Hacker News with Generative AI: Cloud

Show HN: Jibril – Runtime security monitoring and enforcement for modern infra (garnet.ai)
Jibril: Next-Generation Runtime Security
Tech and Non-Tech Stacks to Run Listen Notes (2025) (listennotes.fm)
I wrote about the tech stack of Listen Notes in early 2018 (with a slight update in 2019) in a blog post that got shared several times on Hacker News. It’s 2025 now, and with the evolution of our product lineup, my mindset, and technology itself (plus the decay of outdated tools), I think it’s time for a refresh.
Do It Yourself Database CDN with Embedded Replicas (turso.tech)
Imagine you have a user in Singapore, and your database is in the US. Every time the user makes a request, it has to travel halfway around the world, which can lead to high latency and poor performance.
Grafana: Why observability needs FinOps, and vice versa (grafana.com)
Observability tools have changed the way we monitor infrastructure and applications, as teams get complete visibility into performance across complex, multi-cloud environments.
Show HN: Spice.ai OSS 1.0 – data query and AI-inference engine built in Rust (spiceai.org)
🎉 Today marks the 1.0-stable release of Spice.ai Open Source—purpose-built to help enterprises ground AI in data. By unifying federated data query, retrieval, and AI inference into a single engine, Spice mitigates AI hallucinations, accelerates data access for mission-critical workloads, and makes it simple and easy for developers to build fast and accurate data-intensive applications across cloud, edge, or on-prem.
Day Zero – Build Good Web Apps with the Zero Sync Engine (rocicorp.dev)
Show HN: Cerbos. Open source, horizontally scalable, stateless authorization (github.com/cerbos)
Cerbos is an authorization layer that evolves with your product. It enables you to define powerful, context-aware access control rules for your application resources in simple, intuitive YAML policies; managed and deployed via your Git-ops infrastructure. It provides highly available APIs to make simple requests to evaluate policies and make dynamic access decisions for your application.
Pg_karnak: Transactional schema migration across tenant databases (thenile.dev)
When we need to describe Nile in a single sentence, we say "PostgreSQL re-engineered for multi-tenant apps".
System Intiative is generally available (systeminit.com)
I’m incredibly proud to announce the general availability of System Initiative. It’s a revolutionary technology that is the future of how you will build DevOps automation.
OpenTelemetry and vendor neutrality: how to build an observability strategy (grafana.com)
One of the biggest advantages of the OpenTelemetry project is its vendor neutrality — something that many community members appreciate, especially if they’ve spent huge amounts of time migrating from one commercial vendor to another.
Serverless Prometheus Playground: 13M+ time-series/hr and 13B+ samples/day (oodle.ai)
Launching Hasura DDN: the first metadata-driven data access layer (hasura.io)
We run migrations across 2,800 microservices (monzo.com)
Libations: Tailscale on the Rocks (jnsgr.uk)
Neon Postgres vs. Supabase (devtoolsacademy.com)
Show HN: Turbo Registry – Rust Docker Registry for AI Cuts Cold Starts by 90% (mystic.ai)
Maestro: Netflix's Workflow Orchestrator (netflixtechblog.com)
The coming eBPF revolution and why Kubernetes monitoring will never be the same (getanteon.com)
Pg_lakehouse: Query Any Data Lake from Postgres (github.com/paradedb)
JFrog research discovers coordinated attacks on Docker Hub that planted millions (jfrog.com)