Author: drweb

Infrastructure reliability has always been central to enterprise success, yet traditional automation methods often fall short in handling complex, dynamic environments. With the rise of large language models (LLMs), a new paradigm of cognitive automation is emerging — where intelligent agents help infrastructure not only detect failures but also recommend or implement remediations in real-time. This article explores how integrating LLMs with Ansible creates a practical foundation for self-healing infrastructure, especially in mission-critical middleware environments such as Apache, WebLogic and Tomcat.The Case for Cognitive AutomationTraditional automation relies on rigid scripts that require constant human maintenance. While effective for routine tasks,…

Read More

The North Korean-sponsored threat groups behind the long-running fake interview scams targeting developers are expanding the PolinRider supply chain campaign that has escalated over the past several months.Reports from cybersecurity vendors Socket and Rescana found that two groups linked to the Democratic People’s Republic of Korea (DPRK) have published at least 108 malicious packages and browser extensions across a range of open source ecosystems, from npm and Packagist to Go modules and Google’s Chrome Store.The attackers aim to compromise legitimate developer accounts and repositories by placing malware loaders into popular packages that establish command-and-control (C2) systems and then deploy payloads…

Read More

As AI coding agents become a larger part of software development, a new startup founded by former GitHub CEO Thomas Dohmke is introducing infrastructure built to address the growing pressure on centralized Git hosting.The new company, Entire, has launched a preview of a distributed Git network that allows developers to mirror GitHub repositories across multiple geographic regions, enabling AI coding agents to clone and access code from nearby mirrors instead of repeatedly querying a single centralized repository.The company says the approach is intended to reduce latency, avoid rate limits and improve reliability as software development faces the greater computing demand…

Read More

I am happy to announce that my latest book, Python Typing, is now available on all platforms. You can get your copy on Gumroad or Leanpub or Amazon Python has had type hinting support since Python 3.5, over TEN years ago! However, Python’s type annotations have changed repeatedly over the years. In Python Typing: Type Checking for Python Programmers, you will learn all you need to know to add type hints to your Python applications effectively. You will also learn how to use Python type checkers, configure them, and set them up in pre-commit or GitHub Actions. This knowledge will give…

Read More
SQL

A customer was trying to compare two tables and capture a state as a performance metric. In this case, they were wanting to use Redgate Monitor and custom metrics, but since the tables were in a Memory-Optimized table, they couldn’t as Redgate Monitor runs inside a transaction. Note, there are workarounds, but they’re clunky. Fortunately, I had a quick solution, which involved SQL Server User Settable Objects. This post looks at how this works. The Scenario Let’s take the transaction out of the equation by using my own metric. SQL Server includes a few procedures that fall into a pattern.…

Read More

A few years ago, the most powerful AI tools in a developer’s workflow helped write code. Today, they can do much more. It’s increasingly common to hand an AI agent a task like: Read this repository, refactor the authentication service to match the new specification, run the test suite, and open a pull request if everything passes. The agent reads files, analyzes dependencies, executes commands, modifies code, and interacts with external systems. In many cases, it can complete meaningful chunks of engineering work with minimal supervision. The shift sounds incremental until you realize something important: We’re no longer delegating suggestions.…

Read More

For years, I never gave GNU coreutils much thought. They’re the standard Linux commands like ls, cp, mv, cat, sort, and wc that come with almost every Linux system. They just work, so I always assumed there wasn’t much to improve. That changed a few months ago when I was analyzing a huge Apache log file on one of my TecMint servers. I was running sort and wc on several gigabytes of data, and some commands took longer than I expected. That made me wonder if there was a faster or more modern alternative. While looking around, I came across…

Read More

A security flaw in GitHub’s months-old GitHub Agentic Workflows allows attackers to use an indirect prompt injection to trick the AI agent into grabbing information from a private repository and quietly posting it in a public repository belonging to the same organization.The vulnerability, dubbed “GitLost” by Noma Security researchers, is only the latest example for developers and security teams of the risks that come with AI agents and how vulnerable they are to deceptive tactics by threat actors that often – as in this case – don’t need coding skills, access, or stolen credentials to run such campaigns.This is different…

Read More

Artificial Intelligence is pushing DevSecOps into a new phase where security is no longer just about detecting vulnerabilities, but increasingly about resolving them automatically within the flow of software delivery. As many organizations are discovering, DevSecOps historically gave teams visibility into risk. AI is now turning that visibility into automated remediation. This evolution has taken place across four phases.From Discovery to ActionOne of the most significant shifts is that security tooling no longer stops at identifying problems. AI systems can detect an issue, recommend a fix, open a ticket, update code, or prepare a pull request for human approval. Traditional…

Read More

Remote (USA) Full-Time Senior Laravel 12 / PHP 8.2 Hospital Staffing Partners is a healthcare staffing company based in Tampa, Florida. Our web platform is where the business actually runs, and we’re looking for a senior engineer to help build and maintain it. This is a hands-on Laravel role: a large, mature production application, real users, and real data that has to be right. The role You’ll own and extend a substantial Laravel 12 application in production. It’s a backend-heavy, full-stack role on a small team, so you’ll work across the whole request lifecycle: data modeling, business logic, background processing,…

Read More