DevOps'ish 304: Chips Up, Code Worthless, Hobby Dead, and more

Stop push-and-pray: run CI that actually debugs itself
Edit YAML, commit, push, wait, squint at logs, guess, repeat. There’s a better loop. Watts at Depot walks through how Depot CI kills the cycle, migrate your GitHub Actions workflows in one command, run against uncommitted changes, SSH into failing jobs, and stop guessing. Get Started with Depot CI. Sponsored by Depot

Cloud Native Days Romania
Two days of cloud native talks, hands-on workshops, and strong community momentum - 18–19 May at the Radisson Blu, Bucharest. Join developers, platform engineers, DevOps practitioners, engineering leaders, and cloud enthusiasts for the 3rd edition of Romania’s community-driven Cloud Native Days, bringing practical Kubernetes use cases and modern cloud native systems to the stage.

DevOpsDays Raleigh
DevOpsDays Raleigh is one of the region’s premier community-driven tech conferences, bringing together engineers, DevOps leaders, and IT professionals for two days of real-world insights, practitioner-led talks, and interactive open spaces. And this year is special as it’s the 10th anniversary! This conference is focused on DevOps, cloud, automation, and modern software delivery. It offers a unique mix of learning, networking, and collaboration with peers tackling similar challenges across industries. Join me in Raleigh April 30th & May 1st!

Built for the Agent Era (Part 1)
AI agents don’t fail predictably; they compound individually reasonable decisions into bad outcomes that your predefined dashboards and alert thresholds were never designed to catch. What you need is high-cardinality, exploration-first observability: the ability to ask questions you didn’t know you’d have when you set things up. Honeycomb’s take is the clearest case I’ve seen for where observability has to go as AI becomes load-bearing in production. Sponsored by Honeycomb.

Kubernetes goes AI-First: Unpacking the new AI conformance program - Google launches a Certified Kubernetes AI Conformance program to establish industry-wide standards ensuring AI workloads stay portable, reliable, and efficient in production.

GitOps policy-as-code: Securing Kubernetes with Argo CD and Kyverno - A hands-on guide explaining how to deploy Kyverno alongside Argo CD to enforce security and compliance policies in Kubernetes clusters using GitOps principles.

Samsung shares rise nearly 5% on record-breaking earnings forecast buoyed by AI chip demand - Samsung forecasts Q1 2026 operating profit of 57.2 trillion won, an eightfold jump year-over-year, driven by explosive demand for high-bandwidth memory chips fueling the AI boom.

Apple in Talks to Boost Mac Neo Production as Sales Exceed Expectations - This will likely be Max’s next computer. Apple is weighing whether to ramp MacBook Neo production with costlier new chips or let inventory run dry, as demand for the refurbished processors powering the line outpaces supply.

The Ridiculously Nerdy Intel Bet That Could Rake in Billions - Advanced chip packaging has gone from afterthought to a strategic battleground. Intel is betting its foundry future on EMIB and Foveros as AI compute demand turns packaging into the next critical bottleneck.

China targets Taiwan’s chip prowess to evade global ‘containment’, Taipei government says - Taiwan’s National Security Bureau reports China is escalating efforts to poach semiconductor talent and lure high-tech industries, while also ramping up military and cyber pressure in Q1 2026.

Maine Is Close to Passing a Moratorium on New Datacenters - Maine’s LD 307 would pause new datacenter construction until November 2027, making it one of the first states in the country to apply the brakes amid growing environmental and infrastructure backlash. Here in Michigan, residents are raising awareness of the potential costs to energy consumers associated with every new data center. I remember when Google and Apple built data centers in the old furniture manufacturing corridor in North Carolina, being seen as such a boon for the hard-hit region. How things have changed.

Anthropic’s Claude Mythos is now available, but not for you - Anthropic launches Claude Mythos Preview through Project Glasswing, giving a vetted set of partners, AWS, Apple, Google, Microsoft, NVIDIA, and others, access to its most capable model for cybersecurity defense. It’s not being released to the public due to the massive number of possible vulnerabilities it has discovered. This is a noteworthy, responsible thing to do.

OpenAI, Anthropic, Google Form United Front to Block Chinese ‘AI Free-Riding’ - Three major AI labs are sharing intelligence through the Frontier Model Forum to prevent Chinese competitors from extracting and distilling their proprietary models into cheaper alternatives.

The term ‘AGI’ is almost useless at this point - Helen Toner argues that AGI has become too ambiguously defined to serve as a useful concept, with current AI systems now simultaneously fitting multiple competing definitions.

A Cryptography Engineer’s Perspective on Quantum Computing Timelines - Filippo Valsorda makes the case that the threat of cryptographically-relevant quantum computers arriving by 2029 is now urgent enough to demand immediate deployment of ML-KEM and ML-DSA, not theoretical preparation.

Little Snitch for Linux, Because Nothing Else Came Close - I love Little Snitch for what it’s worth. But I do find it annoying at times. The team behind the beloved macOS network monitor announces a Linux version, bringing outbound connection visibility and application-level firewall controls to a platform that has long lacked a comparable tool.

This is no joke: the SBC hobby is dying - A candid look at how rising prices, supply constraints, and a shift toward commercial-only use cases are killing what made single-board computers exciting for hobbyists in the first place.

Kube-Oddities, The Quirks That Keep Kubernetes Interesting - Marcus Noble and Márk Sági-Kazár walk through the confusing, underdocumented behaviors in Kubernetes, sidecar containers, image tag semantics, DNS policies, and more, with humor and practical takeaways.

Understanding Current Threats to Kubernetes Environments - Unit 42 research details how attackers exploit Kubernetes misconfigurations and the React2Shell vulnerability to compromise cloud infrastructure using stolen service account tokens.

Handling a PR disaster for your project - A useful post-mortem framework for managing public relations crises in open source, using the Trivy security tool compromise as a grounding case study.

The Free Market Lie: Why Switzerland Has 25 Gbit Internet and America Doesn’t - The argument that Switzerland’s fiber infrastructure works because it’s treated as shared neutral infrastructure with regulated open access, a pointed contrast to the U.S. approach of letting ISPs compete without it.

NASA’s Artemis II Astronauts Are Using iPhones to Document the Moon - How the iPhone 17 Pro Max earned its NASA flight certification, and why it can take photos but can’t connect to Wi-Fi while orbiting the Moon.

How I Run a Fully-Remote Software Engineering Standup - Practical guidance on keeping remote standups short, effective, and worth showing up for, everyone speaks, nobody live-codes, and the whole thing ends on time.

Adding Correctness Conditions to Code Changes - A proposal for keeping documentation synchronized with code by validating correctness conditions before optimizing, rather than trusting agent instructions alone.

Your code is worthless - A sharp look at how vanity metrics akin to lines of code obscure technical debt while AI-generated output floods codebases without adequate quality oversight.

simonw/scan-for-secrets, Apache-2.0, Scan for secrets in files you plan to share.

Keychron/Keychron-Keyboards-Hardware-Design, Keychron Source-Available License, Industrial design files for 100+ Keychron keyboard and mouse models, with CAD assets in STEP, DXF, DWG, and PDF; commercial use permitted for original compatible accessories under the license terms.

abhigyanpatwari/GitNexus, PolyForm Noncommercial 1.0.0, Client-side knowledge graph engine that runs entirely in your browser; drop in a GitHub repo or ZIP file and get an interactive knowledge graph with a built-in Graph RAG agent for code exploration.