My co-worker Adib did a video showing how to use Spring HATEOAS to make existing REST APIs agent-friendly. Instead of wrapping your 700 APIs as MCP servers and dumping all those tool definitions into the context window, you build a an adapter layer that lets agents discover what they can do by following links in the spirit of the World Wide Web REST thinking from long ago: HATEOAS.
Progressive disclosure This method is geared around minimizing context window usage for especially large APIs.
Posts in "tech"
Hot modems, dinergoths, the platform bottleneck, and the SaaSpocalypse - Related to your interests, Monday
Also: sovereignty’s control plane, 81,000 people tell Anthropic what they want, Google sells its fiber, and oats for the sparrows, and cake
Related to your interests My pal Adib Saikali wrote up an MCP security guide covering how to think about securing MCP servers in the enterprise (no lead-generation required, just a straight-up PDF download). It gets into access tiers (open, group, and user-level servers), authentication with OAuth 2.1, identity propagation models (when to use service accounts vs.
Securing AI
More “how do we secure this AI stuff” talk with David Zendzian on today’s live stream. He’s recently gone Claude Crazy so I wanted to get his CISO-supremo talk on thinking through the risk management for AI in enterprises. Each time I tried to come up with a problem, he was good finding the fix. Plus, we talk about some of the things we’ve learned about using our little robot buddies.
MCP Security Guide
My pal Adib Saikali wrote up an MCP security guide covering how to think about securing MCP servers in the enterprise (no lead-generation required, just a straight-up PDF download). It gets into access tiers (open, group, and user-level servers), authentication with OAuth 2.1, identity propagation models (when to use service accounts vs. forwarding user identity), and how an MCP gateway gives you a governed chokepoint for auth, observability, and capability filtering.
KubeCon EU 2026, bottlenecks, Corporate Bullshit Receptivity, and the End of the Meat-Mouse - Related to your interests, Wednesday
Also: sovereign AI, Claude Code auto mode, FCC bans foreign routers, Walmart digital price tags
KubeCon EU 2026 KubeCon is crazy big. James says something like 13,500+ people. They’re going for another infrastructure grab: all the stuff used to run AI. It’s worth asking who they’re competing with there. I have no idea how OpenAI and Claude run the AI PaaSes they’v built - the ones that everyone is bonkers for.
Kubernetes is the bottleneck, and you can get through it with a platform
Photo by Daniel Bryant. Another great KubeCon talk from Abby Bangser imploring the Kubernetes people to remember how important platforms are: they make all of his stuff usable for developers and valuable to the organizations that run it all. Without a platform, you’re just put another bottleneck in place.
Also, see the go she started, along with others, at codifying what makes a good platform, at a technical level, here.
VMware/Broadcom at KubeCon EU 2026
Here’s Claude’s take on VMware’s stuff at KubeCon - just some light editing for me.
KubeCon + CloudNativeCon Europe 2026 ran March 23-26 in Amsterdam. Here’s what VMware by Broadcom announced.
VKS 3.6 Ships The VKS stack as seen at VMUG Connect Amsterdam 2026. VMware vSphere Kubernetes Service 3.6 shipped with Kubernetes 1.35 support, RHEL 9 compatibility, declarative performance tuning, and improved upgrade safety targeting enterprise platform teams. The day-two operations framing is the key story - VKS 3.
The end of the meat-mouse
The agency in agentic AI feels a lot more like giving the users - the humans - agency they didn’t have. That’s what’s making it useful for me, from sorting out dumb-shit home-networking incompatibilities, figuring out taxes, and otherwise sorting my shit out. When you unleash something like Claude code on all the messy and neglected rooms in your life, you start to clean-up and pay attention more.
There’s a very bottoms-up thing here.
Using AI to help with SRE, ops, etc.:
The problem, he said, is that Claude “will get wrong correlation versus causation.” It’s like a new joiner on the team, they will think “oh, it’s a capacity problem, when actually you lost your cache.” “This is why we can’t trust LLMs for incident response,” said Palcuie. The problem is its inability to “step back and start discerning between causation and correlation… For us humans, it is hard as well.”
And:
The Jevons Paradox, said Palcuie, is “the favorite paradox in the AI industry. It’s when technological improvements increase the efficiency of our resources used, but the resulting lower cost causes consumption to rise rather than fall.”
In the case of software, “it’s easier to write software, so we write much more of it, so the complexity goes up and not down, which means things break in more interesting ways, which means more incidents, more on call… all the improvements in the tooling will be cancelled by this ever-growing complexity.”
From: Fixing Claude with Claude: Anthropic reports on AI site reliability engineering
Art Degrees, Sun Microsystems, and How Kubernetes Scales Contributions, with Josh Berkus - Software Defined Interviews #121
Our interview for this week is up, it’s with Josh Berkus:
Whitney and Coté discuss with Josh Berkus (Red Hat, Kubernetes contributor) how liberal and fine arts degrees (philosophy, photography, sculpture, pottery) apply to tech careers. Berkus details how early hardware experience influenced his database performance work, noting hardware’s renewed relevance with AI and multi-arch computing. The conversation covers Sun Microsystems’ 1990s internet role, internal politics, and its MySQL/Postgres strategy.