Operations | Monitoring | ITSM | DevOps | Cloud

At Cortex, our mission is to empower engineering organizations to ship reliable, secure, and efficient software, faster. Today, we’re thrilled to announce a formalized partnership with Sonar, the leader in code quality and security. For years, Sonar has been one of the most popular integrations in Cortex. Teams rely on Sonar’s deep code insights to identify vulnerabilities, ensure coverage, and raise the bar for clean, secure code.

Do you like working with time in your code? If yes, you’re likely one of the lucky ones who are blissfully unaware of how deep the rabbit hole goes. If you don’t like it, I have good news for you! Postgres can make working with time more enjoyable! The newly released temporal constraints let you easily maintain referential integrity across temporal relationships. That might seem simple, but it's kind of a big deal. Let’s explore it through an example.

When thinking about imperative infrastructure commands and Day 0 tasks for provisioning infrastructure, Ansible is an oft-mentioned tool that has been popular among practitioners for its easy YAML syntax and agentless architecture. You might have used Ansible to get your infrastructure started or for other “one-and-done” infrastructure automation scenarios.

“Free" cloud credits, they sound like a gift, but they often come with hidden costs and an agenda: lock-in. The illusion of a cost-saving measure can quickly become a vendor-specific trap, forcing costly migrations or leaving your business overpaying for cloud services. This issue, which the UK Competition and Markets Authority (CMA) estimates contributes to £430M of annual over-payments in the UK alone, is what we call the "cloud credit trap.".

Here there be cybersecurity monsters. But there don’t have to be. The scariest creatures aren’t in haunted houses or slasher films. They’re in your IT environment, lurking in queues, clogging inboxes, haunting your service desk. We’re talking, of course, about tickets. Every IT leader knows the horror movie I’m referring to: endless tickets piling up and making even the simplest requests a real slog.

With thousands of vulnerabilities discovered every year, not all pose the same risk. Some can cripple critical systems, while others have little real-world impact. The key is knowing which threats to act on first. Vulnerability prioritization helps security teams cut through the noise, focus on what truly matters and build resilience against critical attacks.

Bindplane engineers have stayed deeply involved in the OpenTelemetry community this summer. With KubeCon+CloudNativeCon North America in Atlanta coming up I wanted to dive into all the work that has been done and give the engineers a well deserved shoutout. Here’s what we built, fixed, and contributed since KubeCon+CloudNativeCon Europe in London this March.

Until recently, the Pipelines Billing Panel has only displayed the total pipeline minutes used across your workspace. You didn’t have visibility into how usage was distributed across your repositories. We’ve now enhanced the billing panel to show you build minute usage by repository for the current and previous billing periods so you can identify and manage high-usage repositories.

The way employees work is being transformed by AI, expanding digital environments, and rapid organizational change. These shifts create new opportunities for performance, but they also make productivity fragile – easily disrupted by complexity, friction, and underutilized tools.

TypeScript introduces the benefits of static typing to JavaScript, allowing developers to identify bugs at an earlier stage. However, relying solely on developers to run type checks locally isn’t enough. Without tsc being called, a person can just leave the invalid code and it may pass to production. This tutorial will show you how to set up CircleCI to automatically run the TypeScript type checks on each push.