惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

SecWiki News
SecWiki News
量子位
The Cloudflare Blog
美团技术团队
T
The Exploit Database - CXSecurity.com
博客园 - 【当耐特】
Spread Privacy
Spread Privacy
P
Proofpoint News Feed
C
CXSECURITY Database RSS Feed - CXSecurity.com
博客园 - 三生石上(FineUI控件)
T
Tor Project blog
博客园 - 司徒正美
宝玉的分享
宝玉的分享
T
Threatpost
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
S
Secure Thoughts
T
Threat Research - Cisco Blogs
Hacker News: Ask HN
Hacker News: Ask HN
Jina AI
Jina AI
博客园 - 聂微东
A
Arctic Wolf
I
Intezer
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
Know Your Adversary
Know Your Adversary
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
爱范儿
爱范儿
Hugging Face - Blog
Hugging Face - Blog
C
Cyber Attacks, Cyber Crime and Cyber Security
小众软件
小众软件
T
Tailwind CSS Blog
The Hacker News
The Hacker News
L
LINUX DO - 最新话题
Hacker News - Newest:
Hacker News - Newest: "LLM"
WordPress大学
WordPress大学
S
SegmentFault 最新的问题
TaoSecurity Blog
TaoSecurity Blog
Project Zero
Project Zero
博客园 - 叶小钗
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Cloudbric
Cloudbric
雷峰网
雷峰网
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
大猫的无限游戏
大猫的无限游戏
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
Troy Hunt's Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
V2EX - 技术
V2EX - 技术
The GitHub Blog
The GitHub Blog
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
P
Privacy & Cybersecurity Law Blog

