<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Operations | The AWS Blog</title><link>https://theawsblog.com/tags/operations/</link><description>Articles, tutorials and insights from the AWS community.</description><generator>Hugo</generator><language>en</language><managingEditor>@theawsblog (The AWS Blog)</managingEditor><webMaster>@theawsblog</webMaster><lastBuildDate>Tue, 30 Jun 2026 00:00:00 +0000</lastBuildDate><atom:link href="https://theawsblog.com/tags/operations/index.xml" rel="self" type="application/rss+xml"/><item><title>ACM ACME support turns certificate automation into a governance problem</title><link>https://theawsblog.com/news/emiliano-montesdeoca/acm-acme-certificate-automation/</link><pubDate>Tue, 30 Jun 2026 00:00:00 +0000</pubDate><author>Emiliano Montesdeoca</author><guid>https://theawsblog.com/news/emiliano-montesdeoca/acm-acme-certificate-automation/</guid><description>AWS Certificate Manager now supports ACME for public certificates, giving teams a standard automation path while keeping domain control, audit, and policy centralized.</description><content:encoded>&lt;p&gt;Certificate automation is becoming less optional. Validity periods are getting shorter, and manual renewal processes are exactly the kind of quiet operational risk that eventually becomes an outage.&lt;/p&gt;
&lt;p&gt;AWS has now added &lt;a href="https://aws.amazon.com/blogs/aws/automate-public-tls-certificate-issuance-with-acme-support-in-aws-certificate-manager/"&gt;ACME support for public certificates in AWS Certificate Manager&lt;/a&gt;. The headline is compatibility with ACMEv2 clients such as Certbot, cert-manager, and acme.sh. The bigger builder impact is that certificate issuance can become standardized without moving governance outside AWS.&lt;/p&gt;
&lt;h2 id="what-changed"&gt;What changed&lt;/h2&gt;
&lt;p&gt;ACM now provides a managed ACME server endpoint for public certificates issued by Amazon Trust Services. Teams can point existing ACME clients at ACM, request certificates through the protocol they already know, and still have ACM visibility, CloudTrail logging, CloudWatch metrics, and certificate expiry notifications.&lt;/p&gt;
&lt;p&gt;The source article also highlights two controls that matter in real organizations:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;domain scopes at the endpoint level,&lt;/li&gt;
&lt;li&gt;External Account Binding credentials for client registration.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;That means a central PKI or platform team can validate domains once, restrict what clients can request, and avoid distributing DNS credentials to every application team.&lt;/p&gt;
&lt;h2 id="why-this-matters"&gt;Why this matters&lt;/h2&gt;
&lt;p&gt;Most certificate incidents are not caused by cryptography being hard. They are caused by ownership being unclear.&lt;/p&gt;
&lt;p&gt;One team owns DNS. Another owns the ingress controller. Another owns the application. Someone installed a certificate manually two years ago. Nobody remembers the renewal path until browsers start showing errors.&lt;/p&gt;
&lt;p&gt;ACME support in ACM gives builders a cleaner operating model:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Kubernetes teams can keep using cert-manager.&lt;/li&gt;
&lt;li&gt;VM and container teams can keep using common ACME clients.&lt;/li&gt;
&lt;li&gt;Platform teams can centralize issuance policy and audit.&lt;/li&gt;
&lt;li&gt;Security teams can see certificates in ACM instead of chasing external CA dashboards.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;That is a good trade: keep the open protocol at the edge, centralize governance at the account or organization boundary.&lt;/p&gt;
&lt;h2 id="the-architecture-trade-offs"&gt;The architecture trade-offs&lt;/h2&gt;
&lt;p&gt;This does not remove the need for certificate lifecycle design.&lt;/p&gt;
&lt;p&gt;First, decide who owns ACME endpoints. If every workload account creates its own endpoint with broad wildcard permissions, you have recreated the sprawl problem. A better pattern is to define endpoints per domain boundary, environment, or platform domain, then scope allowed names carefully.&lt;/p&gt;
