The Role of Log Shippers in Your Stack
Log shippers quietly move logs to where they’re needed—making debugging, monitoring, and observability possible without the chaos.
Updates and recent posts about Sigstore.. Link
Link
@anjali shared a link, 1 year, 2 months ago
Customer Marketing Manager, Last9
The Ultimate Guide to Ubuntu Performance Monitoring
A practical guide to monitoring performance on Ubuntu—tools, tips, and commands to keep your system running efficiently.
Link
@anjali shared a link, 1 year, 2 months ago
Customer Marketing Manager, Last9
API Latency: Definition, Measurement, and Optimization Techniques
Learn what API latency really means, how to measure it the right way, and practical ways to make your APIs respond faster.
Story
@laura_garcia shared a post, 1 year, 2 months ago
Software Developer, RELIANOID
🌐 Understanding the Five Eyes Coalition and Embracing Secure Innovation 🔒
The Five Eyes (FVEY) Coalition, an alliance of the US, UK, Canada, Australia, and New Zealand, has been a cornerstone of global intelligence sharing since WWII. Over the decades, its mission has evolved to address modern challenges like cybersecurity, critical infrastructure protection, and counteri..
Story
@laura_garcia shared a post, 1 year, 2 months ago
Software Developer, RELIANOID
🚀 We’re heading to QCon London 2025! 🚀
From April 7th to 10th, RELIANOID will be joining some of the brightest minds in software development at QCon London, where pioneers and senior engineers share the latest trends, best practices, and real-world case studies. 🔹 What to Expect at QCon London? ✅ Emerging trends in software architecture,..
Link
@anjali shared a link, 1 year, 2 months ago
Customer Marketing Manager, Last9
How to Configure ContainerPort in Kubernetes (The Easy Way)
Learn how ContainerPort works in Kubernetes, why it matters, and how to configure it correctly for simplified container networking.
Link
@anjali shared a link, 1 year, 2 months ago
Customer Marketing Manager, Last9
Log4j vs Log4j2: Which Logging Framework Should You Choose
Choosing between Log4j and Log4j2? Log4j2 offers better performance, security, and flexibility. Here's why it might be the right choice for you.
Story
@laura_garcia shared a post, 1 year, 2 months ago
Software Developer, RELIANOID
🚀 Moving from Alteon to a Modern Load Balancer: Why and How? 🚀
As Alteon load balancers become obsolete, organizations are moving to more advanced, cloud-native solutions. One great option is the RELIANOID load balancer, designed to handle modern, high-traffic environments with superior flexibility, scalability, and security. Here’s how to make the switch: 1️⃣ ..
Link
@anjali shared a link, 1 year, 2 months ago
Customer Marketing Manager, Last9
Breaking Down Splunk Costs for SREs and DevOps Teams
Explore Splunk's pricing and how it impacts SREs and DevOps teams. Learn how to manage costs while maintaining performance.
Story
@laura_garcia shared a post, 1 year, 2 months ago
Software Developer, RELIANOID
🚀 A Busy April Ahead for RELIANOID!
April is shaping up to be an exciting and action-packed month for us at RELIANOID! Our team will be making a big effort to attend multiple key industry events, connecting with experts, partners, and clients to discuss the latest in cybersecurity, networking, and ADC solutions. Want to know where to ..
At its core, sigstore removes many of the traditional barriers associated with code signing. Instead of managing long-lived private keys manually, sigstore supports keyless signing, where identities are issued dynamically using OpenID Connect (OIDC) providers such as GitHub Actions, Google, or Microsoft. This dramatically lowers operational complexity and reduces the risk of key compromise.
The sigstore ecosystem is composed of several key components:
- Cosign: A tool for signing, verifying, and storing signatures for container images and other artifacts. Signatures are stored alongside artifacts in OCI registries, rather than embedded in them.
- Fulcio: A certificate authority that issues short-lived X.509 certificates based on OIDC identities, enabling keyless signing.
- Rekor: A transparency log that records signing events in an append-only, tamper-evident ledger. This provides public auditability and detection of suspicious or malicious signing activity.
Together, these components allow anyone to verify who built an artifact, when it was built, and whether it has been tampered with, using publicly verifiable cryptographic proofs. This aligns closely with modern supply chain security practices such as SLSA (Supply-chain Levels for Software Artifacts).
sigstore is widely adopted in the cloud-native ecosystem and integrates with tools like Kubernetes, container registries, CI/CD pipelines, and package managers. It is commonly used to sign container images, Helm charts, binaries, and SBOMs, and is increasingly becoming a baseline security requirement for production software delivery.
The project is governed by the OpenSSF (Open Source Security Foundation) and supported by major industry players.
