Archive - DevOps Bulletin

Digest #176: AWS Account Wipe, Pinterest’s Kubernetes Bug, Kamal + Terraform Deployment

Git worktrees, AI-powered security forms, threat detection at Netflix, sharding explained simply, SQL-writing LLMs, and open-source gems like Hetty and…

Aug 8 •

Mohamed Labouardy

Digest #175: Zero Secrets on GCP, AI Malware in npm, Kubernetes Tips, GitHub Actions with Claude

GCP scan reveals no exposed secrets, Netflix shares a 60-second Linux performance guide, AI-generated npm malware targets Solana wallets, plus tutorials…

Aug 1 •

Mohamed Labouardy

July 2025

Digest #174: MCP Best Practices, Amazon Q Hack, Kubernetes Savings, Terraform generation with Claude

Malicious prompt hits Amazon Q, GitHub Actions cache gets a 10× speed boost, and a live GPU cost-cutting workshop for Kubernetes teams.

Jul 25 •

Mohamed Labouardy

Digest #173: Figma’s $300K/day AWS bill, Soham Parekh and MCP security checklist

How Uber saved 50% on CI, what’s behind Figma’s $300K/day AWS bill, why IAM needs an attack-graph approach, and the latest open source projects.

Jul 4 •

Mohamed Labouardy

June 2025

Digest #172: Kubernetes 2.0, GCP Incident and AWS Lambda Hacks

What a modern Kubernetes reboot might look like, why SELECT FOR UPDATE can cause more harm than good, how Pinterest handles EC2 throttling, and why some…

Jun 20 •

Mohamed Labouardy

Digest #171: Git Optimization, FinOps X, Terraform State, Kubernetes 1.33, and DevOps Security Threats

GitLab’s 41-min backup breakthrough, AI-powered FinOps from the cloud giants, Infrastructure-from-Code pitfalls, Terraform state best practices…

Jun 13 •

Mohamed Labouardy

Digest #170: Helm Chart Security Issues, IaC in Multi-Cloud, FinOps X & AWS Cost Explorer Update, Docker & Terraform Tips, VPA Deep Dive

Kubernetes security gaps, managing IaC across clouds, reducing Google Cloud SQL costs, new AWS cost features, REST API design tips, Prometheus anomaly…

Jun 6 •

Mohamed Labouardy

May 2025

Digest #169: GitHub MCP Exploited, Uber’s Multi-Cloud Secrets, Server Scheduling to Slash Costs, Google SRE Updates, Root Access in Prod …

GitHub security incident, secrets at scale, shutting down idle servers, tips from AWS and Google SREs, GitLab prompt injection, Terraform backend fixes…

May 30 •

Mohamed Labouardy

Digest #168: OpenAI’s PostgreSQL at Scale, Databricks Buys Neon, S3 Migration Saves 90%, FinOps Tips, GitHub Actions Hardening & ECS with…

PostgreSQL tuning at OpenAI, $1B Neon deal, 300M-file S3 migration, EC2 boot time tricks, secrets management checklist, Kubernetes operator upgrades…

May 23 •

Mohamed Labouardy

Digest #167: 37signals Ditches AWS, Kubernetes Build-vs-Buy, Capital One’s Serverless Patterns, npm Malware Hits Thousands, and GitHub…

$10M AWS exit lessons, real-world Lambda at scale, malicious npm packages, Jenkins attack paths, CI/CD security tips, OPA with Terraform, and…

May 9 •

Mohamed Labouardy

April 2025

Digest #166: Terraform Drift at Scale, Container Security Masterclass, 75 Zero-Days, SNS Exploits, Lambda IPv6 Update, SQLite Multitenancy

Terraform drift detection, container security without dev friction, Google’s zero-day surge, AWS SNS misuse, IPv6 for Lambda, Substack bugs, SQL engine…

Apr 29 •

Mohamed Labouardy

Digest #165: GitHub Actions Shell Risks, Git Turns 20, MCP Security Flaws, Single-Function AWS Lambda Pitfalls, GCP Cloud Run Vulnerability…

GitHub Actions misuse, Git’s 20th anniversary, MCP security weaknesses, AWS Lambda design pitfalls, critical GCP Cloud Run exploits, PostgreSQL…

Apr 9 •

Mohamed Labouardy

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts