Azure Container Apps (ACA) is the “Serverless Containers” offering we’ve been waiting for. Built on Kubernetes but hiding the cluster, it integrates **KEDA** (for event-driven scaling) and **Dapr** (for building blocks) natively. Scaling to Zero Unlike App Service, ACA can scale to 0 replicas when no events are processing, saving money. Dapr Integration Enable Dapr […]
Read more โSearch Results for: name
AKS Network Policy: Locking Down Traffic
By default, all pods in a Kubernetes cluster can talk to each other. This is a security risk. If a frontend pod is compromised, the attacker can scan your database pod. Network Policies act as an internal firewall. Deny All Ingress Start by blocking everything. Allow Frontend to Backend Key Takeaways You must enable a […]
Read more โGitHub Copilot: The AI Revolution in Code
GitHub Copilot has officially entered Technical Preview. Having used it for a month, my workflow has fundamentally changed. It is not just autocomplete; it is idea generation. Context Awareness Copilot reads your open tabs. If I have a `User.cs` file open and I start writing a SQL query in `UserRepository.cs`, it correctly infers the column […]
Read more โTypeScript 4.3: Template String Types
TypeScript 4.3 turns the type system into a programming language itself. Template Literal Types You can now concatenate types! This is incredibly useful for typing strings that follow a specific pattern, like CSS classes or Event names.
Read more โHardening Kubernetes: Moving away from Pod Security Policies
Pod Security Policies (PSP) are deprecated in K8s 1.21. The industry is moving to Pod Security Standards (PSS) and Admission Controllers like OPA Gatekeeper or Kyverno. The New Standard Kubernetes now has built-in labels for namespaces to enforce security levels: Setting this label automatically rejects any Pod that tries to run as Root or mount […]
Read more โBicep Modules: Enterprise Infrastructure Scale
Copy-pasting Bicep code defeats the purpose of Infrastructure as Code. **Modules** allow you to strictly define inputs and outputs for reusable components (like a standardized VNET or Storage Account), enforcing compliance across the enterprise. Creating a Module Consuming the Module Key Takeaways Publish modules to a **Private Bicep Registry** (ACR) for cross-team sharing. Use `br:myregistry.azurecr.io/bicep/storage:v1` […]
Read more โ