Welcome to this week’s edition of the DevOps Bulletin.

AI isn’t replacing DevOps teams, it’s changing how they work. Learn how by joining the IaCConf Spotlight on January 28. In the news, AWS’s direction in 2026 comes under scrutiny, a critical unauthenticated RCE in n8n puts thousands of instances at risk, and Wiz uncovered a way attackers could hijack AWS accounts and GitHub repos through CodeBuild. We also cover thousands of secrets leaked via online code formatters, growing concerns around GitHub’s monopoly in open source, and why attention fragmentation (not bad AI code) may be the biggest productivity killer for engineers this year.

On the hands-on side: running projects in dev containers, rebuilding a Talos cluster from bare metal, safely limiting AI coding agents’ access to secrets, improving AI SRE workflows with better observability, and a curated set of Linux and open-source tutorials worth bookmarking. There’s also a beginner-friendly Python guide for those starting fresh in 2026.

Open-source picks this week include Snitch, a human-friendly netstat replacement; Leash, a security wrapper for running AI coding agents in locked-down containers; a CLI and MCP server for managing Lambda GPU instances; a lab of intentionally vulnerable MCP servers for learning AI agent security failures; and tusk-drift-cli, which replays real production traffic as deterministic API tests.

All this and more in this week’s DevOps Bulletin, don’t miss out!

AI isn’t replacing your team. It’s changing how they work.

Learn how platform and DevOps teams are using AI safely at scale at IaCConf Spotlight on January 28 - Register now.

Newsworthy stories

• AWS in 2026

• Unauthenticated remote code execution in n8n

• Infiltrating the AWS console and Hijacking AWS GitHub repositories via CodeBuild

• Thousands of sensitive secrets published on JSONFormatter and CodeBeautify

• How Github monopoly is destroying the open source ecosystem

• The biggest obstacle to engineer productivity in 2026

Tutorials of the week

• Run your project in a dev container

• A better way to limit Claude Code access to Secrets

• Rebuilding my Talos cluster from bare metal

• 6 must-read Linux and open source tutorials of the year

• Your AI SRE needs better observability, not bigger models

• The complete beginner’s guide to Python

Videos of the week

Projects of the week

• A human-friendly netstat replacement with a clean TUI for inspecting live network connections.

• A security wrapper that runs AI coding agents in containers and enforces real-time policies through full system monitoring.

• An unofficial CLI and MCP server that lets humans and AI assistants manage Lambda cloud GPU instances.

• A hands-on lab of intentionally vulnerable MCP servers for learning AI agent and tool security failures.

• A CLI that replays real production traffic as deterministic API tests for local and CI environments.

Meme of the week