The pre-conference quiet continued this week. Backstage shipped v1.49.0-next.2 with incremental fixes ahead of the March 17 stable release, while the community focused on New Frontend System migrations and the recurring DOM types debate in backend packages.

Roadie published a deep dive on context engineering that reframes AI grounding as a platform discipline that requires structured catalog metadata, not just better prompts. With BackstageCon and KubeCon Europe eleven days away, Discord traffic is centered on migration patterns, MCP discovery, and getting production instances ready for Amsterdam.

v1.49.0-next.2 ships incremental fixes

Backstage v1.49.0-next.2 landed on March 10, the second weekly pre-release in the v1.49 cycle. This follows v1.49.0-next.1 from March 3 and keeps everything on track for the stable v1.49.0 release expected March 17. The full changelog is available in docs/releases/v1.49.0-next.2-changelog.md. The v1.49.0 release will be the last before KubeCon Europe and BackstageCon on March 23.

Roadie publishes Context Engineering deep dive

Roadie published "Context Engineering: The Missing Discipline in AI-Assisted Development" this week, arguing that organizational context is the unsolved layer in AI coding tools. GitHub Copilot and Cursor handle local context and repository context reasonably well, but neither knows who owns payment-service, what lifecycle state legacy-auth-api is in, or what security constraints apply to production services. No amount of prompt engineering can retrieve information that doesn't exist in any repository.

The article frames the Internal Developer Portal as the natural solution to Layer 3 context. Your IDP already holds the two things an AI needs: metadata in catalog-info.yaml (owner, tier, lifecycle, dependencies) and semantics in TechDocs (ADRs, runbooks, how-to guides). Spotify proved this architecture works at scale with AiKA and Honk, both tightly integrated with Backstage's catalog and metadata graph. The piece walks through connecting AI tools via the Model Context Protocol (MCP), with Roadie acting as an MCP Server that exposes your catalog and TechDocs as queryable endpoints.

A key warning: the "dump everything into a vector database" approach produces context poisoning. A Confluence instance with 2,000 pages where only 300 are accurate means your AI retrieves from both canonical ADRs and three-year-old contradictory wiki pages with no way to distinguish them. The catalog-info.yaml schema enforces structure at the source. A deprecated service can't masquerade as current because its lifecycle field says otherwise. Context engineering starts with good catalog maintenance.

Community Discussions

Removing node-fetch and the DOM Types Problem

Backstage maintainer Jon Koops opened a significant architectural discussion in #general (22 replies) about the implications of removing node-fetch from the main repo, as outlined in ADR14. As backend packages (like @backstage/backend-defaults) are built from the root TSConfig, they silently receive browser DOM types, which means that incorrect web-based types are provided anywhere the Fetch API behaves differently between Node.js and the browser. Jon proposes changing the TypeScript configurations so that backend-only packages are never exposed to library types from the web, and he plans to bring it to the framework SIG. The discussion also covers project references performance in CI, the upcoming tsgo compiler, and whether the change should be opt-in for adopters initially.

State of AI in Backstage: MCP, RAG, and a Discoverability Gap

A thread in #general titled "ai" (6 replies) kicked off a survey of what AI integration currently looks like in Backstage. The conversation catalogued the current landscape: an MCP chat plugin in the community plugins repo, a plugin for exposing Backstage actions as MCP tools (mcp-actions-backend), and Roadie's RAG-based AI assistant plugin for querying catalog and TechDocs knowledge. This knowledge is currently scattered across Discord threads and GitHub PRs, with no central tracking page. Thomvaill and drodil (a Backstage Framework maintainer) agreed that a dedicated documentation page listing all available MCP actions per plugin would be valuable. Drodil also noted a new PR (#33253) they've made on the topic, though it's not yet clear whether it belongs in the main repo or community plugins.

Templates and partOf Relations: A Design Clarification

A 21-message thread in #general surfaced a common point of confusion: why can't Scaffolder Templates reference entities outside of their owner using partOf relations? A user wanted to track which Component (a repo containing all their templates) each Template "belongs to" in the catalog graph. Maintainer Freben explained that this is an intentional design constraint of the System Model. Templates are not designed to have arbitrary cross-entity relations. Freben suggested the Resource kind as a better fit if the model needs to be extended. The thread links to the Extending the Model docs as the recommended solution.

Finding Entities with Missing or Unknown Owners

An 18-message thread in #catalog explored how to hook into catalog ingestion to detect or process entities with invalid or unknown owners. Freben recommended the Catalog FAQ's processor-based validation section as a starting point, and followed up with a more advanced pattern: as you page through entities, you can call .prime() on the existence dataloader to pre-populate knowledge of which entities exist, then mark the ones that don't as having broken relations. This approach avoids storing the full catalog in memory or making repeated catalog API requests.

Jest Removed from Backstage CLI: Community Plugin Impact

Maintainer Ahhhndre investigated why removing Jest from the Backstage CLI in v1.46.0 hadn't broken anything yet, and found the answer: a version of the Backstage CLI still exists in the root package.json, and CI is using that. Simply removing it would break most workspaces. The fix is a gradual migration. A PR for community plugins (#7867) has been opened to migrate packages one by one, and Ahhhndre has also filed an issue (#7868) for maintainer-owned workspaces so the community can help during ContribFest.

Release Train: v1.49.0 Pre-Releases Are Rolling

The #announcements channel has been active with the v1.49.0 pre-release train. v1.49.0-next.2 dropped on March 10, following v1.49.0-next.1 on March 4 (which also updated the Backstage Demo site). Before that, v1.48.2 (Feb 24) included a fix to update @microsoft/api-extractor to 7.57.3 and restore formFieldsApiRef and ScaffolderFormFieldsApi alpha exports that had gone missing. If you're tracking pre-releases or running the demo, this is a good time to test against next.2 ahead of the stable v1.49.0 release.

Templates Randomly Disappearing with Split Catalog Deployments

A recent #catalog thread flags a possible operational issue for anyone running Backstage at scale with a split read/write catalog deployment and HPA. One user reported that Template entities (and only Templates, not Components or APIs) were disappearing periodically from statically configured catalog locations. The logs showed a ConflictError: Conflicting write of processing result for <entity-id> with location key 'url:https://github.com/<location-key>' error. This appears to be a race condition specific to multi-pod catalog-write deployments; if you're running 2–4 catalog-write pods in production, this thread is worth watching.

Backstage Documentary Premieres at KubeCon Amsterdam

For those attending KubeCon + CloudNativeCon Europe in Amsterdam on March 23, don't miss the premiere of the CNCF Documentary: "Backstage: From Spreadsheet to Standard", a film co-produced by Spotify, CNCF, and Roadie. The screening is on the official KubeCon schedule. The Community Plugins SIG scheduled for March 24 has been cancelled due to the KubeCon overlap, so the documentary event is the place to be for community networking around Backstage that week.

Changelog

v1.49.0-next.2 - March 10, 2026

Pre-release:

• Incremental fixes and improvements ahead of v1.49.0 stable release

Release:v1.49.0-next.2

Beyond security, the CNCF published a BackstageCon Europe preview that positions AI integration as the defining theme for 2026, Roadie released a comprehensive Context Engineering Glossary that reframes catalog hygiene as an AI infrastructure concern, and the first v1.49.0 pre-release landed with quality-of-life fixes. With KubeCon Europe three weeks away, the community is in pre-conference mode.

v1.48.4 addresses three security vulnerabilities, including HIGH-severity TechDocs flaw

Backstage v1.48.4 shipped on March 4 alongside three GitHub Security Advisories. This is a security-focused patch release with no feature changes, making it a low-risk upgrade for all teams.

The most critical advisory is GHSA-928r-fm4v-mvrw, rated HIGH. When TechDocs runs in local mode, an attacker who can modify a repository's mkdocs.yml file can execute arbitrary Python code on the TechDocs build server. The attack vector uses MkDocs hooks, a feature that allows custom Python execution during documentation builds. The @backstage/plugin-techdocs-node package didn't sanitize hook configurations before passing them to MkDocs, allowing embedded Python to run with full privileges of the TechDocs service. Teams running TechDocs with runIn: local should upgrade to v1.48.4 immediately or switch to runIn: docker as a workaround.

The two remaining advisories are rated LOW but still worth patching. GHSA-95v5-prp4-5gv5 affects @backstage/integration and could allow unauthorized reading of SCM URLs using the built-in token. GHSA-8qp7-fhr9-fw53 affects @backstage/plugin-scaffolder-backend and relates to session token exfiltration via insufficient log redaction. All three advisories were authored by maintainer benjdlambert.

v1.49.0-next.1 fixes MUI dependency and tab ordering issues

Backstage v1.49.0-next.1 landed on March 3 as the first weekly pre-release in the v1.49 cycle. The release fixes the @mui/material/styles shared dependency key by removing a trailing slash that caused module resolution failures with Material UI package exports. It also resolves an issue where entity page tab groups weren't respecting the ordering specified in the groups configuration. The full changelog is available in docs/releases/v1.49.0-next.1-changelog.md. The stable v1.49.0 release is expected later in March, following Backstage's monthly cadence.

CNCF frames BackstageCon Europe around AI and governance

The CNCF published "KubeCon + CloudNativeCon Europe 2026 Co-located Event Deep Dive: BackstageCon" on February 27, revealing the event's strategic focus: AI integration is the defining theme. Co-chairs Balaji Sivasubramanian and Bryan Landes describe the core thesis as "cloud native adoption colliding with AI-accelerated software delivery," with teams needing shared patterns for making the portal and catalog "the trusted context layer that AI copilots and agents can safely use."

BackstageCon takes place March 23 at RAI Amsterdam as a full-day CNCF-hosted co-located event alongside KubeCon + CloudNativeCon Europe (March 23-26). The event targets five audiences: platform engineering teams scaling Backstage in production, AI-forward organizations managing models and agents as first-class portal entities, maintainers and plugin developers, newcomers seeking production-grade implementation examples, and leaders evaluating Backstage adoption. Key topics include golden paths, standardized metadata, governance, plugin ecosystems, and observability. An All-Access Pass to KubeCon is required for entry. The Backstage ContribFest session follows on March 26.

Roadie publishes Context Engineering Glossary for platform engineers

Roadie published "The Context Engineering Glossary for Platform Engineers" on March 5, a comprehensive reference guide defining every key term in the context engineering stack through the lens of Internal Developer Portals. The timing aligns with BackstageCon's AI focus, as the CNCF positions the catalog as "the trusted context layer that AI copilots and agents can safely use" and Roadie's glossary defines the engineering discipline required to make that vision work in production.

