Docker @ Black Hat 2025: CVEs have everyone’s attention, here’s the path forward At Black Hat 2025, CVEs dominated the conversation. See how Docker Hardened Images, proven security patterns, and AI-ready foundations help teams eliminate security debt, enforce compliance, and build trust from code to production.
Author: drweb
Last week, I told you it was coming. Today, I’m thrilled to say it’s here: Futurum Signal is live. And while “live” is one of the most overused words in tech, in this case it’s the real deal. Futurum Signal isn’t just another PDF report dressed up with a quadrant. It’s a continuously updated, AI-powered market intelligence platform designed to give DevOps and platform engineering leaders something we’ve all been chasing: clarity in the chaos.Across the Techstrong network, the initial announcement lit up the communities. On DevOps.com, readers immediately connected the dots to the endless tooling debates—CI/CD, observability, security, platform…
I get asked a lot about best practices in terms of Angular architecture. As a result, in this post, I want to showcase three different ways to achieve the same kind of component communication in Angular, highlighting the pros and cons of each approach.The example we’ll be working on is the following, where two components (a main component and a dialog component) communicate to open and close a dialog:In this first attempt, my dialog component is entirely driven by inputs and outputs. Here is the TypeScript code of that component:export class DialogComponent {isOpen = input(false);title = input(“Title”);onClose = output();closePopup(): void…
Docker @ Black Hat 2025: CVEs have everyone’s attention, here’s the path forward At Black Hat 2025, CVEs dominated the conversation. See how Docker Hardened Images, proven security patterns, and AI-ready foundations help teams eliminate security debt, enforce compliance, and build trust from code to production.
I wanted to do some testing of SQL Server 2025 on my laptop. I have written before how I avoided installing SQL Server on the laptop and use containers instead. This post looks at adding a new version on the default port.This page on MSLearn shows how to run the SQL Server 2025 container. I started here, when searching for “SQL Server 2025 container” on Google.It was nice to see this updated for 2025, and if I scroll down, I can see the docker container to pull. This is the important thing for me to add a new version of…
Modern applications increasingly run on cloud-native environments, with microservices deployed across packaging containers, VMs and managed systems. While development and staging environments help capture bugs early, the actual check often occurs in production, in which actual patron usage can cause complex, sudden disasters. Debugging in production requires a robust approach, and that’s where observability through logs, metrics and traces becomes important. Pillars of Observability Observability relies on three core data types: 1. LogsDescription: Textual statistics of activities within a device, which include mistakes, warnings and informational messages. Strengths: Rich for debugging; can encompass stack traces, request payloads and timestamps. Use Case: ‘A user triggers a…
If you know a bit about the popover API in HTML, you might know it’s basically 1) click a button 2) toggle visibility of another element. Una has a great article explaining that there is a bit more to it. First, there are actually three kinds of popovers. There is the normal kind, which close when you click away (or ESC). If you don’t want that, there is the “manual” kind which requires very explicit closing and lives an isolated life, not affecting other popups. The new kind, “hint”, is an in-betweener where it can be opened without closing other…
Docker @ Black Hat 2025: CVEs have everyone’s attention, here’s the path forward At Black Hat 2025, CVEs dominated the conversation. See how Docker Hardened Images, proven security patterns, and AI-ready foundations help teams eliminate security debt, enforce compliance, and build trust from code to production.
Atlassian’s Bitbucket Cloud has tightly integrated CI/CD capabilities via its Bitbucket Pipelines feature set. However, some of our Bitbucket Cloud and Bitbucket Data Center customers still use Jenkins for CI/CD. In this blog, I present a practical walkthrough of the benefits of Bitbucket Pipelines over a tool like Jenkins in the context of two key stats from our recent State of DevEx 2025 report. These stats serve serve as motivation for why teams should move to a tightly integrated, cloud native SAAS offerings like Bitbucket Cloud with Bitbucket Pipelines, rather than self-hosted on-prem CI/CD tools like Jenkins. What is DevEx…
Over the years, I’ll admit, SQL Server has come a long way in making life easier for database administrators and with each version it keeps getting better and better. The installation process bakes in more best practices than ever, default settings are smarter, and cloud offerings like Azure SQL and managed instances take a lot of the heavy lifting off our plates. Backups, high availability, patching—all of these are more streamlined than they used to be. It’s tempting to think this means DBAs don’t need to know the “nuts and bolts” or “how things work under the hood” anymore.But here’s…