Ken Muse

When the axios npm library was compromised in March 2026, it reminded me that the dependencies we trust every day can turn on us without warning. That got me thinking – what about the extensions running in my IDE? They auto-update silently, they have access to my filesystem and credentials, and I never review the changes. If you’ve ever updated a tool without a second thought, this post is for you.

Rootless Docker sounds like the perfect answer to container security – no more root daemon, no more worry. If you look at how it actually works under the hood, the story is more nuanced than most teams realize. In this post, I walk through user namespaces and UID mapping, dig into why kernel developers have concerns about the attack surface, and explain what you’re actually giving up when you enable rootless and set seccomp=unconfined and apparmor=unconfined.

Ever wondered what’s really happening when Docker runs your containers? It turns out the daemon needs some serious privileges to do its job. I wrote this post to trace the path from the Docker daemon through the Unix socket, image builds, and BuildKit – showing you exactly where root access comes into play and why every step depends on it.

Ever wondered why Docker commands need sudo or docker group membership? The answer is baked into the Linux kernel itself. I wrote this post to peel back the curtain on what a container actually is. You’ll recreate container-style process isolation from scratch using standard command-line tools – building your own namespaces and cgroups by hand to see exactly what’s happening under the hood.

If you’ve ever adjusted an AI temperature slider without really knowing what it does, you’re not alone. These settings appear across AI tools and model APIs, but the actual mechanics rarely come with a clear explanation beyond “higher is more creative.” I wrote this post to change that. In it, I break down how Large Language Models select their next word, walk through the math behind softmax, and explain how temperature, Top-K, Top-P, and Min-P each shape the output – so you can tune these settings with confidence instead of guessing.

Ever wish you could run multiple Copilot CLI agents at once without turning your repo into chaos? I ran into that exact challenge while trying to juggle parallel tasks. I’ll show you when to use workspace versus worktree isolation, how to review and merge agent changes safely, and how to clean up so your workflow stays fast and tidy.

You’ve heard that custom agents and multi-agent workflows produce better results from AI coding assistants – but do you know why? The answer isn’t just about organization. It’s about a fundamental constraint baked into every large language model: the context window. Understanding how tokens, context, and tools interact can save you hours of frustration. Let me walk you through the mechanics.

GitHub Copilot now has custom instructions, prompt files, agents, skills, MCP servers, subagents, hooks, and plugins. That’s a lot of options – and if you’re not sure which to reach for, you’re not alone. I found that thinking of each feature as a part of a professional kitchen made everything clearer. Let me walk you through the analogy and a decision framework so you always know exactly which tool fits the job.

Ever built the perfect set of AI customizations – agents, skills, MCP servers – only to struggle sharing them across projects or with your team? Agent plugins are a new preview feature that packages everything into a single installable unit. I’ll walk you through creating your first plugin, setting up a marketplace to distribute it, and navigating the gotchas you’ll want to know about before diving in.

In my last couple of posts, I built a standalone MCP server and then embedded it in a VS Code extension. But what happens when you need to do more than reading local files? What if your extension needs to see what’s in the active editor, shape how the AI builds its prompts, or create a full conversational experience in the chat panel? That’s where VS Code’s AI extension APIs come in. In this post, I walk through the APIs that go beyond MCP – from direct model access to chat participants – and help you figure out when each one is the right fit.