Curated topic

sre

Posts tagged with sre

Salesforce EngineeringApr 30, 2026

How AI-Driven Kubernetes Optimization Reclaimed Millions from 47% Idle Capacity

Why it matters: Manual cloud cost optimization fails at scale due to configuration drift and lack of trust. This hybrid AI/deterministic approach automates the last mile of FinOps, turning complex resource tuning into safe, reviewable code changes that significantly reduce infrastructure waste.

Salesforce addressed 47% idle Kubernetes capacity by automating resource allocation across 8,000+ services within their Hyperforce platform.
The system employs a hybrid architecture where LLMs handle repository discovery and configuration parsing, while deterministic algorithms perform the actual optimization.
An Integer Linear Programming (ILP) solver replaces probabilistic LLM reasoning for resource planning to ensure consistent and verifiable results.
The agent automates the 'last mile' of optimization by generating pull requests for Helm charts, moving from manual dashboards to a closed-loop developer workflow.
To maintain safety and trust, the agent only modifies CPU requests while leaving limits untouched, ensuring scaling headroom remains intact during rollouts.

#finops #sre #mlp

Read original

Cloudflare BlogApr 30, 2026

Agents can now create Cloudflare accounts, buy domains, and deploy

Why it matters: This integration removes manual friction from infrastructure setup, allowing AI agents to handle end-to-end deployment. By standardizing service discovery, identity, and payments, it enables fully autonomous DevOps workflows while maintaining human-in-the-loop oversight.

Cloudflare and Stripe have co-designed a new protocol allowing AI agents to autonomously provision accounts, register domains, and deploy software.
The system utilizes Stripe as an identity provider to automatically create or link Cloudflare accounts without manual dashboard intervention.
Agents can discover infrastructure services via a REST API catalog, enabling them to select and configure necessary resources for a project.
Integrated payment tokenization allows agents to handle paid subscriptions and domain purchases on behalf of the user.
The workflow supports Cloudflare’s Code Mode MCP server and Agent Skills to enhance the agent's ability to interact with Cloudflare APIs.
Human-in-the-loop oversight is maintained for granting permissions and accepting terms of service, while eliminating manual API token management.

#sre #finops #mlp

Read original

PlanetScale Tech BlogApr 30, 2026

RLS sounds great until it isn't

Why it matters: While RLS simplifies initial security, it introduces significant performance overhead, operational complexity, and potential DoS vulnerabilities. Understanding these trade-offs is crucial for engineers deciding between database-level security and application-level authorization.

RLS shifts security logic from the application to the database, which can lead to synchronization issues and increased risk of data exposure during schema changes.
Using connection poolers like PgBouncer with RLS requires managing session-local variables to maintain user identity, increasing application complexity.
RLS acts as an implicit WHERE clause, meaning unauthorized queries still consume CPU cycles and can be leveraged for DoS attacks against the database.
Performance degrades because policies are evaluated per row; complex logic or functions in policies can significantly increase query latency.
Engineers can optimize RLS performance by wrapping policy functions in subqueries to trigger Postgres InitPlan caching, reducing redundant execution.

#data #security #sre

Read original

Airbnb EngineeringApr 28, 2026

Skipper: Building Airbnb’s embedded workflow engine

Why it matters: Skipper offers a lightweight alternative to heavy orchestrators like Temporal. It allows engineers to build reliable, multi-step processes using existing infrastructure, significantly reducing operational complexity while maintaining high reliability for critical transactions.

Airbnb built Skipper, an embedded workflow engine, to provide durable execution for Tier 0 services without the operational overhead of external orchestration clusters.
The engine runs as a library within host services, leveraging their existing databases (MySQL/Postgres) for state persistence and avoiding new infrastructure dependencies.
Skipper uses a Java/Kotlin programming model where workflows and actions are defined via annotations, making complex business logic readable and cohesive.
It supports critical features like durable retries, conditional waits, and signals while ensuring exactly-once semantics through idempotent side-effect boundaries.
By embedding the engine, Airbnb teams reduced the complexity of fragmented domain logic previously scattered across queues, cron jobs, and manual reconciliation scripts.

#dist #sre

Read original

GitHub EngineeringApr 28, 2026

Securing the git push pipeline: Responding to a critical remote code execution vulnerability

Why it matters: This incident highlights how minor sanitization failures in internal protocols can lead to critical RCE. It underscores the importance of defense-in-depth, showing how removing unused code paths and robust telemetry can mitigate risks and verify the absence of exploitation.

A critical RCE vulnerability (CVE-2026-3854) was discovered in the GitHub git push pipeline via unsanitized push options.
The flaw allowed attackers to inject metadata into internal protocols by using delimiter characters in user-supplied key-value strings.
By chaining injected values, researchers bypassed sandboxing and executed arbitrary commands on the server handling push operations.
GitHub's telemetry confirmed no exploitation occurred beyond the researchers' testing, as the exploit triggered an anomalous code path.
The primary fix involved strict sanitization of push option values to prevent influence over internal metadata fields.
Defense-in-depth measures included removing unused code paths from production container images that were inadvertently included during deployment model changes.

