Upsun (formerly Platform.sh)

Over the weekend, we responded to the critical "DirtyFrag" Linux vulnerability (CVE-2026-43284 and CVE-2026-43500) by deploying an emergency kernel patch across all regions. While our systems are not affected by the RxRPC vulnerability (CVE-2026-43500) as we don't compile that kernel module, we were affected by the IPsec ESP vulnerability (CVE-2026-43284) and needed to apply patches immediately. To protect your data and minimize exploitation risk during the rollout, we temporarily restricted SSH and deployment access and performed brief service restarts. While this vulnerability "only" provided root access within affected systems, we recognize that such exploits are typically used as the first step in a chain of attacks, potentially leading to container escapes and broader infrastructure compromise. Given this risk, we chose to err on the side of caution by implementing temporary access restrictions during our update window. We understand this disruption was inconvenient, and the decision to disable SSH access was not made lightly. However, we believe these swift and decisive actions were essential to safeguarding your systems and data. Our priority is always to maintain the security and integrity of your infrastructure. All services have now been fully restored, and you can access your projects and deployments as normal. If you're still experiencing any issues, please don't hesitate to contact our support team. We appreciate your patience and understanding as we work to keep your hosting environment secure.

Scaling observability from a single Nagios box to thousands of VMs requires more than just swapping tools. Here is what we learned building it from scratch three times and the migration patterns that made it smooth. ⚡ 👉 developer.upsun.com/posts/how-it-w… #Observability #CloudNative #DevOps #SRE

Dynamic validation schemas and version enumeration are the real heroes of a great developer experience. Meta-Upsun proves that smarter validation and API driven updates make building services much smoother for developers. ⚡ 👉 developer.upsun.com/posts/core-con… #DevExperience #PlatformEngineering

The storage layer shapes everything, and moving from LVM to Ceph was the key to making our VMs disposable again. By separating compute from storage, we unlocked instant volume migration and data cloning. ⚡ 👉 devcenter.upsun.com/posts/why-upsu… #Ceph #CloudNative #Storage #DevOps

Managing reference data across regions and runtimes is a mess when it is scattered everywhere. We built Meta-Upsun as a single public API to centralise our technical data and keep documentation accurate. ⚡ 👉 devcenter.upsun.com/posts/meta-ref… #DevOps #WebDevelopment #API #CloudInfrastructure

Financial apps demand 24/7 resilience. 🛡️⚡️ Visit our booth at #Money2020 to learn how our unified Git-driven workflow provides built-in compliance (SOC 2, DORA, BDSG) and instant 30-second environment cloning. Move from legacy to modern, securely. ☁️ 👉 europe.money2020.com #Fintech #DevOps #Upsun

Staying in sync with reality across runtimes and services is a constant struggle. We built the Meta Version Updater to automate tracking and detect drift before it hurts. It handles the heavy lifting with nightly ingestion while keeping humans in the loop. ⚡ 👉 devcenter.upsun.com/posts/meta-ver… #PlatformEngineering #Automation #DevOps #CloudNative

We've set a target to bring 60% of customer projects into greener hosting regions by 2031. 💪 Today we published our 2025 footprint and the full plan to get there. 🌱 Partnering with @watershed for this next chapter 👉 upsun.com/blog/2025-clim…

Protecting your secrets from prompt injection is a constant worry. Sandbox your AI agents in Upsun containers using Linux primitives to keep your data safe. It is the harness and not just the AI that needs protecting. 🤖 ⚡ 👉developer.upsun.com/posts/discussi… #AIAgents #Linux #CloudNative #ContainerSecurity

AI agents running real commands on real systems need more than just local containers to stay safe. Cloud sandboxes with production data beat local isolation by providing the infrastructure and Git safety net developers actually need. ☁️ 🤖 👉 developer.upsun.com/posts/discussi… #AIAgents #CloudSandboxes #SoftwareEngineering #DevSecOps

Long-running crons block deployments and steal app resources. Move those heavy tasks to workers for better performance and easier maintenance. Stop fighting your containers and use a modern scheduler instead. ⚡ 👉 devcenter.upsun.com/posts/that-cro… #DevOps #Cron #WebDev #Backend

Instant data cloning was a bet that is finally paying off for AI agents. Modern agents need production-identical environments and isolated data safety to solve bugs without touching production. 🤖 ⚡ 👉 devcenter.upsun.com/posts/instant-… #AIAgents #PlatformEngineering #SoftwareEngineering #CloudNative

Scaling code reviews on self-hosted GitLab is a grind, so we built an agent to do the heavy lifting. Here is how you can use Python and Claude to build an agent that actually helps. It’s already proven its worth with 1,000 merge requests and 40K lines of code under its belt. 🎯 🤖 👉 devcenter.upsun.com/posts/building… #Python #GitLab #AI #SoftwareEngineering

Most AI applications do not actually require expensive GPU infrastructure to run effectively. Understanding what your application actually does is key to architecting AI into your workflow using CPU infrastructure. 💡 👉 developer.upsun.com/posts/discussi… #AI #Infrastructure #CloudComputing #MachineLearning

Slow external APIs are throwing 502 errors and making your website unstable. Stop throwing resources at the problem and offload that work to background jobs and queues instead. Keep your responses fast and your users happy. ⚡ 👉 devcenter.upsun.com/posts/unstable… #WebDev #Backend #Queues #Scalability

AI makes code cheap, but building a product is not the same as keeping it running. Between the vibe coder ceiling and the enterprise moat, the future of software companies is more nuanced than the hype suggests. ⚡ 👉 devcenter.upsun.com/posts/will-ai-… #AI #SoftwareEngineering #SaaS #TechTrends

Heading to Amsterdam for #Money2020? Visit the Upsun booth! 💶 🇳🇱 We’re there from June 2–4, ready to talk about resilience, security, and the future of multi-cloud application delivery for fintech. See you there! 🚀👉 europe.money2020.com #Fintech #Upsun #Money2020Europe

Setting up Drupal Canvas with an AI assistant is less about magic and more about getting your prompts and deploy hooks right. We documented the full journey from project structure to live demo so you can see the real challenges. 🤖 👉 devcenter.upsun.com/posts/the-real… #Drupal #AI #WebDev #CloudNative

Digital commerce is finally unifying as we shift from human browsing to machine execution. The rise of agentic commerce and the Universal Commerce Protocol will fundamentally change how retailers interact with machine customers. 🤖 👉 devcenter.upsun.com/posts/the-univ… #Ecommerce #AgenticCommerce #DigitalTransformation #Innovation

Choosing between global performance and infrastructure protection is a common headache. Learn how to pair the Fastly CDN and Next-Gen WAF on Upsun to achieve both speed and security. ⚡ 👉 devcenter.upsun.com/posts/fastly-c… #CDN #WAF #Security #Upsun