Posts on Ray Kao

We Are Legion, We Are Building the Bobiverse: What the Bobiverse Tells Us About the Agentic Software Industry

Thu, 07 May 2026 00:00:00 +0000

I’ve finally gotten around to reading the Bobiverse series by Dennis E. Taylor, and somewhere around the third time Bob replicates himself to explore a new solar system, I had one of those “wait a minute” moments. Not about the books - they’re great, funny, and hold up well. The moment was about the software industry.

We are building the Bobiverse. Not intentionally, not with that in mind, but converging on the same architecture because the problems are the same. That’s what I want to talk about.

The AI Control Plane for Software Engineering

Tue, 28 Apr 2026 00:00:00 +0000

Modern software engineering is a coordination problem masquerading as a technical one. The raw capability to write, test, deploy, and observe software is well-understood. What is largely unsolved is how to coordinate the flow of intent, context, and action across the systems that execute these activities.

Think about what a senior engineer actually does when resolving a production incident. They move from an alert in their observability platform, to a log query interface, to a source code repository, to a deployment system, to a communication thread, and back to code. Each transition requires them to carry context that no system holds. The engineer is the integration layer.

Cluster Doctor Configuration: Agentic Platform Engineering - Part 2

Wed, 01 Apr 2026 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

Part 2 picks up where the architecture walkthrough left off. This one is about configuration - how you wire the agent to your actual cluster, tune its diagnostic scope, and manage the output so it is useful to the operator rather than overwhelming.

The goal was to show that agentic tooling does not have to be a black box. With the right configuration surface, a human can stay in control of what the agent looks at and how it escalates.

Cluster Doctor: Agentic Platform Engineering - Part 1

Wed, 01 Apr 2026 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

Cluster Doctor is a demo I built to show what agentic platform engineering looks like beyond the toy examples. The agent takes a broken or degraded Kubernetes cluster, runs diagnostics, correlates signals across logs and metrics, and produces an actionable diagnosis - without a human manually triaging each layer.

Part 1 covers the core agent architecture and the initial diagnostic loop. Part 2 goes into configuration and tuning.

m365 WorkIQ: GitHub Copilot Spec Kit Demo

Wed, 01 Apr 2026 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

This demo walks through using GitHub Copilot’s spec kit to accelerate the requirements and design phase of a real project. The idea is that writing a good spec is itself a bottleneck - and AI can help structure intent into something an engineering team can actually execute against.

WorkIQ was the project context here, but the pattern applies broadly: use Copilot to get from a vague brief to a crisp, reviewable spec faster than you would writing from scratch.

When Infrastructure Scales but Understanding Doesn't

Wed, 02 Jul 2025 00:00:00 +0000

Co-authored with Diego Casati on the Azure Global Black Belts blog.

The scenario in this piece is familiar to anyone who has been on-call for a distributed system: a deployment fails at 2am, and resolving it means correlating logs across seventeen microservices, three monitoring systems, and a service mesh configuration change from last week. The technology scaled. The humans did not.

The argument here is that platform engineering’s real job is not building more tools - it is making the tools we have more humane. Golden paths, opinionated defaults, AI as the conversation layer between what a developer needs and what the platform knows. Not replacing expertise. Amplifying it and making it accessible at the moment it is needed.

The Human Scale Problem in Platform Engineering

Tue, 24 Jun 2025 00:00:00 +0000

Co-authored with Diego Casati on the Azure Global Black Belts blog.

Every step forward in the infrastructure stack has produced the same pattern: we solve the immediate problem and discover a harder one waiting behind it. Containers solved manual server config. Kubernetes solved container sprawl. And now we are coordinating distributed systems across teams who can barely talk to each other.

The piece argues the real problem is not technical - it is that our solutions keep outpacing our ability to operate them at human scale. Silos are not the enemy. The inability to help specialists communicate across silos is.

Introduction to GitHub Advanced Security

Wed, 10 Apr 2024 00:00:00 +0000

Streamed live on the Microsoft Global Black Belts YouTube channel.

GitHub Advanced Security covers the three areas that matter most for supply chain security: secrets scanning, code scanning (via CodeQL), and dependency review. This live session is a practical introduction - not a feature tour, but a walkthrough of how these capabilities fit into a real developer and security workflow, and what you actually need to configure to get value from them.

Fixing Missing C++ Libraries in GitHub Codespaces Using Miniconda3

Mon, 01 Jan 2024 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

One of the persistent friction points with cloud development environments is dependency resolution - especially native libraries that assume a specific system configuration. This short walkthrough shows a clean way to use Miniconda3 inside GitHub Codespaces to resolve missing C++ libraries without fighting the container’s base image.

Small fix, but the kind of thing that costs an hour if you haven’t seen it before.

GitHub Advanced Security, Azure DevOps, and Microsoft Defender for Cloud DevOps Security

Mon, 01 Jan 2024 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

Security tooling in the DevOps space has fragmented over the years, and a lot of teams end up with overlapping tools that don’t talk to each other well. This session walks through how GitHub Advanced Security, Azure DevOps, and Microsoft Defender for Cloud DevOps Security can be connected into a unified security posture - covering secrets scanning, code scanning, dependency review, and pipeline security together rather than in isolation.

MLFlow Codespaces

Mon, 01 Jan 2024 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

MLFlow is one of the most useful tools in the ML practitioner’s toolkit for tracking experiments, but getting it running cleanly in a Codespaces environment has some gotchas. This demo walks through a working setup - reproducible, shareable, and ready to use without fighting local environment drift.

The broader point: if you want ML work to be reviewable and reproducible, the dev environment needs to be treated as a first-class artifact.

Power Apps: Makers - Video Series

Sat, 01 Jan 2022 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

Power Apps lowers the barrier to building apps, but makers often hit a wall when they need to connect to external data or APIs. This short series fills in the foundational concepts - not for developers, but for makers who want to understand what’s actually happening under the hood.

Three episodes:

Azure Kubernetes Service Production Baseline: Intro

Thu, 17 Sep 2020 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

Running Kubernetes in production is a different problem from running it in a lab. This video introduces the AKS production baseline - the set of architectural and configuration decisions you need to make before you call a cluster production-ready. Networking, security boundaries, identity, observability: the baseline is about getting those foundations right before you ship anything on top of them.

Watch on YouTube →

Microsoft AKS Public Office Hours: Private Clusters

Thu, 10 Sep 2020 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

This AKS Office Hours session focused on private clusters - one of the more commonly misunderstood configurations at the time. The live format meant real questions from practitioners actually running into the problems: how do you handle DNS resolution, what happens to your kubectl access, how do you reach the API server from a pipeline runner? Good companion to the standalone private clusters video.

Azure Kubernetes - Private Clusters

Mon, 10 Feb 2020 00:00:00 +0000

Published on the Microsoft Global Black Belts YouTube channel.

Private AKS clusters keep the Kubernetes API server accessible only within your virtual network, which is a meaningful security improvement for production workloads. The trade-off is operational complexity - you need to think carefully about how your CI/CD pipelines, tooling, and operators reach the cluster. This video walks through the setup and the networking patterns that make private clusters manageable in practice.