Saturday Links, May 28, 2022

28 May, 2022

I’m in Istanbul to give a talk tomorrow at Java Days Istanbul, the kubernetes for developers one. Here’s some catching up I did on the plane: heavy on the platform engineering.

The Value of In Person Interactions and the Post Pandemic Future of Work - as always, the hallway track is its own conference and also adds context to the talks.
Secure Software Supply Chains and the Tanzu Application Platform - good walk through on automating your secure software supply chain with Cartographer.
The Case for Dedicated Cloud-Native Application Platform Teams - quick overview of what a platform engineering/platform as a product, etc. team is and why it's good to have one.
The 7 Dimensions of a Project-to-Product Transformation - when you're doing something new, start small and learn what works as you slowly scale up. "A common mistake is to rush into Expansion before you’ve written a good solid playbook for other product teams to use. It may seem counterintuitive, but make sure you have deep learnings and repeatable patterns before trying to put others through the same transition."

Kubernetes security survey - “According to Red Hat's State of Kubernetes security for 2022 report [PDF], the majority of 300 DevOps, engineering, and security professionals survey respondents (55 per cent) said they had to delay the debut of an application in the past 12 months because of security concerns. Fully 93 per cent of respondents reported at least one security incident in their Kubernetes environment in the past 12 months, with 31 per cent saying this led to revenue or customer loss.”