As Editor-in-chief of DevOps.com and Container Journal, Alan Shimel is attuned to the world of technology. Alan has founded and helped several technology ventures, including StillSecure, where he guided the company in bringing innovative and effective networking and security solutions to the marketplace. Shimel is an often-cited personality in the security and technology community and is a sought-after speaker at industry and government conferences and events. In addition to his writing on DevOps.com and Network World, his commentary about the state of technology is followed closely by many industry insiders via his blog and podcast, "Ashimmy, After All These Years" (www.ashimmy.com). Alan has helped build several successful technology companies by combining a strong business background with a deep knowledge of technology. His legal background, long experience in the field, and New York street smarts combine to form a unique personality.

GitOps, Red Hat, Civo Flux ,GitOps. Weaveworks Sysdig AI

Kubernetes at a Crossroads: Hybrid Reality, AI Pressure and Open Source Roots

SUSE’s Margaret Dawson gives a fast-moving tour through the past, present and future of cloud-native computing. Dawson revisits an important reality: containers and isolation mechanisms existed in Linux long before Docker brought ...
| | AI, cloud native, KubeCon + CloudNativeCon 2025 NA, kubernetes
Cracks in KubeCon’s Invincibility Shield

Cracks in KubeCon’s Invincibility Shield

To the casual observer walking the polished halls of the Georgia World Congress Center this week, KubeCon North America 2025 looked every bit the unstoppable juggernaut it has always been. The sponsor ...
| | cloud native, cncf, KubeCon + CloudNativeCon 2025 NA, kubernetes, OTel
runtime, visibility, Chainguard, threat, cloud-native security, Venafi, security, sigstore, KubeCon, cloud-native, security, secure, Rubrik, Kubernetes, Cloud-Native Security Best Practices

Runtime Visibility & AI-powered Security in Cloud-Native Environments

Kubernetes and cloud-native platforms have transformed software delivery — but also redefined the attack surface. As threats shift to runtime, visibility and real-time response have become the new security frontline. AI-driven anomaly ...
| | AI copilot, AI governance, AI in cybersecurity, anomaly detection, automated response, CI/CD security, cloud native security, cloud security, cloud-native defense, container security, DevSecOps, explainable AI, kubernetes, LLMs in security, observability, platform engineering, runtime protection, runtime security, runtime visibility, security automation, security telemetry, service mesh, threat detection, zero-trust
LLMs & Kubernetes Configuration: Automating Hardening, Drift Detection and Policy Enforcement

LLMs & Kubernetes Configuration: Automating Hardening, Drift Detection and Policy Enforcement

Kubernetes misconfigurations remain the top security risk. AI copilots promise automated hardening, drift detection, and policy enforcement to make clusters safer ...
| | admission controllers, AI copilots, AI in Kubernetes, cloud native security, cncf, drift detection, GitOps, KubeGuard, kubernetes, Kubernetes governance, kubernetes hardening, Kubernetes misconfiguration, Kubernetes security, Kyverno, large language models, LLMs, OPA, OpenTelemetry, platform engineering, RBAC, YAML Jenga
service mesh, Buoyant, Istio Solo.io Buoyant Linkerd service mesh

Service Mesh Evolution: Ambient Mode, Gateways & The Return of Simpler Architectures

Service mesh is evolving beyond sidecars. Ambient mode and Gateway APIs deliver security, observability, and traffic control with less overhead. Teams benefit from leaner, more flexible architectures ...
| | Alan, ambient mode, cloud native security, container networking, devops, gateway API, Istio, Kubernetes networking, microservices, observability, OpenShift Service Mesh, platform engineering, service mesh, sidecar alternatives, SRE, traffic management, waypoints, ztunnel
state, stateless, kubernetes, scanning, cloudsmith, stateless ephemeral stateful security Kubernetes unikernel Sumo Logic

Stateful Microservice Migration & the Live-State Challenge in Kubernetes

Alan argues that Kubernetes can’t ignore state any longer. While stateless apps fit the original vision, real-world workloads — from databases to AI pipelines — demand continuity. A new research framework, MS2M ...
| | AI/ML pipelines, blue/green deployment, canary releases, cloud portability, cncf, CRIU, Data Sovereignty, day-two operations, disaster recovery, forensic container checkpointing, hybrid cloud, kubernetes, live migration, MS2M, multi-cluster, platform engineering, resilience, service mesh, Stateful Workloads, stateless vs stateful
Kubernetes, observability, tracing, kubernetes observability, Grafana labs, kubernetes, observe, tool, Datadog, data, observability, kubernetes Docker Granulate observability

Bridging Observability & Security in Kubernetes: Beyond Just Metrics

Kubernetes has expanded agility but also the attack surface. Alan argues that observability and security can no longer live in silos — metrics, logs, and traces already hold critical security signals, while ...
| | anomaly detection, C2 traffic, cloud native security, convergence, cross-training, crypto-mining, devops, kubernetes, lateral movement, logs, metrics, observability, observability-driven security, OpenTelemetry, organizational silos, platform engineering, runtime security, security, SRE, tool sprawl, traces
GitOps, Red Hat, Civo Flux ,GitOps. Weaveworks Sysdig AI

GitOps at Fleet Scale: Decentralization vs. Control

Alan unpacks Red Hat’s agent-based GitOps architecture for OpenShift and what it means for scaling GitOps across fleets of Kubernetes clusters. From central control to decentralized agents, discover how balance drives the ...
| | CNCF GitOps standards, decentralized GitOps, federated GitOps model, GitOps scalability, Kubernetes GitOps scaling, OpenShift GitOps preview, Red Hat agent-based GitOps
CNCF, Kubernetes, SUSECON, SUSE, cloud-native, stack, CNCF, cert manager, guidance, patent, cloud native, CNCF Advances Linkerd Service Mesh cloud-native

CNCF and Docker: The Next Phase of Cloud Native Supply Chain Evolution

The CNCF–Docker partnership strengthens cloud native supply chain security with verified namespaces, SBOMs, and signed images. Trust becomes the new baseline ...
| | cloud native security, CNCF Docker partnership, container image provenance, Docker Hub namespaces, Kubernetes trust, OSS Sponsored Program, platform engineering security, SBOM generation, signed container images, software supply chain
WASM, edge, frontier, cloud native, cloud native, KubeCon, CloudNativeNow2025

The Cloud-Native Frontier is at the Edge

The future of cloud-native is hybrid and edge. Learn how WebAssembly (WASM) complements containers to power next-gen workloads with speed, security and agility ...
| | cloud native, cloud native security, CNCF WASM, distributed workloads, edge computing, hybrid cloud, hybrid cloud strategy, Kubernetes at the edge, WASM vs containers, WebAssembly WASM