DevOps Weekly Digest - Week 22, 2026
⚡ Curated updates from Kubernetes, cloud native tooling, CI/CD, IaC, observability, and security - handpicked for DevOps professionals!
📌 Handpicked by DevOps Daily - Your weekly dose of curated DevOps news and updates!
⚓ Kubernetes
📄 Why Kubernetes policy enforcement happens too late—and what to do about it
Kubernetes has become the backbone of modern cloud-native infrastructure. Its flexibility lets teams move fast, compose complex systems from modular components, and deploy across environments with rel
📅 May 25, 2026 • 📰 CNCF Blog
📄 Zero-Downtime migration from ingress NGINX to Envoy Gateway
Teams running Ingress NGINX in production are increasingly evaluating migration paths as Kubernetes networking evolves toward Gateway API. For many organizations, the challenge is not just selecting a
📅 May 25, 2026 • 📰 CNCF Blog
📄 Neo Automations: Scheduled Tasks Shipped as Pull Requests
Recurring platform work slips: provider versions fall behind, drift accumulates between checks, and the quarterly audit keeps getting pushed back another month. Pulumi Neo can now run any task on a ca
📅 May 21, 2026 • 📰 Pulumi Blog
📄 AI-powered event-driven Amazon EKS AMI updates with GitOps
This post demonstrates an automated solution that combines AI-powered risk analysis with GitOps principles to streamline Amazon EKS AMI updates while maintaining appropriate human oversight through fa
📅 May 20, 2026 • 📰 AWS Containers Blog
📄 Managing K8s Agent Updates at Scale with Helm and Terraform
Managing an agent on a single Kubernetes cluster is usually straightforward. Managing that same agent across five, ten, or fifty clusters is where things get harder. When you need to roll out an agent
📅 May 20, 2026 • 📰 Kubecost Blog
📄 Announcing etcd 3.7.0-beta.0
SIG-Etcd announces the availability of the first beta release of etcd v3.7.0. This new version of the popular distributed database and key Kubernetes component includes the long-requested RangeStream
📅 May 20, 2026 • 📰 Kubernetes Blog
📄 Announcing etcd v3.7.0-beta.0
SIG-Etcd announces the availability of the first beta release of etcd v3.7.0. This new version of the popular distributed database and key Kubernetes component includes the long-requested RangeStream
📅 May 19, 2026 • 📰 etcd Blog
📄 Simplify AI infrastructure for AWS Trainium and Elastic Fabric Adapter with Kubernetes Dynamic Resource Allocation
As organizations scale AI workloads in containerized environments, they face the complexity of managing specialized hardware that creates friction between infrastructure teams focused on stability and
📅 May 18, 2026 • 📰 AWS Containers Blog
☁️ Cloud Native
📄 OpenTelemetry is a CNCF Graduated Project
Today, the Cloud Native Computing Foundation (CNCF) announced that OpenTelemetry has graduated. Graduation is an important milestone for the project and reflects the strength of the OpenTelemetry comm
📅 May 21, 2026 • 📰 OpenTelemetry Blog
📄 Aamchi Mumbai: A KubeCon + CloudNativeCon field guide
Welcome to Mumbai KubeCon + CloudNativeCon India lands in Mumbai on 18-19 June 2026, at the Jio World Convention Centre in BKC. Thousands of cloud native engineers are flying in, many of you for the f
📅 May 21, 2026 • 📰 CNCF Blog
📄 Meet Gordon: Docker’s AI Agent For Your Entire Container Workflow
Gordon understands your environment, proposes fixes, and takes action across your entire Docker workflow. Now generally available. Image 1: Gordon in Docker Desktop Why Gordon Exists Developers are mo
📅 May 19, 2026 • 📰 Docker Blog
📄 Bitnami image removal from ECR Public
Starting on June 10th, 2026, Bitnami container images will no longer be available on Amazon ECR Public Gallery. If you currently pull Bitnami images directly from ECR Public in your workloads, you nee
📅 May 18, 2026 • 📰 AWS Containers Blog
📄 Coding Agent Horror Stories: The Security Crisis Threatening Developer Infrastructure
This is issue 1 of a new series called Coding Agent Horror Stories where we examine critical security failures in the AI coding agent ecosystem and how Docker Sandboxes provide enterprise-grade protec
📅 May 18, 2026 • 📰 Docker Blog
🔄 CI/CD
📄 AI Agents in CI/CD Pipelines: Speed vs Control in Modern DevOps
The moment you push your code, deployment fires off on its own. The pipeline kicks in, the tests sail through, and within a few minutes your app is live in production. There is no manual sign-off and
📅 May 22, 2026 • 📰 DevOps.com
📄 Introducing Experiment Approvals
Add a safety check before experiment changes reach users.
