Curated topic

sre

Posts tagged with sre

Airbnb EngineeringApr 21, 2026

Building a fault-tolerant metrics storage system at Airbnb

Why it matters: Scaling observability for 1,000+ services requires balancing multi-tenant isolation with operational efficiency. Airbnb's approach to shuffle sharding and automated control planes provides a blueprint for building resilient, petabyte-scale metrics systems that avoid 'flying blind' during outages.

Airbnb built an internal metrics system managing 50M samples/sec and 1.3B active time series across 2.5PB of data.
Adopted service-based multi-tenancy to ensure stable grouping and precise resource attribution for over 1,000 services.
Implemented shuffle sharding to isolate tenant workloads, preventing localized failures or traffic spikes from impacting the entire fleet.
Developed a centralized control plane to automate tenant onboarding and dynamically manage ingestion limits and configurations.
Enhanced reliability using shadow clusters, write guardrails, and query sharding to normalize performance across variable read payloads.
Optimized storage compaction and query execution to maintain a p99 latency under 30 seconds for large-scale data requests.

#sre #dist #data

Read original

PlanetScale Tech BlogApr 21, 2026

Approaches to tenancy in Postgres

Why it matters: Choosing the right multi-tenancy model is critical for database scalability and security. This guide helps engineers avoid common pitfalls like RLS complexity or schema sprawl, favoring a performant shared-schema approach that scales to thousands of tenants.

Shared-schema is the recommended multi-tenancy approach, using a tenant_id column to isolate data within common tables.
Avoid schema-per-tenant or database-per-tenant models unless tenants require unique schema structures, as they complicate migrations.
Use BIGINT for tenant identifiers to ensure performance and stability compared to string-based IDs.
Lead most indexes with the tenant_id column to optimize query performance across large, multi-tenant tables.
Enforce tenant isolation at the application layer rather than relying on Postgres Row-Level Security (RLS) to avoid silent failures.
Leverage declarative partitioning with tenant_id as the partition key to manage large datasets and improve maintenance.

#data #sre

Read original

GitHub EngineeringApr 20, 2026

Changes to GitHub Copilot Individual plans

Why it matters: High-intensity agentic workflows are forcing a shift in AI resource management. Engineers must now optimize token consumption and model selection to maintain productivity within new usage constraints and avoid service interruptions.

GitHub is pausing new sign-ups for Copilot Pro, Pro+, and Student plans to stabilize service for existing users.
Usage limits are tightening as agentic workflows and parallelized sessions consume significantly more compute than original plan structures supported.
Claude Opus models are removed from the Pro plan; Opus 4.7 remains exclusive to Pro+ subscribers.
New token-based weekly limits address the high costs of long-trajectory requests and complex coding tasks.
Real-time usage tracking is now integrated into VS Code and Copilot CLI to improve transparency.
Pro+ plans offer over 5x the usage limits of standard Pro plans to accommodate power users.

#mlp #finops #sre

Read original

Cloudflare BlogApr 20, 2026

Orchestrating AI Code Review at scale

Why it matters: Scaling AI code reviews requires moving beyond simple prompts to multi-agent orchestration. This architecture demonstrates how to integrate LLMs into CI/CD pipelines reliably, handling large-scale diffs and specialized domain knowledge while maintaining high signal-to-noise ratios.

Cloudflare replaced naive AI summarization with a multi-agent orchestration system built on OpenCode to reduce code review bottlenecks.
The architecture uses a composable plugin system with distinct lifecycle phases to isolate VCS logic from AI provider configurations.
Seven specialized agents cover domains like security and performance, managed by a coordinator that deduplicates findings and judges severity.
To handle massive merge requests, the system passes prompts via stdin to avoid Linux kernel ARG_MAX limits and E2BIG errors.
The implementation leverages the Model Context Protocol (MCP) to allow agents to interact with GitLab APIs for context and commenting.
The system is CI-native and has been deployed across tens of thousands of internal merge requests to improve engineering resiliency.

#mlp #sre #security

Read original

GitHub EngineeringApr 17, 2026

Bringing more transparency to GitHub’s status page

Why it matters: These updates provide engineers with more accurate, granular data on GitHub's reliability. By distinguishing between latency and outages and isolating AI model provider issues, teams can make better-informed decisions during incidents and more effectively evaluate platform performance.

GitHub introduced a 'Degraded Performance' status to distinguish between minor latency/errors and actual service outages.
A new three-tier incident classification system (Degraded, Partial, Major) provides more granular visibility into platform health.
The status page now displays per-service uptime percentages over a rolling 90-day period directly to users.
Uptime calculations use weighted downtime: Major outages count 100%, Partial outages count 30%, and Degraded Performance counts 0%.
A dedicated 'Copilot AI Model Providers' component isolates model-specific issues from general Copilot service availability.
These changes aim to reduce false alarms where users might assume a service is down when it is merely experiencing high latency.

