FAQ: secure operations with Univio Airlock

lbi published on 2026-03-06

Secure container operation within Univio Airlock This FAQ explains how to configure and operate devcontainer-based workspaces in Airlock. FAQ What is the minimum .devcontainer/devcontainer.json configuration Airlock expects? Airlock auto-detection only needs the file to exist at .devcontainer/devcontainer.json. For practical use, include at least name and either image or build. { "name": "Airlock Dev", "image": "mcr.microsoft.com/devcontainers/base:ubuntu-24.04" } Should I place .devcontainer/devcontainer.json at the repository root or inside a subfolder? Use the repository root.

Secure and Productive Engineering with Univio Airlock

lbi published on 2026-03-04

Secure and Productive Engineering with Univio Airlock This FAQ explains how to run secure and effective software delivery using Univio Airlock. FAQ What is Univio Airlock? It is a managed development workspace model where teams build software in controlled, isolated environments. With container capabilities enabled, each workspace can run project-specific tooling while still operating under central security and policy controls. Why should leadership care about this model? It improves both risk control and delivery speed.

Blocking Bots Considered Harmful

lbi published on 2025-03-11

To Serve and Protect One of the key responsibilities of infrastructure teams is protecting services from unwanted traffic. We implement various mechanisms to counter synthetic HTTP requests: rate-limiting, geo-blocking, Web Application Firewalls, challenges, CAPTCHAs. We routinely analyze logs, respond to traffic spikes, and prevent scraping. We ensure our services are primarily accessed by humans and a limited group of trusted bots. The principle has always been simple: the web should be built for humans.

Why do we wait for search results?

lbi published on 2024-02-29

Searching digital data is a daily task in our lives, allowing us to navigate vast amounts of information.

It is both common and complex, involving a wide range of search engines, indexing methods, search algorithms, and implementations.

Typically, searches are performed remotely - on some server, database or a cloud service. We are accustomed to waiting for search results.

What if we could get search results instantly?

Thousands of AWS ECS applications stopped working due to a bug in RexRay-AWS interoperability

Author published on 2023-06-22

A silent change to the AWS infrastructure caused thousands of ECS applications to become unusable. Applications that relied on EBS-backed volumes suddenly lost access to their storage. Read how we dealt with this issue and how you can prevent similar problems in your infrastructure.

Expected changes in S3 ACL behavior with Terraform

Author published on 2023-05-07

At the end of April, AWS made changes to the default settings for S3 buckets. Newly created buckets have the ACL mechanism deactivated by default. This may cause errors for Terraform users who have not explicitly enabled ACLs on their buckets, or are configuring the buckets in the “old way”.