📅 May 22, 2026 • 📰 LaunchDarkly Blog
📄 Designing an AI-Powered DevSecOps Guardrail Pipeline Using GitHub Actions
By embedding AI-powered guardrails directly into CI/CD pipelines, organizations can detect vulnerabilities earlier, enforce security policies automatically and accelerate secure software delivery.
📅 May 22, 2026 • 📰 DevOps.com
📄 From Conversations to Community: Our First MongoDB DBDevOps
Harness and Namma MUG hosted India’s first MongoDB Database DevOps meetup, exploring CI/CD, automation, migrations, and MongoDB-native workflows. | Blog
📅 May 22, 2026 • 📰 Harness Blog
📄 Beyond the engine: 10 open source projects shaping how games actually get made
Check out these 10 open source tools that help game developers create art, animation, levels, audio, dialogue, debug UIs, and engine-ready assets. The post Beyond the engine: 10 open source projects s
📅 May 21, 2026 • 📰 GitHub Blog
📄 Building GitHub’s next chapter in accessibility
Explore our update on GitHub’s accessibility strategy, and learn how you can join us in building a culture of accessibility. The post Building GitHub’s next chapter in accessibility appeared first on
📅 May 21, 2026 • 📰 GitHub Blog
📄 Transform MRs from manual tasks to an automated workflow
AI made writing code dramatically faster, but the work between opening a merge request and merging it has stayed almost entirely manual. Assigning reviewers, addressing feedback round after round, unt
📅 May 21, 2026 • 📰 GitLab Blog
📄 Track CI component usage across your organization
If your platform team publishes standardized pipeline components, you've probably encountered this: once they're out in the wild, you lose visibility. You can't see if anyone’s actually using it, who'
📅 May 21, 2026 • 📰 GitLab Blog
📄 Manage CI/CD credentials with GitLab Secrets Manager
Many credential leaks start with a developer who needs a credential, doesn’t have a good place to put it, and improvises. It lands in an over-scoped CI/CD variable, a config file, or a .env committed
📅 May 21, 2026 • 📰 GitLab Blog
📄 More AI models for GitLab Duo Agent Platform Self-Hosted
Customers running GitLab Duo Agent Platform Self-Hosted operate under constraints many software teams don't face: data residency mandates, air-gapped networks, and compliance regulations that prohibit
📅 May 21, 2026 • 📰 GitLab Blog
📄 Investigating unauthorized access to GitHub-owned repositories
If any impact is discovered, customers will be notified via established incident response and notification channels. The post Investigating unauthorized access to GitHub-owned repositories appeared fi
📅 May 20, 2026 • 📰 GitHub Blog
📄 Consolidate registries to accelerate secure CI/CD flows
Artifact repository sprawl across multiple registries creates CI/CD bottlenecks, security blind spots, and compliance gaps. Learn how registry consolidation with unified governance fixes it. | Blog
📅 May 20, 2026 • 📰 Harness Blog
🏗️ IaC
📄 Introducing pulumi do: Direct Resource Operations for Any Cloud
Infrastructure as code is the right model for production systems. State tracking, drift detection, and repeatable deployments all matter when you’re managing real workloads. But sometimes, you also ne
📅 May 22, 2026 • 📰 Pulumi Blog
📄 Streamlining Red Hat OpenShift multicluster management with Red Hat Ansible Automation Platform
Multicluster management has been a rapidly evolving part of ITOps over the past several years. As organizations deploy hundreds to thousands of clusters across distributed environments, it’s important
📅 May 22, 2026 • 📰 Red Hat Blog
📄 Bringing Neo to GitHub and Slack
This week, Pulumi Neo started working in two more places: GitHub and Slack. The agent that already runs Pulumi tasks from the Cloud console and the terminal now participates in the threads where your
📅 May 21, 2026 • 📰 Pulumi Blog
📄 Seven Rules for Building an AI-Native Software Factory
Ewan Dawson is CTO of Compostable AI, where five engineers run an AI-native software factory: nineteen clients, custom AWS deployments, most of them shipped within a day of contract signing. This arti
📅 May 21, 2026 • 📰 Pulumi Blog
📄 Upgrading Fedora with Zabbix and Ansible
Fedora is a global open source project and Linux distribution that provides a platform for innovation and collaboration. Its infrastructure is managed by a dedicated team of professionals and voluntee
📅 May 20, 2026 • 📰 Zabbix Blog
📊 Observability
📄 Route Claude Code Through MLflow AI Gateway
Learn how to route Claude Code through MLflow AI Gateway to get full observability, budget controls, and guardrails across all your coding agent sessions, with no changes to how you use Claude Code.