&lt;p&gt;Second, treat External Account Binding credentials like bootstrap secrets. They should be short-lived where possible, stored securely, and rotated when registration flows change.&lt;/p&gt;
&lt;p&gt;Third, think about wildcard issuance. Wildcards are convenient, but they expand blast radius. Many production environments should prefer exact domains and subdomains unless there is a strong operational reason.&lt;/p&gt;
&lt;p&gt;Finally, price and volume behavior matter. Moving high-churn ACME issuance into ACM should be costed, especially for systems that create many short-lived certificates across tenants.&lt;/p&gt;
&lt;h2 id="what-builders-should-do-next"&gt;What builders should do next&lt;/h2&gt;
&lt;p&gt;If I were running a platform team, I would start with an inventory:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Which public certificates are already in ACM?&lt;/li&gt;
&lt;li&gt;Which are issued by external ACME providers?&lt;/li&gt;
&lt;li&gt;Which workloads use cert-manager or custom renewal scripts?&lt;/li&gt;
&lt;li&gt;Which teams still depend on manual DNS validation?&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;Then I would pilot ACM ACME with one non-critical domain and one existing ACME client. The goal is not only to issue a certificate. The goal is to prove the operating model: endpoint ownership, scope policy, audit trail, renewal alarms, and incident response.&lt;/p&gt;
&lt;p&gt;The useful part of this launch is not that Certbot can talk to AWS. It is that certificate automation can finally be treated as platform governance instead of a collection of one-off scripts.&lt;/p&gt;</content:encoded></item><item><title>Replicating S3 bucket configuration needs workflow discipline</title><link>https://theawsblog.com/news/emiliano-montesdeoca/s3-configuration-replication-step-functions/</link><pubDate>Tue, 30 Jun 2026 00:00:00 +0000</pubDate><author>Emiliano Montesdeoca</author><guid>https://theawsblog.com/news/emiliano-montesdeoca/s3-configuration-replication-step-functions/</guid><description>AWS shows how Step Functions can replicate S3 bucket configuration across Regions, but builders should decide where automation ends and infrastructure as code should remain the source of truth.</description><content:encoded>&lt;p&gt;Replicating S3 data is only part of a multi-Region storage strategy. The bucket configuration around that data is often where drift hides.&lt;/p&gt;
&lt;p&gt;The AWS Storage Blog post on &lt;a href="https://aws.amazon.com/blogs/storage/replicate-amazon-s3-bucket-configurations-across-aws-regions-with-aws-step-functions/"&gt;replicating Amazon S3 bucket configurations across AWS Regions with AWS Step Functions&lt;/a&gt; shows an automation pattern for replaying bucket configuration into a target Region with an auditable workflow.&lt;/p&gt;
&lt;p&gt;That is useful, but it also raises an important architecture question: should configuration replication be a workflow, or should it be infrastructure as code?&lt;/p&gt;
&lt;h2 id="what-changed"&gt;What changed&lt;/h2&gt;
&lt;p&gt;The source article describes a Step Functions and Lambda solution that creates a bucket in a target Region and applies configuration from a source bucket. It logs runs to DynamoDB and CloudWatch, which gives operators an audit trail.&lt;/p&gt;
&lt;p&gt;This kind of workflow can help when teams need to replicate settings such as encryption, lifecycle, versioning, event notifications, tags, or other operational configuration across Regions.&lt;/p&gt;
&lt;h2 id="why-builders-should-care"&gt;Why builders should care&lt;/h2&gt;
&lt;p&gt;Disaster recovery plans often assume that a bucket in another Region is ready because replication is configured. But during a real failover, missing configuration can break applications or weaken controls.&lt;/p&gt;
&lt;p&gt;Examples:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;lifecycle rules are missing and costs grow,&lt;/li&gt;
&lt;li&gt;event notifications do not trigger downstream processing,&lt;/li&gt;