The glossary covers five major sections: Context Fundamentals (context windows, grounding, what context engineering actually means), Architecture and Retrieval Terms (RAG, vector embeddings, semantic search), Platform Data Types (Service Catalog context, TechDocs context, operational context, golden paths), Agentic Capabilities (agentic context injection, function calling, system prompts), and Quality and Risk Definitions (hallucination, context drift, context poisoning, privilege leakage, implicit trust chains).

The guide frames context engineering as a core platform responsibility with dedicated engineering ownership. Its central argument is that an LLM is a powerful reasoning engine with no institutional memory, and context engineering is how you give it one. The glossary defines context engineering as the entire information supply chain feeding the model before it generates output, covering what the model is allowed to know, when, and why. For platform teams building AI assistants on top of Backstage, the piece emphasizes that poor catalog hygiene directly degrades AI output quality, context drift is an ongoing operational concern requiring automated re-indexing, and retrieval pipelines must enforce RBAC to prevent privilege leakage. The article includes practical architecture diagrams showing how Service Catalog metadata, TechDocs, and operational data flow through RAG systems to produce grounded responses.

Community Discussions

Release Updates: v1.48.3 and v1.49.0-next.1

Two releases landed this week. v1.48.3 (February 26) is a patch that fixes a @mui/material/styles shared dependency key issue caused by a trailing slash, which was breaking module resolution with MUI package exports. Anyone using MUI-heavy customisations who encountered odd import failures after 1.48 should pick this up. Hot on its heels, v1.49.0-next.1 dropped on March 3, with the demo site already running it. See the announcements for both releases.

Security: Transitive Vulnerability Scan Results Shared in Community

A detailed Snyk scan of a Backstage project uncovered 7 HIGH-severity vulnerabilities across 13 instances, with no Critical ones. Packages flagged included tar@6.2.1 (Directory Traversal), ajv@6.12.6 (ReDoS), glob@10.4.5 (Command Injection), and ip@2.0.1 (SSRF). The discussion highlighted that many of these are transitive dependencies deep in the dependency tree and cannot simply be overridden locally without breaking CLI linting. The thread had 17 messages with maintainer participation and is worth tracking if your security posture requires a clean Snyk report. See the discussion in #security.

New Frontend System Migration: Still the Community's Biggest Challenge

The new frontend system continued to dominate support traffic this week. The most active thread, "New Frontend System migration" in #support, accumulated 37 messages and a resolved badge, with users working through migrating full Catalog plugin routing and internal plugins. A parallel thread titled "Catalog migration" in #frontend-system (17 messages, still active yesterday) saw a user sharing their complete EntityContentBlueprint and createFrontendPlugin patterns for migrating GitHub-releases entity tabs, while a first-time contributor asking how to add a catalog entity card using the new frontend API received 14 replies in under a day. Maintainer Ahhhndre pointed users toward the migration docs and noted that the catalog plugin's README is still lagging behind. Join the discussion in #frontend-system or the first-plugin thread.

BUI vs MUI: Which UI System for New Instances?

With v1.48 shipping Backstage's new BUI component system alongside continued MUI support, a thread in #general sparked debate about the recommended upgrade path. A team upgrading from v1.12 to v1.48 discovered that many of their custom screens are not fully supported in BUI and asked whether staying on MUI is viable for production. Maintainer Ahhhndre confirmed both systems are currently supported, but the direction of travel is clearly toward BUI. This mirrors a parallel support thread ("Upgrade failure", 16 messages) where another user faced the same BUI vs MUI decision mid-migration. The community consensus is that MUI remains the safe path for heavily customised portals for now. See the bui vs mui thread in #general.

Jest Removed from Backstage CLI 1.46.0: Community Plugin Impact

A thread started by maintainer Ahhhndre in #maintenance revealed why removing Jest from the Backstage CLI in version 1.46.0 hadn't broken the community plugins repository CI: the CLI was still pinned in the root package.json. Removing that pin would break most workspaces. A migration PR (#7867) has been opened to slowly migrate workspaces away, and a companion issue (#7868) was logged to involve the community during ContribFest Amsterdam. If you maintain plugins in the community repo, the issue is a good place to volunteer. Follow the progress in the jest-gone thread in #maintenance.

Bug Report: GithubMultiOrgEntityProvider Misses Team Hierarchy on Webhook Events

A well-documented bug report landed in #catalog this week. When using GithubMultiOrgEntityProvider, parent/child team relationships are not updated in real time via GitHub webhook events: the hierarchy only self-corrects on the next scheduled full sync. The root cause identified is that GithubMultiOrgEntityProvider.onTeamEditedInOrganization() updates team members but never calls buildOrgHierarchy(), unlike its single-org counterpart GithubOrgEntityProvider. The thread generated 7 messages with community-contributed analysis. If you're running the multi-org provider and rely on accurate team hierarchy, either trigger more frequent full syncs or watch for an upstream fix. Read the full investigation in the #catalog thread.

How to Update Community Plugins Without Renovate

A recurring question in #plugins was resolved clearly this week: yarn backstage-cli versions:bump only bumps core @backstage/* packages and will not update @backstage-community/* plugins. To bump community plugins manually, run yarn backstage-cli versions:bump --pattern "@backstage-community/*". Maintainer Ahhhndre also recommended Renovate for automating this for monorepos, noting that Dependabot struggles with the mono-repo setup. See the full Plugin releases thread in #plugins.

Changelog

v1.48.4 - March 4, 2026

Security Fixes:

• Fixed arbitrary code execution via MkDocs hooks in TechDocs (GHSA-928r-fm4v-mvrw, HIGH severity)
• Fixed potential reading of SCM URLs using built-in token (GHSA-95v5-prp4-5gv5, LOW severity)
• Fixed session token exfiltration via log redaction bypass (GHSA-8qp7-fhr9-fw53, LOW severity)

Release: v1.48.4

v1.49.0-next.1 - March 3, 2026

Fixes:

• Fixed @mui/material/styles shared dependency key by removing trailing slash
• Fixed entity page tab groups not respecting ordering configuration

Release: v1.49.0-next.1

v1.48.2 fixes scaffolder form customization regression

Backstage v1.48.2 landed on February 24, addressing a critical regression from v1.48.0. The patch restored formFieldsApiRef and ScaffolderFormFieldsApi alpha exports from @backstage/plugin-scaffolder that had been inadvertently removed, breaking teams relying on scaffolder form customization in the new frontend system. The release also bumped @microsoft/api-extractor to 7.57.3. Teams using scaffolder alpha APIs should upgrade immediately.

The earlier v1.48.1 patch (February 18) fixed a missing sidebar item in frontend system docs and a type compatibility issue in FrontendFeature. Together, these patches close the v1.48 stabilization window.

v1.49.0-next.0, the first pre-release of the next monthly cycle, also appeared near the end of the week.

ContribFest web app launches

The Backstage blog published its first post of 2026 on February 25: "Get a jump on ContribFest with the new web app." Written by Elaine de Mattos Silva Bezerra (DB Systel), Heikki Hellgren (OP Financial Group), and André Wanlin (Spotify), the post announces contribfest.backstage.io - a purpose-built app to onboard contributors for ContribFest at KubeCon Europe in Amsterdam on March 26 at 13:45 CET.

The app features five sections: Welcome, Getting Started, Curated Issues, Contrib Champs (celebrating past merged PRs), and Hall of Hosts. New Dev Containers support enables streamlined local setup using Docker Desktop and VS Code or IntelliJ. Past ContribFest contributions highlighted include TechDocs pagination, OpenShift auth provider work, and HTML rendering fixes in GitHub-flavored Markdown.

This cross-organization collaboration signals the project's maturation - contributor onboarding is now a community-driven effort, not just a maintainer task.

Backstage Community Session - February 18, 2026

The latest Backstage Community Session is now available on YouTube. Mihai kicks things off with a walkthrough of what's new in v1.48.0 - catalog extension points graduating out of alpha, stricter API override restrictions, experimental MCP authorization via Client ID Metadata Documents, and experimental token refresh support. From there, the session covers a call for community members to join the new Backstage reviewer program, where your feedback shapes PR prioritization and your own PRs get priority review in return. The highlight of the session is a talk from Volvo Group's Mingdao and Tom, who share how one of the world's largest manufacturers adopted Backstage - rolling out golden paths, access provisioning, and community-driven templates while navigating the organizational challenges of a large-scale IDP rollout. A Q&A with the Volvo team follows. Watch the recording here.

Publications

Roadie publishes TechDocs Guide

Roadie published "Splitting TechDocs Out of Our Monolithic Backstage Deployment" on February 26, detailing how they redesigned their multi-tenant Backstage architecture to solve resource contention issues. The article walks through their original monolithic design where each tenant ran a single Backstage backend pod containing all plugins (Catalog, Scaffolder, TechDocs, Auth), and how TechDocs' resource-intensive workload - fetching documentation files, rendering Markdown, running MkDocs generators - began causing CPU saturation and memory pressure that impacted unrelated functionality like catalog ingestion and authentication.

The solution was extracting TechDocs into a separate Backstage backend service that runs independently using Backstage's native discovery service for backend-to-backend communication. Each tenant now runs two distinct services: a core Backstage backend handling catalog, scaffolder, and auth, and a dedicated TechDocs backend. Results were immediate: cleaner cluster allocations with CPU and memory limits tuned specifically for documentation workloads, improved stability with documentation builds no longer pressuring core APIs, and easier debugging with resource spikes immediately attributable to the correct service. The article emphasizes that Backstage provides the primitives needed to support this modular design, and at scale, using them becomes "less of an optimization and more of a requirement." For teams running Backstage in multi-tenant or high-scale environments experiencing similar symptoms, the piece recommends examining heavy backend plugins and questioning whether they belong in the same process as core Backstage functionality.

Spotify's multi-agent architecture for advertising

Spotify Engineering published "Our Multi-Agent Architecture for Smarter Advertising" on February 19, detailing how they built Ads AI - a multi-agent system using Google's Agent Development Kit (ADK) and Vertex AI. The system transforms media planning from a 15-30 minute manual process requiring 20+ form fields into a conversational interface generating optimized plans in 5-10 seconds using 1-3 natural language messages.

The architecture decomposes planning into specialized agents - RouterAgent, GoalResolverAgent, AudienceResolverAgent, BudgetAgent, ScheduleAgent, and MediaPlannerAgent - executing in parallel. Three key learnings resonate with the Backstage community: prompt engineering is software engineering (prompts need version control and testing), agent boundaries matter (one agent per distinct skill or data source), and evaluation requires new approaches beyond traditional unit testing.

