Welcome to this week’s edition of the DevOps Bulletin!

AWS has changed more than you think: EC2 roles and EBS volumes can now be updated live, S3 is consistent and encrypted by default, and tools like VPC Lattice are simplifying networking. Netflix revealed how they still run mostly on Java with Spring Boot and GraphQL, while researchers uncovered nine zero-day flaws in HashiCorp Vault. And if you’ve been debating an SRE team, there’s a fresh take on why you might not need one.

On the tutorial front: learn how to set up a safe malware-analysis lab on AWS, try Docker Compose tricks to speed up your workflow, or build a tiny Python agent in ~70 lines. You’ll also find guides on branching strategies, a serverless chat room with AWS, OpenTelemetry configuration gotchas, deploying Tetris on ECS, plus practical explainers on Bash, DBMS, Kitty terminal tweaks, and Copilot instructions.

Our open-source spotlight features Rendergit to flatten repos into HTML, Zizmor for scanning GitHub Actions, and Data Formulator for AI-powered charting. tfclean tidies Terraform configs, Runecs manages ECS tasks, and ChartDB turns schemas into shareable diagrams.

All this and more in this week’s DevOps Bulletin, don’t miss out!

Newsworthy stories

• AWS in 2025: the stuff you think you know that’s now wrong

• How Netflix Runs on Java?

• How we found zero-day flaws in authentication, identity, and authorization in HashiCorp Vault

• The great SQLite rewrite

• 6 reasons you don't need an SRE team

• Understanding IAM privilege boundaries in Amazon ECS

Tutorials of the week

• Malware analysis on AWS

• 7 Docker Compose tricks to level up your development workflow

• MCP-powered agent in ~70 lines of code

• Git branching strategies: a comprehensive guide

• Build your own Kubernetes based SaaS cloud Platform with Kamaji and GitOps

• Everything I know about GitHub Copilot instructions

• Chat room with serverless architecture

• OpenTelemetry configuration gotchas

• How to deploy a Tetris game on AWS ECS with Terraform

• Bash explained

• I made Kitty Terminal even more awesome

• Master database management systems

Video of the week

📘 New Book: Practical FinOps

The material comes straight from years of building a FinOps platform for Fortune-500 engineering teams, thousands of AWS, Azure, and GCP accounts, petabytes of data, and enough untagged resources to make a CFO cry.

Along the way, I kept a lab notebook of what actually worked and, more importantly, what didn’t. That notebook turned into this book.

📚 Grab Practical FinOps with 50% off (early access): here

Projects of the week

• Render any git repo into a single static HTML page for humans or LLMs.

• Zizmor is a static analysis tool for GitHub Actions. It can find many common security issues in typical GitHub Actions CI/CD setups.

• Data Formulator can transform data and create rich visualizations iteratively with AI.

• tfclean is a tool for cleaning up Terraform configuration files by automatically removing applied, moved, imported, and removed blocks.

• Runecs allows you to run tasks and manage your services on AWS ECS.

• ChartDB is a database diagramming tool that enables you to visualize and design your database with a single query.

• Codefather protects your codebase by controlling who can change what. Set authorization levels, lock down files, and enforce your rules.

Meme of the week