Virtual workshops
Speeding platform engineering adoption with CNOE
Speeding platform engineering adoption with CNOE
This session introduces the Cloud Native Operational Excellence (CNOE) framework for building Internal Developer Platforms (IDPs) and shows how to deploy and use it locally, and in the cloud.
Platform engineering has been a hot topic for the last few years. It provides faster software delivery, while guaranteeing consistency and standardization, and improves the overall developer experience. However, building a platform from scratch is challenging, involving many critical choices that can significantly impact long-term performance and adoption.
Join Miguel Fontanilla, Platform Engineering Lead at Sennder, as he explores the value of learning from teams and companies that have pioneered platform engineering. This is where CNOE comes in: a framework for building IDPs that relies on best practices and experience from reference companies in the Platform Engineering area. It enables you to provision and test different stacks for internal platforms, based on CNCF technologies. This session's objective is to present CNOE, its concepts, architecture, and demonstrate an example platform deployed to an AWS environment, giving you practical insights into implementing this framework in your own organization.
Join Miguel Fontanilla, Platform Engineering Lead at Sennder, as he explores the value of learning from teams and companies that have pioneered platform engineering. This is where CNOE comes in: a framework for building IDPs that relies on best practices and experience from reference companies in the Platform Engineering area. It enables you to provision and test different stacks for internal platforms, based on CNCF technologies. This session's objective is to present CNOE, its concepts, architecture, and demonstrate an example platform deployed to an AWS environment, giving you practical insights into implementing this framework in your own organization.
Miguel Fontanilla
Platform Engineering Lead, Sennder
How to build reliable AI-powered developer workflows
How to build reliable AI-powered developer workflows
AI agents can summarize and automate but without platform standards, their impact is unpredictable.
In this session, we’ll explore how to deliver secure, predictable, and repeatable developer experiences using AI-powered interactions grounded in golden paths and reference architectures..
In this hands-on session, you will:
• Explore the concept of predictable golden paths for Internal Developer Platforms
• Learn how to shrink wrap MCP server capabilities and automation practices into a repeatable, reliable developer workflow
• Use a chatbot-like interface inside your IDE (based on Canyon) to guide developers through dynamic, tutorial-style interactions
To support this, we’ll introduce an adopted reference architecture and show why platform standards are essential for stable and hallucination-free AI. You’ll also hear about common challenges teams face when introducing these patterns and how to overcome them.
• Explore the concept of predictable golden paths for Internal Developer Platforms
• Learn how to shrink wrap MCP server capabilities and automation practices into a repeatable, reliable developer workflow
• Use a chatbot-like interface inside your IDE (based on Canyon) to guide developers through dynamic, tutorial-style interactions
To support this, we’ll introduce an adopted reference architecture and show why platform standards are essential for stable and hallucination-free AI. You’ll also hear about common challenges teams face when introducing these patterns and how to overcome them.
Clemens Jütte
Platform Architect, Humanitec
How to build a CI from the ground up (as good as the hyperscalers)
How to build a CI from the ground up (as good as the hyperscalers)
For many developers, setting up CI means enabling the Jenkins k8s plugin and being on your way. But for those with exceptional requirements, it is necessary to build the system from the ground up.
Bitrise is a CI/CD company serving mobile app developers of all sizes. Apple requires iOS apps to be built on Macs, a constraint that pushed Bitrise to build the full CI stack.
This session offers a layer-by-layer conceptual guide to constructing a CI system. The Bitrise team, composed of cross-functional software and infrastructure engineers, combined disciplines to create a platform that performs on par with the best hyperscalers.
Join this soup-to-nuts tour to understand how all components fit together and how to achieve high performance from the system.
This session offers a layer-by-layer conceptual guide to constructing a CI system. The Bitrise team, composed of cross-functional software and infrastructure engineers, combined disciplines to create a platform that performs on par with the best hyperscalers.
Join this soup-to-nuts tour to understand how all components fit together and how to achieve high performance from the system.
Szabolcs Gelencser
Tech Lead, Bitrise Platform
Peter Hasko-Nagy
Staff Engineer, Bitrise
Building an intelligent cloud assistant: Creating an AI-powered Slackbot that knows your cloud
Building an intelligent cloud assistant: Creating an AI-powered Slackbot that knows your cloud
Learn to build an open-source AI Slackbot that leverages your platform team's knowledge base and integrates with Firefly to provide real-time cloud infrastructure insights, automations, and policy compliance information.
In this hands-on workshop, participants will create an intelligent Slackbot that transforms how teams interact with their cloud infrastructure. Using open-source tools and Firefly's powerful cloud management capabilities, you'll build a conversational interface that enables teams to query cloud assets, detect drift, check policy compliance, and trigger remediations—all through natural language in Slack.
