Encountering 'nginx.ingress.kubernetes.io/server-snippet annotation cannot be used' errors after upgrading ingress-nginx? Here's how to fix the breaking changes in version 1.9 with proper Helm configuration and security considerations.
4 posts exploring Security and related topics.
Technical insights and engineering experiences from building production systems.
Encountering 'nginx.ingress.kubernetes.io/server-snippet annotation cannot be used' errors after upgrading ingress-nginx? Here's how to fix the breaking changes in version 1.9 with proper Helm configuration and security considerations.
从 "by user" 到 "by client" 架构的演进过程。深入分析 Sealbox 多客户端架构设计中的技术权衡,探讨零信任安全模型、Envelope Encryption 实践,以及如何在团队协作与安全性之间找到平衡点。
How we evolved from "by user" to "by client" architecture in Sealbox. A deep dive into the technical tradeoffs of zero-trust security models, Envelope Encryption implementation, and balancing team collaboration with security in secret management systems.
After struggling with HashiCorp Vault's complexity for a simple API key storage task, I built Sealbox—a lightweight, single-binary secret manager in Rust with end-to-end encryption, SQLite storage, and zero cloud dependencies. Here's the story and technical decisions behind it.