Marco Franssen is een ervaren softwareontwikkelaar uit Zuid-Nederland, actief sinds 2009. Hij deelt zijn kennis via blogs, open source bijdragen en tutorials over softwareontwikkeling, programmeren en ICT. Buiten werk geniet hij van duiken, reizen en fotografie, en combineert hij techniek met persoonlijke passie.
74 articles from this blog
Introducing spiffe-vault, a CLI tool for secretless and keyless software supply chain security using SPIFFE and HashiCorp Vault.
Explains using OCI registries to store SBOMs and build provenance for non-Docker packages like npm, using Cosign for security.
A technical guide on securing software supply chains using Sigstore for signing and GitHub Actions for implementing SLSA requirements.
A guide to configuring multiple Git commit email addresses globally, using folder-based conditional includes in your .gitconfig.
A tutorial on using Helmsman, a GitOps tool, to manage and deploy Helm charts to Kubernetes from version-controlled configuration files.
A technical guide on deploying a high-availability HashiCorp Vault cluster on AWS EKS using Helm, Consul, and AWS KMS for auto-unsealing.
A technical guide on deploying HashiCorp Vault on Kubernetes using Helm, starting with a local development setup.
A technical guide comparing SSH key algorithms (RSA, ECDSA, Ed25519) and providing recommendations for generating secure keys in a DevOps context.
A tutorial on implementing enum-like behavior in Go using custom types and iota for type safety and better API design.
A developer details his migration from the Hexo static site generator to Next.js, highlighting the technical challenges and benefits of the new framework.
A guide to using git-filter-repo, the recommended tool for permanently removing files (like credentials or large assets) from your Git repository history.
Nginx 1.19 Docker images now support environment variables and templates, enabling dynamic configuration for proxying APIs in containerized apps.
A tutorial on setting up a load-balanced Elasticsearch cluster using Docker Compose and Traefik for simplified networking.
Explains how to use the ACME DNS-01 challenge to obtain TLS certificates from Let's Encrypt without exposing your web server to the internet.
A tutorial on building a Go webserver with HTTP/2 support using both self-signed and Letsencrypt certificates for development and production.
A guide to configuring Nginx with HTTP/2 to properly serve a React Single Page Application using React Router, including performance tuning with server push.
A guide to using Docker Content Trust (DCT) to digitally sign Docker images, ensuring integrity and publisher authenticity.
A tutorial on setting up two-factor authentication for SSH and PGP keys using the Krypton tool, storing keys on a mobile device.
A guide to using SSH efficiently from the terminal, covering key generation, SSH agent setup, and best practices for secure remote access.
A guide on using Go modules to manage and version development tools for Go projects, ensuring consistency across teams and CI/CD pipelines.