The workshop covers setting up a knowledge base from your team's documentation, implementing an AI assistant using open-source frameworks, and connecting to Firefly's API to perform real-time cloud operations. Learn how to empower your organization with self-service infrastructure insights while maintaining governance guardrails.
The workshop covers setting up a knowledge base from your team's documentation, implementing an AI assistant using open-source frameworks, and connecting to Firefly's API to perform real-time cloud operations. Learn how to empower your organization with self-service infrastructure insights while maintaining governance guardrails.
Eran Bibi
Co-Founder & CPTO, Firefly
Yuval Fatal
Product Manager, Firefly
How to make self-service infrastructure 10X easier for developers
How to make self-service infrastructure 10X easier for developers
Discover how self-service infrastructure transforms deployment speed from days to minutes. Learn key concepts behind generative IaC, shift-left security, and automation that platform teams use to eliminate bottlenecks while maintaining governance.
Transform how your team deploys infrastructure with this comprehensive 90-minute workshop on generative Infrastructure as Code. Learn proven strategies to implement self-service infrastructure that increases developer velocity while maintaining security and governance.
What you'll learn:
- Shift-left infrastructure principles and implementation
- Modular, reusable infrastructure design patterns
- Security and compliance automation strategies
- Real-world deployment acceleration techniques
This hands-on session includes live demos, practical examples, and actionable frameworks perfect for platform engineers, DevOps teams, and engineering leaders looking to eliminate infrastructure bottlenecks. Leave with a clear roadmap you can implement immediately.
What you'll learn:
- Shift-left infrastructure principles and implementation
- Modular, reusable infrastructure design patterns
- Security and compliance automation strategies
- Real-world deployment acceleration techniques
This hands-on session includes live demos, practical examples, and actionable frameworks perfect for platform engineers, DevOps teams, and engineering leaders looking to eliminate infrastructure bottlenecks. Leave with a clear roadmap you can implement immediately.
Arunav Sarkar
Founding Solutions Engineer, StackGen
Dharani Vijayakumar
Principal Product Manager, StackGen
Unifying siloed operations with infrastructure orchestration
Unifying siloed operations with infrastructure orchestration
This workshop will be an in-depth demo of the Spacelift platform, led by Jake Johnson, Solutions Engineer at Spacelift. Sign up for a trial account and follow along!
Spacelift is an infrastructure orchestration platform that streamlines your entire infrastructure workflow: from provisioning, to configuration management and ongoing governance.
In this virtual workshop, Spacelift Solutions Engineer Jake Johnson will demonstrate how to orchestrate infrastructure with Spacelift. The workshop will cover:
An overview of the Spacelift platform, including core concepts such as Stacks and how they fit into workflows.
The process of integrating provisioning and configuration automation tools using stack dependencies.
How to enable developers to provision and manage infrastructure through repeatable, governed self-service workflows.
A powerful Terraform and Ansible workflow that allows you to provision and configure infrastructure within a single process.
Join this session to learn how Spacelift extends IaC management beyond provisioning, breaking down operational silos and enabling true infrastructure orchestration.
In this virtual workshop, Spacelift Solutions Engineer Jake Johnson will demonstrate how to orchestrate infrastructure with Spacelift. The workshop will cover:
An overview of the Spacelift platform, including core concepts such as Stacks and how they fit into workflows.
The process of integrating provisioning and configuration automation tools using stack dependencies.
How to enable developers to provision and manage infrastructure through repeatable, governed self-service workflows.
A powerful Terraform and Ansible workflow that allows you to provision and configure infrastructure within a single process.
Join this session to learn how Spacelift extends IaC management beyond provisioning, breaking down operational silos and enabling true infrastructure orchestration.
Jake Johnson
Solutions Engineer, Spacelift
Your guide to golden paths: 3 interactive labs to get started
Your guide to golden paths: 3 interactive labs to get started
Get hands-on experience building three golden paths. In addition to demoing two labs that attendees will be able to complete at home, this workshop will give you hands-on experience creating a multi-tenant and multi-cluster platform through an interactive lab.
Join Ben Good and Ameenah Burhan, Solutions Architects at Google Cloud, for a hands-on workshop on creating a series of golden paths. They will explore key strategies for building robust, scalable platforms through a mix of demos and interactive labs.
This workshop will cover three labs:
1. Enabling canary deployments for app developers
2. Automating secrets management
3. Creating a multi-tenant and multi-cluster platform.
After demoing the first two labs, all attendees will be given the materials needed to complete them at home at their own pace. The majority of this workshop will be focused on the third lab, creating a multi-tenant and multi-cluster platform.
Join them to transform your platform engineering practices and learn how to build three golden paths.
