MCP-Airlock is becoming Trentina — named after the 1377 quarantine system from Ragusa that inspired its architecture. Same three-layer defense, same gateway, better name.
Continue Reading “MCP-Airlock Is Now Trentina: The 1377 Quarantine That Inspired Our Rename”
I’ve been running Claude Code on my RHEL 10 workstation for a few months now, and I have to admit, with some embarrassment, I often run it with the ominous –dangerously-skip-permissions option. It reads and writes files, executes shell commands, installs packages, modifies system configs, all without asking permission first. I’ve been letting an AI
Continue Reading “image mode Gave Me the Confidence to Go Fully Agentic”
Update (June 2026): MCP-Airlock has been renamed to Trentina. The project has grown from a web content sanitizer into a full MCP gateway with per-consumer profiles, tool allowlists, and parameter-level access controls. The new name reflects that expanded scope — and avoids a naming collision with another MCP gateway project. The architecture described in this
Continue Reading “MCP-Airlock: An Open Source Defense Against Prompt Injection in AI Agents”
A practical walkthrough of setting up CI/CD for a RHEL 10 bootc workstation image using GitHub Actions, Podman, and Quay.io — including the workarounds you’ll actually need.
There’s a lot of negativity toward AI in the Fedora and RHEL communities right now. I get it — the hype cycle is real, and a lot of the marketing is insufferable. But I think the negativity is causing people to tune out, and when you tune out, you miss genuinely cool work that’s directly
Continue Reading “Local Models and Open Source Agents (and Why You Need to Pay Attention)”
Introduction Are you a professional Linux Systems Administrator, Architect, or Site Reliability Engineer? Do you use Fedora, Red Hat Enterprise Linux (RHEL) or a derivative in the course of your work? Do you find it difficult to keep up with all of the changes that have been going on with RHEL in the last few
This presentation is a 16 slide introduction to what must be thought about when building a production cloud. Proper image management is critical engineering task.
Continue Reading “Snyk Webinar 2021: Virtual: Hack My Mis-Configured Kubernetes”
This presentation is a 16 slide introduction to what must be thought about when building a production cloud. Proper image management is critical engineering task.
Continue Reading “Security Symposium 2020: Virtual: Live Panel: Containers and Kubernetes Security”
This presentation is a 16 slide introduction to what must be thought about when building a production cloud. Proper image management is critical engineering task.
Why Should I Care About DevSecOps? Are you a frustrated security professional, trying to get your organization to change (aren’t we all)? Or perhaps, you are trying to get management to value security more? Or maybe, you are a security conscious Developer (wait, do those actually exist? Yes, yes, they do) or Sysadmin who knows
