Welcome to this week’s edition of the DevOps Bulletin.

An autonomous bot spent 7 days exploiting GitHub Actions across Microsoft, DataDog, Aqua Security, and CNCF projects — exfiltrating tokens with write permissions from awesome-go (140K stars) and fully compromising Trivy’s releases. Meanwhile, new research shows that roughly half of SWE-bench-passing AI PRs would be rejected by actual maintainers, and Uber shares how it replaced thousands of individual Kafka policies with a single CEL-based access control rule.

On the tutorial side, a HashiCorp Core team engineer breaks down Terraform internals from addressing to expansion logic, while a researcher shows how opening a GitHub issue let them steal npm publish tokens from Cline’s CI — poisoning 4,000 machines before detection. Plus: why you should turn Dependabot off, how a Rust rewrite cut batch jobs from 30 minutes to under 5, and how ParadeDB optimized top-K queries from 37 seconds to 300ms.

This week’s open source picks include Terrapod — an open-source Terraform Enterprise replacement with built-in governance, PipeStep — a debugger that lets you step through GitHub Actions workflows locally in Docker, and Aegis — an EDR tool that monitors AI agent behavior in real time.

All this and more in this week’s DevOps Bulletin, don’t miss out!

Newsworthy stories

• Building a database on S3

• A bot actively exploiting GitHub Actions - Microsoft, DataDog, and CNCF projects

• When Kubernetes is the wrong default

• Many SWE-bench-passing PRs would not be merged into main

• How AI agents automate CVE vulnerability research

• Please, please, please stop using passkeys for encrypting user data

• How I dropped our production database and now pay 10% more for AWS

• How Uber reinvented access control for microservices

Tutorials of the week

• Migrating from Heroku to AWS

• How I use LLMs for security work

• Building AI teams with Docker sandboxes

• A series about the internals of Terraform

• How to steal npm publish tokens by opening GitHub issues

• Turn Dependabot off

• Using Rust and Postgres for everything

• A multi-agent architecture for automated penetration testing

• Understanding the Go runtime

• Getting started with GitOps

• How we optimized top K in Postgres

• How LDAP works

Videos of the week

Projects of the week

• Temps is a self-hosted deployment platform that combines app hosting, monitoring, and infra management in a single binary.

• Neko is a self-hosted, Dockerized virtual browser that uses WebRTC for multi-user collaborative browsing.

• Terrapod is an open-source Terraform Enterprise replacement with built-in collaboration, governance, and state management.

• PipeStep is a debugger for GitHub Actions that lets you step through CI workflows locally in Docker.

• OneCLI is a credential gateway that transparently injects API keys into AI agent requests so agents never touch secrets.

• Switchboard is a desktop app that lets you manage all your Claude Code sessions from a single, unified interface.

• load-secrets-action is a GitHub Action to load 1Password secrets into workflow environment variables.

• Aegis is an EDR tool that monitors AI agent behavior, tracking processes, file access, and network activity in real time.

Meme of the week