DevOps'ish 310: The Breaches Are Coming From Inside the Extension Store

GitHub Confirms Internal Breach via Poisoned VS Code Extension - Official statement from GitHub confirming TeamPCP’s breach of approximately 3,800 internal repositories via the backdoored Nx Console VS Code extension; the malicious version was pulled in 18 minutes, credentials rotated, and no customer data appears to have been affected.

NGINX Rift: Achieving NGINX Remote Code Execution via an 18-Year-Old Vulnerability - A critical heap buffer overflow in NGINX dating back to 2008 can be exploited via the rewrite and set directives to achieve remote code execution – yes, 18 years.

Fragnesia Made Public As Latest Linux Local Privilege Escalation Vulnerability - Hot on the heels of Dirty Frag, Fragnesia is now public as a similar LPE in Linux’s ESP/XFRM code with a logic bug allowing arbitrary byte writes into the kernel page cache – proof-of-concept code already out there.

AI Just Found Another Linux Zero-Day and Security Researchers Are Freaking Out - CVE-2026-46333, a privilege escalation flaw in the Linux kernel’s ptrace subsystem, is stoking greater concern about AI tools compressing the timeline from discovery to exploitation.

TeamPCP Compromises NPM Maintainer with Over 540 Packages - The same group behind the GitHub breach gained access to an NPM maintainer account, potentially backdooring over 540 JavaScript packages in a cascading supply chain play.

How We Got a CISA GitHub Leak Taken Down in Under a Day - GitGuardian found a public GitHub repo containing 844 MB of CISA credentials and sensitive infrastructure data; coordinated disclosure got it offline in 26 hours.

Critical PostgreSQL Vulnerabilities Enable Code Execution and SQL Injection - PostgreSQL pushed emergency patches for 11 vulnerabilities across versions 14-18, including arbitrary code execution via the refint module and SQL injection via logical replication.

Meta Reassigns 7,000 Workers to AI Teams Before Mass Layoffs - Meta moved workers into four new AI-native organizations with flatter management structures the same day it sent 4 a.m. layoff emails to everyone else.

Meta US Employees Organize Protest Against Mouse-Tracking Tech - Workers distributed flyers at US offices pushing back on Meta’s Model Capability Initiative, which captures mouse movements, keystrokes, and screenshots to train AI agents – CTO Bosworth confirmed there is no opt-out.

Google Cloud Deletes Australian Trading Fund’s Infrastructure - Google Cloud accidentally deleted a major Australian retirement fund’s subscription and all associated data across replicated regions, causing a two-week outage and a scramble to recover from external backups.

Google Accused of Pushing ‘Free for Life’ G Suite Users Onto Paid Plans - Long-time G Suite Legacy users are getting notices that their accounts have been flagged as commercial use and must pay for Google Workspace or face suspension.

On Google Declaring War on the Web - Google’s I/O keynote pushed Search further toward AI-processed answers, doubling down on AI Overviews to reduce click-throughs to the open web and pushing the rest of us off a cliff.

Anthropic Reinstates OpenClaw and Third-Party Agent Usage on Claude Subscriptions, With a Catch - Anthropic re-enabled OpenClaw and third-party agent integration on Claude subscriptions after earlier restrictions, but new usage conditions apply.

The Best Argument I’ve Heard for Why AI Won’t Take Your Job - Box CEO Aaron Levie’s case that AI multiplies productivity rather than replacing workers; the interviewer does a decent job of poking holes in it.

Git Is Unprepared for the AI Coding Tsunami - AI-generated pull requests are hammering Git and GitHub’s infrastructure, and the ecosystem is only starting to reckon with what agentic development does to version control at scale.

Gemini 3.5 Flash Might Be Fast Enough for Gen AI to Make Sense - Google positions the agent-optimized Gemini 3.5 Flash as the key to making AI workflows economically viable, with speed gains that may shift the math on agentic deployments.

Ukraine Says Russia Is Deploying AI-Powered Malware on the Battlefield - Ukrainian officials report Russia has embedded AI directly into malware for realtime command generation, creating an asymmetric advantage in cyber operations that defenders are struggling to match.

Microsoft Surprises with Its First Server Linux Distribution: Azure Linux 4.0 - Announced at Open Source Summit North America, Azure Linux 4.0 is a Fedora-based, general-purpose cloud distribution backed by Microsoft’s full supply chain, with WSL support for local dev parity – yes, Microsoft is shipping Linux now.

Announcing etcd 3.7.0-beta.0 - SIG-etcd’s first beta of v3.7.0 brings the new RangeStream capability for large result sets, drops legacy v2store, and marks etcd v3.4 end-of-life.

Grafana on X - GrafanaCON 2026 Announcements - Grafana Labs unveiled Grafana 13 with AI-powered features, Grafana Assistant for self-managed users, new AI observability tooling, and the Grafana Marketplace at GrafanaCON 2026.

Automating Confidential Containers (CoCo) Infrastructure with Kyverno - How platform teams can use Kyverno to automatically inject and validate Confidential Containers configuration, simplifying zero-trust security deployment without making every dev learn the full CoCo stack.

pgBackRest Will Continue - Multiple sponsors came forward to fund pgBackRest development after maintainer David Steele initially archived the project for lack of financial support – a small but real win for open source sustainability.

Kubernetes In Anger - A comprehensive operational guide for diagnosing and fixing production EKS failures fast, covering failure domain identification, platform-specific failure modes, and incident response runbooks.

You Can Get Some of Your Nudes Removed From the Internet Under a New Law - Starting May 19, US tech platforms have to comply with the Take It Down Act; here’s how more than a dozen major platforms are handling nonconsensual image takedown demands.

I Was Laid Off by Atlassian - Personal account of the layoff experience at Atlassian – worth a watch as the human texture behind the wider tech restructuring playing out everywhere right now.

Why I’m Leaving GitHub for Forgejo - A developer explains migrating to self-hosted Forgejo over concerns about Microsoft ownership, data training, and US jurisdictional risk, following a similar move by the Dutch government.

Swamp Beyond Infrastructure - The argument that Swamp is fundamentally a typed data platform for AI agents – not just an infrastructure tool – enabling use cases from content generation to governance.

spegel-org/spegel - MIT - Stateless cluster local OCI registry mirror.

ardanlabs/kronk - Apache 2.0 - Go-based engine for hardware-accelerated local inference using llama.cpp and whisper.cpp, with a high-level API and model server baked in.

googlecloudplatform/kubectl-ai - Apache 2.0 - AI-powered Kubernetes assistant.

kubetail-org/kubetail - Apache 2.0 - Real-time logging dashboard for Kubernetes; runs in a terminal or browser, works from desktop to cluster to Docker.

raiyanyahya/how-to-train-your-gpt - MIT - Build a modern LLM from scratch, including every line commented and explained clearly.

0xdeadbeefnetwork/ssh-keysign-pwn - No license - PoC exploit for stealing SSH host private keys and /etc/shadow via the ptrace_may_access mm-NULL bypass and pidfd_getfd on pre-31e62c2ebbfd kernels.