Archives

A lot is going on in the world of tech today. I have to say, of all the boneheaded moves the US government has made in the past couple of weeks, turning away Anthropic, one of the most popular AI companies, because of two very simple asks is not smart. The government’s ask is too broad (anything legal; the definition of legal can change), and Anthropic’s ask is quite narrow (don’t use our AI to kill people unchecked or spy on US citizens domestically). The US already spies on everything we do as citizens indirectly (metadata can be as powerful as the actual data at a sufficient scale). I suspect this is the sticking point for the US government. Like it or not, the world is in a race to integrate and improve AI across all of society. Telling Anthropic that they can’t play in the government space is not going to accelerate anything; quite the opposite. Meanwhile, the rest of the world is using US AI company tooling to speed their delivery of new AI capabilities. Some would argue that China is winning right now, specifically with Qwen (which also had a weird week). ...

This week I was going to dive into the beef between Anthropic and the US government. But, in light of ongoing activities I think it is be better to wish everyone well and to stay safe no matter where you are or what you’re doing. The senseless loss of life is not something any of us should take lightly. No one ever really wins in a war. Secure Access to Cloud Services from Your Cluster with a Security Token Service Securely connect your Kubernetes workloads to cloud services without long-lived credentials using a Security Token Service pattern. This post shows how OpenUnison validates ServiceAccount identity and issues short-lived, service-specific tokens to reduce credential exposure and improve authorization posture. SPONSORED Before You Migrate: Five Surprising Ingress-NGINX Behaviors You Need to Know - Five unexpected Ingress-NGINX behaviors folks should understand before migrating to Gateway API, including regex quirks, global annotation effects, and CORS handling differences. Anthropic Refuses Pentagon Demands on Military AI - Anthropic’s CEO refused Pentagon demands to remove AI safety guardrails around mass domestic surveillance and autonomous weapons, leading to the company being designated a “supply chain risk” and losing its $200M military contract—which OpenAI quickly snapped up. I wouldn’t be surprised if this was Sam Altman’s idea. ...

We’re back from Maui! We did some really cool things like whale watching and making the trek up to Nakalele Blowhole. I experienced some real firsts in my lifetime like hearing whales sing without a microphone or amplification (from the deck of a boat) and standing on a cliff, looking out on the merciless and wide open North Pacific ocean in hurricane force winds. The jet lag is very real after the red eye back to Detroit though. ISP-provided routers, gateways, and set-top boxes face price increases due to 7x uplift in memory costs — home fiber rollouts may slow - RAM prices are skyrocketing and impacting costs of computers but I did not see this one coming. Costs are driving up expenses for ISP equipment like routers, switches, and modems. ISPs are force to pass that cost on to consumers. This is just the tip of the RAM price iceberg, in my opinion. I’m buying all my RAM used for the foreseeable future but even the secondary market prices have gone nuts. I’m wondering what other knock-on effects will we see as a result of RAM prices? ...

Last week, the world was fawning over Clawdbot Moltbot OpenClaw. This week was an episode of Deadliest Catch where the boats all filled their hulls at the first stop. What they caught were a bunch of backdoors, API keys, and only King Triton 🧜‍♂️ knows what else will emerge from the murky depths. Another piece of software had an even crazier week. Notepad++ shared they were the target of nation-state hackers, “The incident began in June 2025. Multiple independent security researchers have assessed that the threat actor is likely a Chinese state-sponsored group, which would explain the highly selective targeting observed during the campaign.” Multiple CVEs in Ingress NGINX were disclosed. You are going to have to touch those sooner rather than later. Reminder: Ingress NGINX retirement is next month (and there won’t be security updates). Editor’s Note: Huge thanks to Tremolo Security for sponsoring! Also, we’ll be on vacation next week, so there won’t be a newsletter the week of February 16th. Short Lived Tokens With Vault Without The Static ServiceAccount Learn how Tremolo Security’s OpenUnison enables issuing short-lived Vault tokens without static Kubernetes ServiceAccounts, delivering identity-driven, ephemeral credentials with reduced blast radius. This post walks through using OpenUnison and OIDC with Vault to simplify rotation and strengthen workload security in modern Kubernetes environments. SPONSORED ...

Next month (March 2026), a widely used Kubernetes ingress controller is going to reach end of life: Ingress NGINX. This is one of those things that if you don’t replace it in time, you’re not going to know if you’re compromised until it’s too late. There will be no security notices, updates of any kind, or any kind of continued maintenance. The time to start changing your ingress controllers or migrating to Gateway API, if you haven’t already, is NOW. Run this as cluster admin to identify all your instances of Ingress NGINX: kubectl get pods --all-namespaces --selector app.kubernetes.io/name=ingress-nginx My job hunt continued this week (and I managed to catch whatever sickness was afflicting Julie and Max). If you haven’t heard, I’m looking for a new role. Reach out if you need someone to elevate your technical storytelling. SCALE 23x and DevOpsDay LA Four days of practical, technical learning across open source infrastructure — the stuff you’re running in production right now. DevOps’ish readers can get 40% off with discount code CHRIS See you March 5-8, 2026 in Pasadena! ...