Database backups, dump files and restic • The Ongoing Struggle
Some notes on converting my database backups away from intermediary dump files| The Ongoing Struggle
Amplitude, Inc. announced a partnership with GitHub to introduce an agent-to-agent integration designed for enterprise product and engineering teams. This Agent-to-Agent integration enables AI-powered workflows where Amplitude acts as an agentic product manager, bridging the gap between product insights and code implementation. By leveraging GitHub agents and workflows, Amplitude is dramatically cutting down on the [...] The post Amplitude Unveils Agent-to-Agent Integration with GitHub appear...| Digital IT News
Some notes on converting my database backups away from intermediary dump files| The Ongoing Struggle
In this post, we explore how to manage EKS Pod Identity associations at scale using Argo CD and AWS Controllers for Kubernetes (ACK), addressing the critical challenge of the eventually consistent EKS Pod Identity API. The guide demonstrates automation techniques to ensure proper IAM role associations before application deployment, maintaining GitOps workflows while preventing permission-related failures.| Amazon Web Services
Disclaimer: These are real world experiences I have had within organizations that I have been employed by. Identifying information is intentionally anonymous. If you think you are in one of these organizations please consider keeping that to yourself for the sake of others. A lot of people think that DevOps, Cloud Native, Agile, GROWS, etc. are all rainbows and roses. You start small and work your way up to full blown operations or you decide as an organizational unit to change. These are the...| Chris Short
TLDR: Raconn| blog.izissise.net
A collection of posts by Joe Magerramov| blog.joemag.dev
DevOps can mean a lot of things, but I find in practice that this results in a team using Continuous Integration and Continuous Deployment/Delivery using automation to check and evaluate your software in some way. This should result in quicker … Continue reading →| Voice of the DBA
Building for macOS has been… interesting. After falling into the trap of Microsoft’s 10x price gouging for macOS runners on GitHub Actions and ultimately switching to using the Mac Mini under my television as a self-hosted runner, the next thing I wanted to do was distribute my build artifacts. I’m trying a different approach to building a new project this time around. Maintaining a popular piece of software is very draining, and working on a much-requested port of a popular piece of so...| LGUG2Z
Autonomous workflows, powered by real-time feedback and continuous learning, are becoming essential for productivity and decision-making. The post The Signals Loop: Fine-tuning for world-class AI apps and agents appeared first on Microsoft Azure Blog.| Microsoft Azure Blog
In this post, I share my personal perspective on distroless containers for corporate use, hence with a view on compliance. I offer an alternative to Nix Flakes using Fedora and Podman.| ~rriemann
Ask a generic LLM to “fix my broken deployment,” and you’ll get generic advice. Ask Pulumi Neo the same question, and you’ll get a fix plan grounded in your actual infrastructure state. The difference isn’t about better prompts or newer models. It’s about what the AI actually knows. Generic LLMs have been trained on the internet. Neo has been trained on your infrastructure. This distinction matters more than you’d think. The grounding problem Most AI tools treat infrastructure l...| Pulumi Blog
Welcome to the fourth post in our IDP Best Practices series. Today we’re diving into the world of drift detection and remediation, those critical day 2 operations that keep your infrastructure aligned with its intended configuration long after the initial deployment. You’ve built a beautiful platform with robust guardrails, comprehensive templates, and well-defined golden paths. Your developers are productive, deployments are smooth, and everything seems perfect. Then reality hits. An on-...| Pulumi Blog
Learn how to create a secure CI/CD pipeline by starting with securing your most important asset: your people.| Blogs - Ken Muse
Restrict outbound DNS and IP access on GitHub-hosted runners using iptables, ip6tables, and DNS-over-HTTPS blocking to harden your CI/CD.| Blogs - Ken Muse
Learn how to restrict DNS resolution and improve CI/CD security on GitHub-hosted runners by using a local Unbound allow list.| Ken Muse
Code rot. Software decay. Software rot. All of these terms describe the gradual deterioration of software quality over time. Plenty has been written about code rot. However, here we’ll explore the connection between ‘old code’ and third-party risk exposure. What it is. Code rot is legacy software that is repeatedly patched and manually configured and [...] The post Code Rot and Cyber Risk: The Hidden Threat in Legacy Software appeared first on Digital IT News.| Digital IT News