While not a Backstage feature, this connects directly to where Backstage is heading. The v1.48.0 release shipped experimental Client ID Metadata Documents and experimental refresh token support - both designed to reduce MCP client authentication friction. Combined with the @backstage/plugin-mcp-actions-backend plugin and Spotify's AiKA AI Knowledge Assistant, the trajectory is clear: Backstage is becoming the MCP server hub for platform engineering.

Infralovers' three-part series on AI-assisted Backstage development

Infralovers, a Backstage consulting firm, published the final two parts of a notable three-part blog series during the week:

Oct 31, 2025 - "Beyond Copy-Paste: Building Backstage with AI-Assisted Development" detailed how Claude Sonnet 4.5 and GitHub Copilot helped navigate custom Backstage integrations with Crossplane and ArgoCD. The post documented real integration friction - scaffolder temporary directories, the publish:github:pull-request vs. publish:github distinction, ArgoCD rejecting catalog-info.yaml - and showed how AI pair programming resolved each issue faster than traditional documentation searching.

Feb 20 - "Five Levels of AI Development: Why the J-Curve Gets Everyone" applied Dan Shapiro's five-level framework to developer tooling, arguing that 90% of "AI-native" developers are stuck at Level 2 (pair programming) when the real gains come at Levels 3-4 (specification-driven development and autonomous workflows).

Feb 22 - "Dark Factory Architecture: How Level 4 Actually Works" got concrete about Level 4 in practice, referencing StrongDM's "Digital Twin Universe" approach and Boris Cherny's claim that 90% of Claude Code was written by Claude Code, with SemiAnalysis estimating 4% of public GitHub commits now attributable to Claude Code.

The series offers practical context for Backstage adopters evaluating where AI fits in their developer portal strategy - not as a chatbot bolted onto the sidebar, but as a fundamental shift in how platform engineering work gets done.

Community Discussions

Alpha MetricsService Merged into Backstage Core

One of the most celebrated milestones in #backend-system this week: the initial alpha implementation of a native MetricsService was merged into the backstage/backstage repo. Community member kurt had been championing this effort for weeks and celebrated with the note "I am very stoked to see the initial alpha merged," thanking the maintainers who rallied to get PR #32358 (feat(metrics): Implement MetricsService by benjdlambert) across the finish line. The service provides a first-class, framework-native way to emit metrics from Backstage backends - an alternative to the community's current patchwork of OTel instrumentation. The next milestone is documenting the current state and migrating catalog metrics to the new abstraction; kurt opened a meta issue thread to avoid duplicate effort.

"How Do I Actually Delete a Catalog Entity?" - The Cache Mental Model

An 8-message thread in #catalog surfaced a question many new adopters run into: a user tried to delete test entities via the OpenAPI spec by UID, only to find them reappearing with a new UID after a refresh. Maintainer freben delivered the canonical answer - "The catalog is sort of like a big cache, a mirror of externalities… the thing that generated the entity keeps generating the entity as it was instructed to. There's no functionality like 'delete this and refuse all future attempts at creating something with that name'." The resolution is to disconnect or modify the source (e.g., the GitHub repo), not the catalog record. This remains one of the most common conceptual hurdles for new Backstage adopters.

Disabling Software Templates Registered from catalog-info.yaml

A lively 9-message thread in #general started when phred-te discovered that individual repositories can register their own software templates directly from catalog-info.yaml. The question was whether a platform team could disable this auto-discovery to prevent teams from self-registering templates they shouldn't. Core contributor Peter "ParsiFal-M" confirmed that catalog.rules governs this behavior and should prevent unwanted registrations - though the caveat is that the Backstage demo doesn't explicitly exercise this rule so community members were testing edge cases live.

Migrating from GitHub GHEC to GitHub EMU - Running Dual Auth Providers

A timely discussion landed in #auth this week as Pedro described a real-world migration scenario: moving from github.com (GHEC) to GitHub Enterprise Managed Users (EMU), where users temporarily exist in both systems. The key questions: can Backstage run two GitHub auth providers simultaneously in the same instance? If not, what is the recommended EMU-first auth pattern with a fallback during the cutover window? Options discussed include a single provider routing by email domain/org membership, a custom sign-in resolver that attempts EMU first, or a custom auth provider with fallback logic. If you're planning a similar migration, this thread is worth following.

Extending the Catalog Component Spec with Custom Fields

A thoughtful architecture question in #catalog from new adopter Finn Molloy: their team wants to add a spec.license field (SPDX identifier) and a spec.thirdParty boolean to the Component kind - and they've implemented it using a custom Zod schema validator and a custom processor plugin rather than annotations. Their reasoning: typed fields are preferable to string annotations, especially for booleans. They asked whether this approach is safe/recommended or whether company-specific annotations are the better path. This is a great practical exploration of the catalog's extensibility model that will resonate with any team standardising their component metadata.

Community-Built Producer/Consumer Catalog Graph Processor

In a standout community contribution post in #catalog, isaias.b shared a custom catalog processor that creates symmetric relation types (producesTo/producedBy, consumesFrom/consumedBy) for modelling data flows between components - think Kafka topics, DB schemas, queues, and other resources. The processor and example catalog.yaml were shared directly in the channel with working screenshots of the resulting catalog graph. It's the kind of pattern that Backstage's extensibility model was designed for, and demonstrates how rich service dependency maps can be created without any core changes.

Frontend System Migration: Beware of Duplicate Extension Errors

An 8-message thread in #frontend-system is a useful debugging reference for anyone currently migrating plugins to the new frontend system. lgnd_seba hit the Plugin 'helm-dashboard' provided duplicate extensions: page:helm-dashboard error while migrating a two-page plugin. The culprit: when a PageBlueprint extension is created, the name property must be kebab-case (a-name-like-this rather than Something Like This). Maintainer vinzscam confirmed this requirement. If your NFS migration is failing with duplicate extension errors, this is the first thing to check.

API Extractor Issue Could Break CI for Community Plugin PRs on v1.48.0 Bump

In #maintenance, maintainer Ahhhndre flagged PR #32950 - an issue with the API Extractor tsdoc-base configuration that is expected to cause CI failures across community plugin PRs when the version bump to 1.48.0 runs. Plugin maintainers were advised to watch for this and may need to update PRs manually. Separately, the automated version bump scheduler was running as of Feb 24, generating v1.48.2 community plugin bumps - see the auto-version-bump thread for the schedule.

Changelog

v1.48.2 - February 24, 2026

Fixes:

• Restored formFieldsApiRef and ScaffolderFormFieldsApi alpha exports in @backstage/plugin-scaffolder that were removed in v1.48.0
• Updated @microsoft/api-extractor to 7.57.3

Release:v1.48.2

v1.49.0-next.0 - Pre-release

The first pre-release of the v1.49.0 cycle is now available for early testing.

Release:v1.49.0-next.0

Backstage v1.48.0 Ships with Major New Frontend System Updates

Backstage v1.48.0 shipped February 17 after nearly a month of pre-release testing. The release brings significant changes to the New Frontend System, including graduated catalog extension points, experimental MCP authorization support, and breaking changes to API restrictions.

Key highlights:

• Catalog processing extension points graduated from alpha to stable (remove /alpha imports).
• API restrictions now enforced (plugins can only provide APIs to themselves, not other plugins). * New createServiceMock and createApiMock utilities for testing.
• Plugin titles and icons now supported, and module federation enabled by default without build-time overhead.

The release also introduces experimental catalogScmEventsServiceRef for instant catalog updates via webhooks, experimental Client ID Metadata Documents for MCP authorization (auth.experimentalClientIdMetadataDocuments.enabled), and experimental refresh token support to prevent hourly token expiration.

The breaking changes caught some teams off guard. Some users reported Soundcheck rendering issues tied to recently removed CSS variables in Backstage UI. Anyone running a custom theme should check that their files are referencing current CSS tokens before upgrading.

v1.48.0 release notes

v1.48.1 Patch Fixes Type Compatibility and Documentation Issues

A patch release shipped February 18, fixing two regressions from v1.48.0:

• A missing sharing extensions sidebar item in the frontend system architecture docs
• A type compatibility issue for older plugins in the FrontendFeature type.

If you upgraded to 1.48.0 and hit plugin type errors, update to 1.48.1.

v1.48.1 release notes

Security Advisory: CVE-2025-69873 in ajv Dependency

Community members flagged CVE-2025-69873 (CVSS 8.2) affecting ajv@6.12.6, a transitive dependency of @backstage/cli@0.35.3. The vulnerability involves potential denial-of-service via uncontrolled schema input. Maintainer freben assessed impact as low since ajv only runs during build, not in production applications. Teams that tried resolving it by upgrading to ajv@8.18.0 ran into breaking changes in the CLI's linting pipeline. The maintainers are still working through it.

CVE details

Roadie Blog

Roadie published a new post this week on GitLab integration: Supercharge your GitLab setup with Roadie's Internal Developer Portal. It covers how teams using GitLab can eliminate repo sprawl, centralize ownership and governance, and visualize CI/CD pipelines through Roadie's managed Backstage platform. The post focuses on getting a production-ready IDP running in hours rather than months.

Community Discussions

Release Updates: Backstage v1.48.0 and v1.48.1

Backstage v1.48.0 shipped on February 17, followed quickly by a patch release v1.48.1 on February 18. The patch fixed two regressions introduced in 1.48.0: a missing sharing extensions sidebar item in the frontend system architecture docs, and a type compatibility issue for older plugins in the FrontendFeature type. Community members reported that some third-party plugins (notably Soundcheck) showed rendering issues after upgrading to 1.48.0, and a thread in #general noted that GabDug pointed to recently removed CSS variables in the latest Backstage UI update as a likely cause. Users encountering visual glitches after upgrading should check whether they need to update CSS variable references in custom theme files.

New Frontend System: "Is It Production-Ready?" Gets a Definitive Answer

One of the most active discussions of the week came from #support (25 replies), where Dinesh asked whether the New Frontend System is production-ready, what the alpha/experimental status means, and whether teams should migrate now or wait.

Maintainer Ahhhndre gave a clear and confident answer: the NFS has been announced as adoption-ready for several months and many organizations are already running it in production. The thread evolved into a practical migration walkthrough, with Sarabadu and Ahhhndre helping Dinesh navigate the transition from convertLegacyAppOptions to the new createApp API and clarifying plugin compatibility with signals.

Key clarifications from maintainers:

• There is no difference from a deployment standpoint between the legacy and new frontend systems.
• convertLegacyAppOptions is a transitional helper that will be removed once the full migration is complete.
• signalPlugin is already NFS-compatible and should not be added to the legacy options during migration.