#sre #culture

Read original

Netflix Tech BlogApr 17, 2026

The Human Infrastructure: How Netflix Built the Operations Layer Behind Live at Scale

Why it matters: Scaling live events requires more than just code; it demands a 'human infrastructure' of specialized roles and physical facilities. This article details how Netflix bridged traditional broadcasting with cloud-scale engineering to ensure reliability for millions of concurrent viewers.

Transitioned from ad-hoc engineering-led operations to a dedicated Broadcast Operations Center (BOC) using a hub-and-spoke model for global scale.
Implemented strict signal reliability protocols requiring three discrete transmission paths (fiber, satellite, and SRT) with full hardware and power redundancy.
Developed a specialized human infrastructure model featuring Streaming Operations Engineers (SOE) for pipeline configuration and Broadcast Operations Engineers (BOE) for hardware.
Utilized SMPTE 2022-7 seamless switching and exhaustive 'FACS/FAX' testing to ensure audio/video sync and quality before live broadcasts.
Scaled operations to support over 70 live events per month and millions of concurrent viewers through permanent facilities in Los Angeles and Los Gatos.

#sre #dist #culture

Read original

Cloudflare BlogApr 17, 2026

Agents Week: network performance update

Why it matters: Network latency directly impacts user experience and application performance. Cloudflare's speed leadership demonstrates how combining physical infrastructure expansion with low-level software optimizations like HTTP/3 and better resource management yields significant global performance gains.

Cloudflare now ranks as the fastest provider in 60% of the world's top 1,000 networks, up from 40% in September 2025.
Performance is measured using connection time trimeans, a weighted average of the 25th, 50th, and 75th percentiles to reduce noise.
Data is gathered via Real User Measurements (RUM) from silent background tests comparing Cloudflare against competitors like CloudFront and Akamai.
Latency gains were driven by physical expansion into new locations including Algeria, Indonesia, and Poland.
Software optimizations in HTTP/3, congestion window management, and SSL/TLS termination reduced processing overhead across the global fleet.

#dist #sre #data

Read original

Cloudflare BlogApr 17, 2026

Introducing Flagship: feature flags built for the age of AI

Why it matters: Traditional feature flags add latency or fail in serverless environments. Flagship integrates flags into the edge runtime, enabling safe, high-performance deployments and autonomous AI releases without manual intervention or performance penalties.

Cloudflare introduces Flagship, a native feature flag service built on the OpenFeature CNCF standard.
Designed for AI-driven development, enabling autonomous agents to safely deploy and test code via controlled rollouts.
Eliminates external network latency by evaluating flags directly at the edge using Cloudflare Workers KV and Durable Objects.
Provides a native Worker binding that allows for typed flag evaluation without HTTP overhead or SDK initialization delays.
Uses a distributed architecture where Durable Objects act as the source of truth and KV handles global replication.

#dist #sre #mlp

Read original

Engineering at MetaApr 16, 2026

Capacity Efficiency at Meta: How Unified AI Agents Optimize Performance at Hyperscale

Why it matters: At hyperscale, even 0.1% regressions waste massive power. Meta’s AI agents automate performance optimization, saving hundreds of megawatts and thousands of engineering hours. This demonstrates how LLMs can encode domain expertise to manage infrastructure efficiency autonomously.

Meta developed a unified AI agent platform to automate both proactive performance optimization (offense) and regression mitigation (defense).
The platform utilizes 'MCP Tools' for standardized code execution and 'Skills' to encode senior engineers' domain expertise into LLM reasoning.
Automated investigation has compressed manual regression analysis from approximately 10 hours down to just 30 minutes.
The system has recovered hundreds of megawatts of power, equivalent to the annual energy consumption of hundreds of thousands of homes.
AI agents now handle the entire pipeline from identifying an efficiency opportunity to generating a ready-to-review pull request.

#sre #finops #mlp

Read original

GitHub EngineeringApr 16, 2026

How GitHub uses eBPF to improve deployment safety

Why it matters: Circular dependencies can paralyze recovery during outages. By using eBPF and cGroups, engineers can enforce network isolation for deployment scripts without impacting production traffic, ensuring that critical infrastructure remains deployable even when primary services are offline.

GitHub uses eBPF to mitigate circular dependencies where deploying a fix requires access to the service currently experiencing an outage.
They identified three dependency types: direct (explicit script calls), hidden (automatic tool updates), and transient (downstream API dependencies).
The solution utilizes BPF_PROG_TYPE_CGROUP_SKB to hook into network egress specifically for processes within a targeted Linux cGroup.
This approach allows granular network filtering, blocking deployment scripts from accessing github.com while allowing production traffic to continue normally.
The system was implemented using the cilium/ebpf Go library to load and manage custom programs within the Linux kernel.

#sre #dist #security

Read original

Page 6 of 27

Prev 1...4 5 6 7 8...27 Next