Curated topic

sre

Posts tagged with sre

GitHub EngineeringMay 14, 2026

GitHub availability report: April 2026

Why it matters: This report highlights the complexity of maintaining high availability in distributed systems. It provides lessons on the risks of automated infrastructure changes, the importance of correctly scoped rate limiting, and the need for robust DNS management and failover strategies.

GitHub experienced 10 incidents in April 2026, including a major code search outage caused by an aggressive infrastructure upgrade and coordination failure.
A bug in rate-limiting logic caused significant delays for GitHub Copilot, incorrectly applying global limits instead of per-installation scopes.
GitHub Pages suffered an 11% error rate after an automated DNS management tool erroneously deleted a backend storage host record.
Audit log services were briefly unavailable due to a failed credential rotation, highlighting the need for more resilient rotation processes.
Codespaces connectivity issues were traced to failures in VS Code editor integration, while SSH connections remained unaffected.
Remediation efforts focus on implementing availability-zone-tolerant routing, better traffic isolation, and enhanced deployment safeguards.

#sre #dist

Read original

Salesforce EngineeringMay 14, 2026

Creating a Multi-Tenant AI Agent Platform Handling 7K+ Sessions Without Cross-Team Interference

Why it matters: This article provides a blueprint for scaling AI infrastructure by moving from a monolith to a multi-tenant platform. It demonstrates how to maintain low latency and engineering velocity while managing complex state and resource isolation for hundreds of developers.

Salesforce transitioned from a monolithic AI planner to 'Bring Your Own Planner' (BYOP) to eliminate cross-team interference and deployment bottlenecks.
The multi-tenant platform supports over 7,000 active sessions and 15,000 daily requests with a minimal platform overhead of 5ms per request.
BYOP provides standardized infrastructure for session management, Redis-backed state persistence, and tool invocation, enabling team autonomy.
The architecture prevents 'noisy neighbor' effects by isolating compute resources and allowing independent horizontal scaling for different reasoning engines.
The system supports diverse use cases, from read-heavy enterprise search synthesis to write-heavy state machines for data configuration.

#dist #mlp #sre

Read original

GitHub EngineeringMay 14, 2026

From latency to instant: Modernizing GitHub Issues navigation performance

Why it matters: Performance is critical for maintaining developer flow. By leveraging IndexedDB and Service Workers, GitHub shows how to achieve 'instant' perceived latency in complex web apps, providing a blueprint for modernizing legacy architectures without a full rewrite.

GitHub shifted focus from backend optimizations to improving perceived latency by rendering pages instantly from local data while revalidating in the background.
Implemented a client-side caching layer using IndexedDB to store issue data, enabling sub-200ms 'instant' navigation experiences.
Utilized Service Workers to ensure cached data remains accessible even during hard navigations and full browser refreshes.
Introduced a preheating strategy that populates the cache based on user intent, significantly increasing cache hit rates without redundant network requests.
Adopted Highest Priority Content (HPC) as a primary metric, categorizing performance into Instant (<200ms), Fast (<1000ms), and Slow buckets.
Addressed the performance gap across three navigation types: hard navigations, Rails Turbo transitions, and React soft navigations.

#frontend #sre

Read original

Cloudflare BlogMay 14, 2026

Our billing pipeline was suddenly slow. The culprit was a hidden bottleneck in ClickHouse

Why it matters: This case study demonstrates that even logically sound architectural changes can trigger hidden internal bottlenecks at scale. It highlights the importance of profiling query planning and shows how massive part counts in ClickHouse can lead to unexpected lock contention.

Cloudflare migrated a 2PiB+ ClickHouse table to a (namespace, day) partitioning scheme to enable granular per-tenant data retention.
Despite queries filtering by namespace, performance degraded linearly as the total number of data parts in the cluster increased.
Investigation using ClickHouse trace_log and flame graphs revealed that the bottleneck was in the query planning phase, not execution.
The root cause was identified as lock contention during partition pruning, where a global lock was held while iterating over all parts.
Cloudflare engineers developed and contributed patches to ClickHouse to optimize the planning phase and reduce lock duration.
The fix allowed the billing pipeline to meet its deadlines while supporting a new automated storage management system using max-min fairness.

#data #sre #dist

Read original

PlanetScale Tech BlogMay 14, 2026

Egress problems and where to find them

Why it matters: Optimizing database egress is a rare double win that simultaneously improves application latency and reduces cloud infrastructure costs. By refining query patterns and networking, engineers can prevent scaling bottlenecks and unexpected billing spikes.

Minimize egress by selecting specific columns instead of using SELECT * to reduce payload size.
Implement cursor pagination for consistent performance and bounded data transfer as datasets grow.
Use database-native JSON functions to filter large objects before they leave the database.
Explicitly define columns in ORM RETURNING clauses to avoid fetching unnecessary data during writes.
Leverage caching and CDNs to prevent redundant database requests for frequently accessed content.
Utilize private networking like AWS PrivateLink to keep traffic off the public internet and lower costs.

