View on sreweekly.com A message from our sponsor, PagerDuty: 🔍 Notable PagerDuty shift: Full incident management now spans all paid tiers. The upgraded Slack-first and Teams-first experience means fewer tools to juggle during incidents. Only leveraging PagerDuty for basic alerting? Time to check out what’s newly available in your plan! ...
You can use HCP Vault Dedicated audit log streaming to monitor and audit secure access to sensitive services and systems within your infrastructure. In production environments, every interaction with Vault, from reading secrets to generating dynamic credentials, should be tracked to meet compliance and security requirements. This post shows how HCP Vault Dedicated audit log streaming can be integrated with Amazon CloudWatch to forward detailed audit events in real time. With this setup, teams gain centralized visibility into Vault operations, detect unauthorized access patterns, and meet regulatory and operational audit needs all without the overhead of managing custom log forwarding pipelines. ...
WorkOS AuthKit: Simplify Auth in Your Next.js App (Sponsored)Building auth in Next.js means managing redirects, handling tokens and sessions, and making sure it all works across routes—even in edge environments like Vercel. WorkOS AuthKit solves this with a fully hosted login UI that supports SSO, MFA, passwordless auth, and password-based login. It handles redirects, token exchange, and session logic with minimal config. ...
Top Links The Changelog Podcast Episode #644 – We’re all Builders now (Amanda Silver, Adam Stacoviak & Jerod Santo) Leveling up your Microsoft Store on Windows experience (Giorgio Sardo) Seamlessly Import and Export Word and PDF in Angular Rich Text Editor (Thangavel E.) Emit logs on-demand with log buffering (Evgenii Fedorov) Leveraging the power of NPU to run Gen AI tasks on Copilot+ PCs (Navneet) Azure Developer CLI (azd) – June 2025 (Kristen Womack) What is the .NET Aspire Community Toolkit? | One Dev Question (Maddy Montaquila) ...
You can use retrieval augmented generation (RAG) to refine and improve the output of a large language model (LLM) without retraining the model. However, many data sources include sensitive information, such as personal identifiable information (PII), that the LLM and its applications should not require or disclose — but sometimes they do. Sensitive information disclosure is one of the OWASP 2025 Top 10 Risks & Mitigations for LLMs and Gen AI Apps. For example, an LLM may leak sensitive information when a user asks a question that requires that information in response. After the retrieval engine gets sensitive information and provides it to the LLM as context, the LLM generates a response without disclosing it. However, a user may ask a more specific question that relates to sensitive information and the LLM responds with it in its context. To mitigate this concern, OWASP recommends data sanitization, access control, and tokenization. ...
Top Links Catch Up on Microsoft Build 2025: Essential Sessions for .NET Developers (.NET Team) Microsoft launches new European Security Program (Brad Smith) AI Agent Architecture via A2A/MCP (Jeffrey Richter) Build like Microsoft: Developer agents in action (Natasha Vaz & Gino Buzzelli) Dev Proxy v0.28 with LLM usage and costs tracking (Waldek Mastykarz & Garry Trinder) .NET Rocks! – Coding Agents with Scott Hunter (Carl Franklin & Richard Campbell) Web & Cloud Development Unlocking Angular SpeechToText for Real-Time Chat Applications (Carter Harris) REST API Solution to Over-Fetching: .NET 9 Example – Ditch GraphQL, Use This Instead (Egor Tarasov) Deploying Angular Apps with NGINX and Docker (Hassan Djirdeh) Podman Release v5.5.0 (now with Arm64 installers) (Podman Team) Development API Using Microsoft’s .NET Aspire (Serhiy Krasovskyy) How to show content on specific dates in Hugo (Chris Ferdinandi) Kubernetes: Introducing Gateway API Inference Extension (Daneyon Hansen, Kaushik Mitra, Jiaxin Shan & Kellen Swain) Smashing Animations Part 4: Optimising SVGs (Andy Clarke) ...
Managing logs in production environments involves tricky trade-offs. You want detailed logs when things go wrong, but you don’t want to pay storage costs for logs that never get examined. While log sampling helps reduce log volume by emitting only a percentage of logs, sometimes you need a different approach. Enter log buffering in .NET 9 – an innovative capability that temporarily stores logs in memory and lets you decide later whether to emit them. Rather than making an immediate emit-or-discard decision, buffering gives you contextual control over which logs are preserved based on actual runtime outcomes. ...