Dev Weekly: IBM Buys Confluent for $11B, Linux Foundation Launches Agentic AI Foundation, 30+ AI Coding Extensions Have Security Flaws (Dec 8–14, 2025)

IBM is buying Confluent for $11 billion. The Linux Foundation brought together Anthropic, OpenAI, and Block to form a new AI foundation. Security researchers found 30+ vulnerabilities in AI coding extensions. Infragistics open sourced 50+ UI components. The AI agent ecosystem is getting serious infrastructure.

Developer Tools

Infragistics Open Sources 50+ Ignite UI Components

Infragistics announced they’re open-sourcing over 50 Ignite UI components. This includes components for Angular, React, Blazor, and Web Components.

What’s included:

Grids and data tables
Charts and visualizations
Form controls
Navigation components
Layout components

Why this matters:

Infragistics has been selling these components for years. They’re enterprise-grade, well-tested, and battle-hardened. Now they’re free.

If you’ve been using Material UI, PrimeNG, or similar libraries, you now have another solid option. The components are particularly strong for data-heavy applications - grids, charts, and data visualization.

The catch:

Infragistics will likely still sell premium features, support, and tooling around these components. The open-source version is the foundation. But for many teams, the free version will be enough.

Azul Acquires Payara

Azul, the company behind Zulu JDK, announced the acquisition of Payara on December 10.

What is Payara?

Payara is an enterprise application server for Jakarta EE (formerly Java EE). If you’re running enterprise Java applications, Payara is one of the leading options alongside WildFly and WebSphere.

Why this matters:

Azul has been focused on the JVM and JDK. This acquisition expands them into the application server space. For Java shops, this means:

Potential better integration between JDK and app server
One vendor for more of your Java stack
Continued investment in Jakarta EE

If you’re running Payara in production, Azul says they’ll continue supporting it. The Payara team is joining Azul.

Datadog Bits AI SRE Hits General Availability

Datadog announced that Bits AI SRE is now generally available after six months in beta with 2,000+ customers.

What it does:

Bits AI SRE is an AI assistant for incident response. It can:

Analyze logs and traces automatically during incidents
Suggest root causes based on patterns
Recommend fixes from past incidents
Generate runbooks from incident resolutions

The results:

Beta customers reported “hours of troubleshooting reduced to minutes.” That’s the kind of improvement that actually matters during a 3 AM incident.

The trend:

This is part of a bigger pattern. Every observability platform is adding AI. Datadog has Bits. New Relic has AI. Dynatrace has Davis AI. If you’re doing SRE work, expect AI assistants to become standard.

AI News

MCP Ecosystem Expands Rapidly

The Model Context Protocol (MCP) ecosystem had a busy week:

Google Cloud expands MCP support:

Google Cloud announced they’re providing developers with “consistent and business-ready access to all Google and Google Cloud services using MCP.” This means you can connect AI agents to Google services - BigQuery, Cloud Storage, Vertex AI, and more - through MCP.

Backslash Security launches MCP security solution:

With MCP adoption growing, security becomes critical. Backslash announced an end-to-end security solution for MCP servers. This addresses how you secure the connection between AI agents and external tools.

Lightrun adds MCP for AI coding agents:

Lightrun launched MCP support to provide runtime context to AI coding agents. When your AI assistant is debugging code, it can now get real production data about what’s happening.

The pattern:

MCP is becoming the standard way AI agents connect to external systems. If you’re building AI tools, expect to either implement MCP or integrate with MCP servers.

AgentField Emerges from Stealth

AgentField launched on December 10 with a bold pitch: “Kubernetes for AI agents.”

The problem they’re solving:

Right now, AI agents are messy to deploy and manage. Each agent is its own thing. There’s no standard way to:

Scale agents up and down
Monitor agent behavior
Govern what agents can do
Handle agent failures

Their solution:

AgentField provides infrastructure for running AI agents in production. Think of it like how Kubernetes standardized container orchestration. AgentField wants to do the same for agents.

Too early to tell:

This is a stealth launch with limited public details. But the problem is real. As companies deploy more AI agents, they’ll need production-grade infrastructure. Whether AgentField is the answer remains to be seen.

Couchbase AI Services Goes GA

Couchbase announced general availability of Couchbase AI Services on December 10.

What it does:

Couchbase AI Services lets you build AI applications directly on top of your Couchbase database. Features include:

Vector search for RAG applications
AI-powered data classification
Semantic querying
Built-in security and governance

Why it matters:

Every database vendor is adding AI features. The pitch is the same: “Don’t move your data to a separate vector database. Keep it where it is.”

If you’re already using Couchbase, this might save you from adding another database to your stack. If you’re not, it’s probably not enough reason to switch.

What This Week Teaches Us

AI agent infrastructure is the new battleground: The Linux Foundation bringing together Anthropic, OpenAI, and Block shows that AI agents are moving from demos to production. Standards are emerging. Infrastructure is being built. If you’re not paying attention to MCP and the agent ecosystem, start now.

Acquisitions are heating up: IBM buying Confluent for $11B, Azul buying Payara. Big companies are consolidating. If you’re using a startup’s product, think about what happens if they get acquired.

AI tools need security attention: 30+ vulnerabilities in AI coding extensions is a wake-up call. We’re giving these tools access to our most sensitive code and secrets. They need to be treated like any other privileged software.

Open source is strategic: Infragistics open-sourcing 50+ components, Linux Foundation standardizing AI agent protocols. Companies are using open source strategically. Free the commodity, sell the value-add.

The Numbers That Matter

$11 billion - IBM’s acquisition price for Confluent
6,500+ - Confluent’s enterprise customers
40% - Fortune 500 companies using Confluent
30+ - Vulnerabilities found in AI coding extensions
50+ - UI components open-sourced by Infragistics
2,000+ - Customers who tested Datadog Bits AI SRE in beta
3 - Major AI projects donated to Linux Foundation’s AAIF

Quick Hits

MCP is everywhere now - Google Cloud, Anthropic, Lightrun, Backslash, and more are all building around Model Context Protocol. It’s becoming the standard for AI-to-tool communication.

Java ecosystem consolidating - Azul buying Payara adds another acquisition to the Java space. Enterprise Java is getting fewer, larger players.

AI coding tools need updates - If you’re using AI extensions in your editor, update them. Multiple vendors have released patches for the vulnerabilities disclosed this week.

Streaming data is still hot - IBM paying $11B for Confluent shows real-time data processing is still a priority for enterprises. Kafka isn’t going anywhere.

AI for SRE is maturing - Datadog’s Bits AI hitting GA after 6 months of production use shows AI-powered operations tools are ready for prime time.

Big week for acquisitions and infrastructure. IBM buying Confluent is the headline, but the Linux Foundation’s Agentic AI Foundation might be the bigger story long-term. AI agents are moving from experiments to production, and the ecosystem is standardizing around MCP. If you’re using AI coding tools, make sure they’re updated - those vulnerability disclosures are serious.

Got news we should cover? Let us know. We’re tracking what matters to developers.