If you're looking for more information, check out these docs and migration guides

BUI Migration Pain Points: Theming and Missing Card Types

Teams migrating to Backstage UI (BUI) ran into several friction points this week. In #frontend-system, lgnd_seba reported being unable to apply a custom theme when migrating to BUI, finding that neither import '@backstage/ui/css/styles.css' nor the CSS variable approach using [data-theme-mode='dark'] caused the component to pick up the custom font; it fell back to the BUI default system-ui. In the same channel, adders flagged that EntityDependencyOfComponentsCard is missing an entity-card equivalent in the NFS, with no clear workaround for using existing cards. Brian Wink noted that type: summary was removed in 1.48.0 for Overview cards, raising questions about how to place two smaller cards side-by-side without it.

Security Advisory: CVE-2025-69873 in ajv@6.12.6 (Backstage CLI Dependency)

A message thread in #security raised a Snyk alert for ajv@6.12.6, which is a transitive dependency of @backstage/cli@0.35.3. The vulnerability is CVE-2025-69873 (CVSS 8.2, SNYK-JS-AJV-15274295) and involves a potential denial-of-service via uncontrolled schema input. Maintainer freben assessed the impact as low for Backstage since ajv is used only in the build process (not in the running application).

Teams attempting to resolve the issue by upgrading to ajv@8.18.0 reported that doing so breaks the CLI's linting pipeline with "NOT SUPPORTED: option missingRefs" errors. The thread was ongoing as of Feb 18, with the team investigating the correct version bump path.

CVE details

Call for Help: SCM Webhook Event Handlers for the Catalog

In #catalog, maintainer freben shared an open call for community contributions. The Backstage catalog now has a generic interface for handling SCM events (things like file changes, repo renames/deletions, branch creation, and archiving), but only a GitHub adapter has been implemented so far. Teams using GitLab, Bitbucket, or other SCM providers that want instant reactive updates to catalog state are encouraged to contribute adapters. This was a required feature for the 1.48 release cycle.

GitHub Issue #32833

Community Plugin: Excalidraw-Style Catalog Graph

Milan May'r shared a new community plugin in #visual-design and #plugins: backstage-plugin-roughjs-catalog-graph, which replaces the standard Relations Graph on entity pages with one rendered using rough.js (the same hand-drawn aesthetic popularized by Excalidraw). The plugin takes approximately five minutes to install. It received positive reactions in the community and is a fun way to give the dependency graph a more casual, whiteboard-style look.

View the plugin on GitHub

Kubernetes-Ingestor Plugin: New Release with Cache Improvements

A 9-message thread in #plugins tracked a community request for a new release of the kubernetes-ingestor plugin. User prims47 had contributed a PR improving cache behavior when resolving owner from namespace, and Thomvaill's team was waiting on the release to plan their project schedule. Plugin maintainer Scott Rosenberg (vRabbi) confirmed on Feb 17 that a new release went out with the changes, and prims47 noted significantly improved performance on local testing.

Volvo Backstage Adoption Story Featured in Community Session

In #adoption, mihait announced that the upcoming Backstage Community Session (week of Feb 18) would feature Volvo showcasing their Backstage adoption journey. This continues the tradition of enterprise adoption stories in the monthly community calls and is a great resource for teams making the business case for Backstage internally.

TechDocs Content Rendering Randomly Blank in 1.44.x

A detailed bug report landed in #techdocs from user RP on Feb 17: TechDocs pages randomly show a blank content area while the sidebar renders correctly, with the issue appearing after 3–20 navigation clicks through docs pages.

The instance is running Backstage 1.44.1 with an external builder and GCS publisher. Network inspection showed all requests completing with 200/304 responses and no timeouts, making it tricky to diagnose. RP noted the issue is more common on pages with nested navigation and a custom plugin linking TechDocs for 150+ technologies. The thread was open for community input as of this writing.

Changelog

v1.48.0 (Feb 17, 2026) Major release with graduated catalog extension points, NFS enhancements, module federation enabled by default, experimental MCP authorization, and breaking changes to API restrictions. Full changelog at docs/releases/v1.48.0-changelog.md.

v1.48.1 (Feb 18, 2026) Patch release fixing missing sharing extensions sidebar item in frontend system docs and type compatibility for older plugins.

All releases

Wiz published their first-party Backstage plugin on February 6. The @wiz-sec/backstage-plugin-wiz package surfaces Wiz Issues and Vulnerabilities directly in your portal by mapping Wiz projects to catalog components.

You can search and filter findings by rule, resource, or CVE, track severity, and navigate into Wiz for remediation without leaving Backstage. This is distinct from the earlier Roadie-built Wiz plugin, representing Wiz's own investment in the Backstage ecosystem.

Wiz blog post

Spotify Details Mobile Release Engineering with Backstage

Spotify Engineering published Part 2 of their mobile release process deep-dive on February 9. The post details how their Release Manager Dashboard, built as a Backstage plugin in React/TypeScript, uses the Software Catalog for build distribution configuration.

The article covers the evolution from Jira-based release tracking to a unified Backstage-powered dashboard, including backend optimization, automated release progression ("the Robot"), and data-driven release insights.

Read the post | Part 1 from April 2025

From the Roadie Blog

We published Backstage Microservices Strategies: Taming Sprawl with a Service Catalog on February 12.

The piece tackles the ownership problem: when a 3 AM incident cascades through your 400-microservice architecture, who owns what's broken? Without a centralized system of record, you accumulate "zombie services" that nobody claims until they fail.

Key sections cover the hidden cost of microservices at scale (Expedia's 5,000 developers managing 20,000 services), how Backstage functions as your microservices operating system, Golden Paths that eliminate the copy-paste tax (Spotify's new service creation time dropped from 14 days to 5 minutes), dependency visualization for blast radius analysis, and Tech Insights that gamify production readiness.

The article compares self-hosted versus managed options, noting self-hosted typically requires 2-3 dedicated FTEs with TypeScript/React expertise, while managed solutions like Roadie cost approximately $20/user/month with same-day setup.

Community Discussions

New Pull Request Review Workflow for Backstage Contributors

The Backstage maintainers have launched a significantly improved pull request review process that makes it easier for community members to become reviewers. The new workflow incorporates a dedicated reviewers group from the start, addressing long-standing feedback about contribution barriers. This change aims to make the review process more transparent and accessible, particularly for those wanting to contribute at a deeper level. The initiative comes with a call for new reviewers to join the program, with RBAC permissions to ensure only authorized platform team members can participate.

Developer Experience: Manual Triggering of Scheduled Tasks

A significant discussion emerged around the pain points of testing scheduled tasks during development. Currently, developers must modify task frequency in config, restart the app, and wait for execution—a slow feedback loop that can take several minutes per iteration. Community member Thomvaill proposed building a "Task Manager" plugin that would provide a UI at /task-manager to list and manually trigger tasks across all plugins, leveraging the existing scheduler trigger API (POST /.backstage/scheduler/v1/tasks/<taskId>/trigger). The proposed solution would integrate with Backstage's native auth, support RBAC permissions, and show task status, run history, and cadence information. This resonated with multiple community members facing similar development workflow challenges.

Security Vulnerability: tar Package Advisory

Users reported concerns about the tar package vulnerability (versions <=7.5.3) affecting Backstage 1.45.3 installations. The discussion focused on identifying remediation paths and whether upgrading to newer Backstage versions would resolve the issue. This thread included 14 messages with community members sharing workarounds and dependency resolution strategies, highlighting the ongoing need for security vigilance in the ecosystem.

Scaffolder: Multiple Action Modules Support

Discussion about scaffolder architecture revealed questions about organizing multiple action modules within a single scaffolder backend module. When running yarn backstage-cli new to create a new action module, developers wondered whether multiple actions should live in separate subdirectories or if there's a recommended pattern for organizing multiple related actions. The conversation highlighted documentation gaps around scaffolder action organization patterns.

Catalog Backend: SQLite Race Condition Issues

Users encountered race condition problems when using SQLite for Backstage catalog backend storage, with multiple participants discussing whether this is a known limitation of the in-memory/SQLite configuration. The recommendation shifted toward using file storage or PostgreSQL for production deployments to avoid database locking issues during concurrent operations. This thread contained 8 messages exploring the technical details of the problem and referencing GitHub issue #22207.

Authentication: GitHub Enterprise OAuth Scope Errors

Multiple users reported "Refresh failed, session has not been granted the requested scope" errors when trying to access Backstage components. The discussion focused on GitHub integration configurations and whether certain auth providers properly handle scope refresh tokens. Additionally, there was a thread about GitHub Enterprise authentication CORS policy issues when the GitHub Actions plugin attempts to fetch CI/CD pipeline data from self-hosted instances.

Backend System: OpenTelemetry Setup Challenges

A user struggled with internal Backstage metrics deployment using Helm Chart, specifically around OpenTelemetry configuration. The thread included detailed troubleshooting with 2 messages pointing to GitHub issue #307 in the backstage/charts repository for documentation improvements around metrics setup.

Community Plugin: rough.js-based Relations Graph

A new community plugin was shared that updates the visuals of the Relations Graph using the rough.js library to give components a hand-drawn, sketch-like appearance inspired by Excalidraw. The implementation is described as simple and takes only 5 minutes to set up, offering an alternative visual style for catalog entity relationships. View the plugin on GitHub →

Catalog Backend Actions Documentation

A discussion emerged about whether there should be formal documentation for the catalog-backend actions or if the community should rely on description and parameter descriptions within the code. The conversation highlighted interest in creating a basic README under the actions directory or in the top-level catalog plugin documentation to make these actions more discoverable for developers.

CNCF Travel Support for KubeCon EU Contributors

Community contributor Ayush More, who has been contributing to Backstage for several months, received approval for a CNCF Travel Scholarship to KubeCon EU. However, as a 17-year-old traveling solo from India, additional costs like the Tatkaal passport and Schengen visa aren't covered. The community discussed possibilities for a small $200-300 "contributor stipend" to help bridge this gap, highlighting the challenges young international contributors face attending events.

Changelog

Core Releases

v1.48.0-next.2 (Feb 10, 2026) Pre-release continuing v1.48.0 development. Full changelog at docs/releases/v1.48.0-next.2-changelog.md. The demo site runs this version for early testing.

Latest stable release remains v1.47.3 from February 2.

All releases

Backstage v1.47.3 shipped February 2nd with security fixes for @backstage/plugin-techdocs-node. The patch addresses vulnerabilities in how TechDocs handles external content. If you're running TechDocs, upgrade now.

