AI Tool Gateways: Sandboxing Agent Access in Kubernetes
AI agents have unlimited ambition and undefined access boundaries. You have sandboxed everything else. Here is how to sandbox your agents too.
9 min2026-06-22Observing LLM Inference: The Metrics That Actually Matter
TTFT is your SLO, not throughput. Here is what to measure for LLM inference, and what Google ADK, LangChain, and LangGraph give you out of the box.
8 min2026-03-24The M5 Pro Setup: Same Mac, Different Era
Why 48GB changes a Mac from coding laptop into an AI workstation for local models, parallel agents, and platform engineering.
12 min2026-03-22SSH Git Commit Signing for Busy Engineers
A clean SSH commit signing setup on macOS, with separate auth and signing keys, local verification, and none of the usual GPG hassle.
8 min2026-02-22Google's GAIL Certification: Useful Strategy, Thin Engineering
Notes on Google's GAIL certification from a platform engineer: useful for strategy conversations, thin on the messy reality of shipping AI.
12 min2025-07-017 Books That Shaped How I Build Platforms Developers Actually Use
Seven books that shaped how I build platform products people trust, adopt quickly, and keep using.
10 min2025-06-22Boost Your Productivity: My Zshrc Configuration for Platform Engineers
A deep dive into my zshrc configuration, featuring shortcuts for Kubernetes, Cloud Platforms, and AI tools to streamline your daily workflow.
4 min2021-11-10Writing a Go Client Library Worth Using
Most Go client libraries are a pain to use, test, or extend. Here's how to write one that isn't, covering functional options, context propagation, rich errors, retries, and testability.
9 min2021-06-15SUSE Cloud Native Foundations: My Study Notes
Structured study notes from the SUSE Cloud Native Foundations scholarship. Covers cloud native design, Docker, Kubernetes basics, and open source PaaS.
14 min2021-03-01gRPC on Cloud Run
Cloud Run supports gRPC out of the box — once you understand how it handles TLS and HTTP/2. Here's the full picture, in Go.
3 min