GitHub strengthens npm security after Shai-Hulud worm attack with mandatory 2FA, granular tokens, and trusted publishing to protect the open source supply chain. Source: DevOps.com
0 CommentsAustin / TX, United States, 25th September 2025, CyberNewsWire Source: DevOps.com
0 CommentsLeading stewards of several major open source projects today issued a joint open letter calling for major changes to be made to the way the IT infrastructure used to support these initiatives is funded, operated and maintained. Posted on the Open Source Security Foundation (OpenSSF) website, the open letter signed by representatives from open source […]
0 CommentsToday, I’m excited to announce the Nova Act extension — a tool that streamlines the path to build browser automation agents without leaving your IDE. The Nova Act extension integrates directly into IDEs like Visual Studio Code (VS Code), Kiro, and Cursor, helping you to create web-based automation agents using natural language with the Nova […]
0 CommentsHarness today previewed two additional modules for its artificial intelligence (AI) platform for DevOps that automate code maintenance and automatically rollback a deployment whenever an issue is detected. Additionally, Harness is adding an Architect Mode to the Harness AI platform that interactively engages DevOps engineers to design pipelines based on best practices for security, quality […]
0 CommentsAustin, Texas, USA, 23rd September 2025, CyberNewsWire Source: DevOps.com
0 CommentsThree weeks ago, I published a post about the new AWS Region in New Zealand (ap-southeast-6). This led to an incredible opportunity to visit New Zealand, where I met passionate builders and presented at several events including Serverless and Platform Engineering meetup, AWS Tools and Programming meetup, AWS Cloud Clubs in Auckland, and AWS Community […]
0 CommentsDevOps teams across organizations are suddenly finding themselves responsible for security with no roadmap. One day, teams are focused on deployment velocity and infrastructure automation, the next day, they’re expected to understand threat modeling, vulnerability management and compliance frameworks. This shift isn’t happening by choice — it’s happening because traditional security approaches can’t keep pace […]
0 CommentsHugging Face’s new VS Code extension makes GitHub Copilot Chat more flexible, enabling developers to test open-source LLMs like DeepSeek and GLM 4.5. Source: DevOps.com
0 CommentsZencoder this week added a command line interface (CLI) option to its artificial intelligence (AI) agent for creating code. Company CEO Andrew Filev said application development teams can use Zen CLI as an alternative to previous support for integrated development environments. The overall goal is to provide developers with a range of options to take […]
0 Comments