The year has just come to an end, and after a long stretch of work I could really use some rest. But before closing everything out completely, there’s one last thing I wan to share, and it needs a bit of context about the project. We’re currently building a distributed application consisting of several components…
Read MoreTests are often treated as a safety net: something that catches bugs before they reach users. While that’s true, it’s only part of the story. A test suite is also a mirror. If you look closely, it tells you a lot about the structure, health, and long-term maintainability of your codebase. If you know how…
Read MoreKubernetes Operators are one of those ideas that feel magical when they work: you declare an intent/goal in YAML, and software continuously makes the cluster match it – handling upgrades, failures, drift, and lifecycle cleanup: like a purpose-built SRE on autopilot. Although in theory it looks like sci-fi fiction, in practice Operators are just code…
Read MoreWhen I got back from my last trip to Japan, I quickly bumped into a small but annoying problem: I had finally reached my free storage limit on Google Photos. Instead of just buying more space for a few euros a year, I saw it as the perfect excuse to try something I’ve been considering…
Read MoreA modern web app isn’t one single big monolith: it’s made of quite a lot of pieces! For instance, we relied on a setup such as this one for a recent one we are developing: That’s a lot of moving parts. You could glue them together with scripts, sticky notes, and caffeine… but then most…
Read MoreAs our company’s NetEye cloud solution NetEye.cloud expands, we’re deploying compute nodes not only in our own data centers but, on customer premises across the globe – connected through satellite links. This hybrid, geo-distributed model creates a very tough challenge: How can we manage configuration across hundreds of remote machines reliably, and at scale? Why…
Read MoreDependencies (frameworks, modules, plugins, etc.) are the lifeblood of modern software libraries. But managing them manually is a burden. By automating dependency updates (in a controlled, smart way), you can stay ahead of security issues, reduce technical debt, and make upgrades less painful. Below I’ll walk you through why automatic updates matter, what to watch…
Read MoreUnexpected reboots, who doesn’t love them? A few weeks ago, we faced a problem that any platform engineer dreads: one of our nodes rebooted unexpectedly. The cause? The iDRAC watchdog forcefully terminated it. But what led iDRAC to decide it was time to shut down the node? A preliminary investigation concluded that there wasn’t any…
Read MoreHi 😀 Today I’d like to explore with you a migration that we performed to a service that’s used internally to monitor the performance of various DBs, gathering data that’s especially useful for troubleshooting. This tool is the Percona Monitoring and Management (PMM) platform, which combines agents or direct access to various supported DBMS (MySQL,…
Read MoreRecently, we needed to upload build artifacts to allow developers to visualize Playwright test recordings. Initially, we used a simple PVC and an NGINX server with basic authentication, but this approach has a major drawback: it doesn’t allow uploads from different namespaces. As a result, we had to choose whether to deploy this service and…
Read MoreOne of the most annoying aspects of using Sealed Secrets is their encryption design. They are tightly coupled to the namespace and name of the target Secret, meaning any changes to either require re-encrypting the Sealed Secret. This rigidity complicates workflows, especially when you need to duplicate or promote Secrets across environments. It breaks the…
Read MoreIntroduction This guide illustrates the steps required to adopt Nextcloud on-premise, configuring it for LDAP integration, SSO and MFA, using a preconfigured Virtual Machine. Wing FTP, while useful for years in remote file management, today shows clear limitations in terms of security, scalability and integration. Nextcloud is a modern, open source and self-hosted solution, offering…
Read MoreAfter 17 years in software development, mostly crafting UIs (do you know Google Web Tookit? Or Angular, since version 1? And now Vue.js? I do), occasionally diving into mobile apps, and even wearing the sysadmin hat, I thought I’d seen my fair share of tech. But recently, I stepped into a completely new arena: Pipeline…
Read MoreGitHub Actions offer a powerful and flexible infrastructure for CI/CD, deployments and monitoring. But every external dependency we include opens a potential door for supply-chain attacks. One simple, effective, and low-cost way to seal that door is pinning your Actions to specific commit SHAs. In this article, we’ll explore the risks, walk through how to…
Read MoreOur old ISO used the first drive (sda) as the only option when installing the system. Sometimes we were asked to install NetEye on a different drive, so as a workaround we suggested properly sorting RAID arrays in the controller, in order to put the installation drive first on the list. Even if suboptimal, this…
Read More