I’ve been running Claude Code on my RHEL 10 workstation for a few months now, and I have to admit, with some embarrassment, I often run it with the ominous –dangerously-skip-permissions option. It reads and writes files, executes shell commands, installs packages, modifies system configs, all without asking permission first. I’ve been letting an AI
Continue Reading “image mode Gave Me the Confidence to Go Fully Agentic”
The Problem Coding assistants like Claude, Cursor, Goose and autonomous agents like OpenClaw fetch web all day everyday, and it’s basically playing Russian roulette with prompt injection. I had a false sense of confidence with Claude because I sit in front of it, and sort of monitor what it’s doing… But, when I set up
Continue Reading “MCP-Airlock: An Open Source Defense Against Prompt Injection in AI Agents”
A practical walkthrough of setting up CI/CD for a RHEL 10 bootc workstation image using GitHub Actions, Podman, and Quay.io — including the workarounds you’ll actually need.
There’s a lot of negativity toward AI in the Fedora and RHEL communities right now. I get it — the hype cycle is real, and a lot of the marketing is insufferable. But I think the negativity is causing people to tune out, and when you tune out, you miss genuinely cool work that’s directly
Continue Reading “Local Models and Open Source Agents (and Why You Need to Pay Attention)”
Introduction Are you a professional Linux Systems Administrator, Architect, or Site Reliability Engineer? Do you use Fedora, Red Hat Enterprise Linux (RHEL) or a derivative in the course of your work? Do you find it difficult to keep up with all of the changes that have been going on with RHEL in the last few
This presentation is a 16 slide introduction to what must be thought about when building a production cloud. Proper image management is critical engineering task.
Continue Reading “Snyk Webinar 2021: Virtual: Hack My Mis-Configured Kubernetes”
This presentation is a 16 slide introduction to what must be thought about when building a production cloud. Proper image management is critical engineering task.
Continue Reading “Security Symposium 2020: Virtual: Live Panel: Containers and Kubernetes Security”
This presentation is a 16 slide introduction to what must be thought about when building a production cloud. Proper image management is critical engineering task.
Why Should I Care About DevSecOps? Are you a frustrated security professional, trying to get your organization to change (aren’t we all)? Or perhaps, you are trying to get management to value security more? Or maybe, you are a security conscious Developer (wait, do those actually exist? Yes, yes, they do) or Sysadmin who knows
Background What is sVirt and, why does it matter for your containers? The short answer is, because sVirt is another layer of security and defense in depth is a good approach to security. The longer answer is, sVirt dynamically generates an SELinux label for every single one of your containers, which makes them less likely
Continue Reading “What is sVirt and How Does it Isolate Linux Containers?”
