4 results found

AI is set to revolutionize Infrastructure as Code (IaC) by automating code generation and deployment, shifting the developer role from direct authors to architects and validators. While this promises increased agility, it highlights critical needs for robust guardrails and policy-as-code. Deep systems knowledge remains crucial for human oversight, validation, and complex problem-solving in this evolving landscape.

This guide helps developers understand and implement informal threat modeling. It outlines seven critical questions, from identifying assets and adversaries to documenting assumptions and unaddressed threats, emphasizing that threat models are living documents. Using examples like Matrix's flawed approach and the benefits of passkeys, it demonstrates how this practice leads to more robust and user-friendly software designs.

This guide demonstrates how to self-host an S3-compatible object store using MinIO on your staging server. By leveraging Docker Compose and Traefik for HTTPS, you can significantly reduce cloud storage costs while maintaining a production-like environment for development and testing. It covers setup, application configuration, and secure file interactions.

Dana Lawson, Netlify's CTO, shares insights on building and leading a lean, globally distributed engineering team. Her approach emphasizes a strong written culture, intentional in-person connections, and pragmatic tech choices to power 5% of the internet with only ~50 R&D staff. AI agents play a crucial role in augmenting communication and documentation.