#security #sre

Read original

GitHub EngineeringApr 28, 2026

An update on GitHub availability

Why it matters: As AI agents accelerate development, platforms like GitHub face unprecedented load. This update highlights how massive scale requires shifting from monoliths to isolated services and multi-cloud strategies to maintain reliability under exponential growth.

GitHub is redesigning its infrastructure to handle a 30X scale increase driven by the rapid rise of agentic development workflows and AI-driven automation.
The platform is prioritizing availability over new features, focusing on isolating critical services like Git and Actions to reduce blast radius and eliminate single points of failure.
Technical migrations include moving performance-sensitive code from a Ruby monolith to Go and transitioning from custom data centers to a multi-cloud strategy.
Recent incidents highlighted vulnerabilities in merge queue operations and Elasticsearch clusters, leading to improved dependency analysis and service isolation.
Infrastructure updates include moving webhooks out of MySQL, redesigning session caches, and optimizing merge queue operations for large monorepos.

#sre #dist

Read original

Salesforce EngineeringApr 27, 2026

How We Increased Code Coverage by 28% Without Writing a Single Test

Why it matters: Code coverage is often a structural issue rather than a testing one. By removing boilerplate and excluding generated code from metrics, teams can satisfy CI gates while improving maintainability and reducing pipeline overhead without adding low-value tests.

Salesforce engineers increased code coverage by 28% by refactoring data models instead of writing redundant tests for boilerplate code.
The team identified that auto-generated methods from Lombok annotations were inflating the coverage denominator and distorting quality metrics.
They transitioned mutable classes using @Data to immutable structures using @Value and @Builder, improving system reliability and data integrity.
By applying the @Generated annotation, the team successfully excluded non-business logic from coverage calculations to reflect actual system behavior.
This structural approach reduced CI runtime and avoided creating 'false contracts' in tests that would have hindered future refactoring efforts.

#security #data #sre

Read original

Salesforce EngineeringApr 26, 2026

How We Increased Code Coverage by 28% Without Writing a Single Test

Why it matters: Code coverage is often a structural issue rather than a testing one. Refactoring data models to remove boilerplate allows teams to meet CI requirements while improving maintainability and reducing CI runtime, avoiding the trap of writing low-value tests.

Addressed CI-enforced coverage bottlenecks by refactoring data models instead of writing redundant, low-value tests.
Identified that auto-generated boilerplate from annotations like @Data distorted metrics by inflating the code denominator.
Transitioned mutable classes to immutable structures to reduce the volume of non-essential code and simplify the codebase.
Avoided increasing CI runtime and maintenance overhead by focusing on system design rather than test volume.
Prevented the creation of 'false contracts' in tests that could mislead future developers and AI-assisted coding tools.

#sre #security

Read original

Spotify EngineeringApr 22, 2026

Background Coding Agents: Supercharging Downstream Consumer Dataset Migrations (Honk, Part 4)

Why it matters: Automating dataset migrations at scale reduces developer toil and prevents technical debt. By using background agents to update downstream consumers, organizations can accelerate infrastructure evolution without overwhelming product teams with manual migration tasks.

Spotify utilizes background coding agents to automate the migration of thousands of downstream dataset consumers.
The system integrates with Backstage and Fleet Management to track progress and manage automated pull requests across the organization.
Automation reduces manual toil for product teams by programmatically updating code references to new dataset versions.
The approach shifts the migration burden from data consumers to automated infrastructure, accelerating platform evolution.
Validation and automated testing are used to ensure that background code changes maintain the integrity of downstream data pipelines.

#data #sre #dist

Read original

Cloudflare BlogApr 22, 2026

Making Rust Workers reliable: panic and abort recovery in wasm‑bindgen

Why it matters: This update solves sandbox poisoning where a single Rust panic could crash an entire Wasm instance. By upstreaming recovery to wasm-bindgen, engineers get better reliability for stateful workloads like Durable Objects and improved error handling across the Rust-JS boundary.

Cloudflare improved Rust Worker reliability by contributing panic and abort recovery mechanisms to the upstream wasm-bindgen toolchain.
Implemented panic=unwind support using the WebAssembly Exception Handling proposal, allowing Rust destructors to run and preserving instance state for stateful workloads.
Updated the walrus parser and wasm-bindgen descriptor interpreter to support Wasm try/catch instructions and proper stack unwinding.
Introduced extern C-unwind for exports and the MaybeUnwindSafe trait for closures to ensure safe error propagation across the Rust-JavaScript boundary.
Developed abort recovery to detect fatal traps like OOM, preventing the re-execution of poisoned Wasm modules and ensuring clean reinitialization for subsequent requests.

#sre #dist

Read original

Page 5 of 27

Prev 1...3 4 5 6 7...27 Next