I’ve spent most of my career in infrastructure and reliability engineering, from years as an SRE at Google to leading teams at Facebook and now building Spacelift. Along the way, I’ve watched entire paradigms rise and fall, seen technologies mature, and learned some hard lessons about where DevOps and security meet—and where they clash. The

A survey of 1,129 developers and 50 project managers suggests that individual developers are significantly further ahead when it comes to embracing AI than managers of application development projects. Conducted by BairesDev, a provider of software development services, the application developers surveyed said they are now saving on average 7.3 hours of work per week,

OpenAI recently released Developer Mode for ChatGPT, and it’s not for everyone. This beta feature provides full Model Context Protocol (MCP) client support, granting complete access to both read and write operations across your connected tools. But here’s what you need to understand up front: this is powerful, and it’s dangerous. What Developer Mode Actually

Researchers with cybersecurity firm Wiz earlier this year discovered, almost by chance, a significant supply chain risk and massive secrets leak in the Visual Studio Code and OpenVSX marketplaces that they said put a focus on the ongoing security issues presented by extensions and plugins. In their months-long investigation with Microsoft, the researchers found that

A global survey of 1,015 IT professionals with responsibility for application security finds more than three quarters (77%) are using artificial intelligence (AI), with another 13% considering adoption. Conducted by Fastly, a provider of a content delivery network (CDN) service, the survey also finds 25% of survey respondents using AI have fully integrated into their

Asset visibility and cloud governance start with SBOMs, VEX, and provenance tracking. Learn how to secure your software supply chain.

“Shift left” alone won’t secure software. Real security must be embedded continuously across design, development, and production—not just moved earlier.

Observability promised insight but delivered alert fatigue. Learn how SREs are redefining observability to empower developers and restore real engineering value.

A new study from the University of Sydney, UESTC, and Google introduces efficient end-to-end encryption for Git services like GitHub and GitLab. Learn how this breakthrough could secure your code repositories without slowing development.

Explore the latest DevOps job openings from leading companies including VSCO, John Deere, Red Hat, BCC Software, and NetApp. DevOps.com’s weekly jobs report highlights high-paying roles and insights into the current DevOps job market.