Digest #181: GitHub Actions Bypass, K8s Databases, Azure Token Flaw, Postgres Partitioning and Running Linux in Docker

GitHub Actions fork exploit, Kubernetes operators solving database management, Grab’s auth system for 180M users, Azure Entra ID token flaw, and Tinder’s API gateway at 1B swipes.

Sep 27, 2025

∙ Paid

Welcome to this week’s edition of the DevOps Bulletin!

GitHub Actions just got called out for a fork-based bypass, letting imposter commits sneak past reviews. Kubernetes, long mocked for struggling with stateful workloads, now has operators that make managing Postgres clusters as easy as deployments. Grab explained how it built an auth system for 180M u…

Continue reading this post for free, courtesy of Mohamed Labouardy.

Or purchase a paid subscription.