Every Cloudflare feature, available to everyone (5 minute read)
Nearly all of Cloudflare's features, previously limited to enterprise customers, will become available for purchase by anyone on any plan without contracts or sales involvement. The rollout will begin with dashboard Single Sign-On and will expand over the next year to include other advanced capabilities, reinforcing Cloudflare's mission to make powerful Internet security and performance tools accessible to all users.
|
Safe in the sandbox: security hardening for Cloudflare Workers (13 minute read)
Cloudflare has strengthened the security of Workers by modifying the V8 runtime to use memory protection keys and a software-based sandbox, preventing cross-isolate data access and containing memory corruption attacks. These improvements create layered defenses that block escalation attempts, ensuring user code runs safely on Cloudflare's globally distributed infrastructure without requiring customer intervention.
|
Visual Studio 2026 Insiders is here! (5 minute read)
Visual Studio 2026 Insiders introduces deeply integrated AI, making code reviews, documentation, and debugging more seamless while reducing developer overhead. The release also delivers major performance boosts, a modernized Fluent UI design, and a new Insiders Channel for early feature access, all aimed at keeping developers in flow and accelerating productivity.
|
|
Code Mode: the better way to use MCP (10 minute read)
AI agents can handle more tools and more complex tools by converting Model Context Protocol (MCP) tools into a TypeScript API and having LLMs write code to call that API. This approach uses the Cloudflare Workers platform and its new Worker Loader API, which loads Worker code on-demand with a secure sandbox that prohibits internet access. It isolates access to MCP servers through bindings and prevents the AI from leaking API keys.
|
Priorities (3 minute read)
Focusing only on urgent tasks in software engineering leaves bugs and technical debt unresolved, eventually slowing development and frustrating users. Teams can avoid this by reserving capacity for lower-priority but important work through strategies like time allocation, dedicated ownership, or zero-tolerance policies.
|
What is "good taste" in software engineering? (7 minute read)
Good taste in software engineering isn't about raw skill but about choosing the right engineering valuesβlike readability, scalability, or resiliencyβfor the problem at hand. Engineers with good taste stay flexible, avoid rigid βbest practices,β and make tradeoffs that fit their project's context, leading to more successful outcomes over time.
|
|
Coze Studio (GitHub Repo)
Coze Studio, an all-in-one AI agent development tool derived from the "Coze Development Platform," has been released as open source. The platform simplifies AI agent creation, debugging, and deployment with visual tools, no-code or low-code approaches, and a microservices architecture built on Golang, React, and Typescript.
|
Claude Code Router (GitHub Repo)
Claude Code Router version v1.0.50 is now available. Users can now route Claude Code requests through models like GLM-4.5 and DeepSeek v3.1 for free via the iFlow Platform.
|
|
CNCF Expands Infrastructure Support for Project Maintainers via Docker Partnership (4 minute read)
The Cloud Native Computing Foundation partnered with Docker to provide all CNCF projects with access to Docker's Sponsored Open Source program, delivering premium registry, security, and support services. Maintainers gain scalable infrastructure with tools like Docker Scout, automated builds, and usage insights, while users benefit from more secure and reliable access to cloud native projects.
|
Malicious NPM packages: Are you exposed? (5 minute read)
A newly discovered NPM worm called Shai-Hulud spread rapidly by stealing credentials and self-propagating across hundreds of packages, highlighting the escalating risks of open source supply chain attacks. Sysdig's Threat Intelligence Feed provides real-time visibility into malicious NPM packages, enabling security teams to quickly verify exposure, investigate threats, and respond with precision.
|
|
Announcing H1 2026 KCDs (2 minute read)
The Cloud Native Computing Foundation (CNCF) announced the first wave of Kubernetes Community Days (KCDs) for 2026 and introduced three tiers of KCDs to support communities of all sizes.
|
|
|
Love TLDR? Tell your friends and get rewards!
|
|
Share your referral link below with friends to get free TLDR swag!
|
|
|
|
|
Track your referrals here.
|
|
Want to advertise in TLDR? π°
If your company is interested in reaching an audience of devops professionals and decision makers, you may want to advertise with us.
Want to work at TLDR? πΌ
Apply here or send a friend's resume to jobs@tldr.tech and get $1k if we hire them!
If you have any comments or feedback, just respond to this email!
Thanks for reading,
Kunal Desai & Martin Hauskrecht
|
|
|
|