#data #finops #sre

Read original

Airbnb EngineeringMay 13, 2026

Viaduct 1.0 and the future of Airbnb’s data mesh

Why it matters: Viaduct offers a middle ground between monolithic GraphQL and complex Federation by allowing teams to contribute to a shared schema via modules. This reduces operational overhead while maintaining developer autonomy, making it easier to scale data access across large organizations.

Airbnb released Viaduct 1.0, transitioning its internal GraphQL-based data mesh into a community-driven project with a stable public API.
Viaduct enables decentralized development of a central schema by using a multi-tenant runtime where teams contribute modules rather than managing independent servers.
The system abstracts data access and updates from service entry points, providing a unified interface for diverse data sources across the organization.
Unlike GraphQL Federation which distributes development via separate servers, Viaduct distributes development through modules within a shared runtime.
Viaduct can complement federated architectures by acting as a subgraph, reducing the operational overhead of managing hundreds of individual subgraph servers.
The 1.0 release introduces strict API stability measures, including Kotlin binary compatibility validation and automated releases to Maven Central.

#dist #data #sre

Read original

Cloudflare BlogMay 13, 2026

Browser Run: now running on Cloudflare Containers, it’s faster and more scalable

Why it matters: This migration demonstrates how moving from eventually consistent stores to transactional databases and specialized container infrastructure can drastically improve performance and scalability for high-concurrency workloads like headless browsers and AI agents.

Browser Run migrated from shared Browser Isolation infrastructure to Cloudflare Containers, increasing usage limits to 60 browsers per minute and 120 concurrent instances.
Quick Action response times improved by over 50% due to better global distribution and reduced container image sizes.
Implemented regional pre-warmed container pools to minimize latency between Durable Objects and browser instances across the global network.
Transitioned state management from Workers KV to D1 to utilize SQL transactions, eliminating race conditions caused by KV's eventual consistency.
Integrated Cloudflare Queues to batch high-frequency heartbeat updates, preventing D1 concurrency bottlenecks during peak demand from AI agents.

#dist #sre #data

Read original

Engineering at MetaMay 12, 2026

Migrating Data Ingestion Systems at Meta Scale

Why it matters: Migrating hyperscale data systems requires rigorous validation to prevent data loss. Meta's approach demonstrates how to automate complex migrations using shadow testing and Migration-as-a-Service to maintain reliability for petabyte-scale social graph analytics and ML workloads.

Meta migrated its massive social graph data ingestion system from customer-owned pipelines to a self-managed data warehouse service.
The migration utilized a multi-phase lifecycle including Shadow and Reverse Shadow phases to ensure data integrity and performance parity.
Validation criteria focused on zero data quality issues via checksums, no landing latency regressions, and improved resource utilization.
To handle thousands of jobs, Meta developed Migration-as-a-Service (MaaS) to automate the lifecycle, monitoring, and rollback processes.
The new architecture enhances reliability and efficiency while supporting hyperscale operations for analytics and ML model training.

#data #sre #dist

Read original

Cloudflare BlogMay 12, 2026

When "idle" isn't idle: how a Linux kernel optimization became a QUIC bug

Why it matters: This bug highlights the risks of porting optimizations between protocols like TCP and QUIC. Understanding congestion control state machines is critical for maintaining high-performance networking and ensuring reliable recovery from congestion collapse in production environments.

Cloudflare engineers identified a bug in the quiche implementation of the CUBIC congestion control algorithm where the congestion window (cwnd) remained pinned at its minimum floor.
The issue originated from a Linux kernel optimization ported to QUIC that prevents cwnd growth during 'app-limited' or idle periods to avoid window inflation.
Under heavy initial packet loss, the cwnd dropped so low that the sender's activity was incorrectly flagged as idle, creating a feedback loop that suppressed recovery.
The bug manifested as rapid oscillations between recovery and congestion avoidance states, occurring in lockstep with the connection's round-trip time (RTT).
A near-one-line fix was implemented to ensure cwnd growth is not suppressed when the sender is actively transmitting data, even at the minimum window size.
The investigation utilized qlog visualizations to identify the 14ms oscillation pattern that matched the simulated network RTT.

#dist #sre

Read original

Netflix Tech BlogMay 8, 2026

Scaling ArchUnit with Nebula ArchRules

Why it matters: Netflix scales architectural enforcement across thousands of repos by combining ArchUnit's bytecode analysis with Nebula Gradle plugins. This allows teams to share and enforce API lifecycle rules and technical debt standards globally, ensuring a consistent 'paved road' for JVM developers.

Netflix manages technical debt across tens of thousands of Java repositories using ArchUnit for architectural enforcement.
ArchUnit uses ASM to analyze compiled bytecode rather than source-level AST, making it language-agnostic across the JVM.
The Nebula ArchRules Gradle plugin allows teams to package ArchUnit rules into shared libraries for organization-wide distribution.
A custom API lifecycle framework (@Public, @Experimental, @Deprecated) helps library authors communicate stability and internal usage.
The system provides immediate build-time feedback to developers when they deviate from the 'paved road' or use internal APIs.
ArchUnit's fluent Java API and class relationship graph make it easier to write and test complex rules compared to XPath-based tools like PMD.

#sre #culture

Read original

Page 3 of 27

Prev 1 2 3 4 5...27 Next