Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

DevOps Onramp

Why Your AI Agent is a Black Box and How to fix it With OpenTelemetry 

Why Your AI Agent is a Black Box and How to fix it With OpenTelemetry 

| | AI agents, devops, observability, traces
You built the agent. It works in testing. Then it hits production and starts giving wrong answers, timing out or burning through your token budget, and you have no idea why. This is ...
GitHub Breach Tied to Malicious VS Code Extension Exposes Thousands of Internal Repositories

GitHub Breach Tied to Malicious VS Code Extension Exposes Thousands of Internal Repositories

| | devops, enterprise security, github, VS Code
GitHub says attackers accessed thousands of internal repositories after a company employee’s device was compromised through a malicious Visual Studio Code extension, though the company said it has removed the malicious extension, ...
OpenSSF's CRob: ‘The Runway Is Rapidly Running Out’ on EU CRA Readiness

OpenSSF’s CRob: ‘The Runway Is Rapidly Running Out’ on EU CRA Readiness

| | compliance, devsecops, Open Source Summit North America, OpenSSF
The EU's Cyber Resilience Act kicks into high gear this September, and companies are still clueless about how they must obey its strictures. MINNEAPOLIS — At Open Source Summit North America, Christopher ...
Why DevOps Is Critical for Modern Business Resilience

Why DevOps Is Critical for Modern Business Resilience

| | business resilience, CI/CD, cloud-native, devsecops, observability
Today’s business world operates in a state of constant change. What the customer wants to buy changes quickly, new competitors appear overnight, and cyber threats are changing faster than ever. In this ...
migration, software, AWS, cloud, AWS cloud, migration, Akamai migration cloud trendsSnowflake Aryaka cloud security migration

Migration Observability: Measure Meaning, Not Movement 

| | control plane, devops, migration, observability
Traditional operational observability focuses on latency, errors, throughput and saturation. Migration observability needs a different category: Semantic drift ...
How Open Source Dependency and Repo Attacks Compromise DevOps Pipelines and How to Stay Safe 

How Open Source Dependency and Repo Attacks Compromise DevOps Pipelines and How to Stay Safe 

| | CVE, Dependency Governance, log4j, Malicious Code Injection, open source security, Package Managers, SBoM, secure development, supply chain risk, typosquatting
Modern applications rely on open source components for up to 90% of their code, creating a vast attack surface dominated by inhemalicious supply chain injections. High-profile incidents like Log4j and the sabotage ...
The Observability Bill is Coming Due - and AI Wrote Most of It

The Observability Bill is Coming Due – and AI Wrote Most of It

| | agentic telemetry, AI in development, AIOps, APM (Application Performance Management), CI/CD (Continuous Integration/Continuous Deployment), data management, data quality, devops, instrumentation, Logging Standards, observability, Sawmills, Signal-to-Noise Ratio, software engineering, technology innovation, telemetry management, Telemetry Optimization
Observability has always had a data quality problem. AI coding agents just made it catastrophically worse. Shimmy sits down with the co-founders of Sawmills to dig into why unmanaged telemetry is the ...
Claude Code Security Finds the Bugs That Static Analysis Can't — and Wall Street Noticed

Claude Code Security Finds the Bugs That Static Analysis Can’t — and Wall Street Noticed

| | code security, devsecops, DevSecOps teams, wall street
Claude Code Security scans code like a human researcher, not a rule engine. Anthropic found 500+ decade-old bugs — and cybersecurity stocks felt it ...
How Small Engineering Teams Can Improve Reliability Without Adding Process Overhead

How Small Engineering Teams Can Improve Reliability Without Adding Process Overhead

| | DevOps practices, incident management, production monitoring, small engineering teams, software reliability
Modern software teams are under constant pressure to ship faster while maintaining reliability. For small engineering teams, this balance can feel especially difficult. Limited resources, tight deadlines, and shared responsibilities often mean ...

Observability, SRE and Uptime in Telehealth Platforms: A DevOps Playbook

| | cloud infrastructure, devops, incident management, observability, Patient Data Security, resilience engineering, site reliability engineering, Telehealth
Virtual care went from nice to have to must have during the COVID-19 pandemic and while in-person visits are starting to pick up again, telemedicine is here to stay. Its growth will ...
When Metrics Overwhelm: How SREs Help Engineers Reclaim Focus

When Metrics Overwhelm: How SREs Help Engineers Reclaim Focus

| | alert fatigue, contextual logging, developer experience, developer productivity, devops, DevOps transformation, Distributed Tracing, engineering efficiency, incident response, metrics and logs, observability, observability tooling, root cause analysis, site reliability engineering, software reliability, SRE, system resilience, war room culture
Observability promised insight but delivered alert fatigue. Learn how SREs are redefining observability to empower developers and restore real engineering value ...
White Paper: The Future of DevSecOps in a Fully Autonomous CI/CD Pipeline

White Paper: The Future of DevSecOps in a Fully Autonomous CI/CD Pipeline

| | ai, CI/CD, devsecops, ml
Abstract The growing complexity of modern software development and the increasing speed at which organizations need to deliver software have led to the widespread adoption of DevOps practices, particularly continuous integration/continuous deployment ...
Show More