Welcome to this week’s edition of the DevOps Bulletin!

What if your /etc/hosts file could silently break your Substack editor? Or if AWS SNS could be twisted into a phishing and data exfiltration tool? This week, we explore strange-but-true incidents from the DevOps space.

In this week’s featured podcast, Cailyn Edwards, Co-Chair of Kubernetes SIG Security, shares tips on scaling container security without killing developer velocity.

Also, if you've ever wanted to understand the internals of a SQL engine, we’ve got you covered. We show how to secure Terraform deployments on Azure the right way, explain what not to do with your database (yes, it involves cratering it), and explore guardrails for Kubernetes apps. We also cover multitenancy in SQLite with Rails, utilizing markdown-style configurations to reduce YAML fatigue, and how to utilize fine-tuned LLMs to analyze Terraform files.

For open source this week, DBDiagram makes ER diagrams stupid-simple to generate with code. c/ua lets AI agents control full operating systems in lightweight containers. Pocket Flow is a 100-line LLM framework that crawls codebases and builds a knowledge graph. GitDiagram instantly visualizes GitHub repositories, and Tilt automates your development workflows from code changes to deployment.

All this and more in this week’s DevOps Bulletin—don’t miss out!

Newsworthy Stories

• Automate security compliance and remediation across organizations

• Why do we do blameless incident reviews?

• How MCP servers can steal your conversation history

• Terraform drift detection at scale

• Google reports 75 zero-days exploited in 2024

• AWS Lambda now supports inbound IPv6 connectivity over AWS PrivateLink

• When /etc/hosts breaks your Substack editor

Podcast of the week

Tutorials of the week

• Anatomy of a SQL engine

• Secure Terraform deployments on Azure

• How to crater your database

• AWS SNS abuse: data exfiltration and phishing

• SQLite multitenancy with Rails

• "markdown" for your config files

• Best practices for agentic coding

• Guardrails for apps running in Kubernetes

• Gaining long-term AWS access with CodeBuild and GitHub

• Analyze Terraform files using fine-tuned LLM

Projects of the week

• DBDiagram is a free and simple tool for drawing ER diagrams by simply writing code.

• c/ua is a framework that enables AI agents to control full operating systems within high-performance, lightweight virtual containers.

• Pocket Flow is a 100-line LLM framework. It crawls GitHub repositories and builds a knowledge base from the code.

• GitDiagram turns any GitHub repository into an interactive diagram for visualization in seconds.

• Tilt automates all the steps from a code change to a new process, including watching files, building container images, and updating your environment.

Meme of the week