InfoQ Homepage DevOps Content on InfoQ
-
HashiCorp Previews “Agentic Infrastructure” Future with Project Infragraph
At its annual conference, HashiConf 2025, the now-IBM-owned HashiCorp, revealed a new strategic initiative: Project Infragraph, a real-time infrastructure graph designed to underpin an era of agent-driven automation for hybrid clouds.
-
Groupe SNCF Modernizes Infrastructure with Talos OS and Kubernetes
Groupe SNCF, a major railway operator, has successfully migrated from traditional VM-based Kubernetes deployments to a cloud-native platform built on Talos OS and OpenStack, addressing significant operational challenges while navigating complex organizational change. After his talk at TalosCon 2025, InfoQ interviewed Thomas Comtet, senior staff engineer, about this migration.
-
Google Cloud KMS Launches Post-Quantum KEM Support to Combat "Harvest Now, Decrypt Later" Threat
Google Cloud's Key Management Service now supports post-quantum Key Encapsulation Mechanisms (KEMs), addressing future threats from quantum computing. This update empowers organizations to prepare against "Harvest Now, Decrypt Later" attacks while ensuring long-term data confidentiality.
-
AWS Launches EC2 Capacity Manager for Centralized, Cross-Account Capacity Optimization
Introducing Amazon EC2 Capacity Manager: AWS's new centralized solution for streamlined monitoring and management of EC2 capacity across all accounts and regions. This innovative tool consolidates data into a unified dashboard, enhancing efficiency while reducing operational complexity.
-
AWS Launches EBS Volume Clones for Instant, Crash-Consistent Data Copies
AWS has unveiled Volume Clones for Amazon EBS, enabling instant, point-in-time copies of storage volumes with a simple API call. This feature provides rapid access with single-digit millisecond latency, ideal for quick test setups and development. While it integrates seamlessly with the EBS CSI driver, understand its limitations, especially around encryption and management.
-
Google Cloud Outlines Key Strategies for Securing Remote MCP Servers
Google Cloud published a guide that lays out strategies for securing remote Model Context Protocol (MCP) server deployments, particularly in contexts where AI systems depend on external tools, databases, and APIs.
-
AWS ALBs Now Support Native URL and Host Header Rewriting
AWS's Application Load Balancers (ALB) now offer native URL and Host Header Rewriting, eliminating the need for third-party proxies and custom logic. This feature enhances request routing, reduces maintenance, and lowers latency. Easily configurable via the AWS Management Console or API, it streamlines traffic management for backend services, aligning AWS with other cloud leaders.
-
NPM Ecosystem Suffers Two AI-Enabled Credential Stealing Supply Chain Attacks
The Node Package Manager (npm) ecosystem has suffered from two major supply chain attacks in recent months, affecting hundreds of packages and exposing developers to credential theft and data exfiltration. The attack vector of these incidents shows an AI-enabled evolution of how open-source software dependencies can be compromised.
-
Mirantis' Kubernetes Management Platform k0rdent Reaches v1.2.0
Mirantis has announced the release of version 1.2.0 of its open-source distributed container management platform k0rdent. They pitch k0rdent as a "super control plane" for helping platform engineers who manage Kubernetes infrastructure across multiple environments.
-
Bring Your Own Key (BYOK): AWS IAM Identity Center Adopts CMKs to Meet Enterprise Compliance Needs
AWS IAM Identity Center now supports customer-managed KMS keys (CMKs) for encrypting identity data at rest. This enhancement offers organizations complete control over their encryption keys, ensuring granular access management, robust auditing via AWS CloudTrail, and improved compliance for regulated industries. It’s a key evolution for data sovereignty in the cloud.
-
AWS Introduces EC2 Instance Attestation
AWS has introduced EC2 instance attestation, a new security feature that enables customers to verify that their virtual machines are running approved software configurations in a cryptographically secure manner. The capability is powered by the Nitro Trusted Platform Module (NitroTPM) and Attestable AMIs.
-
Flipkart Scales Prometheus to 80 Million Metrics Using Hierarchical Federation
Flipkart engineers recently published a detailed case study describing how they overcame severe scalability limits in monitoring by adopting a hierarchical federation design in Prometheus.
-
Terraform Google Cloud Provider 7.0 Reaches General Availability
HashiCorp has released version 7.0 of the Terraform provider for Google Cloud, introducing security-focused improvements such as ephemeral resources, write-only attributes, and stricter validation. The update enhances secret handling and reliability but introduces breaking changes requiring careful migration.
-
Talos Linux: Bringing Immutability and Security to Kubernetes Operations
Sidero Labs has been developing Talos Linux, an immutable operating system purpose-built exclusively for running Kubernetes, alongside Omni, a cluster lifecycle management platform. InfoQ met the Sidero team in Amsterdam during the TalosCon 2025 and had conversations about their approach to simplifying Kubernetes operations through minimalism and security-first design.
-
DevGreenOps: How to Design Sustainable Digital Services
DevGreenOps, also known as DevSusOps, is an extension of the DevOps approach, in which environmental sustainability considerations are integrated into every step of the DevOps cycle, Jochen Joswig said in his talk at OOP Conference. Applying transparency, minimalism, efficiency, and awareness helps us to design sustainable digital services.