📅 May 25, 2026 • 📰 MLflow Blog
📄 Who’s monitoring the agents?
Over the past few months, something quietly shifted. Frameworks like CrewAI, AutoGen, and LangGraph are no longer just showing up The post Who’s monitoring the agents? appeared first on The New Stack.
📅 May 24, 2026 • 📰 The New Stack
📄 Designing end-to-end ingress request tracing for multi-tenant SaaS platforms
Modern SaaS platforms built on cloud‑native architectures frequently consist of dozens of independently deployed microservices. A single customer request entering the platform at the ingress layer may
📅 May 22, 2026 • 📰 CNCF Blog
📄 The product analytics you already have
Your Sentry traces, logs, and metrics already answer most product analytics questions. Learn how to query existing telemetry for product insights.
📅 May 21, 2026 • 📰 Sentry Blog
📄 Automate root cause analysis across Datadog and Elasticsearch with AWS DevOps Agent
Modern distributed systems route business transactions through dozens of microservices, message queues, and event streams. When a message fails to process or processing exceeds SLA thresholds, trouble
📅 May 19, 2026 • 📰 AWS DevOps Blog
📄 Applying OpenTelemetry Security Practices in Legacy Environments
OpenTelemetry is gaining traction in manufacturing and other legacy environments as organizations explore modern observability approaches. However, applying these practices in traditional systems intr
📅 May 19, 2026 • 📰 OpenTelemetry Blog
🔐 Security
📄 Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability
Written by: Takahiro Sugiyama, Peter Revelant, Mathew Potaczek Introduction In late 2025, Mandiant responded to a security incident involving a compromised web server running KnowledgeDeliver. Knowled
📅 May 25, 2026 • 📰 Google Cloud Blog
📄 Threats Making WAVs - Incident Response to a Cryptomining Attack
Guardicore security researchers describe and uncover a full analysis of a cryptomining attack, which hid a cryptominer inside WAV files. The report includes the full attack vectors, from detection, in
📅 May 25, 2026 • 📰 Linode Blog
📄 Laravel Lang Supply Chain Advisory
Hundreds of historical Laravel Lang Packagist releases were republished with malicious code, putting Composer installs at risk of credential theft and secret exfiltration.
📅 May 23, 2026 • 📰 Snyk Blog
📄 Attackers Can Exploit a Claude Code RCE Flaw to Take Command of System
A dangerous vulnerability found in Anthropic’s popular Claude Code developer model could have allowed bad actors to grab control of a victim’s system by luring them into clicking on a crafted maliciou
📅 May 22, 2026 • 📰 DevOps.com
📄 AWS Security Agent adds verification scripts for pentest findings
AWS Security Agent now generates verification scripts for penetration test findings, enabling security teams to independently reproduce and validate discovered vulnerabilities. Previously, teams manua
📅 May 22, 2026 • 📰 CloudFormation Updates
📄 Modernizing DevOps Security With Intelligent KYC Enforcement Layers
This is where smart KYC enforcement layers fit in — not a compliance box, but an engineering control that is directly part of DevOps processes.
