The InfoQ Podcast

Simon Ritter, Deputy CTO at Azul and a Java veteran since Sun Microsystems, shares his insights on OpenJDK and the JCP Expert Group. He delves into the six-month release cycle, highlighting innovative features like Generational Shenandoah and JDK Flight Recorder. Simon discusses Project Leyden's caching strategy and CRaC's checkpoint approach. He also touches on advances in the Vector API, pattern matching updates, and the benefits of compact object headers. With his deep knowledge, Simon illuminates the future of Java development.

Will McGugan, creator of the Rich and Textual libraries, dives into his journey from early computing on a ZX Spectrum to revolutionizing terminal interfaces. He discusses the motivation behind Rich and Textual, emphasizing the need for interactivity in terminal applications. Highlighting his latest project, Toad, he envisions a more user-friendly command-line experience interacting with agentic LLMs. McGugan also addresses creative design challenges in terminal constraints and how Toad aims to streamline agent interactions, making it accessible for developers.

Karthik Ramgopal, LinkedIn's platform engineering lead, and Prince Valluri, an engineer focused on developer experience, dive into the world of AI agents. They discuss LinkedIn's unified agent platform, designed to enhance security and scalability. The duo explains the difference between foreground and background agents, and how these tools reduce developer toil. They also highlight the Model Context Protocol (MCP) as crucial for standardizing interactions across systems. Practical insights on improving developer experience and effective agent orchestration round out this compelling discussion.

Gabriele Colombo, the General Manager of Linux Foundation Europe, dives into the open-source landscape, highlighting Europe's contributor strength amid a funding gap compared to the US and China. He discusses the importance of local collaboration for global innovation and uses Neonethos as an example of successful EU-funded projects. Gabriele also addresses the Cyber Resilience Act's implications for small businesses and the need for diversified funding. Lastly, he touches on the emerging relationship between AI and open source, paving the way for future opportunities.

Shuman Ghosemajumder, Founder and CEO of Reckon and former head of Google’s Trust & Safety group, dives into the challenges of preserving digital trust. He highlights the alarming rise of deepfakes and automated social engineering in cybercrime, stressing the need for enhanced defenses. Shuman suggests leveraging behavioral telemetry and game theory to outsmart attackers. He also discusses the risks posed by generative AI in fraud, advocating for a zero-trust approach and smarter resource allocation in security strategies.

David Blank-Edelman, a leading figure in site reliability engineering (SRE) with nearly 40 years of operations experience, dives into the intricate relationship between software architecture and SRE. He challenges the conventional idea of seeking root causes for failures, emphasizing instead the importance of understanding what works in a system. The discussion highlights designing for reliability, embracing emergent properties, and learning from successes as pivotal to improving system resilience and collaboration between architects and SREs.

Vivek Yadav, an engineering manager at Stripe, shares his expertise in crafting a multi-year regression testing framework using Apache Spark. He highlights the importance of testing migrations against extensive historical data to avoid user regressions. Spark's parallel processing capabilities allow efficient bulk request replays. Vivek discusses the design of reusable libraries and controlled testing environments, boosting developer confidence while maintaining low costs compared to traditional database methods. He emphasizes the framework's versatility for what-if analyses and projections.

Marina Moore, a research scientist at Adara and co-chair of the CNCF Security & Compliance TAG, dives into the vulnerabilities of container security. She discusses the risks tied to sharing the host kernel and advocates for micro-VMs as a solution to reduce attack surfaces. Marina highlights the dangers of GPU inference in multi-tenant environments and critiques current isolation techniques. She also emphasizes the potential of using memory-safe languages like Rust to enhance security in cloud architectures.

In a compelling discussion, Randy Shoup, a seasoned distributed-systems architect with experience at eBay and Google, delves into the importance of learning from software failures. He advocates for blameless postmortems to foster culture and resilience. Randy shares practical strategies, like a five-step postmortem framework for understanding outages. He emphasizes modeling real-world asynchronous systems through workflows and events for better reliability, and discusses how shared trauma can enhance team cohesion in the wake of failures.

Magdalena Picariello, an AI practitioner and academic, emphasizes making AI development more business-impactful. She discusses the need to shift from traditional metrics to evaluating real-world business outcomes. Magdalena talks about implementing iterative testing systems for generative AI and prioritizing high-value edge cases. She shares insights on a data-driven, test-first approach, the importance of human-crafted tests, and tools for effective evaluation. Lastly, she highlights translating business KPIs into code to ensure alignment with user needs.