SUMMARY: This guide explains how to install the AppDynamics Cluster Agent on a Google Kubernetes Engine (GKE) cluster using a Helm Chart. This approach enables automatic application instrumentation, thereby eliminating the need for manual agent installation, configuration, and complex upgrades across individual workloads. Adopting this streamlined, scalable approach is ideal for dynamic cloud-native environments like […] The post Installing Splunk AppDynamics Cluster Agent on GKE Using Helm...| XTIVIA
SUMMARY: Generative AI is fundamentally transforming software testing and Quality Assurance (QA) by leveraging large language models (LLMs) to automate manual efforts, such as test design and data creation, enabling predictive defect analysis and delivering faster, leaner product releases. Although Generative AI will not replace QA professionals, organizations must assess model accuracy, ensure strong governance, […] The post How Generative AI is Transforming Software Testing appeared first...| XTIVIA
SUMMARY: Artificial Intelligence (AI) is fundamentally redefining Quality Assurance (QA) methodologies by introducing intelligent automation and predictive analytics, enabling the efficient and accelerated delivery of high-quality software. By augmenting human expertise and increasing test coverage and reliability, AI facilitates early defect detection while achieving substantial cost and time efficiency. Impact of AI in Software Testing […] The post Impact of AI on Software Testing appeare...| XTIVIA
SUMMARY: React custom hooks are essential JavaScript functions that allow developers to adhere to the Don’t Repeat Yourself (DRY) principle by extracting and reusing complex stateful logic across multiple components, drastically improving code cleanliness and maintainability. Embracing custom hooks is critical for writing efficient, clean, and maintainable React code, which streamlines the development process and […] The post Building React Custom Hooks for Code Reuse appeared first on XT...| XTIVIA
SUMMARY: To achieve faster, more reliable software releases, teams must prioritize API testing over UI testing. This approach ensures the early detection of defects, verifies core business logic quickly, and integrates effortlessly into Continuous Integration/Continuous Delivery (CI/CD) pipelines. Prioritizing robust API validation is essential for strengthening product quality at its core and serves as the […] The post API Testing vs. UI Testing: Why API Testing Speeds Up Releases appeared...| XTIVIA
Automate SSL/TLS certificate renewal for GKE workloads. Secure communication in cloud-native environments. Learn now.| XTIVIA
Galorath Incorporated has unveiled SEERai, the first agentic AI platform specifically designed for cost, schedule, and risk estimation in high-accountability sectors. SEERai converts natural-language project inputs into structured, audit-ready outputs, reducing analysis cycles to hours while maintaining human oversight and full data traceability. Unlike general-purpose AI tools that generate unverified text based on undisclosed source [...] The post Galorath Launches SeerAI: AI Platform for C...| Digital IT News
IONOS Cloud IONOS is a German cloud provider with data centers and regions distributed around the world. They offer a broad portfolio of services, covering everything needed to build and […]| ConSol Blog
DDEV works great on Linux, we'll set it up from scratch in just 10 minutes..| DDEV Blog
Enterprise microservices migration best practices for cloud-native architecture transformation. Proven guidance on API gateways, containerization, domain-driven design, and implementation strategies. The post Microservices Migration: Best Practices for Cloud-Native Architecture appeared first on BayOne.| %%title%% %%page%% %%sep%% %%sitename%%
Struggling to set up a Kubernetes cluster? Here’s a simple way to deploy one using kubeadm with Calico networking and Longhorn storage.| SysOpsTechnix
OpenFGA is an open-source, high-performance, and flexible authorization engine inspired by Google’s Zanzibar system for relationship-based access control. It helps developers model and enforce fine-grained access control in their applications. At its core, OpenFGA enables teams to define who can do what within their systems. Whether you’re building a startup app or managing an enterprise platform, it delivers authorization checks in milliseconds. That level of speed allows it to scale as ...| Help Net Security
DevOps Scaling is the act of adding capacity to your DevOps initiative as needed. In this blog, we cover the elements that often need scaled in DevOps, the challenges they present, and how to get started on the right foot.| Puppet
JetBrains has released Rider 2025.3 EAP 6 with expanded monitoring capabilities for databases and ASP.NET. The Monitoring tool window now automatically detects slow queries and performance bottlenecks in real time, in addition to existing CPU and memory monitoring. The new ASP.NET and database issue detection works on Windows, Linux, and macOS. JetBrains has made additional […]| Techzine Global
本文永久链接 – https://tonybai.com/2025/10/18/revisit-extreme-programming-in-the-age-of-ai 大家好,我是Tony Bai。 AI 编程助手、自动化代码生成、Agentic 开发系统……我们正目睹一场由 AI 引领的软件生产力革命。代码的产出速度正以 5 倍、10 倍甚至更高的倍率疯狂增长。理论上,我们应该能更快、更好地交付软件。但现实却给了我们一记响亮的耳光:我们的软件交付成功率,数十年来几乎...| Tony Bai
