Kubernetes

LiteLLM versions 1.82.7 and 1.82.8 were found to contain malicious code targeting PyPI users, likely via a compromised maintainer account. The payload harvests sensitive credentials, exfiltrates data, and attempts persistence and lateral movement in Kubernetes. Maintainers have yanked the versions, but users are advised to rotate all credentials and audit their environments for persistence.

This service allows users to repurpose old laptops into dedicated, always-online servers hosted in professional Hetzner datacenters. For a flat monthly fee of €7, users gain enterprise-grade colocation, static IPv4 addresses, and KVM-over-IP access. This eco-friendly solution offers more performance than typical entry-level VPS offerings, while supporting diverse software stacks like Kubernetes and Proxmox.

Google introduced Scion, an experimental orchestration testbed for managing concurrent agents in isolated containers. It functions as a hypervisor for agents, enabling specialized, long-lived, or ephemeral processes to work safely and concurrently across varied infrastructure, including Kubernetes, with distinct workspaces and identities.

RISE has launched free, managed GitHub Actions runners providing open source projects with direct access to physical RISC-V hardware. By eliminating the reliance on emulators for testing, this platform helps maintainers catch architecture-specific bugs. Users simply install a GitHub App and update their CI workflow to run jobs on bare-metal RISC-V servers.