Container Security
Lessons from the field. Always landing on my feet.
Agent 365 Ships May 1. I Tested the Defender Playbook for AI Agent Attacks.
Microsoft Agent 365 goes generally available on May 1, 2026. Most launch-week posts will explain what it is. I wanted to answer a different question: What does an AI agent attack look like in a real Microsoft defender stack before Agent 365 becomes β¦
AKS Runtime Security: Binary Drift, Anti-Malware & Gated Deployment with Defender for Cloud
In December, I published a post on securing the container supply chain β SBOM generation, image signing, and build provenance with GitHub Actions. That covered build-time security: making sure the image you ship is the image you built. But what β¦
Secure Your Container Supply Chain: SBOM, Signing & Attestation with GitHub Actions
Over the last couple of weeks, Iβve been diving deep into container supply chain security. Between high-profile incidents like SolarWinds, Log4Shell, and the xz Utils backdoor, itβs clear that securing the build pipeline is just as critical as β¦