Discord's AI banned me for "child safety violations" while I was reading news. No evidence. No appeal. Just a permanent flag in their systems—which got stolen in their October 2025 data breach and is now being sold on darkweb markets. I'm permanently labeled a child predator in underground databases because Discord's algorithm can't distinguish Unix system calls from actual violations.| Seuros Blog - Navigation Logs from the Ruby Nebula
I’ve spent most of my career in infrastructure and reliability engineering, from years as an SRE at Google to leading teams at Facebook and now building Spacelift. Along the way, I’ve watched entire paradigms rise and fall, seen technologies mature, and learned some hard lessons about where DevOps and security meet—and where they clash. The […]| DevOps.com
Why LLM Observability Tools Are Essential In 2025 Organizations are adding GenAI to their current and future architectures and product roadmaps, requiring Ops teams to ensure LLMs are accurate, fast, secure and cost-efficient. LLM observability tools directly addresses these needs, helping identify and prevent common LLM errors and issues: LLM observability provides the telemetry data […]| The Logz.io Blog — DevOps, Logging, Metrics, Tracing, and Security
El Model Context Protocol (MCP) fue presentado como el “USB de la IA”: una forma universal para que los modelos se conecten a herramientas y datos. Pero en su forma actual, está lejos de ser apto para producción. La falta de autenticación sólida, la ausencia de auditoría y el descubrimiento libre de herramientas lo convierten en un riesgo serio de seguridad en entornos empresariales. Secure MCP propone una solución: aplicar patrones consolidados de la arquitectura web —definicione...| JMFLORESZAZO
Several years ago at OpenAI I helped author Scaling Kubernetes to 7500 Nodes which remains one of the CNCF’s most popular blog posts. Alibaba made a post about running Kubernetes clusters with 10K nodes. Google made a post about 15K nodes with Bayer Crop Science. Fast forward to today, GKE supports running some clusters up to 65K nodes, and AWS recently announced support for clusters up to 100K nodes.| bchess.github.io
How to implement inline HTML comment-based validation control using HtmlAgilityPack - because config files are a pain| aaronstannard.com
Rewriting a Homebrew script from Perl to Go showed how Go’s design supports platform engineering—simpler distribution, safer types, production‑ready tools.| The Phoenix Trap
ITGix has officially been validated as an Amazon CloudFront and AWS WAF Service Delivery Partner under the AWS Partner Network.These recognitions reflect our growing expertise in delivering performant, secure, and resilient web content delivery and application protection solutions on AWS. What This Means for Our Clients Our customers will benefit from: How ITGix Earned This […]| ITGix
Nikolay Bunev, Senior DevOps & Cloud Engineer at ITGix, has been named an AWS Community Builder for the sixth year in a row. Learn what the program is, how to join, and how Nikolay contributes to the global cloud community.| ITGix
Introduction In a recent project, I faced a security challenge: multiple users needed...| DEV Community
This post will explore the new support in Azure Application Gateway for Containers (AGC) for the overlay network option in Azure Kubernetes Service (AKS) as documented in https://aka.ms/agc/overlay, as well as whether you can see traffic between AGC and AKS with VNet Flow Logs. This blog is part of a series: What am I talking … Continue reading Application Gateway for Containers: a not-so-gentle intro (4)| Cloudtrooper
I would like to credit for this blog post to Abhishek Sharma, talking to him gave me the main inspiration for some of the concepts you are going to see below. Heartfelt thanks go as well to Niti Gupta, a kickass Microsoft engineer who can make Azure Monitor Workbooks really dance and who gave me … Continue reading Grafana and VNet Flow Logs| Cloudtrooper
Azure Kubernetes Fleet Manager is a very interesting solution that allows you to deploy code to multiple clusters at the same time. I am not going to stir up the debate here of whether this approac…| Cloudtrooper
Alternative configuration formats solve superficial problems. Configuration languages solve the deeper problem: the need for abstraction.| ruudvanasseldonk.com
Explore the pros & cons of CIAM certification for authentication & software development. Learn about career benefits, core skills validated, and how it compares to other certifications.| Security Boulevard
From 'Is it up?' to 'We see everything' – 5 monitoring stages to save your sanity (and $50K in outages). Start small, win big!| Kalvad
While looking at a Terraform module README, I noticed a chunk of garbled text at the bottom of the page. In some modules, the chunk of garbled text is short, while in others much longer. Initially,…| Technical Scratchpad
Meta is transferring React, React Native, and JSX to a new organization: the React Foundation. This foundation will become part of the Linux Foundation.| Techzine Global