&lt;li&gt;encryption or bucket policy differs from the primary Region,&lt;/li&gt;
&lt;li&gt;observability tags are absent,&lt;/li&gt;
&lt;li&gt;access points or integration settings are inconsistent.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;A repeatable replication workflow can turn those assumptions into something testable.&lt;/p&gt;
&lt;h2 id="the-trade-off-with-iac"&gt;The trade-off with IaC&lt;/h2&gt;
&lt;p&gt;For stable environments, infrastructure as code should usually be the source of truth. If the bucket configuration is defined in CDK, CloudFormation, Terraform, or Pulumi, the cleanest replication path is often to deploy the same intent to another Region.&lt;/p&gt;
&lt;p&gt;A workflow-based replication tool is valuable when:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;buckets already exist and need operational synchronization,&lt;/li&gt;
&lt;li&gt;configuration is discovered from a source environment,&lt;/li&gt;
&lt;li&gt;teams need an emergency or transitional DR path,&lt;/li&gt;
&lt;li&gt;there are many legacy buckets not yet under IaC,&lt;/li&gt;
&lt;li&gt;operators need a controlled copy action with audit logs.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;The risk is creating a second source of truth. If IaC says one thing and the replication workflow copies another, drift becomes harder to reason about.&lt;/p&gt;
&lt;h2 id="what-to-do-next"&gt;What to do next&lt;/h2&gt;
&lt;p&gt;Before using this pattern, classify buckets into two groups:&lt;/p&gt;
&lt;ol&gt;
&lt;li&gt;&lt;strong&gt;IaC-owned buckets&lt;/strong&gt; where configuration should be generated from code.&lt;/li&gt;
&lt;li&gt;&lt;strong&gt;Operationally managed buckets&lt;/strong&gt; where a replication workflow can reduce drift until IaC ownership exists.&lt;/li&gt;
&lt;/ol&gt;
&lt;p&gt;Then run regular DR validation. Do not only check that the target bucket exists. Check whether the target bucket has the policies, notifications, lifecycle rules, encryption settings, tags, and observability hooks needed for the application to run.&lt;/p&gt;
&lt;p&gt;The useful takeaway is that S3 resilience is not just object replication. It is configuration repeatability. Step Functions can provide a controlled workflow for that, as long as builders are clear about the source of truth.&lt;/p&gt;</content:encoded></item><item><title>S3 Storage Lens groups make storage cost conversations less generic</title><link>https://theawsblog.com/news/emiliano-montesdeoca/s3-storage-lens-groups-cost-visibility/</link><pubDate>Fri, 26 Jun 2026 00:00:00 +0000</pubDate><author>Emiliano Montesdeoca</author><guid>https://theawsblog.com/news/emiliano-montesdeoca/s3-storage-lens-groups-cost-visibility/</guid><description>Amazon S3 Storage Lens groups help teams inspect storage by workload-specific criteria, making cost, lifecycle, and data hygiene work more actionable.</description><content:encoded>&lt;p&gt;Storage optimization advice often starts too broadly: reduce old data, review access patterns, apply lifecycle policies. That is true, but it is not specific enough for a team to act.&lt;/p&gt;
&lt;p&gt;The AWS Storage Blog post on &lt;a href="https://aws.amazon.com/blogs/storage/create-custom-storage-groupings-with-amazon-s3-storage-lens-groups/"&gt;S3 Storage Lens groups&lt;/a&gt; is useful because it shows how to group storage by workload-specific criteria instead of looking only at account or bucket totals.&lt;/p&gt;
&lt;h2 id="what-changed"&gt;What changed&lt;/h2&gt;
&lt;p&gt;S3 Storage Lens groups let builders define custom groupings and analyze metrics for targeted slices of S3 data. The source article uses examples such as older application logs and aging image files across multiple buckets and accounts.&lt;/p&gt;
&lt;p&gt;That matters because the useful unit of storage ownership is rarely just a bucket. It may be an application, dataset, tenant, media type, compliance class, or product feature.&lt;/p&gt;
&lt;h2 id="why-builders-should-care"&gt;Why builders should care&lt;/h2&gt;