This workshop will cover three labs:
1. Enabling canary deployments for app developers
2. Automating secrets management
3. Creating a multi-tenant and multi-cluster platform.
After demoing the first two labs, all attendees will be given the materials needed to complete them at home at their own pace. The majority of this workshop will be focused on the third lab, creating a multi-tenant and multi-cluster platform.
Join them to transform your platform engineering practices and learn how to build three golden paths.
Ben Good
Solutions Architect, Google Cloud
Ameenah Burhan
Solutions Architect, Google Cloud
Measuring the impact of AI with engineering insights
Measuring the impact of AI with engineering insights
Stop chasing vanity metrics that don't move the needle! Discover the secret to connecting engineering work with real business impact. Learn battle-tested frameworks that top tech companies use to measure what actually matters and drive results.
Are your engineering metrics actually driving business results, or just creating beautiful dashboards? Most organizations are drowning in data but starving for insights. This talk reveals the hidden frameworks that companies like Google, LinkedIn, and Netflix use to transform engineering metrics into competitive advantage. You'll discover how to escape the "metric theater" trap, avoid the dangerous pitfalls that make teams game the system, and build measurement strategies that developers actually trust. Walk away with actionable techniques for connecting DORA metrics to revenue, turning developer frustration into productivity gold, and building the kind of insights-driven culture that separates industry leaders from the pack. Stop measuring everything and start measuring what moves your business forward.
Chris Westerhold
Global Practice Director, Thoughtworks
Justin Reock
Deputy CTO, DX
Destroyable demos: The Dynatrace demo platform
Destroyable demos: The Dynatrace demo platform
Build a working cloud-based, run for free, throwaway cluster with platform engineering best practices baked in and ready to scale at your organisation. Attendees will leave with a working repo and a blueprint to start their own destroyable demos journey.
Join Adam Gardner as he reveals how and why Dynatrace treats their throwaway demo environments as a product engineering exercise. You'll discover their journey, understanding why this transformation was necessary and why the timing was crucial. Adam will share the organizational and human challenges they've overcome, along with those they're still navigating, covering testing at scale, golden paths, and efficient adoption tracking methods.
This hands-on session walks through their open source code, leveraging numerous CNCF tools. You'll explore the environmental sustainability benefits of this approach and discuss future developments in this space.
You'll leave with access to Git repositories containing the templates, empowering you to begin this transformation within your own organization.
This hands-on session walks through their open source code, leveraging numerous CNCF tools. You'll explore the environmental sustainability benefits of this approach and discuss future developments in this space.
You'll leave with access to Git repositories containing the templates, empowering you to begin this transformation within your own organization.
Adam Gardner
Open Observability and Security, Dynatrace
CNOE in action: Fast-tracking IDP development
CNOE in action: Fast-tracking IDP development
Discover how IDPBuilder streamlines Internal Developer Platform (IDP) creation with CNOE’s all-in-one binary. Leverage Kubernetes locally, ensure API consistency across environments, and power CI pipeline tests without cloud setup delays or fragile scripts.
Join Hossein Salahi, Lead Platform Engineer at Liquid Reply, as he demonstrates how CNOE's all-in-one binary can redefine the way IDPs are built, leveraging Kubernetes' native capabilities right on our local machines. This workshop introduces IDPBuilder, a tool that quickly sets up the CNOE framework in minutes with just a container engine; you’ll learn how IDPBuilder simplifies platform development and maintenance, ensuring consistent API compatibility across all environments from local setups to production. Additionally, you’ll explore how it powers automated CI pipeline tests, removing the delays of cloud setup and eliminating fragile scripts.
Hossein Salahi
Lead Platform Engineer, Liquid Reply
Building the paved road: From manual provisioning to self-service platforms
Building the paved road: From manual provisioning to self-service platforms
Learn to leverage self-service developer platforms that eliminate provisioning bottlenecks. This hands-on workshop demonstrates how Terraform and templated CI/CD create secure "paved roads" for rapid project bootstrapping while maintaining organizational control.
Platform teams face a critical bottleneck: developers demand rapid project bootstrapping while maintaining security and consistency standards. Manual provisioning creates delays, inconsistent setups, and operational overhead that scales poorly across growing engineering organizations.
Join Derry Bradley, Senior Field Engineer at CircleCI, for a hands-on workshop demonstrating how to leverage end-to-end self-service infrastructure using Internal Developer Platforms (IDPs), where developers provision complete software pipelines through standardized templates while platform teams maintain governance and control.
In this workshop, you'll experience live demonstrations of architecting automated workflows that provision GitHub repositories, CircleCI projects, and deployment pipelines through a single interface. We'll explore how Terraform providers, templated configurations, and OIDC security create scalable "paved roads" that accelerate development velocity.
