Ep. #48, Unpacking Software Supply Chain Security with Justin Cappos

On episode 48 of The Kubelist Podcast, Marc Campbell and Benjie De Groot sit down with Justin Cappos, professor at NYU and a pioneer in software supply chain security. They explore the origins of modern package manager security, the real-world limits of SBOMs, and why systems should be designed assuming compromise. The conversation spans CNCF governance, in-toto, TUF, Git security, and the emerging role of AI in securing software.

In episode 47 of The Kubelist Podcast, Marc and Benjie sit down with Grant Miller, Founder and CEO of Replicated. This talk chronicles the triumphs and tribulations of Replicated and the many entrepreneurial lessons learned along the way. Grant and Marc also unveil SecureBuild, a new offering for open source projects. Lastly they share their firsthand experiences using AI-assisted coding tools and how they’re revolutionizing productivity.

In episode 46 of The Kubelist Podcast, Marc and Benjie chat with John Dietz, CEO of Konstruct, about Kubefirst, an open source platform that streamlines Kubernetes adoption. John shares the journey of building Kubefirst, overcoming Kubernetes complexity, and the challenges of commercializing open source software.

In this special episode of The Kubelist Podcast, recorded live at KubeCon 2024 in Salt Lake City, hosts Marc Campbell and Benjie De Groot bring you seven engaging interviews with developers and contributors from the Kubernetes ecosystem. From CNCF projects like Testkube, Logging Operator, and Kubeflow to innovative tools like Buildpacks, Kairos, Krkn, and Scarf, this episode dives into the latest updates and insights.

In episode 44 of The Kubelist Podcast, Marc Campbell and Benjie De Groot sit down with Idit Levine, Founder and CEO of Solo.io, to explore the evolving world of service mesh technology. Idit shares her unconventional journey into tech, the founding of Solo, and innovations like Ambient Mesh that simplify Kubernetes networking. Dive into the challenges of microservices, open source collaboration, and the future of AI in networking.

In episode 43 of The Kubelist Podcast, Kate Goldenring shares her journey from Microsoft, where she contributed to Kubernetes edge computing and the development of Akri, to joining Fermyon to work on serverless WebAssembly. She dives deep into the technical details of Spin and SpinKube, Fermyon's open-source tools for running serverless WebAssembly applications on Kubernetes. The conversation explores the potential of WebAssembly for building efficient, event-driven applications, and discusses how this technology can lead to more sustainable cloud solutions.

In episode 42 of The Kubelist Podcast, Marc Campbell and Benjie De Groot sit down with Wayne Starr from Defense Unicorns to explore Zarf, an open-source tool for continuous software delivery in air-gapped environments. Wayne shares insights into how Zarf is transforming software deployment for the Department of Defense and beyond. They also explore other fascinating tools like Lula, Pepr, and LeapFrogAI.

In episode 41 of The Kubelist Podcast, Marc and Benjie speak with Lukas Gentele of Loft Labs about vCluster. Together they dive deep on how vCluster works and some of the new use cases that the project enables when running on larger, more mature enterprises. This technical discussion explores the problems Lucas and his team set out to solve when they created vCluster.

In episode 40 of The Kubelist Podcast, Marc and Benjie speak with open source pioneer Dave McAllister. Dave shares stories and lessons from his 40-year career in tech including working for DEC, NASA, Adobe, Red Hat, Splunk, and NGINX. Additionally, they discuss Linux’s rise to popularity in the early days of open source, SGI’s contribution to modern cinematic effects, predictions around AI, and the overlap of open source and LLMs.

In episode 39 of The Kubelist Podcast, Marc and Benjie recount their experience at KubeCon 2023 and share interviews from the event with guests like Matt Butcher and Radu Matei of Fermyon, Umair Khan of Stacklet, Anna Reale of Keptn, Solomon Hykes of Dagger, Bailey Hayes of wasmCloud, and many more.