Practical setup for Trivy and Semgrep in GitLab CI pipelines to catch vulnerabilities in code and dependencies before they reach production.
Using sdm to build a fully encrypted Raspberry Pi OS image you can unlock over SSH, configured once and burned to as many cards as you need.
Practical lessons from working in DevSecOps: what actually works, what does not, and what we wish we had known sooner.
A practical guide to integrating Large Language Models into DevOps workflows, covering architecture patterns, tools, and responsible use.
A practical guide to software supply chain security using SBOM, Sigstore, and the SLSA framework.