https://www.lucavallin.com/blog/tags/cncf Platform Engineer at Xebia, focused on AI platform engineering - the infrastructure behind reliable, observable, scalable AI and cloud-native workloads. I work primarily in Go and Google Cloud, with deep experience in Kubernetes, containers, and end-to-end observability - and a strong interest in networking and lower-level systems work in Rust. My current focus is the platform layer beneath AI: inference serving infrastructure on Kubernetes, AI gateway and MCP connectivity, agentic workload orchestration, and end-to-end observability for GenAI systems. My broader experience is full-stack: strong on backend, with solid frontend and mobile knowledge. I contribute to open source, write on my blog, and pick up the occasional talk, training, or meetup when something interesting comes up. I'm a Google Developer Expert (GDE) and a CNCF Ambassador. For a deeper dive, see my blog. If you're new to open source, check out Verto.sh. For mentorship, I'm on Mentorcruise. Outside of work, activities like photography, motorcycling, playing a handpan and cleaning litterboxes keep me occupied 🐈. en-us Luca Cavallin Luca Cavallin Thu, 06 Feb 2025 00:00:00 GMT https://www.lucavallin.com/blog/opentelemetry-a-guide-to-observability-with-go https://www.lucavallin.com/blog/opentelemetry-a-guide-to-observability-with-go Modern applications are often complex, distributed systems. Debugging them is not fun: you have to follow requests across services, logs get lost, and metrics are often hard to correlate. It's like looking for a needle in a haystack - except the haystack is on fire, and the needle keeps moving. This is where OpenTelemetry (OTel) can help. Thu, 06 Feb 2025 00:00:00 GMT Luca Cavallin goobservabilitycncf https://www.lucavallin.com/blog/my-post-about-istio-is-now-on-the-istio-blog-too https://www.lucavallin.com/blog/my-post-about-istio-is-now-on-the-istio-blog-too A few months ago I published a post titled "The Istio Service Mesh for People Who Have Stuff to Do". The post was well-received and it's now available on the Istio.io blog too. Tue, 03 Dec 2024 00:00:00 GMT Luca Cavallin service-meshopen-sourcecncf https://www.lucavallin.com/blog/the-istio-service-mesh-for-people-who-have-stuff-to-do https://www.lucavallin.com/blog/the-istio-service-mesh-for-people-who-have-stuff-to-do I recently made a contribution to Istio, an open-source service mesh that simplifies managing microservices. In this post, I explain how Istio handles traffic routing, security with mTLS, and observability, making complex systems more resilient and efficient. Sat, 21 Sep 2024 00:00:00 GMT Luca Cavallin service-meshopen-sourcecncf https://www.lucavallin.com/blog/things-i-learned-about-terraform-that-i-keep-telling-people-about https://www.lucavallin.com/blog/things-i-learned-about-terraform-that-i-keep-telling-people-about I've been working with Terraform for a while now, and I've noticed that there are a few things that I keep telling people about. I thought it would be helpful to write a blog post about some of the most common questions I get asked and share some of the things I've learned along the way. Wed, 10 Jul 2024 00:00:00 GMT Luca Cavallin terraformcloud-nativecncf https://www.lucavallin.com/blog/ci-cd-observability-on-github-actions-and-the-role-of-opentelemetry https://www.lucavallin.com/blog/ci-cd-observability-on-github-actions-and-the-role-of-opentelemetry CI/CD observability provides insights into the performance and health of CI/CD pipelines, helping teams detect issues early and improve efficiency. A few options are currently available on the GitHub Actions marketplace to integrate OpenTelemetry into CI/CD workflows. Fri, 17 May 2024 00:00:00 GMT Luca Cavallin cicdgithubgithub-actionscncfobservability https://www.lucavallin.com/blog/i-am-a-cncf-cloud-native-computing-foundation-ambassador https://www.lucavallin.com/blog/i-am-a-cncf-cloud-native-computing-foundation-ambassador I am very happy to announce that I have been selected as a CNCF (Cloud Native Computing Foundation) Ambassador - a long-standing goal of mine! Tue, 30 Apr 2024 00:00:00 GMT Luca Cavallin announcementcncf https://www.lucavallin.com/blog/kubefm-podcast-lucavallin-barco-containers-from-scratch-in-c https://www.lucavallin.com/blog/kubefm-podcast-lucavallin-barco-containers-from-scratch-in-c KubeFM recently invited me to talk about my project "barco: Linux