AI is everywhere. It’s in the news, it’s being added to every product, management wants everyone to be more productive with AI.Redgate Monitor isn’t immune from this wave. We have spent a lot of time over the last year trying to learn about AI tech, experiment with it, and find ways that it provides values to customers, not just becomes a marketing label.The big area is query analysis, though this wasn’t the first area. I’ll discuss another area in a different post, but this one looks at AI assisted query analysis.This feature is a part of Redgate Monitor Standard, which…
Author: drweb
Operations teams have been battling alert fatigue for a very long time now. We saw monitoring systems multiply while cloud-native architectures increased system complexity. Every new microservice, dependency, and API introduced another stream of signals for folks to contend with. As anyone who’s worked in SRE or on-call culture knows, this caused a lot of stress and burnout. The industry responded by trying to deduplicate alerts, but that alone was not enough. Correlation engines had to mature and SRE practices had to formalize on-call discipline. Observability platforms took the place of monitoring stacks. Teams tuned thresholds. Alert volume dropped significantly…
The landscape of software development is undergoing a seismic shift, driven by the unprecedented acceleration of AI systems in code generation. This surge is not merely an incremental improvement but a fundamental transformation, substantially increasing both the volume and surface coverage of software. Developers are rapidly adopting AI into their workflow, with 84% reporting using it in 2025, up from 76% the prior year. This statistic underscores a consensus: developers view AI as an essential catalyst for saving time and delivering superior results. Today, AI tools are responsible for crafting an estimated 41% of all code, cementing their role as…
It’s 2:47 a.m. Your phone buzzes. An alert fires again. You acknowledge it, diagnose the issue half asleep, patch it, write a quick note and crawl back to bed. Three hours later, you’re at your desk like nothing happened. If that sounds familiar, you’re not alone. On-call duty is one of the most important — and most mismanaged responsibilities in engineering. If done right, it protects your systems and distributes the load fairly. If done wrong, it destroys team morale and drives your best engineers to the door. According to the 2024 State of Engineering Management Report, 65% of engineers reported experiencing burnout in the…
Following a $50 million funding round, GitGuardian CEO Eric Fourrier discusses why secrets security is becoming a much bigger problem in the age of AI-generated code and autonomous agents. As more organizations rush to deploy coding assistants and AI agents, Fourrier argues that the number of exposed credentials, API keys and tokens is rising just as quickly, creating new risks for DevSecOps teams already struggling to manage software supply chain security. Fourrier explains that AI agents need access to data and systems to be useful, but many organizations are still handling that access the old way by handing over secrets.…
A while ago I blogged about a use case where a pipeline fails during debugging with a BadRequest error, even though it validates successfully. If you’re wondering, this is the helpful error message that you get:In that blog post, the issue was that there were some lingering user properties that were configured incorrectly and removing them (or fixing them) resolved the issue. Yesterday, I had the same error again in another pipeline, but I couldn’t find anything wrong with the pipeline and its activities (and yet again, validation didn’t return any errors). So I started removing activities one by one…
This is kind of a funny page to look at.The next page has more detail. This is the text from the facing page:What we do is very difficult, the current situation is hard to understand ,and the future is uncertain. Mistakes are an inevitable consequence of attempting to get the right stuff done. Unless we can make mistakes visible both individually and collectively ,we will be doomed to mediocrity.One of the things that I’ve enjoyed about being at Redgate is that we try stuff and we sometimes fail. We talk about those issues in engineering and we do a decent…
Mar 3, 2026 Announcing Docker Hardened System Packages Secure your container stack from the base image down. Docker Hardened System Packages offer multi-distro, secure-by-default components with near-zero CVEs. Adam Dawson and Aditya Tripathi Read now
A group of more than two dozen malicious npm packages used to steal secrets and credentials from software developers has all the hallmarks – from infrastructure to operations – of Famous Chollima, the North Korean nation-state actor linked to the ongoing high-profile Contagious Interview scam. Threat researchers with Socket and Kieran Miyamoto of the DPRK Research blog detected the campaign – dubbed “StegaBin” due to its use of Pastebin steganography, a communication technique used by attackers to hide malicious information – late last month, noting that the malicious packages were added to the npm repositories over two days in the last…
A global survey of 820 IT decision makers and DevOps practitioners finds that half of respondents (53%) report that developers in the age of artificial intelligence (AI) are now authoring more tests directly. Conducted by Perforce, that shift also appears to be enabling a similar percentage of organizations (55%) to provide quality assurance (QA) teams with more time to focus on analytics. Perforce CTO Anjali Arora said it appears that organizations are investing more time and effort in testing to prevent suboptimal code, otherwise known as AI slop, from being incorporated into software builds. That effort, in fact, also appears…