Ship It Weekly - DevOps, SRE, and Platform Engineering News

This is a guest conversation episode of Ship It Weekly (separate from the weekly news recaps).
In this Ship It: Conversations episode I talk with Yvonne Young, a cloud and Linux mentor active in the CloudWhistler community. We talk about the real path into cloud and DevOps, why Linux still matters as a foundation, what “job ready” actually means, and why focus, consistency, and business thinking matter more than chasing every new tool.
Highlights
Linux fundamentals still matter because so much of cloud and infra work sits on top of Linux
What “job ready” really means: prepare for both technical and behavioral interviews, know the basics, and show how you learn when you don’t know something
Why so many juniors stall out by trying to learn everything instead of picking a direction
Why daily reps beat cramming: short, consistent practice keeps skills fresh better than marathon study sessions
How Yvonne thinks about certifications, including why hands-on certs like RHCSA stand out
Hands-on practice ideas: break things on purpose, troubleshoot, fix services, inspect ports, and use the help files
Why tools matter less than the business problem they solve
Using Vault as an example of solving real issues like secret sprawl, rotation, and centralized access
How to think about cloud learning: pick one provider, learn the concepts, and map your path to the kinds of companies you want to work for
Why mentorship and community matter, especially for juniors trying not to waste time or head in the wrong direction
What seniors can do better: better onboarding, real availability, and giving juniors an actual lifeline when they get stuck
Yvonne’s links
LinkedIn: https://www.linkedin.com/in/yvonne-young
Stuff mentioned
Ali Sohail on LinkedIn: https://www.linkedin.com/in/alisohailit/
Tech With Engineers on LinkedIn: https://uk.linkedin.com/company/tech-with-engineers
CloudWhistler community / training: training.cloudwhistler.com
Vault: https://www.hashicorp.com/en/products/vault
OpenBao: https://openbao.org/
More episodes + details: https://shipitweekly.fm

This week on Ship It Weekly, Brian looks at how the boundary of ops keeps expanding.
We cover AWS flagging issues in Bahrain/UAE amid Iran strikes, ArgoCD vs Flux and why ArgoCD can get stuck in failed sync states, GitHub Actions being exploited at scale (plus Trivy’s incident), RoguePilot prompt injection meeting real credentials in Codespaces, Block’s “AI remake” layoffs, and Anthropic’s Claude Code Security for defenders.
Lightning round: DeepSeek model access geopolitics, Vercel’s agentic security boundaries, a KEV CVE to patch, an MCP-atlassian SSRF-to-RCE chain, and Claude Cowork scheduled tasks.
Links
AWS Bahrain/UAE (Reuters) https://www.reuters.com/world/middle-east/amazon-cloud-unit-flags-issues-bahrain-uae-data-centers-amid-iran-strikes-2026-03-02/
ArgoCD to Flux https://hai.wxs.ro/migrations/argocd-to-flux/
GitHub Actions exploitation https://www.stepsecurity.io/blog/hackerbot-claw-github-actions-exploitation
Trivy incident https://github.com/aquasecurity/trivy/discussions/10265
RoguePilot https://thehackernews.com/2026/02/roguepilot-flaw-in-github-codespaces.html
Block layoffs (WSJ) https://www.wsj.com/business/jack-dorseys-block-to-lay-off-4-000-employees-in-ai-remake-28f0d869
Claude Code Security https://www.anthropic.com/news/claude-code-security
DeepSeek (Reuters) https://www.reuters.com/world/china/deepseek-withholds-latest-ai-model-us-chipmakers-including-nvidia-sources-say-2026-02-25/
Agentic boundaries https://vercel.com/blog/security-boundaries-in-agentic-architectures
CISA KEV https://www.cisa.gov/news-events/alerts/2026/03/03/cisa-adds-two-known-exploited-vulnerabilities-catalog
mcp-atlassian CVE https://arcticwolf.com/resources/blog-uk/cve-2026-27825-critical-unauthenticated-rce-and-ssrf-in-mcp-atlassian/
Claude Cowork tasks https://support.claude.com/en/articles/13854387-schedule-recurring-tasks-in-cowork
More: https://shipitweekly.fm

