Archive - DevOps Bulletin

Digest #218: a $500K Google AI hack, Meta AI handing over Instagram accounts, AWS's new FinOps Agent and CockroachDB's vector indexing

Researcher pointed Claude at 3,600 leaked Google API keys and walked away with $500,000 in bounties this week, while attackers got into high-profile…

Jun 12 • Mohamed Labouardy

Digest #217: Kubernetes ditches Dashboard for Headlamp, Google API keys that won't die, 1-click GitHub token theft and the "Leaving AWS…

Kubernetes Dashboard to Headlamp migration, Google Cloud API key security, GitHub token theft via VSCode, AWS cost optimization, Pulumi EKS, Rust, and…

Jun 5 • Mohamed Labouardy

May 2026

Digest #216: GitHub Actions false suspensions, AI agent chains CVE to internal DB in 4 pivots, Gemini 3.5 deletes 28K lines and Postgres for…

LLM agent chains CVE to internal DB in 4 pivots, Gemini deletes 28K prod lines, plus Terraform, Snowflake cost cuts, and K8s scheduling.

May 29 • Mohamed Labouardy

Digest #215: AI DevOps Engineer, GitHub's 3,800-Repo Breach, Docker's Hidden microVM API, Terraform 1.15 and compromising Claude Code

A malicious VSCode extension compromised 3,800 GitHub repositories, Rivet's team reverse-engineered Docker Sandbox's undocumented microVM API, Terraform…

May 22 • Mohamed Labouardy

Digest #214: GitHub Under AI Load, microVMs Aren't Optional Anymore, AI Assistants Leak Your Chats and StackOverflow Drops Ingress-NGINX

GitHub buckles under AI-generated code volume, pushing users toward Forgejo. Plus: microVM isolation goes mandatory, trackers leak Claude and ChatGPT…

May 15 • Mohamed Labouardy

Digest #213: Terraform is dead, AI finds 20-year-old PostgreSQL bugs, AWS ships S3 Files and 54 days with port 22 open

AI uncovers 20-year-old RCE bugs in PostgreSQL and MariaDB, AWS ships a native filesystem layer in front of S3, and one engineer documents 54 days of…

May 8 • Mohamed Labouardy

Digest #212: GitHub Actions Weakest Link, Lambda's Invisible Network, Cloudflare's AI Stack and Terragrunt is Dead

Pulling back the curtain on Lambda's invisible network to GitHub Actions being the biggest CI/CD attack surface. Add Cloudflare sharing the internal AI…

May 1 • Mohamed Labouardy

April 2026

Digest #211: AWS DevOps Agent, AI Cloud Attacks and Security Skills for AI Agents

LMDeploy CVE exploited in 12 hours, autonomous AI cloud attacks, GitHub Actions threat model, and 7 open source tools for DevOps and security teams.

Apr 29 • Mohamed Labouardy

Digest #210: Claude Code Security Bypass, prt-scan Supply Chain Attack, Duolingo EKS Migration and Cloudflare Artifacts

Claude Code security bypass, GitHub Actions supply chain attack, Duolingo's EKS migration, Cloudflare Artifacts for agents, MCP on ECS, and 8 open…

Apr 17 • Mohamed Labouardy

Digest #209: OpenAI Codex Command Injection, Live Kubernetes Migration and SRE Agents

From Claude Code's source code being exposed through npm source maps, to a command injection flaw in OpenAI Codex leaking GitHub tokens.

Apr 10 • Mohamed Labouardy

Digest #208: Axios Supply Chain Attack, Agentic Incident Response, LLMs on Kubernetes and VSCode Malwares

A critical axios npm compromise affecting millions of downloads, while teams began automating incident response with AI agents.

Apr 3 • Mohamed Labouardy

March 2026

Digest #207: LiteLLM Malware Attack, Dropbox 87GB monorepo, Cursor's Security Agents and K8s One-Line Fix

The LiteLLM supply chain attack, Dropbox monorepo optimization, Postgres WAL debugging, Kubernetes performance fixes, and open source tools for LLM…

Mar 27 • Mohamed Labouardy

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts