Iac – Carlos Castro

Isis Project (DevOps)

Posted on February 10, 2021August 16, 2024 by ccastro

This post walks you through a fully infrastructure as a code stack, we gonna use few tools to help us to setup the entire environment in Azure. Applications Prometheus Grafana DNS record Tools Kubernetes Cluster (AKS) Terraform Helm First of, we need to create our K8S cluster and to do Continue Reading

How to upgrade the AKS version via CLI

Posted on August 6, 2020August 16, 2024 by ccastro

To upgrade the Azure Kubernetes Service version via command line is easy. Follow these steps below and be happy ???? First you need to login into your Azure account Then select your subscription To see current version: It takes some time, after that you can run again the command to Continue Reading

Azure SNAT Port Exhaustion

Posted on June 30, 2020August 16, 2024 by ccastro

SNAT port exhaustion can be something hard to visualize in Azure portal, first we need to have a standard loadbalancer, the basic one doesn’t have this feature, for who have the basic loadbalncer it’s necessary to call to Microsoft Support and check your number of snat used, which is really Continue Reading

Visual Studio Code

Posted on June 8, 2020October 26, 2020 by ccastro

Hello everyone, I hope you all are doing well. Today I had to search something about Visual Studio Code and then I decided, why not start the blog with some tips about VS Code? VS Code is a powerful IDE to code anything you want in whatever language you like. Continue Reading

Why DORA Metrics Look Different When AI Is Part of Your Development Workflow May 26, 2026

DORA metrics have been a reliable compass for engineering teams for over a decade. Deployment frequency, lead time for changes, change failure rate, mean time to recovery, and reliability give teams a shared language for talking about delivery performance. The research behind them is solid, the benchmarks are well-established, and most engineering leaders know what […]

Sol Duara Readies Open Source Workflow Orchestration Platform for CD Foundation May 26, 2026

Sol Duara, a provider of open source platforms for managing the software development lifecycle (SDLC), has announced its intent to contribute an open source orchestration platform for automating software development workflows to the Continuous Delivery (CD) Foundation. At the core of the Conduit platform from Sol Duara is CDrus Expressions, a framework that turns CDEvents […]

Perplexity Bumblebee Shakes Loose Hidden Threats on Dev Desktops May 26, 2026

The fight to maintain security has moved to the engineer’s messy desktop. Last week, AI search provider Perplexity open-sourced an internal tool, Bumblebee, for checking developer machines, either Linux or macOS, for vulnerable software. Continuous integration pipelines have baked security checks into them, with Software Bills of Materials (SBOMs) ensuring that the correct version of […]

OWASP Adopts CVE Lite CLI to Boost Dependency Scanning May 26, 2026

Checking for dependency vulnerabilities in freshly developed software is usually done near the end of the build process. Remediation at that point can be tricky. Now, JavaScript and TypeScript developers can check for vulnerabilities themselves as they – or their agents – write their source code, using an open source project called CVE Lite CLI. […]

Ten Great DevOps Job Opportunities May 26, 2026

DevOps.com is now providing a weekly DevOps jobs report through which opportunities for DevOps professionals will be highlighted as part of an effort to better serve our audience. Our goal in these challenging economic times is to make it just that much easier for DevOps professionals to advance their careers. Of course, the pool of […]

Co-Developing an AI Native Observability Platform  May 26, 2026

Modern distributed hybrid enterprise environments are moving away from siloed monitoring toward AIOps platforms like Selector AI, which combine multi-domain data ingestion, domain-specific network language models, and co-development to enable autonomous, agentic network operations.

Attackers Can Exploit a Claude Code RCE Flaw to Take Command of System May 22, 2026

A dangerous vulnerability found in Anthropic’s popular Claude Code developer model could have allowed bad actors to grab control of a victim’s system by luring them into clicking on a crafted malicious deeplink. Once in, the attacker could exploit the remote code execution (RCE) security flaw to execute arbitrary commands – such as shell commands […]