Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Features

Kong, API, sentry, Wiz, Veracode, ASPM,

Sentry Adds Tool for Monitoring MCP Servers to APM Platform

| | ai, devops, MCP
Sentry today added an ability to monitor Model Context Protocol (MCP) servers to its application performance monitoring (APM) platform ...
Black duck, survey, Checkmarx, vulnerable code,

Survey Traces Large Amount of Breaches Back to Vulnerable Code

| | breaches, devops, software supple chain, vulnerabilities, vulnerable code
A survey of 1,519 application security stakeholders finds nearly all (98%) work for organizations that have experienced a security breach attributable to vulnerable code, with 81% acknowledging their organization has shipped code ...
CRA, compliance, continuous compliance, validated, devops, liability, software, compliance Checkly Palo Alto Networks Checkov

Eclipse Foundation Publishes Toolkit to Simplify CRA Compliance

| | compliance, CRA, EU, Europe, ORC, regulations
The Eclipse Foundation has launched the OCCTET project, offering open-source compliance tools to help smaller organizations meet the EU’s new Cyber Resilience Act requirements ...
vibe, coding, shadow, vibecoding vibe, coding, GitHub, agents, Gemini, Canvas, Gemini, code, Augment Code, code, kernel compliance-as-code software secure software Terraform infrastructure

Shadow: How AI Coding Agents are Transforming DevOps Workflows

| | ai, AI-assisted workflows, coding, coding assistant, developer time, devops
Shadow is an open-source AI coding agent that automates code understanding, editing and repository management to streamline DevOps workflows ...
Futurum Signal: AI-Powered Market Intelligence for DevOps and Platform Engineering

Futurum Signal: AI-Powered Market Intelligence for DevOps and Platform Engineering

| | ai, devops, Futurum Signal, platform engineering
If you’re building tools and platforms for the DevOps and platform engineering community—or you’re on the buying side, trying to decide which ones to adopt—you’ve probably noticed a frustrating truth: most market ...
SonarSource, LLMs, code data, agentic, JFrog, security, devsecops, Digma, code, Go, code, kernel, eBPF, Veracode GitKraken JFrog GitGuardian organizations, quality fear unknown software app Rust Contrast Security Adds API Support to Application Security Platform

Sonar Surfaces Multiple Caveats When Relying on LLMs to Write Code 

| | ai, AI coding tools, analysis, code smells, messy code, report
New SonarSource research shows LLMs like GPT-4o, Claude Sonnet 4, and Llama-3.2 produce highly functional yet risky code — with frequent high-severity vulnerabilities, hard-coded credentials, and messy “code smells” that raise long-term ...
Survey Surfaces Multiple Mobile Application Release Management Headaches

Survey Surfaces Multiple Mobile Application Release Management Headaches

| | ai, CI/CD, mobile application, Runway, SaaS
A survey of 300 mobile engineers in the U.S and the United Kingdom (UK) working for organizations with 500 to 10,000 employees finds, on average, respondents are spending five hours per release ...
agentic AI, developers,

Stack Overflow Survey Shows AI Adoption for Devs

| | agentic AI, ai, AI tools, AI-assisted development, developers, survey
We’re in a transition, not a rush: Developers are open to AI, but they’re also wise—and rightly cautious—about when and how they trust it, notes Alan. Read the full op-ed for more ...
GitHub CEO To Step Down As Company Is More Tightly Embraced by Microsoft's CoreAI Team

GitHub CEO To Step Down As Company Is More Tightly Embraced by Microsoft’s CoreAI Team

| | AI coding, CoreAI, Cursor, github, google, microsoft
Thomas Dohmke, CEO of Microsoft Corp.-owned GitHub, said on Monday he’s stepping down and will leave the company at the end of 2025 to become “a founder again,” signaling a major shakeup ...
Minimus Adds VEX Support to Managed Hardened Images Service

Minimus Adds VEX Support to Managed Hardened Images Service

| | application security, devsecops, Kubernetes security, Minimus
Minimus has extended its managed service for providing application developers with hardened images to include support for the Vulnerability Exploittability eXchange (VEX) format used to share data across multiple application security tools ...
agentic AI, developers,

How Gemini CLI GitHub Actions is Changing Developer Workflows

| | AI-assisted development, AI-powered tools, devops
Google's new Gemini CLI GitHub Actions transforms repository management with AI-powered automation for issue triage, code reviews and collaboration ...
jobs, career, DevOps, opportunities

Five Great DevOps Job Opportunities

| | careers, devops, jobs, opportunities
Our DevOps jobs report this week highlights industry roles at Sharetec, CodeRabbit , Block, Inc., Gerber Life Insurance and Optisources ...
Show More