standards, instance type restrictions, preventing public exposure, enforcing regions, and other best practices are essential with Open Policy Agent (OPA). OPA evaluates Terraform plans before apply to ensure compliance with organization'.. read more Â
Azure just tightened the screws on Hybrid Benefit. Use it without the rightSoftware Assurance, botch yourlicense-to-core mapping, or skipdecommissioning proof, and youâre staring down $50K+ in penalties. To help dodge that landmine, Microsoft dropped a new guide. It covers pre-migration checks, audi.. read more Â
Universe 2025 highlighted a shift toward mature, developer-first open source projects that favor usability, sustainability, and real-world adoption over hype. From backend platforms and release tooling to browsers, graphics engines, and security baselines, the standout projects all share one trait: they are being actively used, maintained, and pushed forward by communities that know exactly what problems they are solving.
Linus Torvalds argues that Linux kernel guidelines should treat AI like any other development tool, not as a special case, saying documentation cannot solve bad submissions. At the same time, he openly acknowledges using an AI coding tool in a personal project, signaling pragmatic acceptance of AI-assisted development outside core kernel policy.
OpenAI introduces ChatGPT for Healthcare, offering HIPAA-compliant AI tools to enhance healthcare delivery. The suite includes ChatGPT Health, designed to integrate health information with AI for improved user navigation.
The analysis of Linux kernel bugs shows that some bugs remain undiscovered for over 20 years, with an average lifespan of 2.1 years. The study examined 125,183 bug-fix pairs and found that certain subsystems have longer bug lifetimes. A tool developed for the research identified 92% of historical bugs, and findings indicate that bug discovery has improved over time.
Running databases on Kubernetes has moved from experimentation to standard practice, driven by platform maturity, cost pressures, and AI/ML demands. According to the 2025 Data on Kubernetes survey, organizations are now focused on operational excellence, with cost optimization, storage performance, and AI workloads shaping the next phase.
At RELIANOID, security and resilience extend beyond our own platform. We apply strict Third-Party Risk Management (TPRM) practices to ensure that every vendor, partner, or supplier meets our high standards for security, compliance, and reliability. âď¸ Risk assessments before onboarding (ISO 27001, S..
