Cloudythings Blog

Field notes on resilient, modern platform engineering.

We write about SRE practice, Kubernetes operations, GitOps pipelines, microVM innovation, and the tooling that keeps platforms reliable. Every article is penned by hands-on engineers across our collective.

June 03, 2025 at 09:59 AM EST 12 min read

Secure CI Runners with MicroVM Sandboxes

Designing high-trust CI/CD runners using Firecracker microVMs, ephemeral secrets, and supply-chain policy enforcement.

CI/CDMicroVMSecuritySupply Chain

May 06, 2025 at 09:11 AM EST 12 min read

Continuous Verification as a First-Class Pipeline Stage

Operationalizing continuous verification with automated experiments, policy engines, and real user signals in CI/CD pipelines.

Continuous VerificationCI/CDObservabilitySRE

April 08, 2025 at 09:57 AM EST 12 min read

Immutable Edge Platforms

Applying immutability, GitOps, and remote attestation to fleets of edge devices running Kubernetes, WASM, and microVM workloads.

Edge ComputingImmutabilityGitOpsSecurity

March 11, 2025 at 09:51 AM EST 12 min read

AI Copilots for Incident Response

How we integrate LLM copilots into incident management without sacrificing rigor, blamelessness, or human judgment.

Incident ResponseAI/MLSREAutomation

February 11, 2025 at 09:47 AM EST 13 min read

Zero-Trust Serverless Runtimes

Blueprint for building zero-trust serverless platforms using micro-segmentation, signed workloads, and continuous posture evaluation.

ServerlessZero TrustSecurityMicroVM

January 14, 2025 at 09:21 AM EST 12 min read

Event-Driven GitOps for Real-Time Platforms

Architecting GitOps pipelines that respond to events from Kubernetes, Kafka, and cloud services to keep infrastructure continuously aligned.

GitOpsEvent-Driven ArchitectureKubernetesAutomation

June 25, 2024 at 09:19 AM EST 11 min read

Ephemeral LLM Evaluation Environments

Combining ephemeral environments, service virtualization, and guardrails to test generative AI features safely and repeatably.

Ephemeral EnvironmentsAI/MLTestingObservability

May 28, 2024 at 09:33 AM EST 12 min read

CI/CD for Data Platforms that SREs Can Trust

Adapting GitOps, contract testing, and observability to deliver reliable data pipelines, warehouses, and lakehouse transformations.

CI/CDData EngineeringGitOpsObservability

April 30, 2024 at 09:27 AM EST 12 min read

Signature Verification in Multi-Cloud Reality

Synchronizing Sigstore, AWS Signer, and Azure Key Vault to enforce provenance across multi-cloud deployments without slowing releases.

Signature VerificationMulti-CloudSupply Chain SecurityGitOps

April 02, 2024 at 09:39 AM EST 12 min read

MicroVM-Orchestrated Accelerators for Modern Platforms

Designing GPU and FPGA workloads atop Firecracker and Kata Containers to deliver secure, high-density infrastructure for ML and streaming.

MicroVMVirtualizationGPUPlatform Engineering