Skip to content
~/jwright▮
AboutSkillsProjectsBlogContact

#Tag

Posts tagged “zero-trust”

← All posts

  1. SECURITY SERIES · 023 July 2026·4 min read

    An agent should never hold the key it's using

    You want an AI agent that can actually do things — call APIs, touch real data. You also don't fully trust it. The resolution isn't a better sandbox; it's making sure the agent never possesses a credential at all. A broker holds the keys, mints short-lived capabilities, and gates every write behind a human. Here's the pattern.

    • security
    • ai-agents
    • architecture
    • zero-trust
    • homelab
  2. 23 June 2026·2 min read

    The most secure inbound port is the one you never open

    Exposing self-hosted services to the internet with zero open ports, zero port-forwarding, and the origin's IP never leaving the building.

    • cloudflare
    • networking
    • security
    • zero-trust
    • kubernetes
jonny@bztmon:~ · session receipt✓ Synced · Healthy

$ whoami

Jonathon Wright— Platform & Infrastructure Engineer

$ traceroute www.bztmon.com

served from a homelab Kubernetes cluster, over an encrypted tunnel

$ git log -1 --format=receipt

HEAD ac333e2· built 2026-07-14 08:44Z· reconciled by ArgoCD

$ contact --priority low-ms

ping me on LinkedIn or email — everything else is best-effort delivery.

$

© 2026 Jonathon Wright·CC BY-NC-SA 4.0·built with Astro, shipped via GitOps