Jorijn Schrijvershof9h ago

WordPress maintenance contract: what should it include?

https://jorijn.com/en/blog/wordpress-maintenance-contract/

#WordPress #WebDev #WebsiteMaintenance #jorijncom

WordPress maintenance contract: scope, costs, and pitfalls | Jorijn Schrijvershof

What should a WordPress maintenance contract include? Updates, backups, security, hosting, response time, extra work, costs, and cancellation terms explained.

Jorijn Schrijvershof1d ago

Kyverno Chainsaw: declarative end-to-end testing for Kubernetes

https://jorijn.com/en/blog/kyverno-chainsaw-declarative-kubernetes-end-to-end-testing/

#Kubernetes #DevOps #Testing #jorijncom

Kyverno Chainsaw: declarative end-to-end testing for Kubernetes | Jorijn Schrijvershof

Kyverno Chainsaw is declarative YAML end-to-end testing for Kubernetes operators and Helm charts. What it does, who runs it in production, and its limits.

Jorijn Schrijvershof5d ago

Worried about Anthropic's new "Mythos" model?

You've probably seen it go by these past weeks: it supposedly found more than 10,000 vulnerabilities on its own, in software that runs just about everywhere. So I dug in, a deep dive heading into the weekend.

Mythos (and really the whole AI trend) rewards systems that are well maintained and punishes those that aren't.

The full deep dive is here: https://jorijn.com/en/blog/claude-mythos-ai-vulnerability-discovery-explained/

#CyberSecurity #AI #InfoSec #Anthropic #Claude #Security #Mythos #jorijncom

Claude Mythos: what Anthropic's cyber model means, and how to stay ahead of it | Jorijn Schrijvershof

Claude Mythos explained: what Anthropic's autonomous vulnerability-finding model does, where the hype outruns the evidence, and how to harden your own software first.

Jorijn SchrijvershofMay 27

Air-gapped Kubernetes deployments: why Zarf wins

https://jorijn.com/en/blog/zarf-airgapped-kubernetes-delivery/

#Kubernetes #DevOps #AirGap #jorijncom

Air-gapped Kubernetes deployments: why Zarf wins | Jorijn Schrijvershof

Zarf bundles container images, Helm charts, and manifests for airgapped Kubernetes clusters. How its ConfigMap injection bootstraps a registry from nothing.

Jorijn SchrijvershofMay 22

Why I left Google Workspace for self-hosted Nextcloud.

Three weeks of running both side by side, then this week, I canceled Google.

Here's my experience managing a solo EU business: what's effective, where Nextcloud falls short, and why this is no longer niche.

Built on @nextcloud. Mail moved to @soverin. Don't want to self-host? @ProcoliX does managed Nextcloud from NL.

https://jorijn.com/en/blog/left-google-workspace-for-nextcloud/

#Nextcloud #SelfHosted #DeGoogle #DigitalSovereignty #jorijncom

Why I left Google Workspace for self-hosted Nextcloud | Jorijn Schrijvershof

Why I left Google Workspace for self-hosted Nextcloud Hub 26 Winter, with mail on Soverin. Three weeks in: what works, what still trails Google, and why.

Jorijn SchrijvershofMay 21

WordPress 7.0 ships the AI Client. The Abilities API and MCP Adapter are what plugin developers should learn first.

https://jorijn.com/en/blog/wordpress-7-0-abilities-mcp-plugin-developers-learn-first/

#WordPress #AI #WebDev #jorijncom

WordPress 7.0 ships the AI Client. The Abilities API and MCP Adapter are what plugin developers should learn first. | Jorijn Schrijvershof

WordPress 7.0's AI Client gets the headlines. The Abilities API and MCP Adapter that shipped before it are what plugin developers should master first.

Jorijn SchrijvershofMay 18

The Open Cloud Alliantie is real. Seven Dutch providers just made sovereignty a procurement conversation.

https://jorijn.com/en/blog/open-cloud-alliantie-dutch-sovereignty-procurement/

#DigitalSovereignty #CloudComputing #Netherlands #jorijncom

The Open Cloud Alliantie is real. Seven Dutch providers just made sovereignty a procurement conversation. | Jorijn Schrijvershof

The Open Cloud Alliantie's real impact is procurement language. Seven Dutch providers, the DICTU sovereignty instrument, and how to evaluate sovereignty claims.

Jorijn SchrijvershofMay 16

Why most Kubernetes backup strategies don't survive real disaster recovery

https://jorijn.com/en/blog/why-kubernetes-backup-strategies-dont-survive-disaster-recovery/

#Kubernetes #DevOps #DisasterRecovery #jorijncom

Why most Kubernetes backup strategies don't survive real disaster recovery | Jorijn Schrijvershof

Velero restores break in predictable ways, KMS key rotation makes etcd snapshots unrestorable, and CSI snapshots aren't backups. What actually survives DR.

Jorijn SchrijvershofMay 13

Kubernetes 1.36 quietly buried one of the worst RBAC patterns in production

https://jorijn.com/en/blog/kubernetes-1-36-fine-grained-kubelet-authz-buries-nodes-proxy/

#Kubernetes #Security #DevOps #jorijncom

Kubernetes 1.36 quietly buried one of the worst RBAC patterns in production | Jorijn Schrijvershof

Kubernetes 1.36 made fine-grained kubelet API authorization GA. How nodes/proxy became a privilege-escalation primitive, what KEP-2862 changes, and how to migrate.

Jorijn SchrijvershofMay 8

Why I'm leaving GitHub for Forgejo

https://jorijn.com/en/blog/leaving-github-for-forgejo/

#GitHub #OpenSource #SelfHosted #jorijncom #Forgejo

Why I'm leaving GitHub for Forgejo | Jorijn Schrijvershof

I left GitHub for self-hosted Forgejo on a hardened NUC. The reason is digital sovereignty, not reliability outages. Here's the thinking and the architecture.