TLDR DevOps 2025-12-03

In the monolith era, teams handled 100-200 infrastructure changes per day. In the AI era, that number is approaching 1,000. Manual reviews and reactive incident handling won't cut it.

The Platform Engineering 3.0 whitepaper from env zero examines what happens next: how governance, automation, and AI-assisted workflows need to evolve together - and a five-phase maturity model for getting there without losing control.

Get the whitepaper 📥

Ready to get hands-on? See how teams at PayPal, Western Union, and MongoDB use env zero to enforce policy-as-code and enable developer self-service at scale. Book a technical demo.

Amazon EKS Capabilities provides fully managed, Kubernetes-native solutions like Argo CD, AWS Controllers for Kubernetes, and Kube Resource Orchestrator to simplify workload orchestration and cloud resource management. These capabilities run in service-owned accounts with automatic scaling, patching, and updates, allowing developers and platform engineers to focus on deploying and managing applications without handling underlying infrastructure.

Amazon Bedrock AgentCore has been updated with new features, including Policy for agent control, Evaluations for performance analysis, episodic memory for experience-based learning, and bidirectional streaming for natural conversations. The new features are available in select AWS Regions and accessible through the AWS Free Tier for new users. The AgentCore SDK has been downloaded over 2 million times since its preview five months ago.

Amazon Web Services (AWS) has launched Database Savings Plans that offer customers up to 35% savings on database costs by committing to a consistent hourly usage over a year. These plans, available in all AWS Regions except China, apply to services like Amazon Aurora, Amazon RDS, and Amazon DynamoDB, and can be purchased via the AWS Management Console or AWS CLI. Discounts vary by deployment model and service type, with serverless deployments seeing the highest savings.

Amazon EKS now offers a Provisioned Control Plane that pre-allocates capacity in defined scaling tiers to deliver predictable, high performance for demanding workloads like large-scale AI, SaaS platforms, and mission-critical applications. These tiers provide guaranteed API concurrency, pod scheduling throughput, and database size with flexible upgrades, detailed monitoring, and significantly higher scaling limits than the standard control plane.

SQLite can achieve extremely high transaction throughput on a single machine because eliminating network latency and using a single-writer model enables batching and efficient concurrency with readers. In contrast, network databases like Postgres hit hard limits from latency and contention, showing that SQLite's “limitations” are actually strengths for many real-world workloads.

Recent attacks against Okta, GitHub, and JetBrains show that CI/CD pipelines are now a top target. This cheat sheet from Wiz breaks down the OWASP Top 10 CI/CD Security Risks with step-by-step mitigations: from branch protection and ephemeral credentials to detecting exposed secrets and supply chain attacks. Download the cheat sheet

Memori, an open-source memory engine, can be installed to attribute LLM interactions to entities and processes. The tool enhances memories without latency and offers advanced augmentation.

AltSendme, a free and open-source file transfer tool, allows users to send files of any size or format without cloud storage, accounts, or restrictions, using peer-to-peer networking with end-to-end encryption.

Replicate, a platform for running machine learning models, was acquired by Cloudflare on December 1. By joining Cloudflare, Replicate plans to build an AI infrastructure layer and integrate its tools with Cloudflare's network, Workers, and storage solutions to enable fast models on the edge and model pipelines on Workers.

TypeScript 7 (Project Corsa) is a fast native rewrite of the compiler and language service. It is now stable enough for real-world use with major editor features and big performance gains. TypeScript 6.0 will be the final JavaScript-based release, serving as a compatibility bridge as the team focuses fully on completing and polishing the native TypeScript 7 toolchain.

Amazon EC2 now supports interruptible Capacity Reservations, letting organizations reuse unused ODCR capacity for flexible, fault-tolerant workloads while allowing owners to reclaim it at any time.

Helm originated at a 2015 hackathon.

The recent Cloudflare outage stemmed from a bot management feature file exceeding an explicit limit, which triggered confusing, intermittent failures that responders initially mistook for a DDoS attack.