Operations | Monitoring | ITSM | DevOps | Cloud

The latest News and Information on DevOps, CI/CD, Automation and related technologies.

You Can't Detect What You Never Collect: Telemetry Coverage in the Agentic SOC

Every detection rule, every threat hunt, every AI agent you deploy rests on one silent assumption: that the data describing an attack actually reached your tools. When it doesn’t, nothing above it can save you, and no one gets an alert that the data was missing. Security teams invest heavily in the sharp end of the stack: detection content, threat intelligence, response playbooks, and increasingly, AI agents to triage and investigate at machine speed.

Why compliance audits keep slowing your engineering team down

If you've shipped software in fintech, healthcare, or government, you probably know the specific dread of an upcoming compliance audit. Not because the software isn't secure, but because proving it is requires reconstructing a paper trail for decisions that were made in Jira tickets, Slack threads, and pull request comments over the last six months. The software is fine. The documentation of the software is the problem.

Designing the New Workloads Dashboard for Rancher

To meet community demand, we have restored the global workload overview in Rancher Manager. After previously removing the feature due to performance constraints, we prioritized user feedback and rebuilt it from the ground up. Powered by a new, optimized API, the updated UI is both highly scalable and resilient.

How Liftoff cut costs by 87% and latency by 75% with HAProxy

Liftoff, a mobile advertising company, processes 1.5 trillion bid requests every month. Their platform touches 275 million unique devices daily across 150 geographies. At that scale, the proxy layer is a core part of the business. For years, Liftoff relied on a managed enterprise proxy vendor. It worked, until it didn’t.

The golden path: security that works because it's the easy path

A golden path for dependency management isn't a policy document – it's a preconfigured private registry with upstream proxies covering every ecosystem your teams use, set as the default. Developers don't opt into security; they get it automatically by using the standard toolchain. The alternative is teams configuring their own controls, producing inconsistent postures and compounding risk across the org. If the secure path requires extra steps, developers will route around it. Make it the easiest option and the policy enforces itself.

Walkthrough: Puppet System Hardening Assessment

Is your infrastructure as secure as you think it is? In this walkthrough, see how aSystem Hardening Assessmenthelps organizations identify security gaps, uncover configuration risks, and prioritize remediation efforts across critical systems. You'll learn how teams can evaluate their environment against security best practices, gain visibility into potential vulnerabilities, and take actionable steps to strengthen their overall security posture.

ACP vs MCP: What's the difference for agentic coding?

An AI coding agent holds many conversations at once. Not only is the user prompting it, the agent also talks to the IDE, showing diffs and asking before it touches a file. At the same time it talks to tools, pulling a failing build or querying a database. Two open protocols standardize those conversations. This guide compares ACP vs MCP in practical terms: what each protocol does and when each applies. ACP (Agent Client Protocol) connects a code editor to an AI coding agent.

Cloud repatriation strategies: From public dependency to hybrid flexibility

For years, "move everything to the cloud" was the default. But the economics have shifted. Join Russell Smith to explore why enterprises are reconsidering their cloud strategies, and how modern private cloud platforms are changing the game. We'll cover the real costs of public cloud lock-in, achieving feature parity without the price premium, and how to navigate today's hardware constraints, especially if you've got existing infrastructure assets that can still deliver value.

To learn and improve, we cannot be afraid to fail

“Deployment stress doesn’t just come from high-profile public outages. It often starts much earlier, when a fear of failure seeps into team culture.” Rob Richardson, Software Craftsman Rob certainly knows the stress and embarrassment of public deployment failures. "But overall" he reflects, "I’ve had more stress in my career from internal failures.