Microsoft brings Linux-style coreutils natively to Windows
Is this a "Linux-ification" of Windows? Not quite. It's more of a pragmatic bridge.
English
SRE, DevOps, Kubernetes, Linux, Open Source, Cloud Native
How the Linux kernel copyfail vulnerability impacts kubernetes: What you need to know and what you can do
copy fail in kubernetes: when your pod escapes to the host with four bytes if you thought containers were a security boundary, cve-2026-31431 ("copy fail") has some unfortunate news for you. discovered by xint, this linux kernel vulnerability lets an unprivileged local user overwrite four controlled
Read the full post →
High severity Github Actions exploit: hackerbot-claw uses your ci/cd as a "pwn-as-a-service" platform
overview It turns out that automating your workflows also makes it incredibly easy for attackers to automate your demise. An autonomous attack campaign, tracked as "hackerbot-claw," is currently prowling public repositories. Its mission? Finding insecure GitHub Actions workflows and turning them into gateways for arbitrary code execution
Read the full post →
Mission Center: A new and great app for monitoring your Linux desktop
Let’s face it: top is for the masochists, and htop is for the people who want to feel like they’re in The Matrix. But sometimes, you just want to see your CPU melting in high definition without squinting at an ASCII bar chart. Enter Mission Center, a modern,
Read the full post →
Critical vulnerability in MongoDB is actively exploited and allows unauthenticated requests to steal data, patch now!
If you thought the "Bleed" suffix died in 2014 with Heartbleed, MongoDB has some nostalgic news for your security team. A critical vulnerability, now infamously dubbed MongoBleed (CVE-2025-14847), is currently being exploited in the wild. It allows unauthenticated attackers to treat your server's RAM
Read the full post →
sudo's latest "trick": when chroot and nsswitch conspire against you (cve-2025-32462)
Ah, sudo. The trusty command that grants mere mortals the power of a deity (root, that is) on a Linux system. It's the gatekeeper, the bouncer, the one program we all implicitly trust to elevate our privileges without turning our beloved machine into a digital wasteland. And precisely
Read the full post →
kgateway: An amazing tool to simplify traffic management using Kubernetes API Gateway
Kgateway is a feature-rich, fast, and flexible Kubernetes-native ingress controller and next-generation API gateway. Built on top of the robust Envoy proxy and the Kubernetes Gateway API, Kgateway acts as a reverse proxy, providing a crucial security barrier between your clients and the microservices that constitute your
Read the full post →
Kiss Goodbye to QEMU: Unleash the Power of Native GitHub Runners for Multi-Arch Docker Images
A complete, step-by-step guide to building multi-arch Docker images like a pro, using native GitHub Runners and leaving QEMU in the dust. Now go forth and conquer the world of multi-architecture deployments!
Read the full post →
SkyPilot: How to run AI models and workloads easily on any infra and save money too
What the Heck is SkyPilot? SkyPilot is like a universal remote control, but instead of flipping through channels of reality TV garbage, it manages your cloud infrastructure. Think Kubernetes clusters, cloud VMs, and even that dusty old server in your closet – all working together in a beautiful, chaotic symphony orchestrated
Read the full post →
Kubernetes v1.32.3 is alive!: A brief lookup over the changelog and new features
So, Kubernetes v1.32.3 is out. It's not a major release, more like a "patch release" or a collection of bug fixes and minor improvements. For the average user, it's the equivalent of cleaning up your desk - necessary, but not exactly thrilling. But
Read the full post →
Coder: Low cost, self hosted Cloud Development Environments
Coder is an open-source platform that allows organizations to define and manage development environments within their own public or private cloud infrastructure. Think of it as a way to create standardized, reproducible, and scalable development workspaces in the cloud. Instead of developers painstakingly setting up their local machines (and
Read the full post →
Why I trust Kubernetes: The Built-In Zero-Trust Model with Mutual TLS (mTLS)
Kubernetes is often celebrated for its scalability, reliability, and portability. However, one feature that often goes under the radar is its built-in zero-trust model enforced through Mutual TLS (mTLS). In this article, we'll explore how Kubernetes enforces mTLS to ensure secure communication between services and clients.