GitHub Actions Hardening, Airbnb Config Rollouts, Cloudflare Rust Restarts, ECS Managed Daemons, and Terraform Access Controls
Ship It Weekly · 2026-04-03 · 14 min
Episode notes
This episode of Ship It Weekly is about the quiet platform work that keeps things safe before they break. Brian covers GitHub Actions hardening in Kubernetes-related repos, Airbnb’s safer config rollouts, Cloudflare’s zero-downtime Rust restarts, Amazon ECS Managed Daemons, and HCP Terraform access controls with IP allow lists and temporary AWS permission delegation. Links GitHub Actions security roadmap Airbnb config rollouts Cloudflare graceful restarts for Rust Amazon ECS Managed Daemons HCP Terraform IP allow lists HCP Terraform AWS permission delegation GitHub secret scanning updates GitHub secret scanning for AI coding agents Codespaces GA with data residency Kubernetes v1.36 sneak peek GKE Inference Gateway More episodes and show notes On Call Briefs
More from Ship It Weekly
All episodes →- containerd CRI Vulnerabilities, Datadog PostgreSQL HA on Kubernetes, AWS DevOps Agent with Datadog MCP Server, EKS Control Plane Egress, and Why Users Feel the Wait50 / 100
- Ship It Conversations: Guardsquare’s Joel DeStefano on Mobile App Security, Runtime Protection, App Hardening, and Why Scanning Isn’t Enough35 / 100
- PeopleSoft Zero-Day Exploited, npm v12 Install Script Changes, GitHub Agentic Tokens, Anthropic Model Risk, and Default Trust Breaking28 / 100
- Ship It Conversations: Meta’s Francois Richard on AI Incident Response, SLOs, and Reliability at Scale
- Coinbase Outage, Meta AI Account Recovery, AWS AgentCore Code Injection, Apigee Tenant Isolation, and the Glue That Breaks Production