Weekly DevOps Roundup: Runners, Reproducible Setups, Safer Supply Chains

Current DevOps improvements include faster environment setup, scalable CI/CD features, better supply chain controls, and enhanced review experience in GitHub and Windows workflows.

GitHub Actions: Runner Updates, Scale Sets, and Enhanced Workflow Features

The deadline for upgrading self-hosted runners is extended to March 16, 2026, allowing more teams to keep pipelines secure while updating. Runner Scale Set Client (Go-based) is now in public preview and supports autoscaling on more platforms beyond Kubernetes. Action allow-listing works across all repo types, giving teams more control. New runner images for Server 2025 and macOS 26 Intel are available, and updates to editing, debug, and YAML features add further workflow flexibility.

• GitHub Actions: Enforcement of Minimum Self-hosted Runner Version Extended to March 16, 2026
• GitHub Actions February 2026 Updates: Scale Sets, Security, and New Runner Images
• The Download: OpenClaw AI Agents, Babel 7 Farewell, and GitHub Actions Updates

WinGet Configuration: One-command Developer Environments

WinGet Configuration lets Windows users automate installation, settings, and toolchains from YAML files with a single command. It checks and applies only changes needed, supports developer mode, Visual Studio add-ons, logic for versioning, OS targeting, and infra setup, and integrates with PowerShell DSC. Version-controlling configs helps with setup and disaster recovery. CLI integration with Copilot speeds template creation, and Kayla Cinnamon’s walkthrough shows how to quickly set up reproducible developer environments.

• WinGet Configuration: Set up your dev machine in one command

Open Source Ecosystem: Dependabot Proxy and Documentation Translation as Versioned Assets

Dependabot Proxy is now open sourced (MIT) and can update dependencies that require authentication for npm, Maven, Docker, NuGet, and Terraform. This adds visibility and auditability to supply chain automation for regulated teams. Co-op Translator now stores documentation translations as versioned language files (JSON), making tracking changes against software releases easier. It helps contributors spot and fix out-of-date translations quickly.

• Dependabot Proxy Now Open Source with MIT License
• Rethinking Documentation Translation: Treating Translations as Versioned Software Assets

GitHub Review and Collaboration: Pull Request and Issue Experience

GitHub Mobile now lets users comment on any line of a file (even unchanged lines) in PRs, matching web review features. On desktop, UI improvements to the “Files Changed” view (including CODEOWNERS highlighting and faster navigation) assist with large or complicated reviews. GitHub Issues introduces pinned comments and a system that encourages reactions to keep discussions relevant and actionable.

• GitHub Mobile: Comment on Unchanged Lines in Pull Request Files
• Improved Pull Request “Files Changed” – February 5 GitHub Updates
• Pinned Comments and Improved Comment Quality in GitHub Issues