Operations | Monitoring | ITSM | DevOps | Cloud

Cribl Packs have always provided a powerful way to package and share configurations across Cribl Stream environments. From pipelines to lookups, knowledge objects to functions—Packs make telemetry pipelines simple and portable. Now, we’re excited to announce a game changing expansion: Sources and Destinations can now be included in Cribl Packs!

We consistently roll out helpful updates and fun features in Grafana Cloud, our fully managed observability platform powered by the open source Grafana LGTM Stack: Loki for logs, Grafana for visualization, Tempo for traces, and Mimir for metrics. With GrafanaCON 2025 — and the release of Grafana 12 — earlier this month, there are a ton of Grafana Cloud updates to share.

Seeing that VictoriaMetrics products are this popular with engineers worldwide is fantastic: Just a little over a year ago, we hit 10K stars, and with the adoption of VictoriaLogs, the star count now went beyond 14K. We don’t take these GitHub Stars milestones for granted: It’s amazing to see these stats grow organically thanks to the community of users out there who use our products. Thank you so much!

A critical vulnerability in SAP NetWeaver (CVE-2025-31324) is currently being exploited in the wild. Disclosed on April 24, 2025, this vulnerability has the highest possible CVSS score of 10.0, indicating severe risk. The vulnerability affects SAP NetWeaver Application Server Java's Visual Composer Framework (version 7.50), allowing unauthenticated attackers to upload arbitrary files to NetWeaver servers. This can lead to remote code execution and complete system compromise.

When I’m on the train to work in the morning, I always reach for my noise-cancelling headphones. Not because the world is too loud, but because I want to hear what matters. It’s a small act of filtering signal from noise. And this got me thinking that, increasingly, that same mindset is becoming essential in how we design and manage digital infrastructure. There’s no shortage of data. In fact, there’s too much of it.

Change is constant, but without a structured approach, it can lead to confusion, resistance, and costly disruptions. A well-planned change management process ensures transitions happen smoothly, minimizing risks while keeping teams aligned and operations running efficiently. Whether adopting new technology, restructuring teams, or refining business strategies, organizations that manage change effectively turn challenges into opportunities for growth.

With the introduction of cloud services and microservices, applications have become more complicated due to their increased layers of complexity and distributed architecture. While microservices clearly offer speed, they also make things harder for the developers and operations teams. These teams need to plan for the reliable and efficient performance of such applications. To combat these challenges, application performance monitoring (APM) has surfaced as an indispensable discipline.

In the dynamic world of IT operations, a common misconception has emerged: Observability vs Monitoring is often framed as a battle where one replaces the other. At Icinga, where open-source monitoring is our expertise, we aim to clarify this misunderstanding. Observability doesn’t supplant monitoring—it complements and enhances it. The term “Observability” has become a buzzword in the tech industry, often touted as the modern solution to outdated, static monitoring practices.

At Qovery, our goal is simple: eliminate the grunt work of DevOps. The idea of an assistant that can understand developer intent and autonomously take action on infrastructure has always felt like the holy grail. In February 2025, we started building that assistant - our DevOps Copilot. Today, our Agentic DevOps Copilot is live in Alpha. It helps developers automate deployments, optimize infrastructure, and answer advanced configuration questions. But getting here took multiple iterations.

Amazon Inspector is an automated security assessment service that scans AWS workloads for vulnerabilities, misconfigurations, unintended network exposure and compliance risks, helping organizations enhance cloud security, detect threats, and meet regulatory requirements (such as ISO/IEC 27001, HIPAA, NIS 2 and SOC 2 Type 2) in real time. Amazon Inspector discovers and scans Amazon EC2 instances, container images in Amazon ECR (Elastic Container Registry), and Lambda functions.