&lt;p&gt;S3 cost and hygiene problems are usually ownership problems.&lt;/p&gt;
&lt;p&gt;A central cloud team can see that storage is growing. They may not know which logs are safe to expire, which images are user-generated content, which datasets are legally retained, or which prefixes belong to an old migration. Application teams know the context, but they often lack cross-account visibility.&lt;/p&gt;
&lt;p&gt;Storage Lens groups can bridge that gap. They help create a view that says, &amp;ldquo;this workload has 40 TB of logs older than 180 days,&amp;rdquo; not just &amp;ldquo;this account has 400 TB in S3.&amp;rdquo;&lt;/p&gt;
&lt;p&gt;That turns a generic optimization request into a practical backlog item.&lt;/p&gt;
&lt;h2 id="the-trade-offs"&gt;The trade-offs&lt;/h2&gt;
&lt;p&gt;Custom groups are only useful if the grouping logic reflects real ownership and lifecycle rules. If tags, prefixes, naming conventions, or account boundaries are inconsistent, the dashboard can give false confidence.&lt;/p&gt;
&lt;p&gt;Teams should avoid building too many groups at once. Start with questions that lead to action:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;Which data can move to a colder tier?&lt;/li&gt;
&lt;li&gt;Which prefixes have no recent access?&lt;/li&gt;
&lt;li&gt;Which workloads are growing faster than expected?&lt;/li&gt;
&lt;li&gt;Which buckets contain small-object patterns that inflate request costs?&lt;/li&gt;
&lt;li&gt;Which teams own the largest retained datasets?&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;Also remember that visibility is not enforcement. Storage Lens can show the opportunity, but lifecycle rules, retention policies, and application changes implement the fix.&lt;/p&gt;
&lt;h2 id="what-to-do-next"&gt;What to do next&lt;/h2&gt;
&lt;p&gt;Pick one high-cost storage area and define a group around the way the business thinks about it. For example: production application logs older than 90 days, media originals by product, or export datasets by tenant.&lt;/p&gt;
&lt;p&gt;Then review the metrics with the owning team and decide on one action: lifecycle transition, deletion after retention, object compaction, prefix redesign, or access pattern review.&lt;/p&gt;
&lt;p&gt;The practical value of Storage Lens groups is not better charts. It is better conversations between platform, finance, security, and application teams about the specific data that is driving cost and risk.&lt;/p&gt;</content:encoded></item><item><title>EKS Auto Mode improvements show why managed Kubernetes is becoming operational engineering</title><link>https://theawsblog.com/news/emiliano-montesdeoca/eks-auto-mode-scaling-improvements/</link><pubDate>Tue, 23 Jun 2026 00:00:00 +0000</pubDate><author>Emiliano Montesdeoca</author><guid>https://theawsblog.com/news/emiliano-montesdeoca/eks-auto-mode-scaling-improvements/</guid><description>Recent EKS Auto Mode runtime, compute, storage, and networking improvements reduce Kubernetes operational friction, but teams still need workload-level SLOs and migration discipline.</description><content:encoded>&lt;p&gt;The latest EKS Auto Mode update is not one big feature. It is a collection of operational improvements: faster node startup, better Karpenter behavior, node-local DNS, smoother EBS migration, and more networking options.&lt;/p&gt;
&lt;p&gt;That is exactly why it matters.&lt;/p&gt;
&lt;p&gt;In the &lt;a href="https://aws.amazon.com/blogs/containers/faster-nodes-smarter-scaling-whats-new-inside-amazon-elastic-kubernetes-service-amazon-eks-auto-mode/"&gt;AWS Containers Blog post&lt;/a&gt;, AWS describes improvements across runtime, compute, storage, and networking. For builders, the lesson is that managed Kubernetes value increasingly comes from reducing the number of sharp edges you have to own yourself.&lt;/p&gt;
&lt;h2 id="what-changed"&gt;What changed&lt;/h2&gt;
&lt;p&gt;The source article lists several practical changes:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;node ready latency reduced through faster startup detection,&lt;/li&gt;
&lt;li&gt;Karpenter scale-out and consolidation improvements,&lt;/li&gt;
