Portfolio

Looking back at ContainerDays 2025, what stands out the most isn’t just the talks or the stages - it’s the people. A big thank you to the amazing moderator team -🦊 Michael Friedrich 🌈 Rachid Zarouali Verena Traub and Melody Sofia E. - I had the chance to be part of, and to all the other cool people I met along the way. The conversations, the knowledge sharing, and the laughs in between sessions made these three days something special. ❤️ This community is what makes events like this so valuable - open, supportive, and always curious. I’m going home with new learnings, fresh perspectives, and a lot of inspiration. Hope to see you next year again!🙌

Thanks everyone for joining my ContainerDays talk “Evolving the Edge: AI, CI, and Hardware-in-the-Loop for Embedded” 💜 -- last-minute hacks worked well for the live demo running on my Raspberry Pi 5 cluster and NVIDIA Jetson at home ⚡ 💡 Slides and open-source GitLab repos with developed Ansible playbooks and AI, CI, Embedded research in the comments. 🤗 Learned from your questions and feedback today 🌱 Flash firmware via USB -- export CI artifacts from Docker build job to GitLab server, pull them into the “on host” shell CI flash job with direct device access to USB. 💡 Knowledge Graph for code indexing and LLM/Agentic AI context -- at GitLab, we are building a Knowledge Graph for the platform, learn more in 18.3 and 18.4 blog posts. Future talk ideas :) 🤩 Learned: You can run GitLab CI Runner directly on the NVIDIA Jetson Orin Nano. -- Thank you, that was missing in my research, I was very busy the last weeks :) 🤔 How to validate AI-generated fixes -- run regular CI/CD jobs (lint, build, etc.) and also provide tool calls through MCP for other QA agents. Put long-running flows into background agents/schedules on the platform. We are building this into the GitLab Duo Agent Platform, currently in Beta. 🖨️ How to get real feedback from connected hardware sensors like LEDs? -- Find a suitable output, like serial UART modem logging/events, or direct sensor fetch through Agent tool calls that directly talk to the hardware. 🚧 Waveform analysis for anomaly detection can be problematic and could generate unsafe code. -- Need better understanding and customer awareness of what is possible. 🤖 Will AI evolve into an operating system to control all devices -- interesting idea. AI will aid in automation and orchestration, much like the breakthroughs with IaC and DevOps. We are now evolving with Agent Platforms; at the Operating System level, I’d also like to see some “Human in the Loop” and be the operator of AI Agents myself, still. #CDS25

Michael Friedrich is exploring how teams face varying levels of inefficiency in their DevSecOps processes, hindering progress and innovation. He highlights common issues like excessive debugging time and inefficient workflows, while also demonstrating how Artificial Intelligence (AI) can be a powerful tool to streamline these processes and boost efficiency.

At QCon London, Michael Friedrich, senior developer advocate at GitLab, discussed how AI can help in DevSecOps workflows. His session was part of the Cloud-Native Engineering track on the first day of the conference. InfoQ interviewed Friedrich after the session.

Homeoffice gehört zur neuen Normalität, das Büro wünschen sich aber viele zurück. Nicht so Michael Friedrich. Er arbeitet im All-Remote-Unternehmen Gitlab

Discover how AI can understand your codebase, follow your conventions, and generate production-ready code with minimal review cycles.

This detailed tutorial helps developers use AI to modernize code by switching to a new programming language and gain knowledge about new features in the same language.

This tutorial shows how GitLab Duo Vulnerability Explanation and GitLab Duo Vulnerability Resolution, along with our other AI-powered features, can help to address vulnerabilities quickly.

Explore best practices for using Code Suggestions and how to combine it with our other AI features to greatly improve the developer experience (includes real-world exercises).

Discover how we’ve infused Root Cause Analysis with AI to help remedy broken CI/CD pipelines, including example scenarios and take-away exercises.

Explore tips and tricks for integrating GitLab Duo Chat into your AI-powered DevSecOps workflows. Plus, expert advice on how to refine chat prompts for the best results.

Code, test and deploy with GitLab. Everyone can contribute!

Use this guided tutorial, along with AI-powered GitLab Duo Code Suggestions, to continue learning advanced Rust programming.

Use this guided tutorial, along with GitLab Duo Code Suggestions, to learn a new programming language.

Learn how to set up the requirements, manage Kubernetes clusters in different clouds, create the first workspaces and custom images, and get tips and troubleshooting.

CI/CD and Kubernetes deployments can be affected by Docker Hub tier changes. This tutorial walks through analysis, mitigations, and long-term solutions.

The python-gitlab library is a useful abstraction layer for the GitLab API. Dive into hands-on examples and best practices in this tutorial.

Hurl as a CLI tool can be integrated into the DevSecOps platform to continuously verify, test, and monitor targets. It also offers integrated unit test reports in GitLab CI/CD.

Learn about possible attack scenarios in Infrastructure as Code and GitOps environments, evaluate tools and scanners with Terraform, Kubernetes, etc., and more.

Detailed guidance to help customers detect vulnerabilities.

Get the most out of the GitLab DevOps Platform with our ten best tips for enhanced productivity.

Take a deep dive into the Phabricator features that prompted GitLab to build new tooling around automation, integrated CI, and better code reviews.

Learn about Gitpod as cloud development environment, and how its integration into Gitpod helps teams to get more efficient in their DevOps lifecycle.

Learn how to filter in JSON data structures and interact with the REST API. Use the GitLab API to lint your CI/CD configuration and dive into Git hooks speeding up your workflows.

Learn how quick actions can make you a more efficient GitLab user.

Docker Hub Rate Limits are enforced and we need to find ways to monitor the remaining pull requests. Explore some ways to create a monitoring plugin for Nagios/Icinga/Sensu/Zabbix and test-drive a new Prometheus exporter in combination with Grafana.

Platform Engineering: Weniger Komplexität in der Softwarebereitstellung / DevOps: Mehr Qualität, schneller ausliefern und Kosten senken / Internal Developer Platform: Mehr Autonomie und Verantwortung / Debugging im Produktivsystem: Chaos Engineering mit eBPF-Tools / Verteilte Anwendungen: Cloud-nati…

Green IT: Energiesparen in der IT - schnelle Maßnahmen für nachaltige Effekte / DMA und DSA: So reguliert die EU das Internet / Security: Zertifikate als Hintertür ins AD / Machine Learning: Deep-Learning-Compiler für mehr Tempo / Getestet: Log-Management-Plattformen im Vergleich / DSGVO: Urteile zu…

I'm in a book. Brendan O'Leary too 😍 Thank you Emily F. Nathen Harvey for this amazing collaboration 🥰 https://lnkd.in/dDFPHFq cc GitLab O'Reilly...

Microservices statt Monolithen / Freie NAS-Distributionen / Security-Awareness: War Gaming / Android- und iOS-Entwicklung mit Flutter / DevOps: GitLab CI/CD on prem

Getting started with CI/CD has become more easy with the DevOps platform era. GitLab provides a new pipeline editor to help with onboarding, and allow to prevent common configuration mistakes. Pipelines and their definitions are always changing, and a work in progress similar to source code developm…

I’ve seen many changes and best practices in the past 15 years in monitoring. The shift from traditional host/service monitoring to microservices and distributed services has been the most impactful for me. It has been a wild ride to learn Kubernetes and cloud-native environments myself, with the he…

Docker Hub Rate Limits are enforced and we need to find ways to monitor the remaining pull requests. Explore some ways to create a monitoring plugin for Nagios/Icinga/Sensu/Zabbix and test-drive a new Prometheus exporter in combination with Grafana.