Weekly news | 2025-05-14

news

• A flat pricing subscription for Claude Code
• Microsoft Teams will soon block screen capture during meetings
• Google is finally building its own DeX: First look at Android's Desktop Mode
• OpenTelemetry Protocol with Apache Arrow - Phase 2 Announcement
• Databricks acquired Neon
• OpenEoX: initiative aimed at standardizing the way End-of-Life (EOL) and End-of-Support (EOS) information
• Kubernetes v1.33: User Namespaces enabled by default!
• Terraform v1.12.0 release

• AWS:
  • Aurora PostgreSQL Limitless Database v16.8
  • Bedrock Data Automation extraction of custom insights from audio
  • CloudWatch Network Monitoring multi-account support for flow monitors
  • CloudWatch RUM Interaction to Next Paint (INP) Web Vital
  • CodePipeline Secrets Manager and more configurations in Commands action
  • Connect
    • saudio optimization for Omnissa cloud desktops
    • sexternal voice pricing changes
    • soutbound campaigns now supports Poland
  • EBS Provisioned Rate for Volume Initialization
  • ECS 1-click rollbacks for service deployments
  • Marketplace SaaS products from all deployment locations
  • MSK certificate renewals on MSK Provisioned clusters
  • Payments Account Summary overview of AWS financial account balances
  • Q Developer integration in GitHub | Preview
  • RDS for Oracle Oracle Application Express (APEX) Version 24.2
  • Resource Explorer +41 new resource types
  • SageMaker additional visual ETL transforms and S3 tables support
  • SageMaker AI Q Developer with custom code suggestions and workspace context
  • SageMaker Catalog authorization policy for asset type usage
  • SageMaker HyperPod integrates EventBridge to deliver status change events
  • SageMaker three new data sources
  • SES IPv6 when calling SES outbound endpoints
  • SQS FIPS 140-3 enabled interface VPC endpoint
  • Systems Manager customization options for onboarding configuration
  • Verified Permissions policy store tagging
  • VPC Reachability Analyzer resource exclusion

tooling

• Deep-Live-Cam: real time face swap and one-click video deepfake with only a single image
• aztfexport: A tool to bring your existing Azure resources under the management of Terraform
• Log-Analyzer-with-MCP: MCP server that provides AI assistants access to AWS CloudWatch Logs for analysis, searching, and correlation
• DevGenius - AWS Solution Generator
• lumier: Run macOS VMs in a Docker
• git-bug: Distributed, Offline-First Bug Tracker Embedded in Git, with Bridges
• WarpStream: drop-in replacement for Apache Kafka built directly on-top of object storage
• ParaQuery: GPU Accelerated fully-managed Spark + SQL at 2x speed and half the cost
• toyDB: Distributed SQL database in Rust, written as an educational project
• airweave: lets agents search any app
• Scraperr: Self-hosted webscraper
• void: Open-source Cursor alternative
• mycoria: an open and secure overlay network that connects all participants
• Yggdrasil: an experimental compact routing scheme that is fully decentralised
• Qtap: eBPF to see through encryption without a proxy
• sofie: open-source web based system for automating live TV news production
• HyVector: A fast and modern SVG editor
• itter.sh: Micro-Blogging via Terminal
• LegoGPT: Generating Physically Stable and Buildable Lego
• Aberdeen: An elegant approach to reactive UIs
• CryptPad: An Alternative to the Google Suite
• NAO: an AI code editor to work with data: a local editor, directly connected with your data warehouse, and powered by an AI copilot with built-in context of your data schema and data-specific tools | Demo
• Podfox: World's First Container-Aware Browser
• Odin: a pragmatic C alternative with a Go flavour
• audiobookshelf: Self-hosted audiobook and podcast server
• hokusai: A backend agnostic ruby framework for building reactive desktop applications
• Gmail to SQLite: Index your Gmail account to a SQLite DB and play with the data
• PlainVanillaWeb
• Build iOS Apps on Linux and Windows

blogs

• A Critical Look at MCP
• Using MCPs to run Terraform
• The cryptography behind passkeys
• Flattening Rust's Learning Curve
• Multiple security issues in GNU Screen
• Lumoar: Free SOC 2 tool for SaaS startups
• I hacked a dating app (and how not to treat a security researcher)
• Demonstrably Secure Software Supply Chains with Nix
• Monitoring Minecraft with OpenTelemetry
• https://blog.appsignal.com/2025/05/07/an-introduction-to-solid-queue-for-ruby-on-rails.html
• Dotless domains
• State of SSL stacks
• Leaving Google
• One-Click RCE in ASUS’s Preinstalled Driver Software
• A critical look at MCP
• Notes on rolling out Cursor and Claude Code
• How to Harden GitHub Actions: The Unofficial Guide
• What UI density means and how to design for it
• Deploying AI models to production in the cloud
• Linkerd vs Ambient Mesh: 2025 Benchmarks
• Kubernetes + Selenium Grid + Testkube
• Scaling with safety: Cloudflare's approach to global service health metrics and software releases
• Is OpenTelemetry ready for Infra Monitoring?
• Learn KubeVirt: Deep dive for VMware vSphere admins
• Migrating Uber's compute platform to Kubernetes: A technical journey
• What is the software development LifeCycle (SDLC)? A beginner's guide
• 'The proverbial rug pull' ' Chris Aniszczyk (CNCF) on balancing open source and business
• Kubernetes v1.33 brings major updates to Dynamic Resource Allocation (DRA)
• Kelsey Hightower, AWS's Eswar Bala on Open Source's Evolution
• KubeCon showcases the power of community-driven inclusion
• Introducing a visual way to explore Kubernetes security: The Kubescape plugin for Headlamp
• Open source (in tech) cat herding

• CNCF announces graduation of in-toto security framework, enhancing software supply chain integrity across industries

• CNCF On demand webinar:

  • Swarming the data lake with Kubernetes (using ClickHouse, Iceberg, and Parquet)
  • Design patterns for Agentic AI | InfoQ Webinar