&lt;li&gt;zram protection for transient system memory pressure,&lt;/li&gt;
&lt;li&gt;faster image pulls for large ML and GPU images,&lt;/li&gt;
&lt;li&gt;node-local DNS by default in Auto Mode,&lt;/li&gt;
&lt;li&gt;support for separate pod subnets and pod security groups,&lt;/li&gt;
&lt;li&gt;improved EBS migration and topology-aware volume scheduling.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;None of these changes remove the need to understand Kubernetes. They reduce the tax of operating the infrastructure layer below your workloads.&lt;/p&gt;
&lt;h2 id="why-builders-should-care"&gt;Why builders should care&lt;/h2&gt;
&lt;p&gt;Most Kubernetes incidents are not about Kubernetes being unavailable. They are about the cluster being technically alive while applications wait for capacity, DNS, storage, or networking to catch up.&lt;/p&gt;
&lt;p&gt;Faster node startup helps bursty workloads. Better consolidation helps cost. Node-local DNS reduces a common hidden bottleneck. Separate pod subnets and security groups make enterprise network patterns easier to express without abandoning Auto Mode defaults.&lt;/p&gt;
&lt;p&gt;For platform teams, this changes the migration conversation. Auto Mode is not only about &amp;ldquo;less to manage.&amp;rdquo; It is about whether AWS-managed operational improvements arrive faster than your team could safely build and maintain them.&lt;/p&gt;
&lt;h2 id="the-trade-offs"&gt;The trade-offs&lt;/h2&gt;
&lt;p&gt;There are still boundaries.&lt;/p&gt;
&lt;p&gt;Auto Mode can improve node lifecycle and system components, but it cannot fix bad pod requests, missing disruption budgets, slow application startup, or chatty service dependencies. If workloads request too much CPU, do not define readiness probes, or depend on large cold images, managed infrastructure only helps so far.&lt;/p&gt;
&lt;p&gt;Cost also needs attention. Faster scale-out is useful, but it can surface inefficient autoscaling policies. Faster consolidation is useful, but only if workloads tolerate disruption and your budgets are modeled correctly.&lt;/p&gt;
&lt;p&gt;Networking improvements should also be treated as architecture choices. Separate pod subnets and security groups can improve segmentation, but they introduce more routes, policies, IP planning, and troubleshooting paths.&lt;/p&gt;
&lt;h2 id="what-to-do-next"&gt;What to do next&lt;/h2&gt;
&lt;p&gt;If you run EKS Auto Mode today, measure before and after. Look at:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;pending pod seconds during scale events,&lt;/li&gt;
&lt;li&gt;node ready time,&lt;/li&gt;
&lt;li&gt;image pull latency for large containers,&lt;/li&gt;
&lt;li&gt;DNS latency and CoreDNS saturation,&lt;/li&gt;
&lt;li&gt;consolidation events and interruption impact,&lt;/li&gt;
&lt;li&gt;cross-AZ and NAT gateway traffic.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;If you are migrating to Auto Mode, do it workload by workload. Start with stateless services that have clean readiness probes, pod disruption budgets, and known resource requests. Then move stateful or network-sensitive workloads after validating storage topology and security group behavior.&lt;/p&gt;
&lt;p&gt;The best outcome is not simply fewer Kubernetes knobs. It is a platform where the knobs that remain are closer to application reliability, cost, and security decisions. That is where builders should spend their time.&lt;/p&gt;</content:encoded></item><item><title>Lambda runtime upgrades need campaigns, not reminders</title><link>https://theawsblog.com/news/emiliano-montesdeoca/lambda-runtime-upgrades-aws-transform/</link><pubDate>Sat, 20 Jun 2026 00:00:00 +0000</pubDate><author>Emiliano Montesdeoca</author><guid>https://theawsblog.com/news/emiliano-montesdeoca/lambda-runtime-upgrades-aws-transform/</guid><description>AWS Transform custom can help teams upgrade Lambda runtimes at scale, but the durable improvement is treating runtime changes as governed modernization campaigns.</description><content:encoded>&lt;p&gt;Lambda runtime upgrades are easy to postpone because the function still works today. Then a deprecation date becomes a support risk, a security exception, or a rushed platform campaign.&lt;/p&gt;