Hacker News

Introducing Claude Opus 4.7 Qwen Studio The Future of Everything is Lies, I Guess: Where Do We Go From Here? GitHub - SeanFDZ/macmind: Single-layer transformer in HyperTalk for the classic Macintosh Show HN: Agent-cache – Multi-tier LLM/tool/session caching for Valkey and Redis Moving a large-scale metrics pipeline from StatsD to OpenTelemetry / Prometheus GitHub - Nightmare-Eclipse/RedSun: The Red Sun vulnerability repository GitHub - SethPyle376/hiraeth: Local AWS emulator focused on fast integration testing, with SQS support, SQLite-backed state, and a debug-friendly web UI. GitHub - macOS26/Agent: Any AI, replaces Claude Code, Cursor, OpenClaw. Over 18 LLM providers (Claude, OpenAI, Gemini, Ollama, Zai, HF, Qwen) wired into a native Mac app that writes code, builds Xcode projects, bumps versions, manages git, automates Safari, use AppleScript, JS or Accessibility, extend Agent! w/ MCP Servers, run tasks from your iPhone via Messages. YouTube now lets you turn off Shorts I Made a Terminal Pager Burgers | マクドナルド公式 Commands — HackerNews CLI documentation ChatGPT for Excel PiCore - Raspberry Pi Port of Tiny Core Linux Live Nation illegally monopolized ticketing market, jury finds Google Broke Its Promise to Me. Now ICE Has My Data. Founding Engineer at Adaptional | Y Combinator CRISPR takes important step toward silencing Down syndrome’s extra chromosome GitHub - saffron-health/libretto: The AI toolkit for building reliable browser automations US v. Heppner (S.D.N.Y. 2026) no attorney-client privilege for AI chats [pdf] Unexpected €54k billing spike in 13 hours: Firebase browser key without API restrictions used for Gemini requests Retrofitting JIT Compilers into C Interpreters IPv6 – Google The Accursèd Alphabetical Clock Cybersecurity Looks Like Proof of Work Now Fragments: April 14 Cal.com Goes Closed Source: Why AI Security Is Forcing Our Decision | Cal.com - Scheduling Software for Online Bookings Laravel raised money and now injects ads directly into your agent When moving fast, talking is the first thing to break Too much Discussion of the XOR swap trick – Heather Cafe Introduction to Spherical Harmonics for Graphics Programmers The Grand Line Building a Z-Machine in the worst possible language High-Level Rust: Getting 80% of the Benefits with 20% of the Pain GitHub - duguyue100/midnight-captain: Inspired by Midnight Commander, tailored to my taste. How to build a `git diff` driver · Jamie Tanna | Software Engineer Center for Responsible, Decentralized Intelligence at Berkeley The Local Universe’s Expansion Rate Is Clearer Than Ever, but Still Doesn’t Add Up - A new synthesis of astronomical measurements confirms a persistent mismatch that could point to physics beyond current models The air throughout our homes is infused with microplastics. But there are things you can do to breathe less of them The disturbing white paper Red Hat is trying to erase from the internet – OSnews The Future of Everything is Lies, I Guess: Annoyances ‘Abhorrent’: the inside story of the Polymarket gamblers betting millions on war Productive procrastination — Max van IJsselmuiden maps, territory and LMs 447 Terabytes per Square Centimetre at Zero Retention Energy: Non-Volatile Memory at the Atomic Scale on Fluorographane Show HN: Pardonned.com – A searchable database of US Pardons 20 Years on AWS and Never Not My Job The Seasons are Wrong Artemis II crew splashes down near San Diego after historic moon mission We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs How a dancer with ALS used brainwaves to perform live On filing the corners off my MacBooks Installing every* Firefox extension OpenClaw’s memory is unreliable, and you don’t know when it will break Steve Blank Nowhere Is Safe Chimpanzees in Uganda locked in vicious 'civil war', say researchers watgo - a WebAssembly Toolkit for Go linux/Documentation/process/coding-assistants.rst at master · torvalds/linux GitHub - callumlocke/json-formatter: Makes JSON easy to read. Founding Product Engineer at Bild AI | Y Combinator A compelling title that is cryptic enough to get you to take action on it GitHub - Keychron/Keychron-Keyboards-Hardware-Design: Industrial design files for Keychron keyboards and mice. 100+ models with CAD assets in STEP, DXF, DWG, and PDF. Source-available, with commercial use allowed for original compatible accessories within the license terms. [ANNOUNCE] WireGuardNT v0.11 and WireGuard for Windows v0.6 Released 1D-Chess Helium Is Hard to Replace Cooperative Vectors Introduction | Evolve Keeping a Postgres queue healthy — PlanetScale Our response to the Axios developer tool compromise Do Americans read print books, e-books or audiobooks more? The Zettelkasten Method in Obsidian: A Practical Setup Guide Artemis II Is Competency Porn and We Are Starving For It WeakC4 Flight Viz — Cockpit View A Mexican surveillance giant you’ve never heard of is now watching the U.S. border Surelock: Deadlock-Free Mutexes for Rust RISC-V 101 – what is it and what does it mean for Canonical? | Ubuntu The Problem That Built an Industry How Much Linear Memory Access Is Enough? | Solidean Investigating Split Locks on x86-64 Simplest hash functions Sybilproof reputation mechanisms (2005) [pdf] What is a property? How Complex is my Code? Static code analysis in Kotlin — tools overview Toffoli gates are all you need PGLite evangelism dcmake: a new CMake debugger UI Clojure on Fennel part one: Persistent Data Structures Fragments: April 2 Python Release Python install manager 26.1 The Life and Death of the Book Review - Liberties Introducing Database Traffic Control — PlanetScale Bitcoin miners are losing $19,000 on every BTC produced as difficulty drops 7.8% God sleeps in the minerals Building slogbox Apple Silicon and Virtual Machines: Beating the 2 VM Limit Who was “Not Even Wrong” first? Pokemon Evolution Vs Darwinian Evolution The APL Programming Language Source Code
Alert-driven monitoring | Documentation
2026-05-03 · via Hacker News

Teams usually associate the idea of infrastructure monitoring as a project to “hook up metrics” and “build dashboards”.