📅 May 22, 2026 • 📰 DevOps.com
📄 TeamCity 2025.11.5 Is Out
Our (most likely) final update for TeamCity 2025.11 On-Premises servers has just been released. This updage addresses a tiny amount of issues, but includes four security problem fixes, so we recommend
📅 May 21, 2026 • 📰 JetBrains Blog
📄 Snyk announces Anthropic updates: Evo integrates with Claude Enterprise, and Snyk Desk comes to Claude Desktop
Snyk announces two new integrations with Anthropic that cover both sides of AI-assisted development. Evo by Snyk now integrates with Anthropic's Claude Enterprise, and the Snyk Security Desktop Extens
📅 May 21, 2026 • 📰 Snyk Blog
📄 Announcing Claude Compliance API support with Cloudflare CASB
Cloudflare now integrates with the Claude Compliance API, so that security teams can monitor Claude Enterprise activity directly in the Cloudflare Dashboard.
📅 May 21, 2026 • 📰 Cloudflare Blog
📄 PinTheft Linux kernel vulnerability mitigation
A local privilege escalation (LPE) security vulnerability in the Linux kernel, codename “PinTheft,” was publicly disclosed on May 19, 2026. The vulnerability was fixed in the mainline Linux kernel tre
📅 May 21, 2026 • 📰 Ubuntu Blog
📄 Securing The AI Revolution: How Snyk And Our Partners Are Scaling For The Future
AI is accelerating code creation. Learn how Snyk is scaling its AI Security Platform and investing in new partner programs to help enterprises govern AI-generated code at scale.
📅 May 21, 2026 • 📰 Snyk Blog
📄 Gitea 1.26.2 is released
We are excited to announce the release of Gitea 1.26.2! We strongly recommend all users upgrade to this version, as it contains a number of security fixes alongside important bug fixes and stability i
📅 May 20, 2026 • 📰 Gitea Blog
💾 Databases
📄 pg_tre 1.1.1 released -- an approximate-REGEX index AM for PostgreSQL 18+
I am pleased to announce the first public release of [pg_tre] (https://codeberg.org/gregburd/pg_tre), a native PostgreSQL 18+ index access method for approximate-regex matching. pg_tre indexes text co
📅 May 22, 2026 • 📰 PostgreSQL News
📄 pg_infer 1.0.0 released -- transformer model knowledge as SQL relations
I am pleased to announce the first public release of pg_infer, a PostgreSQL 18+ extension that exposes the internals of small transformer language models -- gate activations, feature labels, learned a
📅 May 22, 2026 • 📰 PostgreSQL News
📄 pg_mentat 1.3.0 released -- Datomic-compatible Datalog inside PostgreSQL
I am pleased to announce the first public release of [pg_mentat] (https://github.com/gburd/pg_mentat), a PostgreSQL extension that implements Datomic's data model -- immutable facts (datoms), schema-f
📅 May 22, 2026 • 📰 PostgreSQL News
📄 The NoSQL Storm - Stop fighting the MongoDB
The NoSQL Storm, a Database DevOps comic inspired by MongoDB, exploring NoSQL scaling, schema evolution, and modern DevOps practices. | Blog
📅 May 21, 2026 • 📰 Harness Blog
📄 PGDay Israel 2026 - Call for Papers is Now Open
Dear PostgreSQL Community, We are pleased to announce that the Call for Papers for PGDay Israel 2026 is now open. We invite community members, users, and developers to submit proposals for talks and p
📅 May 21, 2026 • 📰 PostgreSQL News
📄 Long-horizon tasks: building agents that work over hours & days
Early AI agents handled one-shot jobs that took a few minutes: fix this bug, write this function, generate this test. More recent workflows are multi-step, tool-using, and stateful over extended sessi
📅 May 21, 2026 • 📰 Redis Blog
📄 Benchmarking AI Coding Agents for Distributed SQL: What We Learned
AI models write vanilla PostgreSQL. If your database is distributed, providing the AI model with a YugabyteDB skill file closes the gap and ensures it writes code that works for your application. In t
📅 May 20, 2026 • 📰 Yugabyte Blog
📄 What is a context engine? The platform layer behind production AI agents
Count the systems behind your AI agent. A vector database for embeddings. A separate cache for LLM responses. A memory service for conversation state. A pipeline syncing data from Postgres. Probably a
📅 May 20, 2026 • 📰 Redis Blog
📄 TiDB SCaiLE Europe 2026: Why Engineers Building Agentic AI Should Be in Stockholm on 4 June
Most teams shipping AI agents in 2026 hit the same wall around the same time. The prototype works. Ten users or even a thousand users mostly work. But then one user action triggers thousands of agent
📅 May 19, 2026 • 📰 TiDB Blog
📄 Apache Cassandra Performance Tuning: What We Learned
This blog post (tries to) consolidate what we've learned from years of tuning Apache Cassandra for performance
📅 May 19, 2026 • 📰 ScyllaDB Blog
📄 What is a context layer? AI agent infrastructure
In a demo, your agent only has to hold one conversation with one user, against fresh data, for a few minutes. Production is different. It has to remember users across sessions, reconcile retrieved doc
📅 May 19, 2026 • 📰 Redis Blog
🌐 Platforms
📄 2 PhaaS 2 Furious: The Evolution of Chinese-language Phishing Services
Written by: Jamie Collier While Russian-speaking threat actors have historically dominated the phishing-as-a-service (PhaaS) landscape, a rival ecosystem is rapidly growing within the Chinese-language
📅 May 25, 2026 • 📰 Google Cloud Blog
📄 Keep Your Tech Flame Alive: Trailblazer Rachel Bayley
In this Akamai FLAME Trailblazer blog post, Rachel Bayley encourages women to step into the unknown and to be their authentic selves.