Still on 1.46.x? v1.46.5 backports the same fixes.

This follows the security improvements in v1.47.0 from January 20th for Software Templates and external content reading. Use the Backstage Upgrade Helper for your upgrade.

v1.47.3 release notes | v1.46.5 release notes

14+ Community Plugins Updated

Between February 4-5, over 14 community plugins got version bumps for v1.47.3 compatibility: SonarQube, Azure DevOps, RBAC, Jenkins, OCM, Tech Radar, ServiceNow, 3scale, Quay, Keycloak, and several scaffolder backend modules.

Beyond version bumps, a few substantial changes landed:

Cost Insights now supports custom date ranges (#7463). You can analyze cloud costs over specific periods instead of fixed windows.

Confluence fixed legacy app-config compatibility for the search collector (#7494).

MCP Chat updated to @modelcontextprotocol/sdk v1.26.0 (#7479).

Browse all updates

BackstageCon Europe: Dates Confirmed

As we mentioned last week, BackstageCon Europe 2026 happens March 23-26 in Amsterdam, co-located with KubeCon + CloudNativeCon Europe. The sponsorship deadline passed February 2nd, but registration opens soon.

Amsterdam will also host a Backstage ContribFest session on March 26th where you can contribute directly to the project. Full schedule here.

If you missed BackstageCon North America 2025 in Atlanta, videos are available on Backstage Community YouTube.

Event page

Ecosystem Pulse

AI + Platform Engineering convergence continues to be a major theme for 2026. Jennifer Riggins at The New Stack published In 2026, AI Is Merging With Platform Engineering. Are You Ready? noting that Spotify used AI agents to generate 1,500+ merged PRs with 60-90% time savings, and internal developer platforms have become "nearly universal" per the DORA report.

Roadie published AI, IDPs and Platform Teams: What We're Seeing documenting how platform teams are experimenting with RAG over TechDocs, AI-powered scaffolder actions, and natural language queries across internal tools. Key challenge: AI agents are being built in silos without discoverability, ownership, or governance. Roadie's solution treats AI agents as first-class catalog entities, just like services, enabling teams to track who owns what, where PII flows, and whether agents follow security standards.

Community Discussions

Aliases Configuration Partially Broken

A user deploying Backstage with multiple aliases in #general hit customization issues on January 30. Ingress patches, CORS configuration, and Azure app callbacks all need fixes. Only some alias functionality works.

Tar Vulnerability in 1.45.3

The #general channel surfaced a discussion February 5 about the tar (< 7.5.3) vulnerability affecting Backstage 1.45.3. Tar is a transitive dependency. The bookworm-slim base image makes this worse because packages age without updates.

Users want remediation options. No clear path forward yet.

Dark Mode Theming Broken

Custom themes with company logos work in light mode but break in dark mode, according to a #general post tagged #visual-design from February 5. The sidebar uses one theme, while catalog and home pages use different theming.

Timezone Support Request

A Sydney-based team asked in #meetups on February 2 for different timezone support for community sessions and calls. Current times mean 2am calls.

Renovate Creates Immortal PRs

Renovate creates persistent PRs for Backstage security updates, according to discussion in #maintenance on January 30. OSV vulnerability alerts create too many PRs. You can't configure them at package level, only globally. These PRs block the concurrent PR limit.

The maintainers opened a GitHub discussion asking what you want prioritized in 2026. Four themes have emerged:

Performance and Reliability: Core performance improvements, better memory management, and stability at scale. This matters if you're running Backstage for hundreds or thousands of engineers.

Scaffolder Enhancements: Better workflows, clearer form UX, and debugging tools that actually help. If you've wrestled with template errors, this should interest you.

Tech Stack Modernization: React 19, TypeScript 5.7+, and modern bundling. This isn't just version bumping, it's about making Backstage easier to extend and maintain.

Security Improvements: Enhanced auth patterns and security features. Given the sensitive data Backstage handles, this is overdue.

The discussion is active now. If you have strong opinions about what needs fixing or improving, add them there.

BackstageCon Europe: March 23 in Amsterdam

BackstageCon Europe 2026 happens March 23 in Amsterdam, co-located with KubeCon + CloudNativeCon Europe.

Sponsorship deadline is February 2. Registration is open.

Backstage Ranks #5 in CNCF Velocity

The CNCF's 2025 Annual Survey ranks Backstage as the #5 CNCF project by velocity. The CNCF project page shows the current metrics:

• 46,063 total contributors
• 13,506 contributing organizations
• $125.1M estimated software value
• Health score: 82 (excellent)

Backstage Changelog

v1.48.0-next.0 Pre-Release

Released January 27, this pre-release packages the latest features heading into v1.48.0. The full changelog has details.

v1.47.0 Breaking Changes and Updates

v1.47.0 shipped January 20 with 103 PRs from 40 contributors. Here's what breaks and what improves:

Table Component Redesign

The Table in @backstage/core-components got rebuilt. If you use custom columns or cell renderers, they need updates. The new version performs better and gives you more control over pagination.

Check the release notes for the migration guide.

Blueprint Component Deprecations

Blueprint.js components are being replaced with Material UI equivalents. The deprecation warnings tell you what to use instead. This isn't urgent but plan for it.

GithubOrgEntityProvider Performance Fix

The GitHub org provider now does incremental updates instead of full refreshes. If you ingest hundreds of repos, this matters. Update your config to enable it.

AWS S3 Auth Priority Change

The URL reader now uses explicit credentials before falling back to environment variables. If you're using S3 for TechDocs storage, verify your auth setup still works.

URL Reader Redirect Validation

Redirects now get validated to prevent security issues. This might break integrations that rely on redirect chains. Test your setup after upgrading.

Kubernetes Plugin Backend Migration

New backend modules are available for the Kubernetes plugin. The old approach still works but follow the migration guide to move to the new system.

Docker Image Updates

v1.47.0-next.2 moved to Node 24 and Debian Trixie. The Docker deployment docs show the new node:24-trixie-slim base image.

Community Discussions

Release Updates: v1.47.2 Fixes Zod Issues

A new patch release, Backstage v1.47.2, has been published. This is a critical update as it fixes a breaking Cannot find module 'zod/v3' error that affected users on 1.47.1 and caused automated version bump processes for community plugins to fail. The issue stemmed from work to migrate to Zod v4 leaking into the release.

• Fix: The patch restores dependency on a specific version of Zod.
• API Factory: It also rolls back immediate breaking changes regarding API factory conflicts, converting them to deprecation warnings instead.
• Community Plugins: Following this fix, the automated version bump process for community plugins has been re-triggered and is back to green.

See the release notes or view the discussion in #maintenance.

Managing Community Plugin Updates

There was an insightful discussion in #plugins regarding how community plugins are released and upgraded:

• Release Process: Once a functionality PR is merged, a "Version Packages" PR is generated. The new version is only published to NPM after that second PR is merged.
• How to Update: Running the standard yarn backstage-cli versions:bump does not update community plugins by default. To bump these packages manually without Renovate, use: yarn backstage-cli versions:bump --pattern "@backstage-community/*"

DevTools and Scheduler Configuration

In #general, users discussed configuring devtools.scheduledTasks.plugins. Current findings suggest that Catalog, Search, and Notifications are the primary plugins supported in this configuration section.

Technical Q&A Highlights

Several technical patterns were debated in #general:

• Config outside React: Users looking to access app config outside of React components (without useApi) were pointed toward defaultConfigLoader.ts as a reference implementation.
• Migration Rollbacks: There is an active issue regarding rolling back backend-defaults scheduler migrations (20250411000000_last_run.js). The standard Knex rollback commands are failing with a "migration directory corrupt" error because the file references tables not strictly bound to the expected database context.
• Tag Validation: A reminder that the Catalog currently enforces lowercase tags; uppercase tags in catalog.yml will fail registration.

From the Roadie Blog

Creating Backstage EntityProviders at Runtime

Brian Fletcher's runtime EntityProviders guide shows how to build a provider pooling pattern. The key idea: pre-register providers at startup, then assign them to consumers at runtime.

This pattern enables:

• Multi-tenancy (different teams, different data sources)
• User-defined integrations without code deployment
• Self-service onboarding
• Dynamic provider registration

If you're building a platform where users define their own integrations, this pattern solves the "restart the backend every time someone adds a data source" problem.

The Real Cost of Self-Hosting Backstage

A recent build vs. buy analysis from Roadie breaks down what self-hosting actually costs. Not just infrastructure, the engineering time to maintain it, upgrade it, and keep it secure.

The analysis covers:

• Real infrastructure costs (compute, storage, networking)
• Hidden maintenance costs (upgrades, plugin updates, security patches)
• Opportunity cost (platform team time vs. product work)
• When self-hosting makes sense vs. when managed makes sense

If you're evaluating Backstage deployment options, this gives you the framework to calculate total cost of ownership.

That's this week's Backstage Weekly. See you next week.

CNCF End User Case Study Contest opens for Backstage adopters

The CNCF announced their End User Case Study Contest, which showcases proven, real-world adoption of CNCF technologies including Backstage by end user organizations. Winners will present a 5-minute live keynote at KubeCon + CloudNativeCon EU 2026 in Amsterdam (March 23-26, 2026) and have their case study published on cncf.io. The contest closes on January 30, 2026 at 11:59pm PT, with winners announced by February 25, 2026. End user case studies published on cncf.io during 2025 will also be considered.

Submit your case study →

Backstage agent skills for AI assistants

A community member shared a new GitHub repository called backstage-agent-skills that provides Backstage skills for AI agents. The project aims to help AI assistants interact with Backstage instances programmatically. This is part of the growing intersection between AI and developer platforms as organizations look to automate more workflows.

Explore the repository →

Code Wiki generates automated documentation for Backstage

A new tool called Code Wiki has appeared that automatically generates up-to-date documentation for codebases. The community discussion highlighted its potential application for the Backstage repository itself, providing automatically generated API references and architecture overviews without manual documentation work.

Check out Code Wiki →

Backstage Changelog

A quick look at the changes that shipped in Backstage v1.47.0, released on January 20th.

Breaking Changes

• Redesigned Table and useTable in @backstage/ui - The Table component now has pagination, sorting, selection, and data display built-in. The low-level wrapper is now TableRoot. The useTable hook supports three pagination modes: complete, offset, and cursor. Migration guide →

• Updated color tokens in @backstage/ui - Color tokens updated to align with the new neutral surface-based design system. The -tint tokens have been removed.

• Redirect validation in URL reader - coreServices.urlReader now validates redirect chains against the allow list in backend.reading.allow. The FetchUrlReader class constructor is now private, replaced with a fromConfig static factory method.