We get it — initiating a new way of working at your organization (and uprooting existing processes) can be pretty daunting.| www.puppet.com
DevOps automation can significantly improve efficiency, productivity, and transparency between teams. Here are three examples of DevOps automation in practice.| Puppet
Government agencies are required to run agile IT operations while balancing compliance and security needs at scale: it's a huge task when you consider how quickly the landscape of IT moves. In this article, we will explore some strategies, including infrastructure as code, that can help you build a more agile government infrastructure.| Puppet
The main purpose of DevOps self-service is to let developers code, build, test, and release software without needing to work with specialists from other departments. In this explainer blog, we explain how developer self-service can make DevOps better.| Puppet
Learn more about how continuous delivery automation can enable you to deliver new features to your customers, even easier than ever.| Puppet
Check out the additions to our developer-first security platform, announced in our latest SnykLaunch presentation. Watch the full recording today.| Snyk
Discover how to optimize Git clones by using references to share repository data and Git LFS objects across multiple systems.| Blogs - Ken Muse
Trying to publish npm packages to GitHub Packages with Yarn? Learn how to authenticate and publish your GitHub Packages with Yarn v4.| Ken Muse
Fast, Declarative, Reproducible, and Composable Developer Environments using Nix| devenv.sh
The Scaleway Cloud is a French cloud provider with multiple regions in Europe. They offer a wide range of services and are a strong candidate for teams| ConSol Blog
Randy Bias, VP of Strategy & Technology at Mirantis, explains why MCP must evolve beyond tooling experiments into secure, governable control planes before it can support mission-critical enterprise AI.| TFiR
Michael Blum| mblum.me 🥝
IAMOPS implemented a secure Jenkins-GitHub integration to enforce automated QA tests at the pull request level, preventing unverified code from breaking shared environments and ensuring faster, higher-quality releases. The post Boosting Release Quality with Automated QA Testing in Jenkins & GitHub appeared first on IAMOPS.| IAMOPS
In modern software delivery, there’s a lot of talk about speed, agility, DevOps, CI/CD pipelines — and one of the tools that’s becoming essential is the ephemeral environment. If you aren’t quite sure what that means, why it matters, or how to use one (or more), this guide is for you. What is an Ephemeral […]| Test Environment Management (DOT) Com
From days to 2 hours: How Infra Deployer delivered FedRAMP High-compliant Azure Gov Cloud deployments with secure, repeatable automation.| QBurst Blog
AWS CodeBuild now supports managed self-hosted GitHub Action runners, allowing you to build powerful CI/CD capabilities right beside your code and quickly implement a build, test and deploy pipeline. Last year AWS announced that customers can define their GitHub Actions steps within any phase of a CodeBuild buildspec file but with a self-hosted runner, jobs […]| Amazon Web Services
Simplify AWS multi-account deployments with CloudFormation StackSets. Ensure consistent infrastructure across accounts and Regions automatically.| ITGix
This week Farhad and me finally found some time to improve a part of our build pipeline that was nagging me for years. We can now release our DarkPAN modules via CI/CD into a GitLab generic packages ...| domm.plix.at
A guide on how to run QuestDB’s Java library in hardened environments where /tmp is mounted with noexec, by pre-bundling native libraries and using the questdb.libs.dir system property.| QuestDB Blog
Coolify's dynamic proxy configuration lets you redirect subdomains to external URLs without creating full resources. Using a simple YAML file with Traefik configuration, you can set up SSL-enabled redirects directly through Coolify's interface.| Julien's DevRel corner
Tooling for maintenance of YAML files| Field Notes
Taking advantage of our OpenTelemetry tracing to easily test behavior that is otherwise very hard to observe| Jennifer++
We build tools, but we are also shaped by the affordances of those tools. I'm building Letterbook. I would like it if you join me.| Jennifer++
We map the system so that we can change the system, so then we must remap the system. That's the tight inner loop of software development.| Jennifer++
Learning and exploration in complex systems happens continuously, forever. We need to constantly update our mental maps, or they'll lead us astray| Jennifer++
For quite some time, my own ops haven't had much dev in them. But I'm changing that.| Jennifer++
At this point we've designed a system and we're going to provide it as a service. To operate that service effectively we have to understand how its behaving. That's all about observability.| Jennifer++
If Advent of Code was a whole system, it might look like this. Of course, the first deployment of a complex system is never smooth. This is a review of that incident.| Jennifer++
