Browse DevOps Blogs (23)

Andrew Lock explores how to collect and process application metrics in .NET using MeterListener from System.Diagnostics.Metrics. He explains the MetricManager pattern, in-process aggregation, and visualizing metrics with Spectre.Console.

In this workshop summary, DevClass.com reviews Martin Fowler’s event marking 25 years since the Agile Manifesto, highlighting the growing impact of AI on coding, the renewed importance of TDD, and security risks in software development.

DevClass.com explores GitHub’s preview release of agentic workflows, detailing how AI agents automate repository tasks. The article, authored by DevClass.com, breaks down security, configuration, and use case scenarios for this new automation concept.

Thomas Maurer guides readers through deploying VMs on Azure Local using the Azure Portal, CLI, and Bicep, showing practical workflows for hybrid and sovereign cloud environments.

Jesse Houwing shares his journey improving GitHub Actions versioning with the release of 'actions-semver-checker' v2, leveraging Copilot Agent and automated testing to streamline and automate release management.

Tim D'haeyer draws on both personal experience and technical depth to guide developers through safely handling special characters in user input, emphasizing SQL injection prevention and robust DevOps practices.

Tim Anderson outlines the Kubernetes committees' warnings and technical reasons for the urgent migration from Ingress NGINX, detailing project deprecation, security issues, and community response.

Andrew Lock provides a comprehensive walkthrough on leveraging System.Diagnostics.Metrics APIs in .NET, guiding developers through instrumentation concepts, monitoring with dotnet-counters, and building custom metrics for production-grade observability.

Hidde de Smet explains how teams can move from individual AI-powered workflows to collaborative, spec-driven development. Explore practical team setups, CI/CD integrations, and advanced architecture strategies to grow your next Microsoft-focused project.

DevClass.com explores how attackers exploit VS Code's tasks.json files to deploy malicious code, emphasizing security risks, protections, and best practices for developers.

Tim Anderson highlights how attackers weaponize VS Code's tasks.json configuration to execute malicious code, detailing the risks for developers and the security implications.

Hidde de Smet delivers a comprehensive field guide for developers mastering AI-assisted and spec-driven development. This post, Part 3 of his series, dives into debugging, best practices, troubleshooting, and automation for production-ready workflows.

Tim Anderson delivers a detailed analysis of Azure Artifact Signing, Microsoft's new service to streamline and secure code signing for Windows applications, addressing modern security requirements and developer workflows.

DevClass.com provides a technical overview of Microsoft's Azure Artifact Signing, detailing how it improves code signing for Windows apps. The article highlights new workflows, security enhancements, and developer-centric deployment options.

Hidde de Smet continues his AI-assisted development series by demonstrating the full Spec-Kit workflow—detailing how to move from requirements to production-ready code using .NET 9, Blazor, and GitHub Copilot. A must-read for software engineers adopting modern, spec-driven workflows.

Hidde de Smet kicks off a deep-dive series on mastering AI-assisted development, highlighting why uncritical 'vibe coding' falls short and how specification-driven approaches like GitHub’s Spec-Kit help teams achieve robust production code.

Jesse Houwing addresses a visibility gap in GitHub Actions security when actions are pinned by SHA. The post details a workflow extension ensuring vulnerabilities are properly surfaced in the Dependency Graph and by Dependabot.

Rob Bos demonstrates hands-on techniques for using the GitHub Copilot Coding Agent to automate real development tasks, highlighting workflow automation, practical prompts, and DevOps best practices.

DevClass.com reports on GitHub’s plan to introduce per-minute pricing for self-hosted GitHub Actions runners in March 2026. The article, authored by Tim Anderson, reviews developer reactions, rationale behind the move, and new infrastructure features in response.

Jeff Burt reports on the discovery of two malicious VS Code extensions targeting developers, detailing how these plugins exploited developer environments and posed significant software supply chain security risks.