Dev Systems
Streaming CloudWatch metrics to VPC-based OpenTelemetry collectors using Lambda
Organizations are increasingly drawn to open-source observability frameworks like OpenTelemetry. They seek to reduce costs associated with third-party licensing and avoid vendor lock-in. Combining OpenTelemetry collectors with Amazon CloudWatch Metric Streams helps enterprises pursue their observability goals while eliminating third-party licensing fees and achieving sub-minute latency for real-time alerting. CloudWatch Metric Streams offer built-in support for publishing to OpenTelemetry endpoi
Reel Friends: Building Social Discovery that Scales to Billions
On its face the new Friend Bubbles feature looks simple enough. It highlights Reels your friends have watched and reacted to. But sometimes the features that seem the most straightforward require the deepest engineering work.On this episode of the Meta Tech Podcast, Pascal Hartig chats with Subasree and Joseph, two software engineers from the Facebook Reels team, about what it took to bring Friend Bubbles to life. They discuss the evolution of the ‘ machine learning model behind the featur
We built a Custom Transport for Vercel's AI SDK
Ably is a realtime messaging platform, it's a pub/sub product where you can publish messages to channels and clients subscribed to those channels will receive those messages in realtime.It turns out that the Ably realtime platform is really well suited to being the transport that sits between your AI models and the clients receiving the generated responses.We're trying to meet developers where they currently are, and one of those places is the Vercel AI SDK. So we built a custom transport for th
Migrating Data Ingestion Systems at Meta Scale
Meta’s data ingestion system, which our engineering teams leverage for up-to-date snapshots of the social graph, has recently undergone a significant revamp to enhance its reliability at scale. Moving from our legacy system to our new architecture required a large-scale migration of our entire data ingestion system. We’re sharing the solutions and strategies that enabled a successful large-scale system migration, as well as the key factors that influenced our architectural decisions.At Meta, our
Building hybrid multi-tenant architecture for stateful services on AWS
Running a large-scale ad-serving infrastructure presents unique challenges when balancing tenant isolation with operational efficiency. Our infrastructure handles millions of requests per second and generates billions of dollars in annual advertising revenue, serving ads across multiple properties and systems. The cellular architecture problem Earlier, we had a cellular architecture where we allocated each AWS account with Application Load Balancer (ALB) and Amazon Elastic Container Service (Ama
Show HN: Shoehorn – Backstage without the maintenance overhead
I'm Anders, co-founder of Shoehorn (https://shoehorn.dev/).For about a year I was genuinely excited about Backstage. Saw the Spotify demo, thought "I want that too". Turned out it wasn't as easy. But to be fair, Backstage is a great piece of software. Powerful, flexible, and if you have a dedicated developer team to run it, you can build something amazing on top of it.The catch is exactly that: you need a dedicated team. Most companies don't have one. Or t
I designed Microsoft's EA channel in 2001. It's being dismantled in 2026
Submitter here, with quick context. I was the sole designer of Microsoft's Enterprise Software Advisor (ESA) channel architecture between 1998 and 2001. The model converted Microsoft's enterprise licensing channel from a margin-based reseller structure to a direct-billing, advisory-fee structure. It launched as part of Licensing 6.0 in October 2001 and is still referenced by name in Microsoft's FY2025 10-K twenty-four years later.The piece walks through what the original architec
Show HN: Gen AI's frontier of individuality
Hi- I hope you’re all having a good day so far! I'm not sure where to post this but I do have two things for you guys today, related to the AI space: individuality and a new era to AI! So:- LLM wrappers are crumbling- these businesses will not survive as foundational models begin to offer the functionalities consumers have been seeking. This maybe represents a failure in interpretation of individuality as horizontal growth (these startups didn't last too long...), which brings up the n
Show HN: Loxai.tech and Neutboom – Gen AI's frontier of individuality
Hi- I hope you’re all having a good day so far! I'm not sure where to post this but I do have two things for you guys today, related to the AI space: individuality and a new era to AI! So:
- LLM wrappers are crumbling- these businesses will not survive as foundational models begin to offer the functionalities consumers have been seeking. This maybe represents a failure in interpretation of individuality as horizontal growth (these startups didn't last too long...), which brings up the
Show HN: Origami – A simple workspace-oriented terminal manager
Hey. Just wanted to show-off my project built with the help of AI/LLMs and share my experiences and clear myths I keep hearing and seeing about how AI will take over everything and everyone.I have over 10 years experience in software development so I guess I know a thing or two but of course people are free to form their opinions, these are mine. And they become much more apparent while working on Origami.- Coding with help of AI is not a one-stop shop, nor can you one-shot prompts for anyt
