https://indragustiprasetya.com/ Tech strategist & Co-Founder of Temika Cyber. Over a decade building secure, scalable cloud infrastructure, DevOps, Kubernetes, and IT security. https://indragustiprasetya.com/blog/kubernetes-user-namespaces-in-1-36-with-hostusers-false.html https://indragustiprasetya.com/blog/kubernetes-user-namespaces-in-1-36-with-hostusers-false.html Sat, 06 Jun 2026 00:00:00 +0000 A hands-on guide to enabling user namespaces in Kubernetes 1.36, the kernel 6.3 and containerd 2.0 prerequisites, the /etc/subuid math, and the silent failures. https://indragustiprasetya.com/blog/non-human-identity-governance-field-tips-for-2026.html https://indragustiprasetya.com/blog/non-human-identity-governance-field-tips-for-2026.html Sat, 06 Jun 2026 00:00:00 +0000 How to discover, scope, and govern service accounts, API keys, tokens, and AI agents before machine credentials become your breach path. https://indragustiprasetya.com/blog/harden-mcp-servers-against-tool-poisoning.html https://indragustiprasetya.com/blog/harden-mcp-servers-against-tool-poisoning.html Sat, 06 Jun 2026 00:00:00 +0000 A practical 2026 guide to securing MCP servers: inspect tool descriptions, scan for poisoning, pin versions against rug pulls, and add a runtime guardrail. https://indragustiprasetya.com/blog/kubernetes-hardening-2026-rbac-pss-unfixed-cves.html https://indragustiprasetya.com/blog/kubernetes-hardening-2026-rbac-pss-unfixed-cves.html Sat, 06 Jun 2026 00:00:00 +0000 Battle-tested Kubernetes hardening for 2026: enforce Pod Security Standards, fix over-permissive RBAC, default-deny networking, and mitigate the CVEs nobody will patch. https://indragustiprasetya.com/blog/sandboxing-ai-agent-code-a-2026-runtime-guide.html https://indragustiprasetya.com/blog/sandboxing-ai-agent-code-a-2026-runtime-guide.html Sat, 06 Jun 2026 00:00:00 +0000 AI agent sandboxes isolate untrusted AI-generated code with Firecracker microVMs and gVisor. Here's how to pick an execution runtime in 2026. https://indragustiprasetya.com/blog/post-quantum-migration-2026-deadlines.html https://indragustiprasetya.com/blog/post-quantum-migration-2026-deadlines.html Fri, 05 Jun 2026 00:00:00 +0000 NIST's finalized post-quantum standards plus FIPS and CNSA 2.0 deadlines put RSA and ECC on a countdown. Here's why 2026 is the year to start migrating. https://indragustiprasetya.com/blog/typescript-overtakes-python-github-2026.html https://indragustiprasetya.com/blog/typescript-overtakes-python-github-2026.html Fri, 05 Jun 2026 00:00:00 +0000 TypeScript passed Python as the most-used language on GitHub in August 2025, and the data points straight at AI-assisted coding as the reason. https://indragustiprasetya.com/blog/ai-data-center-power-crisis-2026.html https://indragustiprasetya.com/blog/ai-data-center-power-crisis-2026.html Fri, 05 Jun 2026 00:00:00 +0000 Hyperscalers will spend $650B on AI infrastructure in 2026, but 7 GW of announced capacity sits stranded behind transformer shortages and grid queues. https://indragustiprasetya.com/blog/dependency-cooldowns-beat-fast-supply-chain-attacks.html https://indragustiprasetya.com/blog/dependency-cooldowns-beat-fast-supply-chain-attacks.html Fri, 05 Jun 2026 00:00:00 +0000 Dependency cooldowns delay installing brand-new package versions a few days, blocking most npm and RubyGems supply chain attacks before malware lands. https://indragustiprasetya.com/blog/ai-agent-weakest-login-2026.html https://indragustiprasetya.com/blog/ai-agent-weakest-login-2026.html Fri, 05 Jun 2026 00:00:00 +0000 88% of enterprises hit an AI agent security incident in the past year. The cause isn't exotic attacks, it's identities nobody logged out or audited. https://indragustiprasetya.com/blog/webmcp-chrome-149-origin-trial.html https://indragustiprasetya.com/blog/webmcp-chrome-149-origin-trial.html Fri, 05 Jun 2026 00:00:00 +0000 Chrome 149's origin trial ships WebMCP, the Google, Microsoft API that lets sites declare callable tools to AI agents instead of being screenshotted and guessed at. https://indragustiprasetya.com/blog/durable-execution-is-moving-into-postgres.html https://indragustiprasetya.com/blog/durable-execution-is-moving-into-postgres.html Fri, 05 Jun 2026 00:00:00 +0000 Microsoft's pg_durable, DBOS, and Temporal are pushing crash-proof, exactly-once workflows into Postgres in 2026. Here's how to choose.