Welcome to this week’s edition of the DevOps Bulletin!

A simple missing VPC endpoint turned into a $1,000 AWS bill, 1Password introduced secure .env file support, and researchers broke down how they hacked Gemini through layered Markdown sanitization. Azure also faced a massive 15 Tbps DDoS attack, and one team shared how they stayed online during the last major AWS outage.

On the engineering side: why Postgres isn’t always the answer, how a junior dev learned React with ChatGPT, and what teams can learn from historical log patterns.

Hands-on this week: GitHub Actions attack paths, keeping your repo clean, Lazygit essentials, Terraform collaboration tips, a PostgreSQL DBA roadmap, and Docker + Terraform workbooks.

Tools of the week: check-projects (multi-repo status), Opengrep (semantic code search), Coolify (self-hosted PaaS), Serverless DNS, VNC-Browser, and a huge list of open-source games.

All this and more in this week’s DevOps Bulletin, don’t miss out!

Newsworthy stories

• The $1,000 AWS mistake

• Introducing new .env file support in 1Password environments

• Hacking Gemini: A multi-layered approach

• Azure hit by 15 Tbps DDoS attack using 500,000 IP addresses

• When AWS was down, we were not

• How I learned React with ChatGPT and Next.js as a junior developer

• Sometimes Postgres isn’t the answer

Tutorials of the week

• Attackers love your GitHub Actions too

• How to keep your repository (.git) clean and efficient?

• The (lazy) Git UI you didn’t know you needed

• Terraform workbook: your guide to infra as code

• PostgreSQL DBA roadmap

• Docker workbook: your guide to containerization

• How teams can work together without breaking Terraform

• The log rings don’t lie: historical enumeration in plain sight

Videos of the week

📘 FinOps Tip of the Week

Good governance saves money before you even look at a dashboard

Start with a simple rule set. Require tags like Owner, Environment, and CostCenter. Add automated checks to CI/CD or use AWS Config to flag resources that lack these tags. This alone improves cost visibility, keeps teams accountable, and reduces cleanup work.

If you want more hands-on tips like this, check out my latest book, “Practical FinOps”.

Projects of the week

• A fast, cross-platform CLI tool to check the git status of multiple projects organized by categories.

• Opengrep is an ultra-fast static analysis tool for searching code patterns with the power of semantic grep.

• Coolify is a self-hostable PaaS alternative to Vercel, Heroku & Netlify that lets you easily deploy static sites, databases, and full-stack applications.

• Serverless DNS is a RethinkDNS resolver that deploys to Cloudflare Workers, Deno Deploy, Fastly, and Fly.io.

• VNC-Browser is a ready-to-use, minimal, and customizable Docker image that provides a lightweight, secure environment for browsing the web via VNC.

• List of different open-source video games, commercial video games, and open-source remakes.

Meme of the week