From Dockerfiles to Distroless: Shrinking Container Attack Surface
A migration path from general-purpose base images to distroless containers with fewer vulnerabilities and clearer ownership.
Photo by Unsplash
- #docker
- #security
- #distroless
Container Blog
Posts
go-mdbus-mcp Part 3: Benchmark Results and Competitive Comparison
How go-mdbus-mcp was benchmarked internally and compared externally against other Modbus MCP servers on a shared backend.
Photo by Unsplash
- #benchmark
- #mcp
- #modbus
go-mdbus-mcp Part 2: Git History as an Engineering Timeline
A stage-by-stage story of how go-mdbus-mcp moved from a fast prototype to a safer, test-driven release.
Photo by Unsplash
- #golang
- #mcp
- #git
Container Runtime Decision Matrix for 2026
How to choose between Docker Engine, containerd, and rootless runtimes based on team constraints and security posture.
Photo by Unsplash
- #containerd
- #docker
- #operations
go-mdbus-mcp Part 1: Why This Stack and Architecture
Why go-mdbus-mcp was built with Go + official MCP SDK, and how the runtime architecture is designed for industrial reliability.
Photo by Unsplash
- #golang
- #mcp
- #modbus
Secure Container Image Builds with GitHub Actions
A minimal GitHub Actions approach to reproducible builds, provenance, and vulnerability checks for container images.
Photo by Unsplash
- #github-actions
- #ci-cd
- #supply-chain
The Self-Evolving Reviewer
A weekend experiment in recursive AI code review, where the agent audits and improves its own implementation.
Photo by Unsplash
- #ai
- #agents
- #code-review
Building Localable: A GitHub Pages AI App Builder
How I built a browser-only AI app builder with zero backend and free hosting on GitHub Pages.
Photo by Unsplash
- #ai
- #javascript
- #github-pages
My Journey with n8n Workflow Has Started
Setting up a self-hosted n8n workflow with Ollama and WhatsApp integration on a home lab environment.
Photo by Unsplash
- #n8n
- #automation
- #ollama
Magical Ability to Peek Inside a Running Kubernetes Cluster
A practical walkthrough of using Tetragon on Minikube to observe process-level events from Kubernetes workloads.
Photo by Unsplash
- #kubernetes
- #ebpf
- #tetragon
Why I Chose GCP over AWS and Azure for Ollama and Open WebUI
A hands-on comparison of cloud GPU spot workflows for running Ollama and Open WebUI.
Photo by Unsplash
- #gcp
- #aws
- #azure
Container Internals Deep Dive 09: Firecracker microVM
What Firecracker microVMs optimize for, and when they are a better fit than standard containers.
Photo by Unsplash
- #firecracker
- #microvm
- #containers
Container Internals Deep Dive 08: Kata Containers
How Kata Containers combine container workflows with VM isolation boundaries.
Photo by Unsplash
- #kata
- #containers
- #virtualization
Container Internals Deep Dive 07: Rootless Containers with Podman
How rootless containers work with user namespaces, and where Podman fits in secure workflows.
Photo by Unsplash
- #rootless
- #podman
- #security
Container Internals Deep Dive 06: runc vs crun
Compare runc and crun on startup latency, memory footprint, and operational tradeoffs.
Photo by Unsplash
- #runc
- #crun
- #oci
Container Internals Deep Dive 05: OCI Standard
Why OCI image and runtime specs matter for interoperability across tools and platforms.
Photo by Unsplash
- #oci
- #containers
- #standards
Container Internals Deep Dive 04: containerd Internals
Understand containerd architecture: content store, snapshotters, runtime shims, and lifecycle flow.
Photo by Unsplash
- #containerd
- #containers
- #runtime
Container Internals Deep Dive 03: Network Namespaces and CNI
How container networking works from veth pairs to CNI plugin chains in Kubernetes.
Photo by Unsplash
- #containers
- #networking
- #cni
Container Internals Deep Dive 02: Namespaces
How Linux namespaces isolate process IDs, mounts, users, and networking for containers.
Photo by Unsplash
- #containers
- #namespaces
- #linux
Container Internals Deep Dive 01: Cgroups
How cgroups enforce resource limits for CPU, memory, and I/O in container workloads.
Photo by Unsplash
- #containers
- #cgroups
- #linux