📅 May 25, 2026 • 📰 Linode Blog
📄 The Oracle of Delphi Will Steal Your Credentials
Our deception technology is able to reroute attackers into honeypots, where they believe that they found their real target. The attacks brute forced passwords for RDP credentials to connect to the vic
📅 May 25, 2026 • 📰 Linode Blog
📄 The Nansh0u Campaign – Hackers Arsenal Grows Stronger
In the beginning of April, three attacks detected in the Guardicore Global Sensor Network (GGSN) caught our attention. All three had source IP addresses originating in South-Africa and hosted by Volum
📅 May 25, 2026 • 📰 Linode Blog
📄 Amazon SageMaker expands domain management across domain types
Amazon SageMaker Unified Studio now provides domain management experience for Identity Center and IAM-based domains outside of AWS console, allows administrators and data management teams to create an
📅 May 22, 2026 • 📰 CloudFormation Updates
📄 New agentic migration assessment capabilities now available with AWS Transform
AWS Transform now offers advanced migration assessment capabilities including what-if scenarios, customizable assumptions, flexible file format support, and multiple new total cost of ownership (TCO)
📅 May 22, 2026 • 📰 CloudFormation Updates
📄 Amazon SageMaker adds business metadata and governance in IAM-based domains
Amazon SageMaker Unified Studio now supports business context, metadata and data governance capabilities in IAM-based domains. With this launch, customers using Amazon SageMaker IAM-based domains can
📅 May 22, 2026 • 📰 CloudFormation Updates
📄 Request-Based Autoscaling Is Now Generally Available on App Platform
Traffic doesn’t spike on a schedule. A product launch, a viral moment, or a flash sale can send request volume through the roof in seconds, long before your CPU metrics catch up. That gap is where per
📅 May 22, 2026 • 📰 DigitalOcean Blog
📄 GitHub recognized as a Leader in the Gartner® Magic Quadrant™ for Enterprise AI Coding Agents for the third year in a row
We are committed to empowering every developer by building an open, secure, and AI-powered platform that defines the future of software development. The post GitHub recognized as a Leader in the Gartn
📅 May 22, 2026 • 📰 GitHub Blog
📄 What’s new with Google Cloud
Want to know the latest from Google Cloud? Find it here in one handy location. Check back regularly for our newest updates, announcements, resources, events, learning opportunities, and more. Tip: Not
📅 May 22, 2026 • 📰 Google Cloud Blog
📄 The Blueprint: How Movix fills a gap in dental skills with specialized agentic AI
Welcome to The Blueprint, a regular feature where we highlight how Google Cloud customers are tackling unique and common challenges across industries using the latest AI and cloud technologies. We hop
📅 May 22, 2026 • 📰 Google Cloud Blog
📄 Canonical announces fully Managed Kubeflow AI operations platform on the Microsoft Azure Marketplace
Canonical has announced the general availability of Managed Kubeflow on the Microsoft Azure Marketplace. This fully managed MLOps platform allows enterprise AI teams to deploy a production-ready envir
📅 May 21, 2026 • 📰 Ubuntu Blog
📰 Misc
📄 Visual Studio Code 1.122
Learn what's new in Visual Studio Code 1.122 (Insiders) Read the full article
📅 May 27, 2026 • 📰 VS Code Blog
📄 How Jaeger hit 8.6× compression on 10 million spans with ClickHouse
As someone who’s been maintaining Jaeger, I’ve watched users request ClickHouse support consistently over the past few years. With Jaeger The post How Jaeger hit 8.6× compression on 10 million spans w
📅 May 24, 2026 • 📰 The New Stack
📄 What ClickHouse learned from a year of coding with AI agents
Some people will tell you agents will take all our jobs. Others insist they are useless. Leadership at many companies The post What ClickHouse learned from a year of coding with AI agents appeared fir
📅 May 24, 2026 • 📰 The New Stack
📄 OpenClaw passed 300,000 GitHub stars. Then Google launched Spark.