Key Learnings:
Architecture patterns for IDP-driven infrastructure provisioning
Implementing security layers with OIDC and restricted contexts
Creating reusable pipeline templates with flexible override capabilities
Leveraging CircleCI's MCP integration to reduce developer context switching
This approach transforms platform engineering from reactive ticket fulfillment to proactive enablement, allowing developers to self-serve infrastructure while ensuring organizational standards and security compliance remain intact.
Join Derry Bradley, Senior Field Engineer at CircleCI, for a hands-on workshop demonstrating how to leverage end-to-end self-service infrastructure using Internal Developer Platforms (IDPs), where developers provision complete software pipelines through standardized templates while platform teams maintain governance and control.
In this workshop, you'll experience live demonstrations of architecting automated workflows that provision GitHub repositories, CircleCI projects, and deployment pipelines through a single interface. We'll explore how Terraform providers, templated configurations, and OIDC security create scalable "paved roads" that accelerate development velocity.
Key Learnings:
Architecture patterns for IDP-driven infrastructure provisioning
Implementing security layers with OIDC and restricted contexts
Creating reusable pipeline templates with flexible override capabilities
Leveraging CircleCI's MCP integration to reduce developer context switching
This approach transforms platform engineering from reactive ticket fulfillment to proactive enablement, allowing developers to self-serve infrastructure while ensuring organizational standards and security compliance remain intact.
Derry Bradley
Senior Field Engineer, CircleCI
Eddie Webbinaro
Senior Director Field Engineering, CircleCI
Introduction to vCluster: Building Internal Developer Platforms (IDPs)
Introduction to vCluster: Building Internal Developer Platforms (IDPs)
The workshop introduces participants to vCluster, demonstrating how to create and manage virtual Kubernetes environments for multiple development teams.
Join Piotr Zaniewski, Head of Engineering Enablement at Loft Labs, in this hands-on workshop introducing vCluster and demonstrating how to create and manage virtual Kubernetes environments for multiple development teams. Throughout the workshop, you'll take on the perspective of a platform engineering team, making decisions and implementing solutions to serve various development groups within your organization.
The workshop covers key areas including introduction to vCluster and virtual Kubernetes clusters, setting up and configuring virtual Kubernetes clusters, managing multiple development environments, implementing shared services and optimizing resources, and enhancing developer workflows with self-service provisioning. You'll gain hands-on experience setting up and configuring virtual Kubernetes clusters, learn to manage multiple team environments efficiently, explore resource optimization and cost reduction strategies, implement progressive improvements to virtual cluster setups, and understand vCluster's role in enhancing developer productivity.
The workshop covers key areas including introduction to vCluster and virtual Kubernetes clusters, setting up and configuring virtual Kubernetes clusters, managing multiple development environments, implementing shared services and optimizing resources, and enhancing developer workflows with self-service provisioning. You'll gain hands-on experience setting up and configuring virtual Kubernetes clusters, learn to manage multiple team environments efficiently, explore resource optimization and cost reduction strategies, implement progressive improvements to virtual cluster setups, and understand vCluster's role in enhancing developer productivity.
Piotr Zaniewski
Head of Engineering Enablement, Loft Labs
Say goodbye to managed databases and hello to data sovereignty
Say goodbye to managed databases and hello to data sovereignty
Learn how to manage stateful applications like databases across cloud environments and reduce dependency on managed services that increase cognitive load for platform engineers by using Kubernetes.
Kubernetes provides a uniform API for deploying applications anywhere, making stateless workloads highly portable. However, many organizations still rely on cloud-managed database services for stateful workloads, limiting portability and increasing cognitive load for platform engineers managing multiple environments. This session explores how Kubernetes can manage stateful applications, reducing dependence on managed databases and unlocking true multi-cloud flexibility.
The 20-minute lecture will cover how cloud-managed services increase complexity and limit portability. The 60-minute hands-on lab will guide attendees through deploying a real-world stateful application with persistent storage across multiple clouds, demonstrating that cloud-managed services are not necessary for data. Attendees should bring their own laptops.
The 20-minute lecture will cover how cloud-managed services increase complexity and limit portability. The 60-minute hands-on lab will guide attendees through deploying a real-world stateful application with persistent storage across multiple clouds, demonstrating that cloud-managed services are not necessary for data. Attendees should bring their own laptops.
Eric Shanks
Principal Technical Marketing Manager, Portworx by Pure Storage
Build your own IDP with k0rdent and Backstage
Build your own IDP with k0rdent and Backstage
Building an internal developer ecosystem on top of k0rdent and Kubernetes using the Backstage framework to simplify and accelerate developer onboarding.