Let's talk distributed systems! Getting into the details of how we could build a whole system to support Santa's elves, instead of a bunch of scripts.| Jennifer++
Ever wished you could monitor your AWS load balancer logs in real-time? AWS ELB access logs are packed with security gold, but they’re usually just sitting in S3 as static files. Let’s …| Yuki Nakamura's Blog
In this series's first part, we took a high-level view of what services European Cloud Providers have to offer. In these upcoming parts, we will focus on one| ConSol Blog
Learn how to resolve the “Kubernetes configuration file is group-readable or world-readable” warning. This guide explains the cause of the issue and shows the exact steps to secure your kubeconfig file.| vEducate.co.uk
How I am doing it in my projects| lucasew.github.io
You'll need to switch off ASAP.| matduggan.com
Every curl security report starts out with someone submitting an issue to us on https://hackerone.com/curl. The reporter tells us what they suspect and what they think the problem is. This report is kept private, visible only to the curl security team and the reporter while we work on it. In recent months we have gotten … Continue reading From suspicion to published curl CVE →| daniel.haxx.se
Terraform state is a distributed systems problem masquerading as file storage. Graph state fixes the bottlenecks.| Stategraph
Fast, Declarative, Reproducible, and Composable Developer Environments using Nix| devenv.sh
https://www.flickr.com/photos/scowltek/2886787076/ Summary (TL;DR): DevOps: The Big Picture is an excellent course. In only 1.5 hours, Richard presented the background motivation for DevOps, the cultural changes necessary for organization to embrace DevOps, and the list of popular tools for each capabilities to support DevOps success. This is certainly a recommended course for DevOps beginner, and those| djitz.com
Secure and streamline Kubernetes access with SAML 2.0 in Argo CD and Argo Workflows, improving compliance and efficiency.| IAMOPS
Cut AWS costs by 35% by migrating to Fargate Spot and automating non-production environments, boost efficiency and flexibility for developers.| IAMOPS
Docker is a great tool for managing and deploying web applications, but it can be a little intimidating to scale up from running a single containerized application to managing that application’s lifecycle through development, staging and production environments. Because of Docker’s flexibility, there is more than one way to handle the configurations of multiple application […] The post Docker Approaches to Multiple Environments appeared first on Simple Thread.| Running The World’s Largest Machine | Part 1 - The Building Blocks - Simple...
The crew finds a planet that was literally "coded" into existence using a Terraform-like tool. They discover the planet's "state file" and must prevent a disgruntled junior deity from running `terraform destroy` on the entire civilization.| Seuros Blog - Navigation Logs from the Ruby Nebula
The crew investigates a scientific outpost that has gone dark. They arrive to find the inhabitants have achieved "total observability," logging every single action, thought, and system metric. They are now so overwhelmed with data that they are paralyzed, unable to find the signal in the noise.| Seuros Blog - Navigation Logs from the Ruby Nebula
After an emergency space jump goes wrong, the Atlas Monkey finds itself stranded in the over-engineered Kubernetes Constellation, where they discover planets running massive infrastructure for tiny applications—and learn valuable lessons about right-sizing technology solutions.| Seuros Blog - Navigation Logs from the Ruby Nebula
OpenTelemetry ('OTel') is one of the| utcc.utoronto.ca
In this post, we explore the migration path from AWS CodeDeploy to Amazon ECS for blue/green deployments, discussing key architectural differences and implementation considerations. We examine three different migration approaches - in-place update, new service with existing load balancer, and new service with new load balancer - along with their respective trade-offs in terms of complexity, risk, downtime, and cost.| Amazon Web Services
AI, cloud and analytics promise progress but also bring new risks. Take part in Redgate’s 2026 State of the Database Landscape survey.| Redgate
Glenn Russell of Egen explains why many AI projects fail, the role of people and integration in success, and how enterprises can build real value with agent-based AI.| TFiR
When you start to have a lot of virtual machines and IP addresses, you might need to organize a bit with an IPAM. Netbox is such a thing.| Xen Orchestra Blog
Think incidents happen because of bad code? Think again. After handling countless outages, I've discovered the real culprits - and they're not what most people expect. Here's why your systems really fail.| Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from ...
Learn about observability & OpenTelemetry. Discover the importance of telemetry data & how OpenTelemetry standardizes it, making your life easier!| ITGix