OpenClaw made the always-on agent feel personal by making it live somewhere you could point at — a Mac mini The post OpenClaw passed 300,000 GitHub stars. Then Google launched Spark. appeared first on
📅 May 23, 2026 • 📰 The New Stack
📄 The JetBrains Fit Test: Is This the Right Workplace for You?
If you’ve ever wondered what it’s really like to work at JetBrains, this post is for you. We could tell you about our products, our offices, or the number of developers who use our tools, but the trut
📅 May 22, 2026 • 📰 JetBrains Blog
📄 What Happens When You Give AI Agents the Map of Your Code’s Coverage?
When you ask an AI agent to write a new feature, a good agent will eventually say: “I need to write a test for this.” But what happens next is usually messy. To figure out where that new test belongs,
📅 May 22, 2026 • 📰 JetBrains Blog
📄 Rider 2026.2 EAP 3: Cost-effective Agentic Test Coverage, Code Change Previews, GameDev Templates, and NuGet Improvements
JetBrains Rider 2026.2 EAP 3 is out! You can download this version from our website, update directly from within the IDE, use the free Toolbox App, or install it via snap packages. Here’s what you can
📅 May 22, 2026 • 📰 JetBrains Blog
📄 Decoding design: How design and engineering thrive together in open source
Open source thrives on engineering-driven processes. Fast feedback loops, terminal tools, Git workflows: they’re the lifeblood of how we build software in the open. But for software to truly excel, we
📅 May 22, 2026 • 📰 Ubuntu Blog
📄 Friday Five — May 22, 2026
Fierce Network: Red Hat CTO says these are 3 big things it’s working on with telcosVerizon took to the keynote stage at Red Hat Summit to talk up its network modernization work with the vendor. Red Ha
📅 May 22, 2026 • 📰 Red Hat Blog
📄 Developing web apps with local LLM inference
I’ve yet to meet a developer that enjoys working with metered AI APIs. The need to pay for every API call in development works in direct opposition to the ethos of rapid iteration, and it’s easy for t
📅 May 21, 2026 • 📰 Ubuntu Blog
📄 What even is the harness in AI?
I recently saw OpenClaw referred to as a harness. I thought, “That’s interesting. OpenClaw isn’t a harness. It’s an agent runtime—it drives the agent loop.” So, what does the word "harness" even mean?
📅 May 21, 2026 • 📰 Red Hat Blog
📄 Red Hat's Approach to Keyboard Testing for Web Accessibility
One of the core principles of Red Hat’s open source culture is open exchange, which is the belief that information should be freely available and accessible to anyone. I recently represented Red Hat a
📅 May 21, 2026 • 📰 Red Hat Blog
We earn commissions when you shop through the links below.
DigitalOcean
Cloud infrastructure for developers
Simple, reliable cloud computing designed for developers
DevDojo
Developer community & tools
Join a community of developers sharing knowledge and tools
SMTPfast
Developer-first email API
Send transactional and marketing email through a clean REST API. Detailed logs, webhooks, and embeddable signup forms in one dashboard.
QuizAPI
Developer-first quiz platform
Build, generate, and embed quizzes with a powerful REST API. AI-powered question generation and live multiplayer.
Want to support DevOps Daily and reach thousands of developers?
Become a SponsorFound an issue?
Help us improve this content by reporting any errors, typos, or suggestions for enhancement.