• Better AWS S3 auth handling in TechDocs - Auth priority is now: 1) aws.accounts, 2) techdocs.publisher.awsS3.credentials, 3) integrations.awsS3, 4) Default credential chain.

Features

• Backend action filtering support - ActionsService now supports action filtering based on configuration to control which actions are exposed to consumers like the MCP backend.

• GitHub repository workflow access configuration - The scaffolder now supports configuring workflowAccess level when creating GitHub repositories to control GitHub Actions workflow access. Contributed by @fearphage in #32237

• Additional Kafka Events streaming settings - The Kafka event module now supports fromBeginning offsets and autoCommit. Contributed by @imod in #31410

Improvements

• Home plugin UI improvements - Widget configuration changes now only save when the Save button is clicked. A new Cancel button lets users discard unsaved changes. Contributed by @kmikko in #31198

• GithubOrgEntityProvider performance boost - The provider now fetches only specific user teams instead of all organization users when processing membership events, and uses addEntitiesOperation instead of replaceEntitiesOperation to avoid unnecessary deletions. Contributed by @angeliski in #32184

• Link component navigation fix - The Link component now properly uses React Router's navigation system instead of causing full page refreshes for internal routes.

Deprecations

• App customization blueprints moved - IconBundleBlueprint, NavContentBlueprint, RouterBlueprint, SignInPageBlueprint, SwappableComponentBlueprint, ThemeBlueprint, and TranslationBlueprint have been deprecated and moved to @backstage/plugin-app-react. These are now restricted to use in the app plugin only.

• API factory restrictions - Plugins are now restricted from overriding core Utility APIs and API factories from other plugins. Overrides must be made using plugin overrides or modules.

Security Fixes

This release contains security fixes for Software Templates and reading external content.

Community Discussions

Here's what the Backstage community has been talking about this week:

Entity naming best practices

With auto-ingestion of GitHub repos, AWS resources, and Kubernetes resources, a community member asked about handling name clashes across entity types. The discussion covered using namespaces to scope things (kubens, aws, github) versus prefixing names. Using spec.title for more explicit names in the UI was also suggested as a way to maintain clean URLs while showing friendly names.

View the discussion →

CLI templates and conditional file creation

Questions about the CLI templates feature revealed that you can name files with variables like plugin-{{ pluginId }}.prod.yaml.hbs and use conditional logic like {%- if values.some == "yes" -%}file-name.yaml{%- endif -%} to only create files when conditions are met. This applies both to file names and content within files.

View the discussion →

Getting Backstage in front of a shifting dev experience [podcast]

Pia Nilsson, GM for Backstage and Head of Developer Experience at Spotify, was interviewed on The Stack Overflow Blog to discuss the organic growth and widespread adoption of Backstage, as well as the impact of AI on developer experience. As of September 2025, Backstage boasts over 3,400 known adopters, including numerous Fortune 500 companies like Airbnb, Booking.com, H&M, Toyota, and Lego. Nilsson highlighted how Spotify approaches platform engineering and standardization to help teams address specific needs, emphasizing Backstage's role in reducing friction, cognitive overhead, and operational toil for developers. The discussion also touched upon the future evolution of the developer experience, particularly with the integration of AI-driven workflows.

Read more →

Backstage, a Mid-Year Snapshot - Platform Engineering

A mid-year snapshot from Platform Engineering in September 2025 positions Backstage as the "gravitational center" of the Internal Developer Portal (IDP) conversation, having evolved significantly since its open-sourcing. The article notes that Backstage, now at version 1.42.5, is actively maintained under the CNCF and adopted by over 270 organizations (Editors note: It's more like 3,400). This article provides a good overview of the state of the IDP ecosystem in 2025.

Read more →

Backstage Changelog

Features

• Add CLI template to create new catalog entity provider modules. #31459 by @Rugvip, merged 1 day ago
• Use app title in the auth consent screen. #31475 by @drodil, merged 2 days ago
• Update Postgres policy to support version 18 with tests on 18 and 14. #31453 by @awanlin, merged 4 days ago
• Add eslint rule that blocks importing Backstage UI CSS in plugins to keep styles consistent. #31463 by @Rugvip, merged 5 days ago

Bug Fixes

• Fix TechDocs page rerender on each subpage navigation high activity. Before https://github.com/user-attachments/assets/99566977-052f-4aca-bc0f-cedb18631ce8 After https://github.com/user-attachments/assets/bbbcf127-30d3-4785-a53c-6e9b4c64994d #31447 by @GabDug, merged 2 days ago
• Fix TechDocs CLI missing styles in version 1.10.0. Before After #31456 by @GabDug, merged 5 days ago
• Update email notifications backend to SES v2 to avoid nodemailer v7 errors. #31458 by @drodil, merged 2 days ago
• Make BitbucketUrlReader use the provided token. #31360 by @RedlineTriad, merged 6 days ago
• Fix Backstage UI CSS layer order so base and tokens apply before components. #31448 by @cdedreuille, merged 5 days ago
• Set default font smoothing in Backstage UI for clearer text. #31444 by @cdedreuille, merged 6 days ago
• Import Backstage UI CSS in index.ts to ensure styles load. #31449 by @vinzscam, merged 1 day ago

Improvements

• Soften task worker starting log text to avoid confusion about actual task start. #31460 by @freben, merged 2 days ago
• Allow running the example app with Docker using Postgres OpenSearch Redis for local dev. #31107 by @drodil, merged 2 days ago

Documentation

• Improve Backstage UI installation docs to show how to add the global theme and use components. #31471 by @cdedreuille, merged 2 days ago
• Update mainline release publishing docs to remove steps that are now automated. #31443 by @camilaibs, merged 6 days ago
• Add blog post Get ready for Backstage ContribFest at KubeCon. #31440 by @awanlin, merged 6 days ago

Ecosystem Changelog

Announcements Plugin

• Bug Fixes Add missing CSS so the dark theme renders correctly #5784 merged 6 days ago

Azure Pipelines Plugin

• Features Add option to limit clone depth for the azure repository clone action #5632 merged 5 days ago

Coder Plugin

• Features Add OAuth2 sign in to the Coder frontend Add a backend plugin to handle the OAuth2 flow #151 merged 7 days ago

Crossplane Plugin

• Features Add default exports for NFS alpha export to simplify usage merged 7 days ago

DevPod Plugin

• Features Add default exports for NFS alpha export to simplify usage merged 7 days ago

DX Plugin

• Bug Fixes Fix infinite loop in DxDataChartCard when the variables prop is missing #41 merged 2 days ago

GitHub Actions Plugin

• Changes Disable two NFS cards by default to reduce clutter Remove the optional overview card from the NFS The full view stays in the GitHub Actions tab #5678 merged 5 days ago

Kyverno Policy Reports Plugin

• Features Add default exports for NFS alpha export to simplify usage merged 7 days ago

Pipelines with Tekton Plugin

• Improvements Move status components and helper hooks into the Tekton plugin to reduce external imports #5777 merged 5 days ago

S3 Viewer Plugin

• Features Add config to show or hide bucket details for end users Default stays true to keep current behavior #183 merged 1 day ago

Scaffolder Utility Actions Plugin

• Bug Fixes Fix YAML merge when a file starts with a top level block comment #2070 merged 2 days ago

ScaleOps Plugin

• Features Add default exports for NFS alpha export to simplify usage merged 7 days ago

PagerDuty Unveils End-to-End AI Agent Suite with Backstage Integration

PagerDuty recently announced the launch of its end-to-end AI agent suite, featuring over 150 enhancements and deep integrations with various tools, including Backstage. This new suite aims to leverage AI to improve incident resolution times and reduce on-call fatigue. The integration with Backstage suggests a move towards embedding AI-driven incident management capabilities directly within the developer portal, enabling more streamlined operations and potentially automated responses to system alerts.

Read more →

Backstage v1.44.0 Release Notes

The Backstage Software Catalog and Developer Platform has announced the release of version 1.44.0, bringing several updates and improvements. Key changes include the removal of the built-in CssBaseline from UnifiedThemeProvider, requiring users to manually import @backstage/ui/css/styles.css for proper styling. Additionally, a new --entrypoint option has been added to the package start command in the Backstage CLI, allowing for custom entry directories for development applications. A notable new plugin called "Themer" has also been introduced, designed to assist with Material UI to Backstage UI migration.

Read more →

Backstage Changelog

Breaking Changes

• Remove Backstage UI ScrollArea component for accessibility reasons. #31409 by @cdedreuille, merged 1 day ago
• Remove Backstage UI Icon component to reduce bundle size and stabilize the API. #31407 by @cdedreuille, merged 1 day ago

Features

• Add Backstage UI Dialog component with header body footer and closer. #31371 by @ssjoblad, merged 2 days ago
• Add virtualization to UI menus via virtualized prop plus maxWidth and maxHeight for long lists. #31375 by @cdedreuille, merged 6 days ago
• Allow Box Container Flex Grid GridItem to pass data attributes to rendered elements. #31374 by @vinzscam, merged 6 days ago
• Add sentry fetch dsn action in scaffolder backend Sentry module to output a project DSN. #31046 by @brentswisher, merged 2 days ago
• Add support in the yarn plugin for a custom Backstage manifest location via env vars for restricted networks. #31122 by @drodil, merged 1 day ago (active discussion)

Bug Fixes

• Fix scaffolder form handling of RJSF allOf oneOf anyOf when using nested conditions at the step root. #31382 by @iainvdw, merged today
• Fix NotFound page rendering when a page extension is mounted at root slash. #31353 by @vinzscam, merged 2 days ago
• Fix default text color in Backstage UI. #31429 by @cdedreuille, merged today
• Fix default font weight and family in Backstage UI. #31432 by @cdedreuille, merged today
• Fix default font size in Backstage UI. #31435 by @cdedreuille, merged today
• Fix table sort icon position and visibility on hover in Backstage UI. #31393 by @cdedreuille, merged 2 days ago
• Fix scroll jumping when opening UI menus by avoiding modal body scroll lock. #31394 by @cdedreuille, merged 2 days ago
• Fix missing Backstage UI CSS in the dev app in dev utils. #31428 by @Rugvip, merged today
• Fix discovery of distributed actions in scaffolder backend on startup. #31244 by @drodil, merged 1 day ago

