Claude Agents ☁️, EKS Backups 💾, AI CI Costs 🧪

Cloudflare and Anthropic integrated Claude Managed Agents with Cloudflare's infrastructure, allowing developers to run AI agents ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌  ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ 

Sign Up |Advertise|View Online TLDR Together With TLDR DevOps 2026-05-20 Modernize Java in days, not months (Sponsor) IBM Bob is the AI Development partner built for the modernization work you need to get done. • Java upgrades • COBOL refactors • RPG • Mainframe modernization Blue Pearl compressed a 30-day Java upgrade to 3 days with zero post-deployment defects. Bob ingests your codebase, your standards, and the unglamorous work of refactoring legacy. You can direct IBM Bob to dynamically route tasks to a suitable model based on accuracy, performance, and cost, drawing on a mix of frontier models including Anthropic Claude, Mistral, IBM Granite and others for you. Visit the IBM Bob Site and Start Your Free Trial Today! 📱 News & Trends Terraform Enterprise 2.0: Evolving infrastructure operations for scale (4 minute read) Terraform Enterprise 2.0 introduces Stacks for orchestrating multi-environment infrastructure as unified systems, plus project-level notifications, SCIM 2.0 automation, stronger governance, diagnostics, migration tools, and lifecycle support improvements to scale operations securely and consistently. New in Terraform 1.15: Dynamic sources, variable deprecation, and more (5 minute read) Terraform 1.15 adds dynamic module sources with const variables, deprecation warnings for module variables and outputs, inline type conversions via convert(), typed outputs, enhanced testing mocks, and validation blocks for Stacks variables. Additional improvements include Windows ARM64 support, AWS login authentication for S3 backends, and better CLI deprecation diagnostics to improve usability, testing, and enterprise-scale workflows. Announcing Claude Managed Agents on Cloudflare (8 minute read) Cloudflare and Anthropic integrated Claude Managed Agents with Cloudflare's infrastructure, allowing developers to run AI agents with enhanced security features like customizable proxies, private service connectivity, and the option to use lightweight V8 isolates instead of full microVMs for faster, cheaper scaling. The integration includes out-of-the-box tools like browser control with session recording, email capabilities for each agent, and connections to Cloudflare services like Workers AI and R2 storage, with a deployment template available for developers to get started in minutes. 🚀 Opinions & Tutorials Back up and restore your Amazon EKS cluster resources using Velero (8 minute read) AWS detailed how to use Velero on Amazon EKS to back up and restore Kubernetes resources and persistent volume data with Amazon S3, Amazon EBS snapshots, and least privilege IAM roles using EKS Pod Identity. The tutorial demonstrates deploying a stateful application, creating namespace-scoped backups, restoring workloads across namespaces, and securing Velero with restricted Kubernetes permissions. AI Is Writing More Code. Your CI Pipeline Can't Keep Up (7 minute read) Rising AI-driven development activity is inflating CI costs as every commit triggers long, compute-intensive test suites, making test execution a major source of infrastructure waste and slower developer feedback. Intelligent test selection tools like CloudBees Smart Tests reduce runtime, cloud spend, flaky reruns, and release delays by running only the most relevant tests for each code change. 🧑‍💻 Resources & Tools How does your DevOps stack measure up to Gartner's MQ contenders? (Sponsor) In Gartner's 2025 Magic Quadrant for DevOps Platforms, Atlassian earned Leader status for the third straight year, with the highest placement in Ability to Execute. When everyone talks about consolidating tools, it's proven performance that matters most. Get your free copy Kubetail (GitHub Repo) Kubetail is a real-time logging dashboard for Kubernetes that lets users view logs from multiple containers in a workload as a single chronological stream in either a browser or terminal. It uses the Kubernetes API directly, so teams can tail logs across deployments, daemonsets, cron jobs, and stateful workloads without first shipping data to an external logging backend. Syft (GitHub Repo) Syft is a CLI tool and Go library for generating Software Bills of Materials from container images and filesystems, with support for many package ecosystems, OCI/Docker/Singularity images, CycloneDX/SPDX output, and signed SBOM attestations. It's a strong fit for DevOps and DevSecOps readers because SBOM generation is increasingly table stakes for container security, compliance, vulnerability scanning, and supply-chain visibility. 🎁 Miscellaneous Automating Confidential Containers (CoCo) infrastructure with Kyverno (3 minute read) Kyverno, a Kubernetes-native policy engine, can now automate the deployment of Confidential Containers (CoCo) workloads by automatically injecting required security configurations and validating inputs at admission time, solving the operational complexity that previously required developers to manually manage infrastructure-heavy details. The integration maintains CoCo's zero-trust security model—where the Kubernetes control plane is treated as untrusted—by using Kyverno purely for deployment automation while remote attestation remains the final security checkpoint. Meet Gordon: AI Agent for Container Workflows (7 minute read) Gordon is an AI agent by Docker that goes beyond typical coding assistants by actually reading your running containers, logs, and compose files to debug issues, containerize apps, and optimize Dockerfiles—then proposing and executing fixes with your approval. Gordon is available for free in Docker Desktop 4.74 and the CLI, with context about your entire Docker environment already loaded, so it can diagnose problems like missing environment variables or networking failures in minutes instead of hours. CISA Admin Leaked AWS GovCloud Keys on Github (4 minute read) A CISA contractor reportedly exposed credentials for highly privileged AWS GovCloud accounts, internal systems, plaintext passwords, logs, and deployment-related files in a public GitHub repository. The leak is a stark reminder that secrets scanning, org-level GitHub policy enforcement, short-lived credentials, and least-privilege cloud access are not optional controls, especially when repositories are used as informal scratchpads or sync mechanisms. ⚡ Quick Links Karpenter now supports Amazon Application Recovery Controller zonal shift (3 minute read) Amazon EKS now supports Amazon ARC zonal shift and zonal autoshift with Karpenter, enabling Kubernetes clusters to automatically redirect traffic and stop provisioning in impaired availability zones during outages. Announcing AWS CDK Mixins: Composable Abstractions for AWS Resources (5 minute read) CDK Mixins is a new feature in the AWS Cloud Development Kit that allows developers to apply reusable infrastructure capabilities to any construct type (L1, L2, or L3) without being locked into specific implementations. Love TLDR? Tell your friends and get rewards! Share your referral link below with friends to get free TLDR swag! https://refer.tldr.tech/3b85ceef/10 Track your referrals here. Want to advertise in TLDR? 📰 If your company is interested in reaching an audience of devops professionals and decision makers, you may want to advertise with us. Want to work at TLDR? 💼 Apply here, create your own role or send a friend's resume to jobs@tldr.tech and get $1k if we hire them! TLDR is one of Inc.'s Best Bootstrapped businesses of 2025. If you have any comments or feedback, just respond to this email! Thanks for reading, Kunal Desai & Martin Hauskrecht Manage your subscriptions to our other newsletters on tech, startups, and programming. Or if TLDR DevOps isn't for you, please unsubscribe.