Kubernetes
8 mentions across all digests
Kubernetes is an open-source container orchestration platform whose tokens are among the pipeline secrets silently exfiltrated by malware injected in the compromised Trivy supply-chain attack.
Widely used Trivy scanner compromised in ongoing supply-chain attack
Aqua Security's Trivy vulnerability scanner was compromised via stolen credentials, allowing attackers to inject malware into 75+ pipeline action tags that silently exfiltrate GitHub tokens, cloud credentials, and SSH keys to attacker servers.
I am building a cloud
exe.dev, a new cloud platform from David Crawshaw, promises 10x faster remote storage IOPS and dramatically lower egress costs to serve the emerging AI agent economy.
Xata: Open source Postgres platform with copy-on-write branching and scale-to-zero
Xata open-sources Postgres with copy-on-write branching and scale-to-zero autoscaling, democratizing enterprise database features previously available only in proprietary managed services.
The exponential curve behind open source backlogs
Queuing math explains the open source crisis: CPython's 2,200+ backlogged PRs exemplify how maintainer saturation at 95% utilization triggers a 19x wait-time spike, creating a vicious cycle where slow reviews force larger PRs that take even longer to merge.
[Sponsor] WorkOS FGA: The Authorization Layer for AI Agents
As AI agents gain elevated enterprise permissions, the Confused Deputy vulnerability—where agents can be socially engineered into leaking sensitive data—makes fine-grained authorization architecturally essential rather than optional.