In fact, in almost every monitoring platform, dashboards are the first-class citizen. Teams often see them as the primary output of their work. It feels productive to see rows of glowing charts and telemetry. They make for some cool office art when you put them on a giant TV on the wall. But nobody spends their day watching graphs.

The real core of infrastructure monitoring isn’t dashboards. It’s the alerts.

While other platforms treat alerts as an afterthought, a checkbox you tick after the “real work” of visualization is done, we believe they are the entire point. Alerts are the backbone of your operations.

Start with the failure

When it’s time to set up alerts, most teams start with the metrics they already have. They look at a list of available data points and ask: “I have CPU usage for these servers. What should the threshold be? What’s a reasonable evaluation window?

This is exactly how you end up with a noisy, untrustworthy system. To build a system you actually trust, you have to start from first principles.

Instead of looking at your metrics, look at your service. Ask yourself: what behavior actually indicates that this service is failing for a user? What behavior predicts that it is about to fail? Generally speaking, what metric behavior could indicate, or even better, predict a service failure?

Tip

Simple Observability includes a catalogue of alert templates to jumpstart your configuration. While these aren't tailored to your specific environment, they serve as an excellent foundation for the iterative hardening process described below.

The boy who cried wolf stage

When setting up alerts, teams prefer to be conservative. They don’t know the optimal thresholds yet, so they understandably tend to play it safe. But this usually starts producing a lot of false alarms.

At first, the notifications are manageable. But then the reality of a live system kicks in.

  • A cron job runs at 2:00 AM and spikes the CPU for three minutes. Ping…
  • A random bot crawler hits a few dead links and bumps the error rate. Ping…
  • A database backup causes a tiny latency lag that clears itself up in seconds. Ping…

You check the first few. You realize they aren’t “real” problems. You go back to work. But the pings don’t stop. They become a steady hum in the background of your day that you learn to ignore.

Eventually, your Slack channel or email folders fill up with alerts, to a point where you can’t even tell what alerts are firing. “Is something actually wrong? Or is it just another Tuesday?”

This is alert fatigue. It’s a feeling that creeps up on teams when monitoring isn’t set up correctly.

The danger zone is when the entire team stops trusting monitoring entirely. This is the boy who cried wolf story. The whole system fails because the team stops believing it.

What to do about it

Fixing alert fatigue isn’t about finding a better math formula for your thresholds. It’s about putting clear systems in place, based on these two simple principles:

Zero tolerance for false alarms

If an alert can be ignored, then it should not be an alert.

Alerts should be actionable. If no action can or should be taken, then the alert is not needed.

Teams must enforce a strict zero-tolerance policy on false alarms. If an alert fires and no action was needed, you don’t just ignore it. You either delete it, or you refine it until it only fires when a human is actually required to intervene.

Continual improvements

You cannot build a perfect monitoring system on day one. You don’t yet know every way your infrastructure will fail, and you can’t predict every edge case.

Instead of trying to architect the perfect system from the start, design a process that makes your system smarter over time. Just as you write unit tests to catch regressions, you should treat alert rules as living code that must be maintained.

In practice, it looks like this:

  • Weekly reviews: Teams should regularly meet and review every incident triggered by the monitoring system.
  • Frequent pruning: If an alert was a false alarm, it is deleted immediately. If it didn’t help, it’s noise.
  • Root cause analysis: If a real incident happened but the monitoring system didn’t catch it until it was too late, perform a root cause analysis. What was the earliest metric that signaled this failure? Create a new alert for that specific behavior so you can catch it earlier next time.

Just as you use unit tests to harden your code, you use this cycle to iteratively harden your monitoring. Your goal is to make your alert rules more robust every single week, while reducing the total number of incidents.

By pushing this iterative system as a team, you make alerts a core part of your engineering culture.