Blog

The promise of DevOps and Platform Engineering is to balance developer velocity with enterprise governance. In 2026, AI Agents move from being simple assistance tools to the core mechanisms that automate this balance. Recent publications, such...

Platform engineering is a discipline that aims to increase the productivity of software engineering teams by designing, building, and maintaining internal platforms that abstract underlying infrastructure complexity and provide self-service capabilities. Kubernetes-based platforms are often complex...

The problem nobody talks about GPUs are expensive; and yours are probably sitting idle right now. High-end GPUs (for example, NVIDIA A100-class devices) can cost $10,000+, and in a Kubernetes cluster running AI workloads, you might...

The cloud native community is thriving and Kubernetes has a lot to do with it. In this open source ecosystem, practitioners are continually sharing knowledge, tools, and lessons learned from first-hand experience to help others succeed....

If you’ve ever debugged a production incident, you know that the hardest part often isn’t the fix, it’s finding where to begin. Most on-call engineers end up spending hours piecing together clues, fighting time pressure, and...

At STCLab, we operate high-traffic SaaS platforms that require real-time traffic control and bot mitigation. . Handling millions of concurrent connections and identifying malicious bots in real-time requires exceptional infrastructure stability. To achieve this, we rely...

Harbor is an indispensable open-source container image registry, offering robust features like policy-driven security, role-based access control, vulnerability scanning, image signing, image replication and distribution. Deploying Harbor is a common and critical step for organizations looking...

The challenge Managing millions of concurrent connections during global events like flash sales and online voting requires resilient, scalable observability. At STCLab, we operate platforms including a bot mitigation platform and traffic management platform that support...

It’s time to recap the key Kubernetes security highlights from 2025 and outline features likely to graduate to stable in early 2026. From a DevSecOps perspective, 2025 brought several meaningful security improvements that directly influenced day-2...

In the evolving landscape of application deployment, containerization with Kubernetes (K8s) has become the new standard. As organizations adopt Kubernetes at scale, public image registries often bring new challenges, from rate limits and escalating costs to...

Stepping into my first KubeCon + CloudNativeCon, held this year in November in Atlanta, Georgia, felt like entering a world I had been following from afar for years; a world full of brilliant minds, bold ideas,...

This Member Blog was originally published on the Middleware blog and is republished here with permission. kubectl is the command-line interface for managing Kubernetes clusters. It allows you to manage pods, deployments, and other resources from...

A set of high-severity vulnerabilities in runc were publicly disclosed in November 2025, allowing for full container breakouts. Runc is the cornerstone of containerization on Linux, serving as the default low-level container runtime for industry-standard tools...

Modern applications rarely live in a single place anymore. One organization’s application footprint was spread across AWS, Azure, and GCP, with some workloads still running on-prem. This multi-cloud approach gave them resilience and flexibility, but it...

Building and running modern applications begins with selecting Kubernetes distribution as a baseline. Once a platform team has selected its orchestration layer, one of the next architectural choices involves the deployment architecture where that cluster will...

Kubernetes has transformed how modern organizations deploy and operate scalable infrastructure, and the hype around automated cloud native orchestration has made its adoption nearly ubiquitous over the past 10+ years. Yet behind the scenes, most teams...

Kgateway is an open source implementation of the Kubernetes Gateway API that unifies ingress, API gateway, service mesh, and AI gateway capabilities in a singular modular control plane. Built for performance and flexibility, it secures and...

Network policy changes are among the most frequent operations in a Kubernetes cluster. They are also among the most delicate, as even a small mistake can lead to widespread traffic disruption. This tutorial walks through several...

At Royal Bank of Canada (RBC), our cloud journey is intrinsically linked with our commitment to open source. Joining the Cloud Native Computing Foundation (CNCF) extends and compliments our membership with the Fintech Open Source Foundation...

When people talk about cloud-native observability, the conversation usually revolves around applications, containers, and microservices. However, under those layers lies an equally critical foundation: The physical data center. Servers, storage systems, and networks ultimately host every...