This demo shows how integrating k0rdent workflows with Backstage, using a wide variety of frontend and backend plugins, can simplify existing Kubernetes platform workflows. Attendees will learn how k0rdent serves as a platform engineering toolkit to streamline developer and platform interfaces. The session covers k0rdent service templates, their integration into current workflows, automated cluster creation based on predefined templates, and centralized GitOps workflows for resource management.
Trenton VanderWert
Consulting Architect, Mirantis
Agentic AI meets ASPM in the IDE
Agentic AI meets ASPM in the IDE
Stop chasing vulnerabilities. Start preventing them—right where code happens. Checkmarx unites ASPM and Agentic AI to turn security from a bottleneck into a business enabler.
Application Security Posture Management (ASPM) gives CISOs visibility and control over application risks, but to truly shift left, security must start inside the IDE. In this session, we’ll show how Checkmarx brings ASPM closer to developers by embedding it into their daily workflows—powered by Agentic AI for real-time, contextual guidance and automated fix suggestions. The result? Less friction between Dev and AppSec, reduced risk, faster delivery, and happier teams. Join us to explore how this combined approach drives real security outcomes while accelerating development.
Sonia Antao
Senior Product Manager, Checkmarx
Taming the Kubernetes chaos with New Relic’s Service Architecture Intelligence
Taming the Kubernetes chaos with New Relic’s Service Architecture Intelligence
Transform your chaotic Kubernetes environment into an organized, observable system with New Relic's toolset. This hands-on workshop guides you through visualizing service dependencies, establishing clear ownership, and implementing effective monitoring across microservices. Work with a realistic cluster to master Service Architecture Intelligence features (Maps, Catalogs, Teams, Scorecards) and enhanced APM for Kubernetes. Leave with practical skills to immediately improve developer productivity, reduce MTTR, and enhance cross-team collaboration in your own organization.
Microservices are messy. Ownership gets fuzzy, dependencies are hard to track, and keeping everything performant across a distributed setup? Yeah, that's a constant headache. In this 90-minute hands-on workshop, we'll take a cluttered Kubernetes environment and turn it into something clean, observable, and actually manageable, all using New Relic's Service Architecture Intelligence and enhanced APM tools.
You'll be working with a realistic cluster of 8-10 microservices. We'll walk through how to visualize dependencies with Maps, organize services with Catalogs, define ownership clearly with Teams, and keep everyone aligned using Scorecards. Along the way, we'll dive into New Relic's enhanced APM for Kubernetes: automatic service detection, unified views across infra and app layers, and how to fine-tune your agent setup for better signal and less noise.
By the end, you won't just know what these tools are - you'll know how to use them. You'll walk away with:
A framework for organizing services in large-scale K8s environments
The skills to identify and visualize service relationships and dependencies
Strategies for assigning and managing team ownership across services
Hands-on experience using observability to reduce MTTR and improve collaboration
A clear understanding of how to apply these techniques in your own org, right away
If you're wrangling microservices and tired of flying blind, this workshop will give you the tools (and the confidence) to take control.
You'll be working with a realistic cluster of 8-10 microservices. We'll walk through how to visualize dependencies with Maps, organize services with Catalogs, define ownership clearly with Teams, and keep everyone aligned using Scorecards. Along the way, we'll dive into New Relic's enhanced APM for Kubernetes: automatic service detection, unified views across infra and app layers, and how to fine-tune your agent setup for better signal and less noise.
By the end, you won't just know what these tools are - you'll know how to use them. You'll walk away with:
A framework for organizing services in large-scale K8s environments
The skills to identify and visualize service relationships and dependencies
Strategies for assigning and managing team ownership across services
Hands-on experience using observability to reduce MTTR and improve collaboration
A clear understanding of how to apply these techniques in your own org, right away
If you're wrangling microservices and tired of flying blind, this workshop will give you the tools (and the confidence) to take control.
Spence Taylor
Lead Developer Relations Engineer, New Relic
Reese Lee
Senior Developer Relations Engineer, New Relic
Mocks as code: Modeling AWS service providers with Testcontainers, WireMock and Localstack
Mocks as code: Modeling AWS service providers with Testcontainers, WireMock and Localstack
Join Community Builder and DevRel Consultant, Oleg Nenashev, as he demonstrates how to use Localstack, WireMock, and Testcontainers together for cloud integration testing. Using Pulumi and Java/Gradle as implementation, you'll learn an approach that is portable to any technology stack.
When managing services at scale, you need automated testing while mocking (or modeling) the parts provided by public clouds, as well as test entire deployment processes. This session demonstrates how to combine Localstack (for AWS integration testing), WireMock (for service mocking), and Testcontainers, a popular framework for Docker and other container engines, for comprehensive integration testing - all running in a Dev Container on your local machine.