&lt;p&gt;The AWS Compute Blog post on &lt;a href="https://aws.amazon.com/blogs/compute/upgrading-lambda-function-runtimes-at-scale-with-aws-transform-custom/"&gt;upgrading Lambda function runtimes at scale with AWS Transform custom&lt;/a&gt; is useful because it treats runtime upgrades as a repeatable modernization workflow, not a calendar reminder.&lt;/p&gt;
&lt;h2 id="what-changed"&gt;What changed&lt;/h2&gt;
&lt;p&gt;AWS Transform custom can analyze codebases, identify runtime upgrade risk, apply transformations, update dependencies or configuration, and validate against exit criteria. The source article focuses on Lambda runtime upgrades, including cases where code changes are required, such as moving callback-style Node.js handlers toward async patterns.&lt;/p&gt;
&lt;p&gt;For platform teams, the more important piece is campaign management. A large organization rarely has one repository and one owner. It has hundreds of functions across many accounts, teams, IaC stacks, and CI/CD systems.&lt;/p&gt;
&lt;h2 id="why-builders-should-care"&gt;Why builders should care&lt;/h2&gt;
&lt;p&gt;Runtime upgrades fail when ownership is unclear.&lt;/p&gt;
&lt;p&gt;An application team may not know a function exists. A platform team may see the deprecated runtime but not understand the deployment path. Security may see the exposure but not own the code. The result is a spreadsheet-driven migration with too many manual exceptions.&lt;/p&gt;
&lt;p&gt;A transformation tool can help, but only if it plugs into an operating model:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;inventory functions and repositories,&lt;/li&gt;
&lt;li&gt;map functions to owners,&lt;/li&gt;
&lt;li&gt;assess code and dependency risk,&lt;/li&gt;
&lt;li&gt;create pull requests or transformation branches,&lt;/li&gt;
&lt;li&gt;validate with tests and alarms,&lt;/li&gt;
&lt;li&gt;deploy with safe rollout and rollback,&lt;/li&gt;
&lt;li&gt;track completion centrally.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;That is a campaign, not a one-off task.&lt;/p&gt;
&lt;h2 id="the-trade-offs"&gt;The trade-offs&lt;/h2&gt;
&lt;p&gt;Automated transformation is not a substitute for test coverage. It increases the value of tests because it can make changes faster than humans can manually review every edge case.&lt;/p&gt;
&lt;p&gt;Before trusting a runtime upgrade, teams should check:&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;unit and integration tests for handler behavior,&lt;/li&gt;
&lt;li&gt;dependency compatibility with the target runtime,&lt;/li&gt;
&lt;li&gt;infrastructure definitions that set the runtime,&lt;/li&gt;
&lt;li&gt;packaging and build pipeline changes,&lt;/li&gt;
&lt;li&gt;observability after deployment,&lt;/li&gt;
&lt;li&gt;alias or version-based rollback strategy.&lt;/li&gt;
&lt;/ul&gt;
&lt;p&gt;For platform teams, the other trade-off is centralization. Pushing changes across many repositories can be efficient, but service owners still need to understand and approve behavior changes. The best model is usually centralized orchestration with distributed ownership.&lt;/p&gt;
&lt;h2 id="what-to-do-next"&gt;What to do next&lt;/h2&gt;
&lt;p&gt;Start with inventory. Use AWS Config, Trusted Advisor, CLI scripts, tags, or deployment metadata to find functions approaching deprecation. Then group them by owner, runtime, business criticality, and test readiness.&lt;/p&gt;
&lt;p&gt;For low-risk functions with good tests, an automated transform can move quickly. For high-risk functions with poor tests, the first transformation should probably add documentation, tests, or alarms before changing the runtime.&lt;/p&gt;
&lt;p&gt;The lesson from this AWS post is broader than Lambda. Modernization work becomes manageable when it is continuous, visible, and validated. If runtime upgrades are still handled as emergency cleanup, the tooling can help, but the process needs upgrading too.&lt;/p&gt;</content:encoded></item></channel></rss>