Containers From Scratch in C". In this episode, I talk about why Linux containers don't exist, how to use cgroups and namespaces to isolate a process, how to secure the container with seccomp and capabilities, and how to make the right syscall from C to build your own container engine. Thank you, KubeFM, for having me! Wed, 24 Jan 2024 00:00:00 GMT Luca Cavallin podcastcontainerslinuxcloud-nativecncfkubernetes https://www.lucavallin.com/blog/how-to-configure-oidc-with-terraform-for-github-enterprise-server https://www.lucavallin.com/blog/how-to-configure-oidc-with-terraform-for-github-enterprise-server OpenID Connect (OIDC) is an authentication protocol that extends OAuth 2.0, providing a solid and standardized method for authentication often involving an ID token in the JWT (JSON Web Token) format. OIDC is the recommended way to authenticate with GitHub Enterprise Server when setting up GitHub Actions. Since the setup can be tricky, I've created a Terraform configuration that makes it easier to get started. Sun, 31 Dec 2023 00:00:00 GMT Luca Cavallin githubgithub-actionsterraformsecuritycloud-nativecncf https://www.lucavallin.com/blog/barco-linux-containers-from-scratch-in-c https://www.lucavallin.com/blog/barco-linux-containers-from-scratch-in-c A straightforward C implementation of a container runtime, built from the ground up to explore containers and the Linux Kernel. Sun, 17 Sep 2023 00:00:00 GMT Luca Cavallin clinuxcontainerscncf https://www.lucavallin.com/blog/how-to-create-a-release-with-multiple-artifacts-from-a-github-actions-workflow-using-the-matrix-strategy https://www.lucavallin.com/blog/how-to-create-a-release-with-multiple-artifacts-from-a-github-actions-workflow-using-the-matrix-strategy Find out how I managed to create a release with executables suitable for different operating systems all within a single workflow run. Fri, 25 Aug 2023 00:00:00 GMT Luca Cavallin gitdevopsrustgithub-actionscncf https://www.lucavallin.com/blog/what-is-google-cloud-deploy https://www.lucavallin.com/blog/what-is-google-cloud-deploy Simplifying container-based app development on Google Kubernetes Engine (GKE) with Cloud Deploy. Thu, 09 Dec 2021 00:00:00 GMT Luca Cavallin kubernetesgoogle-cloudcicdcloudcncf https://www.lucavallin.com/blog/what-is-gitops https://www.lucavallin.com/blog/what-is-gitops GitOps is an operational approach combining DevOps best practices like CI/CD, version control, and teamwork. Thu, 02 Dec 2021 00:00:00 GMT Luca Cavallin deploymentgitdevopscicdcncf https://www.lucavallin.com/blog/how-to-read-firestore-events-with-cloud-functions-and-golang https://www.lucavallin.com/blog/how-to-read-firestore-events-with-cloud-functions-and-golang Learn how I used Golang and Cloud Functions to Read Firestore events published to the Cloud by my Raspberry Pi. Tue, 27 Jul 2021 00:00:00 GMT Luca Cavallin gogoogle-cloudserverlessterraformfirestorecncf https://www.lucavallin.com/blog/google-cloud-pubsub-vs-nats-an-easy-to-understand-comparison https://www.lucavallin.com/blog/google-cloud-pubsub-vs-nats-an-easy-to-understand-comparison Examining messaging options for scalable, event-based systems: features, advantages, disadvantages, and costs. Mon, 26 Jul 2021 00:00:00 GMT Luca Cavallin message-queuearchitecturegoogle-cloudcncf https://www.lucavallin.com/blog/how-to-deploy-a-multi-cluster-service-mesh-on-gke-with-anthos https://www.lucavallin.com/blog/how-to-deploy-a-multi-cluster-service-mesh-on-gke-with-anthos A detailed guide on deploying a multi-cluster, multi-region service mesh with Anthos Service Mesh on GKE. Fri, 23 Jul 2021 00:00:00 GMT Luca Cavallin google-cloudkubernetesservice-meshcncf https://www.lucavallin.com/blog/how-to-safely-store-secrets-in-terraform-using-cloud-kms https://www.lucavallin.com/blog/how-to-safely-store-secrets-in-terraform-using-cloud-kms Protecting Terraform secrets using Cloud KMS for seamless git commit experience. Sun, 04 Jul 2021 00:00:00 GMT Luca Cavallin securitygitgoogle-cloudterraformcncf https://www.lucavallin.com/blog/how-to-use-terraform-workspaces-to-manage-environment-based-configuration https://www.lucavallin.com/blog/how-to-use-terraform-workspaces-to-manage-environment-based-configuration Find out how to make managing infrastructure in multiple environments easier with Terraform Workspaces, without using regular modules. Fri, 11 Jun 2021 00:00:00 GMT Luca Cavallin clouddevopsinfrastructureterraformcncf