Weekend RoundUp: AI Agent Turns on Developer After Code Rejection

Hey there,

Happy Friday🥳!

Before you wrap the week, here’s a quick drop of things worth checking out.

📰Top Picks:

AI agent seemingly tries to shame open source developer for rejected pull request
An AI agent built with OpenClaw wrote and published a blog post attacking a Matplotlib maintainer after he rejected its pull request, accusing him of prejudice and gatekeeping. The bot researched the maintainer's contributions to construct a "hypocrisy narrative" and speculated about his psychological motivations. Read more.

First Malicious Outlook Add-In Found Stealing 4,000+ Microsoft Credentials
Researchers discovered AgreeToSteal, an attack that hijacked an abandoned Outlook add-in's expired domain to serve a phishing page inside Microsoft's own marketplace, stealing 4,000+ credentials. The add-in's manifest pointed to a URL on Vercel that became claimable after the developer abandoned the project in 2023. Read more.

GitHub’s former CEO launches a developer platform for the age of agentic coding
Thomas Dohmke left GitHub to build Entire, a new platform designed for the era of developers working alongside dozens of AI agents. The first product, Checkpoints, logs agent reasoning and intent automatically, addressing the bottleneck of reviewing agent-written code without understanding how it got there. Read more.

Vibe coding is passé. Karpathy has a new name for the future of software.
A year after popularizing vibe coding, Andrej Karpathy says LLMs are now good enough that professionals orchestrate agents with oversight instead of writing throwaway demos. He's calling the new workflow "agentic engineering" to emphasize the expertise required. Read more.

VS Code for Linux may be secretly hoarding trashed files
A year-old bug in VS Code's Snap package creates hidden trash folders for each version that don't sync with the system trash, leaving supposedly deleted files consuming storage indefinitely. Some developers have discovered 200+ GB of undeletable files dating back years, with emptying the system trash having no effect. Read more.

Kubernetes Drives AI Expansion as Cultural Shift Becomes Critical
A new CNCF report confirms that Kubernetes dominates AI workloads, with 82% adoption, and identifies the next frontier: getting data scientists and DevOps engineers to work together. Read more.

CodeRabbit Adds DevOps Planning and Review Tool for AI Prompts
CodeRabbit released a beta tool that lets DevOps teams collaboratively vet and validate AI prompts before deploying them. The tool integrates with Linear, Jira, GitHub, and GitLab to help teams build consensus around prompts instead of siloed individual efforts. Read more

Datadog Integrates Google Agent Development Kit into LLM Observability Tools
Datadog's LLM Observability now automatically instruments apps built with Google's ADK, giving teams visibility into agent behavior, token costs, and performance without manual setup. New Relic and Splunk are working on similar capabilities as agentic workflows hit production. Read more.

Cloudflare Launches Vertical Microfrontend Template for Path-Based Edge Routing
Cloudflare launched a Worker template for Vertical Microfrontends that lets teams own entire URL paths with their own frameworks and CI/CD, while keeping the SPA feel through Service Bindings and browser prefetching. Read more.

Apple Fixes Exploited Zero-Day Affecting iOS, macOS, and Other Devices
Apple released updates across iOS, macOS, and other platforms to fix CVE-2026-20700, a memory corruption flaw in dyld exploited in sophisticated attacks against specific individuals. Updates are available for iOS 26.3, macOS Tahoe 26.3, and other platforms. Read more.

🗓️ Upcoming Events

Mark your calendars!

• HashiTalks 2026 (19-20 February 2026): A community-driven event centered on HashiCorp tools and infrastructure automation. Register here.

• Kubernetes Community Day – New Delhi (21 February, 2026):
  Dive into talks, discussions, and networking opportunities to foster community engagement and knowledge sharing. Register here.

• Site Reliability, DevOps and Cloud (26 February 2026): A conference focused on practical approaches to site reliability engineering, DevOps culture, and cloud operations. Register here.

• Cloud & AI Infrastructure London (4 - 5 March 2026, Excel London): Cloud & AI Infrastructure London is a large-scale event exploring the technologies that power modern cloud platforms and artificial intelligence workloads. Register here.

• Site Reliability, DevOps and Cloud (12 March 2026): A conference focused on practical approaches to site reliability engineering, DevOps culture, and cloud operations. Register here.

• KubeCon + CloudNativeCon Europe 2026 (23-26 March): KubeCon is back in Amsterdam from 23–26 March, bringing platform teams and cloud-native practitioners together for hands-on sessions, case studies, and ecosystem updates. Register here.

• SRECon26 America (24-26 March, Seattle, USA): A premier conference for professionals designing and operating large-scale, reliable systems. Register here.

Opportunities:

• Mid AWS Cloud Engineer at LITIT- (Remote)

• Forward Deploy - Senior Security Engineer at A.Team - (Remote)

• Cloud Platform Engineer at LITIT - (Remote)

• Senior DevOps Engineer at Alpaca - Global, Anywhere (Remote)

• Site Reliability Engineer at Sporty Group - Global (Remote)

• Staff Site Reliability Engineer at Zscaler - USA (Remote)

• DevSecOps Engineer at Oddball - USA (Remote)

• Cloud Engineer at Protera - United States

• SRE- Clickhouse Team at PostHog - US (Remote)

• SRE/Incident Response at XBOW - Europe (Remote)

• Senior Site Reliability Engineer at Airalo - United Kingdom (Remote)

• DevSecOps Engineer at Nord Security - Warsaw (Hybrid)