Talk tech with tips and tutorials from builders at Kong and the Kong Community.
This is the second post in a series. For the first part, see Why We Need to Stop Prompt Hacking . Generative AI systems do not fail because models are weak. They fail because architectures are incomplete. Once organizations accept that prompts cannot guarantee reliability, a new challenge emerges:…
Generative AI has completely changed the landscape of enterprise automation, knowledge work and operational efficiency. In 2026, the question is no longer whether these models can perform complex tasks, but whether they can do so reliably enough for mission-critical systems. Despite the…
As API ecosystems grow, developers and platform teams often work in separate environments. Platform teams manage APIs, gateways, and governance centrally, while developers recreate those configurations locally for testing and debugging. Over time, this can lead to configuration drift, inconsistent…
This is part of a three-part series. For the full story, see Your AI Agent Knows What, It Doesn't Know Why and The Case for Kafka as the Agent's Memory Layer . We made the case for why agentic AI systems need a durable commit log rather than static state snapshots. The argument is…
This is part of a three-part series. For the full story, see Your AI Agent Knows What, It Doesn't Know Why and Building the Agentic Commit Log . Once you accept that agentic AI systems need a durable commit log — an ordered, immutable record of every tool call, decision, and context shift —…
Each change to Kong Gateway's codebase triggers a comprehensive test suite that runs more than 17,000 * 2 = 34,000 test cases among the two primary architectures (x86 and ARM) we support. This process takes about 23.5 hours on a single machine. But we don't wait that long. A large fleet of machines…
Customers today face significant challenges as their Kubernetes environments scale. The proliferation of microservices, external integrations, and new AI workloads increases traffic volume and connectivity complexity, creating material risks to performance and availability. The core issue is a lack…
As organizations transition from experimental AI to production-grade systems, they often face a fragmented landscape of unmanaged LLM providers, complex tool integrations, and escalating security risks. Without a centralized orchestration layer, developers struggle to maintain consistent…
Modern Kafka deployments struggle with a familiar tension. You want fine-grained access control per client, per team, and even per request. However, traditional ACLs force you into static, cluster-level configurations that are brittle, hard to scale, and painful to maintain. Administrators are…
Whether you're drawn to Kong Insomnia's native OpenAPI support, its Git-based sync workflow, or its lightweight interface, migrating from Postman doesn't have to be a weekend project. Insomnia natively understands Postman's export format and can bring over your collections, environments, folder…
Digital agreements are at the heart of many critical business processes. As companies modernize their technology stacks and adopt API-driven architectures, integrating agreement workflows directly into applications has become increasingly important. By combining the capabilities of Kong Konnect…
Modern API architectures are no longer linear. A single request can traverse multiple layers of authentication, transformation, enrichment, and observability. As these flows grow more dynamic, the need for fine-grained control over when plugins execute becomes critical. For years, the standard…
OAuth 2.0 Token Exchange fundamentally alters how services establish trust. And the API gateway is the ideal location to enforce this new model. Modern applications don’t run as a single monolithic. They are composed of services — frontend APIs, backend microservices, third-party integrations —…
Enterprise security teams have clear requirements: no static credentials, no exceptions. Every service-to-service connection, whether it's Kong talking to databases, caches, or vaults, should authenticate using the same IAM-based identity model that governs the rest of their cloud infrastructure.…
The microservices revolution promised agility and scalability. Teams could deploy faster, scale independently, and innovate without monolithic constraints. You gain speed and flexibility, but you also multiply trust boundaries, identities, network paths, and policy decisions. Then came AI, and…
AI APIs don't get enough credit for how much weight they're actually carrying. These AI APIs aren't merely technical connectors. They're, in fact, cost drivers and potential revenue engines. And when something goes sideways, they're ground zero. In production, they behave nothing like the…