Operations | Monitoring | ITSM | DevOps | Cloud

The latest News and Information on DevOps, CI/CD, Automation and related technologies.

Community Vigilance, Enterprise Response: Addressing CVE-2024-21626 in Rancher

In backend engineering, many days follow a familiar rhythm: coffee, code reviews, maybe deploying a new feature. But occasionally, the routine is interrupted by a message that signals a different kind of challenge, like a Slack notification from the security team: “Hey, we’ve identified a potential issue. Need to sync up.” This post details one such instance—our journey addressing CVE-2024-21626, a privilege escalation vulnerability reported in Rancher.

Fleet management with Landscape for Ubuntu Core

Shipping your Ubuntu Core IoT device is just the beginning, managing it at scale is where the real challenge begins. In this session, Michael Croft-White (Engineering Director at Canonical) walks through how Landscape, Canonical’s fleet management tool, helps you keep devices updated, secure, and properly configured throughout their lifecycle.

Docker Hardened Images for tightened security and strong provenance

Docker's VP of Product, Michael Donovan, gives a quick overview of Docker Hardened Images and how they make open source software available in a hardened image container. They're minimal images with less attack surface and SLSA level 3 artifact compliance. They carry extensive provenance data, including SBOMs, CVEs, and VEX. Be confident that your software is safer from attack using Docker Hardened Images and Cloudsmith.

How to Log Into a Docker Container

When your Docker container isn't behaving the way you expect, you need to get inside and see what's going on. Maybe your app is throwing errors, a service won't start, or you just need to check some configuration files. Getting into a running Docker container is simpler than you might think, but there are several ways to do it depending on your situation. This guide shows you exactly how to log into Docker containers, troubleshoot common issues, and debug your applications effectively.

Tracking Down Object Changes in Flyway Migration Files | The Tony and Tonie Show

Ever spent hours digging through a pile of Flyway migration files, trying to figure out when a table, view, or procedure changed, and how? In this episode, Tony and Tonie explore Phil Factor’s time-saving PowerShell solution that scans the files for you in version order and pulls out the relevant DDL changes.

Cloud Workload Management: What It Is And How To Do It

The cloud gave us agility, but it also introduced fragmentation. And in most companies, no one’s fully owning the sprawl. One team deploys a new service in a hurry. Another forgets to shut down a dev environment. Meanwhile, batch jobs run 24/7 on oversized instances. And no one quite knows why your bill is $10K higher this month. The result? A growing source of cost overruns, performance headaches, and operational inefficiencies. This is exactly why cloud workload management is so crucial.

How to Monitor and Manage Grafana Memory

It’s late, you get an alert, and Grafana is down. The reason? It ran out of memory. If you’ve ever watched Grafana slowly eat up RAM until it just stops responding, you know how frustrating that can be. Memory can spike quickly, especially with complex dashboards and multiple data sources. This guide will help you understand what’s going on and how to keep Grafana running without surprises.

AI Service Desk Showdown: RITA vs. Legacy Chatbots

Over the last decade, IT teams have leaned on chatbots to manage rising support volumes, aiming to deflect tickets and lighten the burden on overworked service desk agents. These legacy chatbots served a purpose—but today they’ve hit a wall. Static responses and script-based flows can’t keep pace with the expectations of modern digital workers or the dynamic needs of enterprise IT. That’s where a new kind of intelligence emerges.

Unleashing Efficiency: Top Benefits of Data Center Tracking Software

This post breaks down the core benefits of data center tracking software. You’ll learn how it improves asset management, enhances physical and digital security, drives cost savings, and increases efficiency in real-world settings. Plus, find out what to consider when selecting the right solution for your facility and what the future holds as data centers lean further into automation and AI.

Michael Donovan, VP of Product at Docker, has a hot take on shift left security

Shift left means improving security at the early stages of software development. Is it the best approach? See the full webinar: https:/cloudsmith.com/webinars Get to know Cloudsmith: About Cloudsmith We offer the world's best cloud-native artifact management platform to control, secure, and distribute everything that flows through your software supply chain. Cloudsmith operates at enterprise scale, reduces risk, and streamlines builds.