This week on Ship It Weekly, Brian covers three “automation meets reality” stories that every DevOps, SRE, and platform team can learn from.
Cloudflare accidentally withdrew customer BYOIP prefixes due to a buggy cleanup task, Clerk got knocked over by a Postgres auto-analyze query plan flip, and AWS responded to reports about its internal Kiro tooling by framing the incident as misconfigured access controls. Plus: a quick EKS node monitoring update, and a tight security lightning round.
Links
Cloudflare BYOIP outage postmortem https://blog.cloudflare.com/cloudflare-outage-february-20-2026/
Clerk outage postmortem (Feb 19, 2026) https://clerk.com/blog/2026-02-19-system-outage-postmortem
AWS outage report (Reuters) https://www.reuters.com/business/retail-consumer/amazons-cloud-unit-hit-by-least-two-outages-involving-ai-tools-ft-says-2026-02-20/
AWS response on Kiro + access controls https://www.aboutamazon.com/news/aws/aws-service-outage-ai-bot-kiro
EKS Node Monitoring Agent (open source) https://aws.amazon.com/about-aws/whats-new/2026/02/amazon-eks-node-monitoring-agent-open-source/
Grafana CVE-2026-21721 https://grafana.com/security/security-advisories/cve-2026-21721/
runc CVEs (AWS-2025-024) https://aws.amazon.com/security/security-bulletins/rss/aws-2025-024/
GitLab patch releases https://about.gitlab.com/releases/2025/11/26/patch-release-gitlab-18-6-1-released/
Atlassian Feb 2026 security bulletin https://confluence.atlassian.com/security/security-bulletin-february-17-2026-1722256046.html
Human story: SRE Is Anti-Transactional (ACM Queue) https://queue.acm.org/detail.cfm?id=3773094
More episodes and show notes at https://shipitweekly.fm
On Call Briefs at: https://oncallbrief.com

This is a guest conversation episode of Ship It Weekly (separate from the weekly news recaps).
In this Ship It: Conversations episode I talk with Mike Lady (Senior DevOps Engineer, distributed systems) from Enterprise Vibe Code on YouTube. We talk day two readiness, guardrails/quality gates, and why shipping safely matters even more now that AI can generate code fast.
Highlights
Day 0 vs Day 1 vs Day 2 (launching vs operating and evolving safely)
What teams look like without guardrails (“hope is not a strategy”)
Why guardrails speed you up long-term (less firefighting, more predictable delivery)
Day-two audit checklist: source control/branches/PRs, branch protection, CI quality gates, secrets/config, staging→prod flow
AI agents: they’ll “lie, cheat, and steal” to satisfy the goal unless you gate them
Multi-model reviews (Claude/Gemini/Codex) as different perspectives
AI in prod: start read-only (logs/traces), then earn trust slowly
Mike’s links
YouTube: https://www.youtube.com/@EnterpriseVibeCode
Site: https://www.enterprisevibecode.com/
LinkedIn: https://www.linkedin.com/in/mikelady/
Stuff mentioned
Vibe Coding (Gene Kim + Steve Yegge): https://www.simonandschuster.com/books/Vibe-Coding/Gene-Kim/9781966280026
Beads (agent memory/issue tracker): https://github.com/steveyegge/beads
Gas Town (agent orchestration): https://github.com/steveyegge/gastown
AGENTS.md (agent instructions file): https://agents.md/
OpenAI Codex: https://openai.com/codex/
More episodes + details: https://shipitweekly.fm

Ship It Weekly is a DevOps and SRE news podcast for engineers who run real systems.
Every week I break down what actually matters in cloud, Kubernetes, CI/CD, infrastructure as code, and production reliability. No hype. No vendor spin. Just practical analysis from someone who’s been on call and shipped systems at scale.
This isn’t a tutorial show. It’s a signal filter.
I cover major industry shifts, security incidents, cloud provider changes, and tooling updates, then explain what they mean for platform teams and engineers operating in production.
If you work in DevOps, SRE, platform engineering, or cloud infrastructure and want context instead of clickbait, you’re in the right place.
New episodes weekly.
You can also find detailed write-ups at: https://shipitweekly.fm
And curated production-focused briefs at: https://oncallbrief.com
Subscribe, and let’s ship.