- Published on
- 9 min read
AI Tool Gateways: Sandboxing Agent Access in Kubernetes
AI agents have unlimited ambition and undefined access boundaries. You have sandboxed everything else. Here is how to sandbox your agents too.
Architecture Patterns
7 posts tagged
- Published on
- 8 min read
Observing LLM Inference: The Metrics That Actually Matter
TTFT is your SLO, not throughput. Here is what to measure for LLM inference, and what Google ADK, LangChain, and LangGraph give you out of the box.
- Published on
- 8 min read
Network Control with Cilium and Kyverno: Policies That Actually Work
Network policies in most Kubernetes clusters are cargo cult. Teams write them, Kubernetes accepts them, and nothing changes. Cilium actually enforces them — and shows you the traffic.
- Published on
- 8 min read
Multi-Tenant Observability: LGTM at Platform Scale
Your tenants want dashboards. Your security team wants isolation. Your SREs want a single pane of glass. Here is how to build all three with the LGTM stack.
- Published on
- 7 min read
Gateway API in Practice: From Ingress Migration to Envoy Debugging
The Kubernetes community deprecated Ingress in spirit years ago. Gateway API replaces it with a model that actually separates platform concerns from application concerns.
- Published on
- 10 min read
7 Books That Shaped How I Build Platforms Developers Actually Use
Seven books that shaped how I build platform products people trust, adopt quickly, and keep using.
- Published on
- 9 min read
Writing a Go Client Library Worth Using
Most Go client libraries are a pain to use, test, or extend. Here's how to write one that isn't, covering functional options, context propagation, rich errors, retries, and testability.