Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

AWS Community Hub

IBM, modernization

Modernization Is Not Migration

| | CI/CD, cloud infrastructure, devops, modernization
Modernization worked only if the platform became easier to change, easier to understand and safer to run under pressure. That is not a philosophical position — it is a measurable one ...
New Relic Adds Open Source Tool to Observe AI Coding

New Relic Adds Open Source Tool to Observe AI Coding

| | AI coding, devops, New Relic, open source
New Relic has made available an open source extension to its observability platform for coding tools at no additional cost. Nic Benders, chief technical strategist for New Relic, said the New Relic ...
Why Your Observability Stack Is Costing You More Than Your Cloud Bill

Why Your Observability Stack Is Costing You More Than Your Cloud Bill

| | cloud costs, kubernetes, observability, OpenTelemetry, SRE
There's a pattern playing out across engineering teams right now that nobody talks about openly: the tool meant to reduce operational complexity has quietly become one of the biggest line items on ...
npm v12 Is Coming in July — Here's What Developers Need to Do Now

npm v12 Is Coming in July — Here’s What Developers Need to Do Now

| | devsecops, NPM, npm v12
For years, running npm install meant trusting that whatever code got pulled in would behave itself. That trust was often misplaced. Starting in July 2026, npm v12 changes the rules. Install scripts ...
Security Flaw in Claude Code Illustrates the Risk of AI in Developer Workflows

Security Flaw in Claude Code Illustrates the Risk of AI in Developer Workflows

| | agentic AI in development, Anthropic Claude Code, bash, CI/CD and AI agents, exposed secrets, GitHub Actions, microsoft, prompt injection
AI coding agents are reshaping software development—but they’re also expanding the attack surface. Researchers uncovered a now-patched vulnerability in Anthropic’s Claude Code GitHub Action that could have enabled prompt injection attacks to ...
When the Structure Becomes the Culture

When the Structure Becomes the Culture

| | Engineering leadership, Micro Teams, reliability engineering, SRE, Team Culture
Why micro teams and rotation reshape culture, not just throughput, in modern SRE. Most SRE leaders design teams around the systems they own. We designed ours around movement. We introduced micro teams ...
The Flow Illusion: Why Transformation Feels Like Theatre 

The Flow Illusion: Why Transformation Feels Like Theatre 

| | DevOps Leadership, digital transformation, flow metrics, Flowtopia Live 2026, value stream management
You’ve invested in the tools. Your teams have dashboards that track cycle time, throughput, and work in progress. You’ve likely even built a sophisticated, probabilistic roadmap. Yet, despite the data, it feels ...
IronWorm Malware Shares Shai-Hulud Traits, Takes Threat to 'Next Level'

IronWorm Malware Shares Shai-Hulud Traits, Takes Threat to ‘Next Level’

| | ebpf, IronWorm, jfrog, malware, Miasma, OX Security, Rust programming language, Shai-Hulud worm, software developers, software supply chain attacks, TeamPCP
Open source software developers continue to come under attack, with the latest threat being a custom malware that shares many of the attributes of the notorious Shai-Hulud self-propagating worm but comes with ...
The Silent Risk of AI-Written DevOps Pipelines

The Silent Risk of AI-Written DevOps Pipelines

| | AI-generated DevOps pipelines, CI/CD, devsecops, pipeline security, Software Supply Chain
These days, when a developer needs a CI/CD pipeline, they don’t always dive into GitHub Actions docs or spin up Jenkins from scratch. Instead, they pull up an AI assistant and type ...
Harness Acquires Codecov to Identify Untested Code

Harness Acquires Codecov to Identify Untested Code

| | acquisition, ai, CodeCov, coding, devops, Harness, sdlc, Sentry
Harness this week acquired Codecov, a provider of a platform that analyzes the percentage of a codebase that has been tested, from Sentry. Brad Rydzewski, a senior vice president and general manager ...
Regression Testing Tools in the Age of AI-Assisted Development: What Has Changed

Regression Testing Tools in the Age of AI-Assisted Development: What Has Changed

| | AI-assisted development, devsecops, regression testing tools, software testing, test automation
For most of the past decade, the conversation around regression testing tools was fairly stable. The tools got faster, the integrations got smoother, and the underlying approach stayed largely the same: write ...
Can Chainguard Save Open-Source Software From Mythos? Can Anyone?

Can Chainguard Save Open-Source Software From Mythos? Can Anyone?

| | Chainguard, devops, ibm, Mythos, open source software, red hat
IBM and Red Hat aren't the only ones that mean to lock down open-source code against AI hacking tools. Last week, IBM and Red Hat launched Project Lightwell to protect open-source projects ...
Show More