Screaming in the Cloud

Adam Zimman, Head of Product Marketing at Heroku, shares insights on the platform's revitalization after its Salesforce acquisition. He discusses how a renewed focus on developer experience signals a comeback, alongside the retirement of Heroku's free tier. The conversation dives into Heroku's significant role in modern app development and the introduction of key updates like Kubernetes support and AI tools. Adam also teases his upcoming book, "Progressive Delivery," highlighting innovative strategies for software development.

In a captivating discussion, Dai Wakabayashi, a seasoned tech journalist at The New York Times, dives into the intricacies of tech reporting. He reflects on his 2019 article about AWS and how the platform’s role shifted dramatically. The conversation highlights the challenges of capturing the nuances of open source in journalism and why Amazon should welcome scrutiny as a trillion-dollar giant. Dai shares insights on negotiating relationships with tech companies and underscores the vital role of journalists in speaking truth to power.

Rich Burroughs, a tech expert and host of the Kube Cuddle podcast, shares his insights on navigating the complexities of Kubernetes and its impact on developer workflows. He discusses the unique challenges of working in small versus large companies, emphasizing broader responsibilities in startups. Rich also opens up about living with ADHD, offering personal anecdotes on its effect on his career and mental health. The conversation highlights the importance of self-acceptance and the transformative power of community engagement in tech.

In this discussion, Nick Frichette, a Staff Security Researcher at Datadog specializing in offensive AWS security, shares his insights on the dynamic field of cloud security. He delves into the various roles of cloud security researchers and highlights the thrill of discovering vulnerabilities in AWS environments. Nick introduces his project, Hacking the Cloud, and emphasizes the importance of ethical vulnerability reporting. Listeners will enjoy anecdotes about AWS exploits, the nuances of legal permissions for penetration testing, and the significance of building rapport with cloud providers.

Nipun Agarwal, Senior Vice President of MySQL HeatWave Development at Oracle, discusses the innovative MySQL HeatWave and its seamless integration with AWS. He reveals how it streamlines transactions, analytics, and machine learning while cutting costs for users. Nipun also highlights Oracle's strategy to make database transitions more accessible, the significance of customer feedback, and the optimization of HeatWave for enhanced performance and competitive pricing. His insights make it clear why HeatWave stands out in the crowded database landscape.

Andrew Brown, co-founder and cloud instructor at ExamPro Training Inc., passionately discusses his mission to provide free cloud education. He shares insights on managing his online presence while emphasizing community support over profit. Andrew critiques the reliance on certifications, advocating for real-world experience instead. The conversation also explores the value of multi-cloud learning and the challenges of navigating different platforms, pushing the notion that authentic teaching and collaboration are key to advancing in cloud technologies.

In this discussion, Paulus Schoutsen, the mastermind behind Home Assistant and president of the Open Home Foundation, shares insights on creating a user-centric smart home platform focused on privacy and customization. He reflects on the evolution from a simple Python script to a vibrant community of 1.6 million users. Paulus highlights how avoiding corporate investors allows for independence and robust user control. He also emphasizes the significance of open standards and community engagement in transforming home automation into a more accessible and sustainable solution.

Tobi Knaup, VP & General Manager of Cloud Native at Nutanix and co-founder of D2iQ, shares insights on the importance of multi-cloud strategies. He highlights the Kubernetes community's vital role in widespread adoption and warns against relying solely on Kubernetes. Tobi discusses the branding challenges of D2iQ's evolution from Mesosphere, and emphasizes that compliance and unique features are driving multi-cloud adoption. He also reflects on how tech founders adapt to shifting landscapes and regulatory requirements.

Spencer Kimball, CEO and co-founder of Cockroach Labs, shares insights on database resilience as outlined in the State of Resilience 2025 report. He discusses rising operational concerns, costly outages, and the necessity of robust modern strategies like active-active configurations. Spencer emphasizes the growing regulatory pressures, especially from the EU’s Digital Operational Resilience Act, while advocating for multi-cloud approaches. Despite the complexities, he aims to empower organizations in adapting to dynamic demands without compromising customer trust.

On this Screaming in the Cloud In this episode of Screaming in the Cloud, Corey Quinn is joined by AWS container hero and security engineer at the Python Software Foundation, Mike Fiedler. They delve into the intricacies of Python's ecosystem, discussing the evolution of PyPI, its significance, and the ongoing battles against security threats like account takeover attacks and typo-squatting. Mike sheds light on his role in maintaining the security and reliability of the Python Package Index, the importance of 2FA, and the collaborative efforts with security researchers. Corey and Mike also explore the challenges and philosophies surrounding legacy systems versus greenfield development, with insights on maintaining critical infrastructure and the often-overlooked aspects of social engineering.Show Highlights(0:00) Introduction(0:47) The Duckbill Group sponsor read(1:21) Breaking down the Python nomenclature and its usability(5:49) Figuring out how Boto3 is one of the most downloaded packages(6:43) Why Mike is the only full-time security and safety engineer at the Python Software Foundation(9:53) How the Python Software Foundation affords to operate(14:17) Mike's stack security work(16:14) The Duckbill Group sponsor read(16:57) Having the "impossible job" of stopping supply chain attacks(21:00) The dangers of social engineering attacks(24:44) Why Mike prefers to work on legacy systems(33:30) Where you can find more from MikeAbout Mike FiedlerMike Fiedler is a highly analytical, forward-thinking Information Technology professional. His broad-based background includes systems administration and engineering in global environments. Mike is technically astute and versatile with ability to quickly learn, master, and leverage new technologies to meet business needs and has a track record of success in improving performance, stability, and security for all infrastructure and product initiatives.Mike is also bilingual, speaks English and Hebrew, and he loves solving puzzling problems.LinksMike’s Mastadon: https://hachyderm.io/@mikethemanMike’s Bluesky: https://bsky.app/profile/miketheman.comMike’s Python Software Foundation blog posts: https://blog.pypi.org/The Python Package Index Safety & Security Engineer: First Year in Review: https://blog.pypi.org/posts/2024-08-16-safety-and-security-engineer-year-in-review/SponsorThe Duckbill Group: duckbillgroup.com