How to Secure Azure Databricks without Public Exposure using WAF + Private Endpoints
While first thing that comes up to mind is that lets configure IP Access List with keeping Azure Databricks in Hybrid Connectivity. This approach is technically doable, but not the best approach for organizations which follows Zero Trust Architecture Framework.This is where organizations has to design a solution which follows CAF Principles and is fully secured with Azure Application Gateway with Web Application Firewall (WAF) combined with Private Endpoints (Azure Private Link) becomes critical
Choosing between single or multiple organizations in AWS Organizations
Organizations face critical architectural decisions that can impact their operations for years to come. Recently, I had the opportunity to collaborate with a cloud migration advisor on a question that challenges many enterprises during their cloud adoption journey: Is it better to maintain a single organization or implement multiple organizations? This same question was also asked on re:Post. This question isn’t merely academic—it strikes at the heart of how businesses balance governance, securi
Labyrinth 1.1: Making End-to-End Encrypted Backups Even More Reliable
We’re rolling out version 1.1 of Labyrinth, the encrypted storage system and protocol that secures messages and history on Messenger.Labyrinth 1.1 enhances the reliability of end-to-end encrypted backups with a new sub-protocol that helps messages survive the loss of a device, a switched device, and long gaps between sign-ins.Read our updated white paper, “The Labyrinth Encrypted Message Storage Protocol” for more details.Good security should always be invisible. When Metalaunched encrypted back
Read our new report on AI-powered threats and our latest defenses.
<img src="https://storage.googleapis.com/gweb-uniblog-publish-prod/images/SocialShare_gradient.max-600x600.format-webp.webp">Learn more about how outside attackers are misusing AI, and what Google is doing to stop it.
Configure DNS forwarding for Azure NetApp Files
This post has been written with the collaboration of Rizul KhannaApplies to: Azure NetApp Files — SMB, dual-protocol, and NFSv4.1 Kerberos volumes deployed in hub-spoke or Azure Virtual WAN topologies using an external private DNS forwarder.OverviewAzure NetApp Files (ANF) has a hard dependency on DNS for all volume types that integrate with Active Directory (AD): SMB, dual-protocol (SMB + NFS), and NFSv4.1 with Kerberos. Unlike most Azure PaaS services, ANF does not use Azure Private
Show HN: Flow – Workflow automation that follows you across projects
Throughout my career I've worked on many different teams that often spanned many different projects and repos. Sometimes the tech stack was similar but naturally the tooling and development process grew in different directions. Whenever I onboarded onto a new project I'd spend a bunch of time just trying to figure out how to build, deploy, and maintain it. It was great when projects had an up-to-date Makefile or README, but that wasn't always the case. Sometimes developer runbooks
Show HN: AI-DLC-UML (AI-Driven Development Life Cycle with UML Modeling)
AI-DLC-UML modifies AI-DLC to enable AI agents to drive the software development workflow with UML modeling. It is intended for those who want to use UML modeling collaboratively in their design practices, even in AI-driven software development.
Show HN: Cyoda-go – application platform in Go without the Temporal/Kafka glue
This started out as an experiment. Reading Simon Willison's blog on where StrongDM was going with dark factories and Digital Twin Universeshttps://simonw.substack.com/p/how-strongdms-ai-team-build-se...I got thinking that, hey, what if we built a digital twin of our enterprise application platform Cyoda? With an in-memory local Cyoda service, it would make it much easier for people to get started building Cyoda apps, and rapidly speed up development.I also wanted to see
Show HN: Prism – Self-hosted notification gateway (Signal, Telegram, WebPush)
As a de-Googled Android user, I wanted a way to privately receive push notifications from the apps and services I use. I already use several UnifiedPush apps, but I needed something for apps and self-hosted services that do not support it natively.So I built Prism and am officially joining a distinguished club of similarly named projects: the NSA's mass surveillance program, OpenAI's editor and two recent YC startups.What is it?Prism is a self-hosted notification gateway written in Go,
Show HN: wfb-link, a userspace WiFiBroadcast radio stack for macOS
Hi HN, I’ve been working on a Rust userspace radio stack for running WFB-style links from macOS using RTL8812AU USB adapters. Full disclosure: I'm a software engineer, but not really a hardware or embedded systems engineer, so Codex GPT 5.5 has done the lion-share of the work here along with a bit of help from Claude Opus 4.7 here and there. It's taken about 1.5 to 2 weeks to get from zero to this first release.macOS doesn't expose the monitor-mode / packet-injection path tha