DevOps

DevOps

Australian collaborationware company Atlassian has revealed it's spent four years trying to reduce dangerous internal dependencies, and while it has rebuilt its PaaS, it still has issues - but thinks they're now manageable. As explained in a Tuesday post by Senior Engineering Manager Andrew Ross, "Atlassian runs a large service-based platform with thousands of different services, most deployed by our custom orchestration system, 'Micros'."

AWS CloudFormation models and provisions cloud infrastructure as code, letting you manage entire lifecycle operations through declarative templates. Stack Refactoring console experience, announced today, extends the AWS CLI experience launched earlier. Now, you move resources between stacks, rename logical IDs, and decompose monolithic templates into focused components without touching the underlying infrastructure using the CloudFormation console. Your resources maintain stability and operational state throughout the reorganization.

WordPress powers countless websites across various domains, offering incredible versatility. This Content Management System (CMS) is the undisputed leader in the CMS market, powering an impressive 43.6% of all websites globally, according to these statistics. With over 810 million websites built on the platform and hundreds more launching daily (500+), its adoption continues to surge. This widespread use gives WordPress a massive 62% CMS market share, significantly outpacing its rivals.

Modern generative AI applications often need to stream large language model (LLM) outputs to users in real-time. Instead of waiting for a complete response, streaming delivers partial results as they become available, which significantly improves the user experience for chat interfaces and long-running AI tasks. This post compares three serverless approaches to handle Amazon Bedrock LLM streaming on Amazon Web Services (AWS), which helps you choose the best fit for your application.

Note that systemd compiled with musl has various limitations: since NSS or equivalent functionality is not available, nss-systemd, nss-resolve, DynamicUser=, systemd-homed, systemd-userdbd, the foreign UID ID, unprivileged systemd-nspawn, systemd-nsresourced, and so on will not work. [...] Caveat emptor. What this means is that it's now possible to compile and run systemd on Linux distributions that are not based on the GNU version of the C standard library, glibc.

With all these rapidly advancing new capabilities, now is the ideal moment to move your repositories to GitHub so your teams can fully harness Copilot's agentic power while still benefiting from your existing investments in Azure Boards and Pipelines. The two platforms continue to work better together, and choosing GitHub as the home for your code unlocks the richest end-to-end agentic experience.

Amazon Web Services has announced enhancements to its CodeBuild service, allowing teams to use Amazon ECR as a remote Docker layer cache, significantly reducing image build times in CI/CD pipelines. By leveraging ECR repositories to persist and reuse build layers across runs, organisations can skip rebuilding unchanged parts of containers and accelerate delivery. The blog outlines how Docker BuildKit support enables commands such as --cache-from and --cache-to pointing to ECR-based cache images,

"The worst feeling in the world is to be in the middle of an incident and realize that it would be a great thing that you could do to resolve that incident, if only a tool had been built before, right? So it'd be great if you figure that out before you get into that incident, and then you have the tool ready to go. "

The query builder solves a large SQL bottleneck by transforming log analysis from a time-consuming task into a real-time, self-service capability that's fit for any DevOps or site reliability professional. This is an immense time-saver that can collapse typical investigation windows from hours to minutes,

I'd like to beg you, dear Sir, as well as I can, to have patience with everything unresolved in your heart and to try to love the questions themselves as if they were locked rooms or books written in a very foreign language. Don't search for the answers, which could not be given to you now, because you would not be able to live them. The point is to live everything. Live the questions now. Perhaps then, someday far in the future, you will gradually, without even noticing it, live your way into the answer

Kubernetes networking is highly flexible but this flexibility can introduce security risks because all pods can communicate with each other by default. Cilium addresses these challenges by providing a modern, high-performance solution for Kubernetes networking that combines security, observability and performance using eBPF. Cilium is an open-source networking and security solution designed for cloud-native environments. It provides high-performance pod-to-pod networking utilizing eBPF and allows identity-aware network policies at the API level, enforcing fine grained controls.

The Cloud Native Computing Foundation (CNCF) published a blog post discussing how vCluster, an open-source project by Loft Labs, addresses key multi-tenancy obstacles in Kubernetes clusters by enabling "virtual clusters" within a single host cluster. This approach enables multiple tenants to have isolated control planes while sharing underlying compute resources, thereby reducing overhead without compromising isolation. Traditional namespace-based isolation in Kubernetes often falls short when tenants need to deploy cluster-scoped resources like custom resource definitions (CRDs)

Airbnb's engineering team has rolled out Mussel v2, a complete rearchitecture of its internal key value engine designed to unify streaming and bulk ingestion while simplifying operations and scaling to larger workloads. The new system reportedly sustains over 100,000 streaming writes per second, supports tables exceeding 100 terabytes with p99 read latencies under 25 milliseconds, and ingests tens of terabytes in bulk workloads, allowing caller teams to focus on product innovation rather than managing data pipelines.

The race condition occurred when one DNS Enactor experienced "unusually high delays" while the DNS Planner continued generating new plans. A second DNS Enactor began applying the newer plans and executed a clean-up process just as the first Enactor completed its delayed run. This clean-up deleted the older plan as stale, immediately removing all IP addresses for the regional endpoint and leaving the system in an inconsistent state that prevented further automated updates applied by any DNS Enactors.

"We are exploring the possibility of introducing Copilot for Exchange Server (on-premises)," Microsoft says, linking to a ten-question form that asks: "Would your organization be comfortable enabling Copilot for Exchange Server if it requires sending some Exchange Server data to the cloud?" Er, probably not. After all, many administrators run an on-premises version of Exchange precisely because they don't want any Exchange Server data being sent to Microsoft's cloud.

The company has now extended its developer tools to be coalesced inside the new Spotify Portal. This is an Internal Developer Platform built by Spotify's Backstage team. In the age of platform engineering, when IDPs hold the promise of self-service computing for developers who want to elevate themselves above the distraction of working with operations to get their infrastructure provisioning handled in an abstracted and automated way, does this technology rock the house?

Reviewing deployment logs is crucial for identifying site issues. Pay close attention to the Publish Directory setting in Netlify's deploy settings, as this determines where your files are deployed. For sites, ensure it points to the .next directory, while simpler setups might use public. Correct file placement is essential for your website to appear when visitors enter your URL. Remember: Next.js typically uses .next as the publish directory Static sites often use public or dist Check your project's build output to confirm the correct directory

Sidero Labs has been developing Talos Linux, an immutable operating system purpose-built exclusively for running Kubernetes, alongside Omni, a cluster lifecycle management platform. InfoQ met the Sidero team in Amsterdam during the TalosCon 2025 and had conversations about their approach to simplifying Kubernetes operations through minimalism and security-first design. The concept for Talos emerged from practical frustrations with traditional operating systems in enterprise environments.

In Part two, we examined secure by design principles, with a approach, secure access service edge (SASE), and quantum-safe planning becoming non-negotiable foundations for the next decade. Automation is another pivotal strand to the change that's taking place. Instead of relying on manual command-line interfaces (CLI), tomorrow's networks will be defined by code, workflows, and application programming interfaces (APIs). From infrastructure as code (IaC) and observability to evolving skillsets, automation is not just about efficiency - it is becoming the DNA of modern networking.