Weekly news | 2025-04-16

news

• CloudFlare acquired Arroyo
• The 2025 AI Index Report
• PEP 750 - Template Strings
• New hardware: Busy Bar from Flipper Devices
• Fedora change aims for 99% package reproducibility
• Default styles for h1 elements are changing
• Fintech founder charged with fraud after ‘AI’ shopping app found to be powered by humans in the Philippines
• Google Is Winning on Every AI Front
• Google to embrace Anthropic’s standard for connecting AI models to data
• OpenAI introduces GPT-4.1 in the API
• New Vulnerability in GitHub Copilot and Cursor: How Hackers Can Weaponize Code Agents
• Docker introduces Docker Model Runner: A Better Way to Build and Run GenAI Models Locally
• TLS Certificate Lifetimes Will Officially Reduce to 47 Days
• Microsoft researchers developed a hyper-efficient AI model that can run on CPUs
• CVE program averts swift end after CISA executes 11-month contract extension
• CVE Foundation Launched to Secure the Future of the CVE Program
• It's easier than ever to de-censor videos
• Figma claims they own a trademark on “dev mode”
• Google announces the Agent2Agent Protocol (A2A)
• OpenTofu Proposal for OCI Backend
• Terraform backend implementation for OCI Object Storage
• Dependabot version updates now support Helm

• AWS:
  • Aurora
    • pgvector 0.8.0 in PostgreSQL
    • PostgreSQL 16.8, 15.12, 14.17 and 13.20
  • Bedrock Guardrails new capabilities to build gen AI apps
  • Bedrock Knowledge Bases hybrid search for Aurora PostgreSQL and MongoDB Atlas vector stores
  • Bedrock
    • new S2S model Nova Sonic
    • Nova Canvas now supports fine-tuning
    • Nova Reel 1.1
    • Pixtral Large 25.02, a multimodal model from Mistral AI
    • prompt caching | GA
  • CodeBuild
    • enhanced debugging experience
    • Node 22, Python 3.13 and Go 1.24 to Lambda Compute images
  • Config +223 rules in Control Tower
  • Connect set voice and language dynamically in a contact flow
  • Corretto April 2025 Quarterly Updates
  • Cost Optimization Hub DynamoDB and MemoryDB reservation recommendations
  • EC2 I7ie new bare metal instances sizes
  • ElastiCache for Memcached
    • horizontal autoscaling
    • vertical scaling
  • Elemental Link HD ingest rates as Link HD enters end of sale
  • End User Messaging IPv6 support
  • EventBridge Archive and Replay with Customer Managed KMS Keys
  • FSx for NetApp ONTAP Autonomous Ransomware Protection
  • Gateway Load Balancer Capacity Unit Reservation
  • IAM Identity Center new SDK plugin
  • Lex control intent switching during conversations
  • Mainframe Modernization advanced operations for runtime environments
  • Marketplace new fulfillment experience for container products
  • PartyRock Image Playground by Nova Canvas
  • Q Developer expands multi-language support within the IDE and CLI
  • RDS for Oracle M6id and R6id instances
  • S3 Express One Zone reduces storage and request prices
  • SageMaker Catalog precise technical identifier search
  • SageMaker JumpStart Meta’s Llama 4
  • SageMaker Studio recovery mode for applications
  • SAM API Gateway Custom Domain Names for private REST APIs
  • Transfer Family
    • new config opts for SFTP connectors
    • SFTP connectors can now delete, rename or move files
  • VPC simplified billing for Peering
  • Well-Architected Tool New Guidance
  • For a full list of AWS announcements, be sure to keep an eye on AWS’s What’s New Feed page.

tooling

• unsure: Unsure Calculator
• OpenAI's codex: Lightweight coding agent that runs in your terminal
• ArkType: Ergonomic TS validator 100x faster than Zod
• Vert: Open source and self-hostable/private file converter
• Koreo: The platform engineering toolkit for Kubernetes
• The Open Guide to Equity Compensation
• WebTUI: modular CSS library that brings the beauty of Terminal UIs to the browser
• Anubis: Weigh the soul of incoming HTTP requests using proof-of-work to stop AI crawlers
• Whenever: Modern datetime library for Python
• cargo-mutants: Inject bugs and see if your tests catch them
• exwm: Emacs X Window Manager - full-featured tiling X window manager for Emacs built on top of XELB
• SQLite File Format Viewer
• SignalBloom AI: free tool that analyzes SEC filings and posts detailed reports
• Omnom: Self-hosted bookmarking with searchable, wysiwyg snapshots
• meilisearch: A lightning-fast search engine API bringing AI-powered hybrid search to your sites and applications
• 12-factor-agents: Principles for building reliable LLM applications
• DVMCP: A deliberately vulnerable implementation of the Model Context Protocol (MCP) for educational purposes
• Accelerated-Zig-Parser: A high-throughput parser for the Zig programming language
• herb: Powerful and seamless HTML-aware ERB parsing and tooling.

• kernel-images: Browsers on a unikernel

• Books:

  • Big Book of R
  • WebRTC for the Curious

blogs

• Run CI Locally and Sign off on it with gh-signoff
• No code is dead. Long live vibe coding
• Writing Cursor Rules with a Cursor Rule
• Podman Quadlets with Podman Desktop
• Everything wrong with MCP
• Stevens: a hackable AI assistant using a single SQLite table and a handful of cron jobs
• Demystifying the #! (shebang): Kernel Adventures
• .localhost domains
• Design system options for Rails
• You might not need Websockets
• My Own Private Binary: An Idiosyncratic Introduction to Linux Kernel Modules
• How a $2,000 'Made in the USA' Phone Is Manufactured
• Your Strengths Are Your Weaknesses
• Datastar: Web Framework for the Future?
• Rust to C compiler - 95.9% test pass rate, odd platforms
• The bitter prediction about AI
• Rebuilding Prime Video UI with Rust and WebAssembly
• Learning Assembly for Fun, Performance and Profit
• Font with built-in syntax highlighting
• Quick Primer on Model Context Protocol (MCP)
• A farewell to the ArcoLinux University
• How we migrated terabytes of metrics from InfluxDB to Grafana Mimir: A complete observability overhaul
• Nelm 1.0 released: Helm-chart compatible alternative to Helm 3
• AI model monitoring, explainability, and continual learning in production
• Introducing kube-scheduler-simulator
• Five years in, Backstage is just getting started
• Make before break – faster scaling mechanics for ClickHouse Cloud
• Taming the complexity of cloud native development with internal developer platforms
• Stolen SpotBugs tokens sparked the massive GitHub attack
• Understanding Argo CD: The introductory guide
• Behind the 6-digit code: Building HOTP and TOTP from scratch

• mcp-shield: Security scanner for MCP servers

• CNCF On demand webinar:

  • Gateway API 101 with Linkerd
  • Serverless WebAssembly functions – polyglot programming made easy with Spin
  • Crypto agility, hybrid certificates and PQC migration strategies
  • External load balancing and multi-cluster routing for Kubernetes
  • The case for open source: How k0rdent empowers enterprise agility
  • Cloud migration without misery