Using Pulumi and Java/Gradle as examples, you'll see live coding that shows how these tools work together, though the approach applies to any tech stack. Expect a hands-on workshop format with minimal tool requirements, showcasing developer experience for modern containerized developer environments and practical techniques you can immediately apply to your own services.
Using Pulumi and Java/Gradle as examples, you'll see live coding that shows how these tools work together, though the approach applies to any tech stack. Expect a hands-on workshop format with minimal tool requirements, showcasing developer experience for modern containerized developer environments and practical techniques you can immediately apply to your own services.
Oleg Nenashev
Community Builder and DevRel Consultant, Gradle Inc.
"Working code wins": Win big with a platform hackathon starter pack
"Working code wins": Win big with a platform hackathon starter pack
Building internal platforms isn't just assembling tools: success requires people, process, and aligned business outcomes. Join us to learn how a hackathon can drive innovation, platform adoption, and create a platform using Backstage and Kratix.
Looking at landscapes such as the CNCF Landscape or Platform Tooling Landscape, it’s easy to think building internal platforms only requires assembling tools and technologies. But anyone who has experienced platform adoption challenges will recognize that tech alone is not enough: the real mission includes people, process, policy, and ultimately business outcomes. Join this workshop to learn how running an internal hackathon can spark innovative business ideas, grow awareness, and drive adoption of platform technologies.
Attendees will get hands-on experience creating an effective developer experience using a Backstage portal and orchestrating the platform with Kratix. By the end of this session, participants will have a working platform blueprint ready to take back for hacking in their organizations.
Attendees will get hands-on experience creating an effective developer experience using a Backstage portal and orchestrating the platform with Kratix. By the end of this session, participants will have a working platform blueprint ready to take back for hacking in their organizations.
Abby Bangser
Principal Engineer, Syntasso
Phill Morton
Platform Architect, The Access Group
You have Terraform. How do you orchestrate it?
You have Terraform. How do you orchestrate it?
You’ve become a Terraform master, delivering significant efficiencies to application teams using your platform. But some challenges remain. This session shows how Temporal and Terraform solve more problems together than either can alone.
Terraform is arguably the most widely adopted infrastructure-as-code tool in use today, with good reason. Its multi-cloud and data center support, combined with declarative configuration, has simplified infrastructure management. However, platform engineers often need capabilities beyond Terraform alone. They may need to schedule Terraform actions, apply configurations in a specific order, or manage long-running processes involving humans. Infrastructure is typically distributed and not always available when management is needed.
Widely used by platform engineers across many verticals, Temporal addresses these challenges. This session will demonstrate how Temporal and Terraform together can overcome common orchestration difficulties.
Widely used by platform engineers across many verticals, Temporal addresses these challenges. This session will demonstrate how Temporal and Terraform together can overcome common orchestration difficulties.
Cornelia Davis
Senior Staff Developer Advocate, Temporal Technologies
Building a scalable AI control plane for the enterprise
Building a scalable AI control plane for the enterprise
Let’s build an AI platform together in this workshop. Explore how to apply guardrails, governance, and sanitization to prompts sent to LLMs and MCP servers using AI gateways.
Many enterprises are actively onboarding AI technologies with the goal of providing a secure and compliant way for end users to access LLMs and MCP servers without compromising intellectual property or personally identifiable information.
This hands-on workshop will guide participants through the process of building an AI control plane and transforming it into a scalable platform.
Attendees will follow along to configure key capabilities of an AI gateway to enable governance, including advanced rate limiting, prompt sanitization, semantic routing, caching, prompt guards, and advanced LLM load balancing.
This hands-on workshop will guide participants through the process of building an AI control plane and transforming it into a scalable platform.
Attendees will follow along to configure key capabilities of an AI gateway to enable governance, including advanced rate limiting, prompt sanitization, semantic routing, caching, prompt guards, and advanced LLM load balancing.
Marino Wijay
Staff Solutions Architect, Kong
Trusting your AI models: Building a secure cloud-native supply chain
Trusting your AI models: Building a secure cloud-native supply chain
Learn how to secure the AI/ML lifecycle using CNCF tools like KitOps, Cosign, and Kubernetes. This 90-minute hands-on workshop covers packaging, signing, enforcement, and compliance, without slowing down ML velocity.
AI models are increasingly critical to modern applications, yet most teams treat them as opaque binaries outside the bounds of traditional software supply chain security. This workshop guides participants through an end-to-end cloud-native pipeline that secures model artifacts from training to deployment. Using open tools like KitOps, Sigstore/Cosign, and Kubernetes, we’ll package a Hugging Face model, generate and verify attestations, enforce policies, and trace provenance. This is not just theory — it’s hands-on, practical, and designed to align with cloud-native workflows. Attendees will leave with patterns and tools they can immediately apply to secure AI in production.