Improvements

• Update React Aria in Backstage UI to 1.13.0 with many small fixes. #31367 by @cdedreuille, merged 6 days ago
• Add CSS layers to Backstage UI to make custom CSS override defaults more predictably. #31362 by @cdedreuille, merged 6 days ago
• Convert Backstage UI components to CSS Modules while keeping theming class names. #31399 by @cdedreuille, merged 2 days ago
• Improve Backstage UI styles props across components and simplify internal styling. #31404 by @cdedreuille, merged 2 days ago
• Remove MUICssBaseline to avoid conflicts with Backstage UI styles and align resets. #31365 by @cdedreuille, merged 6 days ago

Developer Experience

• Relax ESLint rules to allow frontend plugins to import from other frontend plugins with the same plugin id for overrides without warnings. #31373 by @drodil, merged 5 days ago
• Deduplicate imports in generated OpenAPI clients in repo tools. #31297 by @rferreira98, merged 6 days ago (active discussion)
• Add renderTestApp to frontend test utils for the new routing system with extensions. #31353 by @vinzscam, merged 2 days ago

Documentation

• Fix monospace font reference in docs. #31364 by @vinzscam, merged 7 days ago
• Tidy docs including a catalog config key correction. #31426 by @freben, merged today

Reverts

• Revert user settings storage api blueprint for NFS since it replaced storageApiRef incorrectly. #31431 by @benjdlambert, merged today referencing #31413

Ecosystem Changelog

Hetzner Cloud Plugin

• Features Show CPU architecture in the UI merged 5 days ago
• Features Return server architecture in the API merged 5 days ago
• Documentation Fix dev setup instructions merged 5 days ago

Tech Insights Plugin

• Features Show multiple links on MaturityScorePage PR #5126 merged today
• Features Show error info when a check fails and the fact type is not boolean PR #5126 merged today
• Features Tweak maturity accordion summary layout PR #5126 merged today
• Bug Fixes Use the core Accordion to resolve layout issues PR #5126 merged today
• Documentation Fix a readme typo PR #5126 merged today

Pipelines with Tekton Plugin

• Features Show pipeline run params and results PR #5642 merged 2 days ago

Announcements Plugin

• Features Add updated at field so the banner shows the most recent announcement PR #5595 merged 6 days ago

Entity Validation Plugin

• Features Add support for the new frontend system PR #5222 merged 5 days ago

Q&A Plugin

• Features Support mermaid in markdown content merged 5 days ago
• Features Allow passing markdown plugins through props merged 2 days ago
• Features Allow moderators to change post authors merged 2 days ago
• Features Allow moderators to change answer authors merged 2 days ago
• Features Improve user and entity search by limiting fetched fields merged 1 day ago
• Bug Fixes Fix scaffolder import merged today
• Bug Fixes Sort entities and tags in inputs merged 1 day ago
• Bug Fixes Show loading state correctly in the posts table merged 1 day ago
• Bug Fixes Fix posts container props merged 2 days ago
• Bug Fixes Restore user field for metadata input merged 2 days ago
• Bug Fixes Use display name for user groups when available merged 5 days ago
• Documentation Add links to available plugins merged 2 days ago

Toolbox Plugin

• Features Improve overall layout merged today
• Breaking Changes Roll back to MUI four for compatibility merged today
• Bug Fixes Remove input debounce that caused slow updates merged today
• Bug Fixes Add a small input delay to improve typing UX merged today

Kubernetes Ingestor Plugin

• Bug Fixes Fix custom annotation handling merged today
• Bug Fixes Fix system reference namespace mappings merged today
• Bug Fixes Fix name and title mapping use in components merged today

Crossplane Plugin

• Features Export the API ref and client for integrators merged today
• Bug Fixes Fix the API ref export merged 6 days ago

Nobl9 Plugin

• Security Fix on headers vulnerability merged 5 days ago

Application Topology for Kubernetes Plugin

• Maintenance Move status components and related hooks into the plugin PR #5668 merged today

This week:

• State of Backstage: closing soon
• BackstageCon & KubeCon EU
• Roadie Local nears GA, Design Partnerships closing soon

State of Backstage: closing soon

The State of Backstage survey is winding down for 2025, so now is the time to fill it in if you haven't already.

The survey itself closes in April 2025.

We'll be analysing the results and publishing them via the stateofbackstage.io soon (those that filled in the survey will get an advanced copy before they're published to the wider community).

Fill in the survey now.

BackstageCon & KubeCon EU

Speaking of things that are coming very, very soon: BackstageCon & KubeCon EU in London is right around the corner.

We'll be there - Roadie founder David is on stage at BackstageCon to share what we've learned over the years about how to be successful with Backstage, as well talk what we have coming up next in Backstage-land. Roadie engineers will also be manning the booth at both BackstageCon and KubeCon.

We'll be at KubeCon booth N510.

Come say hello if you're in around. 👋

Roadie Local: Design Partnerships will be closing soon

For those that missed it: we're building a version of Roadie that you can run locally or on your own infrastructure. We call it Roadie Local.

That effort is now charging towards GA and so we're closing our call for Design Partners for the beta version soon. The first Design Partners are spinning up (on Azure DevOps Server mainly, if you'll believe it) and we've close to capacity for this tranche of testing and evaluation.

Complete the Design Partner form here.

This week:

• Terasky release some killer Kubernetes & Crossplane plugins
• Kratix makes Backstage into a true Platform
• Open-source Tech Insights gets maturity ranks

Terasky release some seriously good K8s plugins

When we think of Backstage and Kubernetes, we often don't have great associations. The Backstage K8s plugin can be fiddly and doesn't always act in the way you'd expect.

To plug that gap, the folks over at Terasky (hat-tip to Scott Rosenberg) have released a raft of new plugins that meaningfully move Backstage < > K8s forward.

Our personal favourite is the Kubernetes Ingestor plugin, which automatically pulls Kubernetes workloads into the Backstage catalog. That really is as cool as it sounds.

Check them out here or on GitHub.

Kratix brings oss platform dev and Backstage together

Speaking of big jumps forward in Backstage functionality, Kratix is a Syntasso-made OSS project dedicated to the platform-side of Platform Engineering. As their marketing site says: it makes Backstage into a full Platform, not just a Portal. You can instantiate infrastructure, autoingest it into the Catalog and generally interact with all the features you'd expect from a full Platform without leaving Backstage.

Nice stuff.

Check it out at here.

Tech Insights levels

The backend for the Tech Insights scorecard plugin is open-sourced and gets some great additions. Recently, it's seen the introduced of the concept of maturity.

We're currently understanding how much of this is a straight lift into our proprietary Tech Insights product (we have slightly different concepts, like the idea of a Scorecard, which don't exist in the open source version), but expect something on this soon.

In the meantime, check it out here.

This week:

• Roadie Local is moving to beta

• Canon gets a website

• State of Backstage keeps growing

• Project news: v1.36-next

Roadie Local is moving to beta

We mentioned it last time but for those that missed it: a self-hosted version of Roadie is coming and its coming fast.

We'll be talking about this a lot in the next few weeks and months, but the gist is that we'll be offering a locally runnable, self-hosted version of Roadie. It'll include all that you know and love about Roadie SaaS and be free for less than 15 users.

Read all about it on our blog.

If you're interested, there's still time to sign up as a Design Partner for the initial rollout but we'll be closing sign-ups for this at the end of the month.

Sign up for Roadie Local

Canon gets a website (canon.backstage.io)

It's all Canon this, Canon that these days, but with good reason.

The default Backstage UI has been largely unchanged for 4-5 years and UIs for dev tools have come a long way since then.

That's why we're so excited about Canon and the shift to BaseUI and headless components (for those not au fait with all this frontend jazz - it's about decoupling component structure and behaviour from styling, harkening back to the days of the HTML, JS and CSS internet). It means you have much more control over styling than you do currently.

Exciting stuff.

Check it out at https://canon.backstage.io/

🚨 State of Backstage Survey 🚨

The State of Backstage survey is going strong.

Our goal is a few hundred responses by the end of March and we're very much on track. That doesn't mean we can let up though: the more responses we get, the more representative of the whole community this survey will be.

We'll announce the results in a report in Spring 2025.

Visit stateofbackstage.io to complete the survey.

Project updates

There have been a few updates since our last newsletter.

• Backstage v1.36.0 is up and brings Canon to it's first full release. There's also a lot of prep for a move to React 19 and the new frontend system. Reading the tea-leaves, you may assume they're related and that a bunch of frontend changes are the ways, but I couldn't possibly speculate...

Thanks!

Sam Nixon

How do we celebrate such a momentous occasion? Fireworks? Street parties? Just send a weekly newsletter about Backstage? Probably the latter.

That said, there will be some limited edition Backstage Weekly merch for those attending KubeCon US in Salt Lake City next month (we'll try and keep some for KubeCon EU in April).

This week:

• New case study: Uplight & Roadie
• New article: Migrating to the new Backend
• Project updates: v1.32 has landed

🚨 Case Study Alert: Uplight

Uplight are an energy company who have grown rapidly over the last few years and needed to solve the problem of a) how do you ensure discoverability of services when new teams and services are added constantly and b) how do you maintain high standards while growing. For Uplight, the answer was Roadie.

Check it out!

Want to start building on top of Backstage? Get a Roadie Backstage instance so you can start shipping features into your IDP without having to manage an instance. Get a demo now!

Finding your way with the new Backend

The new Backstage backend comes with nice things like simplified plugin installation. It is also a necessary prerequisite to get hold of exciting new features like Notifications.

To get to this treasure though you're going to need to find your way through what may be a painful migration...

Have no fear though, Roadie Engineer, Miklos Kiss, just created a map to help guide you. It takes a deep dive into how to migrate while avoiding some common traps, issues, jagged rocks, sea monsters etc.

If you're self-hosting Backstage, enjoy 🎉.

If you're on Roadie: we've taken care of all of that for you 🤝 so read at your leisure.

Check it out on the Roadie blog.

Last but not least... version 1.32 is here

1.32 is out, but there are no release notes on backstage.io just yet - it's that hot-off-the-press.

Here's a few of the changes though:

• Auth: the profileEmailMatchingUserEntityEmail resolver is now officially removed
• The new Frontend system keeps trucking along with some changes to how Blueprints will work The Scaffolder UI gets some tweaks. You can now use the Template Editor to sketch templates from zero.
• The GitHub release notes are here. Read the full v1.32 change set.

This week:

• New community starting: Backstage LinkedIn
• New article: Backstage & Cost Management
• Project updates: Roadie is now on v1.30

A new LinkedIn page just for Backstage

CNCF projects like Backstage tend to have a LinkedIn group managed by maintainers and contributors. Backstage had a Backstage from Spotify page but that's part of commercial effort by Spotify rather than a community page.

To fix this core maintainers (including Spotify) and Roadie have teamed up to start a new non-commercial page to share Backstage stories and celebrate community activity.

