The amount of time it takes engineering teams to get back to work after an incident is getting worse every year, even though spending on observability tools has reached record highs. This should worry everyone in this field. The Logz.io Observability Pulse followed teams with a mean time to resolution (MTTR) of more than one hour: 47% in 2021, 64% in 2022, 74% in 2023 and 82% in 2024. Four years in a row of going backwards. During the same time, the average number of tools used by a team rose to eight or nine different platforms. The answer from the industry has always been the…
Author: drweb
There is a silent force shaping engineering culture inside every technology organization. It affects productivity, team morale, psychological safety, and long-term retention. And yet, it is rarely discussed in executive meetings or reflected in meaningful KPIs.That force is on-call.On-call is one of the most direct touchpoints engineers have with the reality of the systems they own. When it’s healthy, it builds confidence, resilience, and pride. When it’s unhealthy, it quietly corrodes everything that makes engineering teams effective. And while most companies drastically underestimate this effect, a recent survey found that on-call is the least-liked aspect of software engineering, often leading…
In this article, we’ll show you how to move from Rocky Linux 9 to Rocky Linux 10.1, covering everything from backing up your current system to restoring your services on the fresh install. Rocky Linux does not support direct in-place upgrades between major versions, and that decision is intentional. The official Rocky Linux documentation recommends doing a fresh installation when moving from Rocky Linux 9 to Rocky Linux 10.1, then restoring your data and applications from backup afterward. You may still find older guides online that suggest using tools like Leapp or ELevate to force an in-place upgrade. However, the…
A report published by JFrog finds that cybercriminals are now increasingly targeting the artificial intelligence (AI) tools and platforms used by application development teams.Based on an analysis of 18.2 billion artifacts managed via the JFrog Platform, security researchers discovered 969 AI agent skills carrying high-impact payloads in addition to 495 malicious AI models on the Hugging Face platform for hosting open source AI models. Additionally, 56 malicious extensions were also discovered on the OpenVSX registry.The survey also finds 41% of respondents work for organizations that are actively using AI libraries, with organizations on average employing 9.3 AI libraries each. At…
Docker Captain May 26, 2026 The Untrusted Autonomous Workload: How AI Coding Agents Reshape What Isolation Has to Do Learn why AI coding agents need stronger isolation, how Docker Sandboxes use microVMs, and what secure autonomous workloads require. Read now
Ubuntu 26.04 LTS “Resolute Raccoon” shipped on April 23, 2026, and if you’re still on 24.04, this article walks you through the in-place upgrade using do-release-upgrade, the same tool Canonical recommends for every LTS-to-LTS jump. Ubuntu 26.04 LTS is the newest long-term support release from Canonical, and many Ubuntu 24.04 users are already planning upgrades on desktops, VPS instances, and home lab servers. Since both are LTS releases, the upgrade path is officially supported and relatively smooth when the system is prepared properly beforehand. Every failed Ubuntu release upgrade I’ve seen over the years usually came down to one of…
The fight to maintain security has moved to the engineer’s messy desktop. Last week, AI search provider Perplexity open-sourced an internal tool, Bumblebee, for checking developer machines, either Linux or macOS, for vulnerable software.Continuous integration pipelines have baked security checks into them, with Software Bills of Materials (SBOMs) ensuring that the correct version of a package makes it to runtime. So malicious attackers are gravitating to the underbelly of enterprise security, the developer’s laptop. Most developer machines are no doubt teeming with unpatched and outdated software, byproducts of various experiments and projects. There’s probably an outdated version of Node.js on most machines,…
Netplan is the default network configuration tool on Ubuntu since 18.04, replacing the older ifupdown system with a cleaner YAML-based approach that works across both server and desktop environments. Ubuntu 26.04 continues using Netplan as the default network configuration system, just like earlier Ubuntu releases, but instead of editing older configuration files manually, you now manage network settings using simple YAML files stored under /etc/netplan/. For desktop users, Netplan usually works quietly in the background, but on VPS servers, home labs, or remote Ubuntu systems, knowing how to configure static IP addresses, DNS servers, and multiple interfaces becomes very important,…
Sol Duara, a provider of open source platforms for managing the software development lifecycle (SDLC), has announced its intent to contribute an open source orchestration platform for automating software development workflows to the Continuous Delivery (CD) Foundation.At the core of the Conduit platform from Sol Duara is CDrus Expressions, a framework that turns CDEvents vocabulary into expressed intent. Sol Duara has also built an internal developer platform (IDP) based on CDrus Expressions and Tekton pipelines that adheres to a set of principles through which established systems theory, software architecture patterns, and interoperability frameworks are unified to advance interoperability across continuous…
A sequential scan is not always a problem — PostgreSQL’s planner often chooses one correctly for small tables or queries that return most of a table’s rows. The dangerous variant is the sequential scan with no filter predicate: the plan reads every row in the table and returns all of them, with zero selectivity applied at the scan level. This pattern means the query has no WHERE clause narrowing the result, or the join/filter column has no index backing it. On any large table in a transactional workload it produces unnecessary I/O, longer runtimes, and contention under load. This post…