Gorkem Ercan
CTO, Jozu
Taming the chain: A live walkthrough of secure software delivery
Taming the chain: A live walkthrough of secure software delivery
Attackers are targeting the software supply chain itself. Join Adrian’s live session to see how platform teams can secure CI/CD pipelines, prevent vulnerabilities, and build secure-by-default systems—without slowing down delivery. Live demo included.
In today’s fast-moving software landscape, attackers are no longer just targeting production systems — they’re exploiting the software supply chain itself. Vulnerable dependencies, misconfigured pipelines, and untrusted build artifacts have become prime targets. For platform engineers tasked with securing infrastructure and enabling fast delivery, this is both a challenge and an opportunity.
Join Adrian for a fast-paced, hands-on session that cuts through the noise and shows what modern software supply chain security looks like in action. In Taming the Chain, we’ll walk you through a live demo of a hardened CI/CD pipeline, showcasing how to bake security into every stage of software delivery — from development to deployment.
We will explore:
The anatomy of a typical software supply chain attack.
Common (and preventable) security gaps in developer workflows.
How to implement secure builds with verifiable provenance and minimal base images.
Real-world techniques for securing containers, SBOMs, and signing artifacts with Sigstore.
Tips to empower platform teams without slowing down engineering velocity.
Whether you're running Kubernetes at scale, maintaining internal developer platforms, or building high-trust environments, this session will leave you with actionable tools and a fresh perspective on what “secure by default” really means.
Live demo included. Bring your curiosity, your questions
Join Adrian for a fast-paced, hands-on session that cuts through the noise and shows what modern software supply chain security looks like in action. In Taming the Chain, we’ll walk you through a live demo of a hardened CI/CD pipeline, showcasing how to bake security into every stage of software delivery — from development to deployment.
We will explore:
The anatomy of a typical software supply chain attack.
Common (and preventable) security gaps in developer workflows.
How to implement secure builds with verifiable provenance and minimal base images.
Real-world techniques for securing containers, SBOMs, and signing artifacts with Sigstore.
Tips to empower platform teams without slowing down engineering velocity.
Whether you're running Kubernetes at scale, maintaining internal developer platforms, or building high-trust environments, this session will leave you with actionable tools and a fresh perspective on what “secure by default” really means.
Live demo included. Bring your curiosity, your questions
Adrian Mouat
Global Developer Relations, Chainguard
Tom Finch
Solution Engineer, EMEA Leader, Chainguard
Building agentic workflows that marvel
Building agentic workflows that marvel
Build an agentic insurance claim app inspired by the Avengers! Learn how to bring together multiple LLMs, human tasks, and dynamic logic using a workflow orchestrator
What do you do when the Hulk throws your car in a battle against Loki? You file an insurance claim. In this hands-on workshop, you’ll build an insurance claims system inspired by the Marvel universe—powered by agentic workflows. We’ll use Orkes Conductor to orchestrate everything: autonomous decisions via LLMs, real-time human input with webhook wait states, dynamic plan evaluations using switch tasks, and loops that adapt based on memory. By the end, you’ll know how to combine task workers, APIs, and human-in-the-loop features to create scalable, explainable, and interactive workflows that can think for themselves.
Michael Liendo
Senior Developer Advocate, Orkes
How to build a multi-tenancy Internal Developer Platform with GitOps and vCluster
How to build a multi-tenancy Internal Developer Platform with GitOps and vCluster
An Internal Developer Platform (IDP) is more than just APIs or a UI: it enables true self-service for development teams. This talk explores how GitOps and vCluster help build a scalable, cost-efficient IDP using existing enterprise tools.
Join Platform Engineer Artem Lajko as he demonstrates how GitOps and vCluster enable you to build a scalable, cost-effective IDP leveraging your existing enterprise tools, seamlessly integrating with your current infrastructure instead of requiring completely new technology. This session will cover best practices for Platform Engineers and DevOps teams in designing and managing an IDP, as well as insights for Engineering Leaders on implementing multi-tenancy in Kubernetes. Beyond the technical aspects, you'll gain clarity on what truly defines a Platform Engineering team - and why managed infrastructure or a Terraform catalog alone does not constitute a real IDP.
Artem Lajko
Platform Engineer, iits-consulting
Streamline Kubernetes deployments with Helm, GitOps, and Terraform for SaaS
Streamline Kubernetes deployments with Helm, GitOps, and Terraform for SaaS
Engineers often struggle with code reusability, which slows delivery. GitOps, Terraform, and Helm can offer standardized and reusable assets, streamlining application deployments alongside infrastructure components enabling governance and reducing toil.
