<p>This week on <strong>Ship It Weekly</strong>, Brian looks at how the boundary of ops keeps expanding.</p><p>We cover AWS flagging issues in Bahrain/UAE amid Iran strikes, ArgoCD vs Flux and why ArgoCD can get stuck in failed sync states, GitHub Actions being exploited at scale (plus Trivy’s incident), RoguePilot prompt injection meeting real credentials in Codespaces, Block’s “AI remake” layoffs, and Anthropic’s Claude Code Security for defenders.</p><p>Lightning round: DeepSeek model access geopolitics, Vercel’s agentic security boundaries, a KEV CVE to patch, an MCP-atlassian SSRF-to-RCE chain, and Claude Cowork scheduled tasks.</p><p>Links</p><p>AWS Bahrain/UAE (Reuters) <a target="_blank" rel="noopener noreferrer nofollow" href="https://www.reuters.com/world/middle-east/amazon-cloud-unit-flags-issues-bahrain-uae-data-centers-amid-iran-strikes-2026-03-02/">https://www.reuters.com/world/middle-east/amazon-cloud-unit-flags-issues-bahrain-uae-data-centers-amid-iran-strikes-2026-03-02/</a> </p><p>ArgoCD to Flux <a target="_blank" rel="noopener noreferrer nofollow" href="https://hai.wxs.ro/migrations/argocd-to-flux/">https://hai.wxs.ro/migrations/argocd-to-flux/</a> </p><p>GitHub Actions exploitation <a target="_blank" rel="noopener noreferrer nofollow" href="https://www.stepsecurity.io/blog/hackerbot-claw-github-actions-exploitation">https://www.stepsecurity.io/blog/hackerbot-claw-github-actions-exploitation</a> </p><p>Trivy incident <a target="_blank" rel="noopener noreferrer nofollow" href="https://github.com/aquasecurity/trivy/discussions/10265">https://github.com/aquasecurity/trivy/discussions/10265</a> </p><p>RoguePilot <a target="_blank" rel="noopener noreferrer nofollow" href="https://thehackernews.com/2026/02/roguepilot-flaw-in-github-codespaces.html">https://thehackernews.com/2026/02/roguepilot-flaw-in-github-codespaces.html</a> </p><p>Block layoffs (WSJ) <a target="_blank" rel="noopener noreferrer nofollow" href="https://www.wsj.com/business/jack-dorseys-block-to-lay-off-4-000-employees-in-ai-remake-28f0d869">https://www.wsj.com/business/jack-dorseys-block-to-lay-off-4-000-employees-in-ai-remake-28f0d869</a> </p><p>Claude Code Security <a target="_blank" rel="noopener noreferrer nofollow" href="https://www.anthropic.com/news/claude-code-security">https://www.anthropic.com/news/claude-code-security</a> </p><p>DeepSeek (Reuters) <a target="_blank" rel="noopener noreferrer nofollow" href="https://www.reuters.com/world/china/deepseek-withholds-latest-ai-model-us-chipmakers-including-nvidia-sources-say-2026-02-25/">https://www.reuters.com/world/china/deepseek-withholds-latest-ai-model-us-chipmakers-including-nvidia-sources-say-2026-02-25/</a> </p><p>Agentic boundaries <a target="_blank" rel="noopener noreferrer nofollow" href="https://vercel.com/blog/security-boundaries-in-agentic-architectures">https://vercel.com/blog/security-boundaries-in-agentic-architectures</a> </p><p>CISA KEV <a target="_blank" rel="noopener noreferrer nofollow" href="https://www.cisa.gov/news-events/alerts/2026/03/03/cisa-adds-two-known-exploited-vulnerabilities-catalog">https://www.cisa.gov/news-events/alerts/2026/03/03/cisa-adds-two-known-exploited-vulnerabilities-catalog</a> </p><p>mcp-atlassian CVE <a target="_blank" rel="noopener noreferrer nofollow" href="https://arcticwolf.com/resources/blog-uk/cve-2026-27825-critical-unauthenticated-rce-and-ssrf-in-mcp-atlassian/">https://arcticwolf.com/resources/blog-uk/cve-2026-27825-critical-unauthenticated-rce-and-ssrf-in-mcp-atlassian/</a> </p><p>Claude Cowork tasks <a target="_blank" rel="noopener noreferrer nofollow" href="https://support.claude.com/en/articles/13854387-schedule-recurring-tasks-in-cowork">https://support.claude.com/en/articles/13854387-schedule-recurring-tasks-in-cowork</a> </p><p>More: <a target="_blank" rel="noopener noreferrer nofollow" href="https://shipitweekly.fm">https://shipitweekly.fm</a></p>