Your cluster is not as secure as you think — common K8s security gaps
Default Kubernetes is designed for convenience, not security. Most clusters have the same five gaps, and most teams don't know until something breaks.
Workload Identity federation beyond CI/CD — securing service-to-service communication
Workload Identity federation solved secrets in pipelines. The same pattern works for service-to-service auth, and it eliminates an entire class of credential management.
Network segmentation with Ubiquiti — why your homelab needs VLANs
A flat network is fine until your smart bulb talks to your NAS. VLANs with Ubiquiti keep IoT, lab, and management traffic properly separated.
Zero secrets in pipelines — and why most teams still get this wrong
Stored credentials in CI/CD pipelines are a liability. How Azure Workload Identity federation eliminates the most common secret management failure.