Join Tiago, Eric and Pedro as they demonstrate how Fluxv2 and GitOps principles enable a seamless integration of infrastructure and application resources in Kubernetes. You will dive into a real-world use case, showcasing the deployment of a multi-tenant SaaS platform on Kubernetes using Helm for consistent packaging and Git-centric workflows.
You'll learn to use Helm Charts for bundling application and infrastructure configurations, incorporating the Tofu Controller to manage Infrastructure as Code via Terraform CRDs, and Argo Workflows for automated template generation. The workshop covers semantic versioning, including how to apply patch version updates automatically and staggered deployment strategy for minor and major version rollouts.
You'll learn to use Helm Charts for bundling application and infrastructure configurations, incorporating the Tofu Controller to manage Infrastructure as Code via Terraform CRDs, and Argo Workflows for automated template generation. The workshop covers semantic versioning, including how to apply patch version updates automatically and staggered deployment strategy for minor and major version rollouts.
Tiago Reichert
Senior Containers Specialist SA, AWS
Eric Anderson
Containers Specialist SA at AWS
How to coordinate your infrastructure automations (and humans!)
How to coordinate your infrastructure automations (and humans!)
Your infrastructure isn’t homogeneous, nor are your automation tools or maturity. Learn how Temporal can durably orchestrate across this landscape, even when jobs are long running and involve human interaction.
Your platform is complex. It may facilitate use of cloud services from hyperscalers or third-party services like payment processors. It probably integrates with corporate systems such as IAM and implements processes combining new automations with manual, human-involved steps. Despite this, you want your infrastructure to remain consistent and cost effective, avoiding orphaned cloud resources.
Used by some of the world’s largest brands to orchestrate processes across various use cases, Temporal is ideally suited for managing heterogeneous, distributed IT environments. This workshop will walk through a concrete example and provide a Git repository full of code to jump-start your automation efforts.
Used by some of the world’s largest brands to orchestrate processes across various use cases, Temporal is ideally suited for managing heterogeneous, distributed IT environments. This workshop will walk through a concrete example and provide a Git repository full of code to jump-start your automation efforts.
Mason Egger
Senior Developer Advocate, Temporal Technologies
What supply chain risks are hidden in your Helm charts?
What supply chain risks are hidden in your Helm charts?
Helm charts simplify Kubernetes deployments but pose security risks. This hands-on workshop covers vulnerabilities, attack scenarios, and best practices for securing Helm charts, ensuring supply chain security and compliance.
Helm is the go-to package manager for Kubernetes. It simplifies deployments but introduces security risks. Misconfigured charts, unverified dependencies, and lax RBAC settings can lead to supply chain attacks. As Kubernetes adoption grows, these challenges increase.
Organizations using Amazon EKS, Google GKE, or self-managed clusters must secure their Helm charts to prevent privilege escalation and data exfiltration. Attendees will be provided with access to an interactive Instruqt lab environment that examines real-world threats and demonstrates how to scan for vulnerabilities using open-source tooling, enforce security best practices, and correctly sign and verify our Helm charts before they go into production Kubernetes.
Organizations using Amazon EKS, Google GKE, or self-managed clusters must secure their Helm charts to prevent privilege escalation and data exfiltration. Attendees will be provided with access to an interactive Instruqt lab environment that examines real-world threats and demonstrates how to scan for vulnerabilities using open-source tooling, enforce security best practices, and correctly sign and verify our Helm charts before they go into production Kubernetes.
Nigel Douglas
Head of Developer Relations, Cloudsmith
Forget 'works on my machine' forever: Hands-on workshop with Development Containers
Forget 'works on my machine' forever: Hands-on workshop with Development Containers
Convert your software projects to Development Containers using AI conversion tools. Eliminate "works on my machine" problems with standardized dependencies, runtime, and tools built on the Dev Container open standard.
This hands-on workshop guides participants through converting an existing repository to use Development Containers, leveraging AI to accelerate the process. By the end, attendees will have a working Development Container configuration for their own project that eliminates "works on my machine" problems once and for all.
Participants will bring their own repositories and learn how to analyze requirements, use AI tools to generate baseline configurations, implement and test Development Container setups, and apply advanced techniques for multi-container environments and team standardization. The session also explores how AI can help maintain and evolve configurations as projects grow.
Designed for platform engineers and developer experience leaders, this workshop provides immediate practical value and insights into scaling Development Container approaches across organizations.
Participants will bring their own repositories and learn how to analyze requirements, use AI tools to generate baseline configurations, implement and test Development Container setups, and apply advanced techniques for multi-container environments and team standardization. The session also explores how AI can help maintain and evolve configurations as projects grow.
Designed for platform engineers and developer experience leaders, this workshop provides immediate practical value and insights into scaling Development Container approaches across organizations.
Lou Bichard
Product Manager, Gitpod