Check it out!

Want to start building on top of Backstage? Get a Roadie Backstage instance so you can start shipping features into your IDP without having to manage an instance. Get a demo now!

Backstage and Shifting Cloud Costs Left

Visualising cost data inside your internal developer portal has come a long way in the last 12 months. From FinOps conferences to AWS launching a more feature-rich Cost Explorer, managing costs is more mature (and more buzzy). Backstage has had the Cost Insights plugin since the very beginning (we even wrote about it back in Backstage Weekly #4), but without an aggregation point or database to store cost data before it is sent the plugin adoption has been limited.

We've thought a lot about how we can make Cost Insights easier to adopt for all of our customers (and the OSS community) and we have a plan.

Check it out!

We'll be looking for a design partner shortly. Email sam.nixon@roadie.io if you're interested.

Roadie is now on v1.30

It took us a little while to catchup to our usual cadence after the New Backend upgrade last month, but we're back on our usual cadence of being ~1 version behind the OSS project (to allow that version to settle).

That means, amongst other things:

• Notifications is a capability Roadie now has 🎉 - you won't see this in the UI at the moment, but we'll have more on it as plugins adopt the Notifications framework (including our very own Tech Insights plugin).
• New relationships, like subDomainOf
• Read the v1.27 - v1.30 release notes for more info.

This week:

• New article: The Ultimate Guide to Catalog Completeness
• New video alert: ASOS talk about their Backstage instance
• Project updates: v1.32-next is up

The Ultimate Guide to Backstage Software Catalog Completeness

You know what they say: 'Catalog completeness makes the world go round'. Or at least, it helps you get the most value from Backstage.

Roadie Founder, David Tuite, just wrote a 4,000-word (😱) article that takes a deep dive into strategies and tactics to help you get catalog completeness to 100%. It caters to self-hosted Backstage adopters and Roadie customers alike.

Check it out on the Roadie blog.

Want to start building on top of Backstage? Get a Roadie Backstage instance so you can start shipping features into your IDP without having to manage an instance. Get a demo now!

ASOS & the Backstage Community Session

E-commerce mega-company ASOS recently demoed their Backstage instance at the open source Backstage Community Session. The recording of the session is here and you can read more about ASOS and what they've done on their Medium blog.

In general, the Backstage Community Session YouTube is fantastic resource and we highly recommend checking it out for inspiration about your own Backstage instance. You can also join the fortnightly session itself - more info on the Communtiy GitHub repo.

Version 1.32-next is up

1.31 is out and the new Backend is officially at 1.0, so what do we have to expect for the next version? Well, 1.32-next is also out there so that's a question we can answer. So far:

• Some breaking changes for Jest configuration in the CLI
• Repo tools now comes with a fun backstage-repo-tools peer-deps command for validating your peer dependencies

Read the 1.31 release notes and the upcoming changes in 1.32 changelog.

This week:

• New article: How to scale Backstage
• Project updates: the new Backend reaches v1.0
• CNCF updates: a new Certified Backstage Associate programme is rolling out soon
• New video: HCA talk about self-hosting Backstage on GCP

Scaling Backstage

Last week it was Catalog performance, this week we take a deep dive into the infrastructure side of running a large Backstage instance (without breaking the bank and/or your spirit). ​ It’s hot off the press, check it out!

Want to start building on top of Backstage? Get a Roadie Backstage instance so you can start shipping features into your IDP without having to manage an instance. Get a demo now!

CNCF are launching a Certified Backstage Associate programme

The good folks over at the CNCF are launching a new qualification: the Certified Backstage Associate (CBA) programme.

Roadie folks were involved in writing the programme and we're super-excited to see how it can help grow the community.

More details can be found here. Check it out!

Video: HCA talk about how they build their Backstage IDP to accelerate cloud adoption

A few months ago at Google's Next '24 conference, HCA demoed how they built out a Backstage implementation to standardise and modernise their stack. HCA are a behemoth in terms of size and age (they were founded in 1968 and employ over 300,000 people...), so it's great to see how Backstage can help them progress on their platform and cloud journey.

Watch the video!

Version 1.31 is out

The new backend is at a stable 1.0 version, capping a monumental effort from the community. There are (and will continue to be a few breaking changes though). The biggie in this release is:

"The backwards compatibility with plugins using legacy auth through the token manager service has also been removed. This means that instead of falling back to using the old token manager, requests towards plugins that don't support the new auth system will simply fail."

Read more in the release notes.

This week:

• New article: Improving Backstage Performance
• Project updates: the new Backend is now default,
• New video: Viktor Farcic reviews Backstage (and Roadie)
• New plugins: GitHub Co-pilot Adoption Metrics, LaunchDarkly and Shortcut

Improving Backstage Performance

As Backstage instances become more successful, they tend to grow. Teams want to register all their AWS accounts or pull in 10,000s of users and groups. When that happens, performance can take a hit. You find yourself needing a way to optimise performance so that user experience doesn't suffer.

In the latest Roadie article, we share a few ideas on how to improve performance. It’s fresh off the press, check it out!

Want to start building on top of Backstage? Get a Roadie Backstage instance so you can start shipping features into your IDP without having to manage an instance. Get a demo now!

The New Backend System now default

As of Backstage 1.26, after months of non-stop dedication from maintainers and the community, the New Backstage System is now the default backend system. A lot of plugins are now adopting the new system, so we should see a rapid shift to the new setup.

Find more details about this and later releases in the release notes.

KubeCon & BackstageCon North America 2024

The line-up is out for KubeCon & BackstageCon North America in Salt Lake City. Roadie won't be presenting at this years North American edition, but the line-up is strong and we'll be there as Sponsors. This year's edition feels like a powerful statement about the progress Backstage is making - AWS, Microsoft, Booking.com, Harness and LinearB are all giving talks.

The full line-up is here. Check it out, and we'll hopefully see you there!

Video: Backstage review dive with Viktor Farcic

A new DevOps Toolkit video from Viktor Farcic landed this week. He reviewed Backstage through the lens of Roadie and gave folks a deeper look into how you could quickly configure a Backstage instance to grab some data from a kubernetes cluster. We're big fans of Viktor and loved his approach here.

Watch the video now!

New plugins: GitHub Copilot Adoption Metrics, LaunchDarkly and Shortcut

A raft of new plugins have been launched for Backstage, not least new community plugins for GitHub Copilot adoption metrics, and new Roadie plugins for LaunchDarkly and Shortcut (among others). It's a boom time for plugins!

• New article: Measuring Catalog correctness
• Project updates: Scaffolder and the New Backend System are grown-ups now
• New interview: Platforms at Saxo Bank with Jinhong and Per
• New plugin: Pulumi

Measuring Catalog correctness and completeness

A Catalog with rich information for every software asset in your organization is the ultimate dream. But you won’t get there in a day. Thus, you need a way to track your progress toward Catalog correctness and completeness.

In my latest article, I share a few ideas on how to leverage Tech Insights to do that. It’s fresh off the press, check it out!

Want to start building on top of Backstage? Get a Roadie Backstage instance so you can start shipping features into your IDP without having to manage an instance. Get a demo now!

The New Backend System is ready and will be the default

As announced with Backstage 1.18, after months of non-stop dedication from maintainers and the community, the New Backstage System is ready to use. In fact, the default exports in all backend packages will be pointing to the New Backend System modules.

The default exports for The New Backend System can enable automatic feature discovery and let you make dynamic one-line imports in your code. Find more details in the release notes.

Scaffolder to become a project area

I’m personally a big fan of Backstage’s Scaffolder, and I think it could be a great starting point for new adopters. It’s exciting to see software templates become an incubating project area within Backstage. This means ownership will be shared with more contributors, leading to greater collaboration.

The newly minted owners of the Scaffolder project area are the one and only Paul Cowan (dagda1) and Backstage regular Bogdan Nechyporenko (acierto). It’s exciting to see the team coming together to Scaffold the Scaffolder upwards!

Interview: A Platform made out of platforms

I had the privilege of interviewing Jinhong Brejnholt, Chief Cloud Architect at Saxo Bank, and Per Hedegaard, Chief Container Platform Engineer at Saxo Bank about their platform. Their office in Copenhagen is stunning and has the largest private art collection in Denmark—made me wanna move back!

Most importantly, Jinhong and Per were buzzing with excellent ideas around Platform Engineering and were very generous in sharing their insights. Watch the interview now!

New plugin: Pulumi

Pulumi just shipped a new plugin for Backstage. Using the Pulumi plugin, you can create a new Pulumi project from an organization template stored in Pulumi, run previews and updates, and run and view Deployments. The plugin provides Scaffolder templates that you can make your own. Read more in their release notes.

• New homepage widget: Recent/Top visited components
• Improved Contributing Guidelines
• New article: Custom plugins
• BackstageCon is around the corner!

Custom plugins in Backstage

The key behind a successful Backstage adoption is how well you’re solving the problems your organization is facing. And because every organization is unique, there’s no Internal Developer Portal that can cover all your use cases out of the box.

That’s when Backstage comes to the rescue: you can extend it to make it your own! In my newest article for The New Stack, I introduce this idea and show a few examples. Check it out!

Want to start building on top of Backstage? Get a Roadie Backstage instance so you can start shipping features into your IDP without having to manage an instance. Get a demo now!

Custom plugins in Roadie

Talking about custom plugins, Roadie recently released new tooling that lets customers develop and set their plugins live. Here are some advantages:

• Get a live instant preview IN your Backstage instance while developing the plugin
• Consume Backstage and third-party APIs as React hooks with built-in auth—no more fetch nagging or re-working authentication—.
• Deploy your plugin and see it live within seconds!

Learn more about how Roadie streamlined custom plugins.

Recent and Top visited components

Developers Portal can get quite large, but you most likely frequent only a few pages. Thanks to aitherios, you can now add a widget to your homepage that will keep track of those frequently visited pages for you.

The widget lets you to track visits either through a local storage or an API. Check out the widget’s documentation for more information.

This feature will be released as part of Backstage 1.19, scheduled for October 17th.

Contributing guidelines

Hacktoberfest is here! And very timely, the Backstage team streamlined the Contributing Guidelines based on feedback from the community over Discord. In this guide, you can find all the information you need to get started contributing from local setup to a walkthrough of the reviewing process.

If you’re looking for an issue to contribute, check out the help wanted tag or join the i18n initiative!

BackstageCon is around the corner!

There’s a fantastic lineup of speakers at the annual Backstage gathering! Roadie is proud to have our CEO, David Tuite, talk about tips for a successful adoption. See you there!