Operations | Monitoring | ITSM | DevOps | Cloud

The latest News and Information on DevOps, CI/CD, Automation and related technologies.

Beyond safety and security: Why automotive open source demands dependability

In the traditional automotive world, teams often work in silos: the cybersecurity experts lock down the ports, the quality assurance teams hunt for bugs, and the functional safety engineers track the ISO 26262 compliance. At Canonical, we believe this fragmented workflow causes friction rather than collaboration. You cannot have a safe vehicle that isn’t secure, and you cannot have a secure vehicle running on poor quality code. This friction results in a slow and rigid development process.

Building an open source chain of trust: new research uncovers key blockers and ways forward

Canonical is pleased to share its latest research report, “The open source chain of trust.” Based on a survey of 500 DevOps professionals, the report highlights how organizations approach their open source software supply chains. While many companies are moving toward verifiable provenance and automated security workflows, internal misalignment and disjointed approaches remain serious challenges for most teams. Read the report.

How to patch 40 Drupal sites without 40 manual deployments

Standardizing the fleet: automated updates for multi-site management There's a specific kind of update that Drupal agencies and enterprise teams dread: a security release in something the whole fleet runs on, the PHP runtime, the database engine, or a shared service, with a patched version available now and a deadline attached. For a team managing a single site, moving to the patched version is an afternoon of work.

Megaport Achieves SOC 2 Type 2 Compliance

Here’s how Megaport’s new certification gives customers more confidence in the security, availability, and reliability of our platform. Trust is built into infrastructure long before anyone notices it. It sits behind the login screen, inside the change process, across the controls that keep systems protected and services available. It shows up in the quiet, operational work that customers rarely see but rely on every day.

Vulnerability scanners find problems. A firewall prevents them.

A vulnerability scanner tells you what's wrong with dependencies you've already pulled. A dependency firewall decides what enters your environment in the first place. Instead of pulling blindly from public registries, every request is proxied through the firewall – where policy controls what's permitted, threat intelligence flags malicious packages that scanners never see, and enforcement happens at the earliest possible point. Scanning what's already inside is too late.

They stopped shipping features for half a year, now they're thriving

When incidents pile up fast enough, every part of the company bleeds: support is fielding angry customers, AEs are on apology calls, and engineering is burning cycles on retrospectives instead of shipping. For Eran Kampf (VP of Engineering at Twingate, Co-founder Monday.com) where the product is the network, that was the moment he made a call most engineering leaders won't: stop all feature work for a quarter and fix reliability.

How to Set Up Claude Code with CircleCI MCP Server (Full Demo)

AI agents write code fast, but without a validation layer, fast just means faster bugs. In this video, we connect Claude Code to the CircleCI MCP server so Claude can trigger pipelines, pull build failures into context, and iterate until everything is green. No context switching. No copy-pasting logs.

Build Custom Field Templates for Application Assessments

Modernization assessments move faster when the structure is already in place. Instead of recreating custom fields, interview questions, and assessment workflows for every customer, you can use a custom field template to standardize how data is collected from the start. This guide shows you how to create a reusable Tidal Accelerator custom field template using Node.js and the Tidal API, so your assessments are easier to repeat, compare, and scale. So you’re starting a modernization practice.