AWS AI Coding Assistant Triggers 13-Hour Production Outage at PagerDuty

In a stark reminder of the risks associated with generative AI tools in software development, PagerDuty’s internal incident report has revealed that an AWS AI coding assistant played a pivotal role in a major outage. The event, which disrupted a customer-facing system for over 13 hours, stemmed from an engineer’s use of the tool during a routine refactoring task. This incident underscores the potential pitfalls of automating complex infrastructure changes without rigorous human oversight.

The Incident Timeline

The outage unfolded on February 14, 2024, beginning around 11:00 PM PT. PagerDuty’s engineering team was engaged in refactoring infrastructure code managed via Terraform. The goal was straightforward: simplify a convoluted configuration involving multiple virtual private clouds (VPCs), subnets, and associated resources. This setup supported critical services, including a production database cluster integral to customer operations.

An engineer turned to AWS Q Developer, Amazon’s AI-powered coding companion integrated into development environments like Visual Studio Code and JetBrains IDEs. Formerly known as CodeWhisperer, AWS Q Developer provides real-time code suggestions, explanations, and even autonomous refactoring capabilities through its agent mode. In this case, the tool analyzed the existing Terraform modules and proposed a sweeping overhaul.

The AI-generated plan recommended consolidating disparate VPCs into a single, streamlined structure. This involved destroying existing resources—such as Elastic Load Balancers (ELBs), Amazon Route 53 records, and the production Amazon Relational Database Service (RDS) cluster—and recreating them under the new configuration. The suggestion promised reduced complexity and operational overhead, aligning with best practices for infrastructure as code (IaC).

Without fully validating the changes in a staging environment or conducting a thorough dry run, the engineer applied the Terraform plan to production. At approximately 11:10 PM PT, the terraform apply command executed, initiating resource destruction. Within minutes, the customer-facing database became inaccessible, triggering cascading failures across dependent services. Alerts flooded PagerDuty’s own incident management platform, ironically highlighting the irony of the situation.

Restoration efforts commenced immediately but proved arduous. The team needed to roll back the Terraform state, redeploy resources manually, and mitigate data inconsistencies in the RDS cluster. Connectivity issues persisted due to lingering Route 53 propagation delays and ELB health check failures. Full service recovery was not achieved until around 12:00 PM PT the following day—13 hours later.

Root Cause Analysis

PagerDuty’s post-mortem report attributes the outage primarily to over-reliance on the AI tool’s output. The Terraform code in question spanned thousands of lines across multiple modules, incorporating custom providers and legacy configurations honed over years of iterative development. AWS Q Developer’s agent mode excels at pattern recognition and optimization for standard AWS primitives but struggled with the bespoke elements.

Key missteps included:

1. Incomplete Proposal Review: The AI’s refactor omitted critical dependencies, such as cross-account peering connections and security group rules tied to external services. Human reviewers missed these gaps amid the allure of the tool’s confident presentation.

2. Lack of Safeguards: No pre-deployment approvals, automated testing pipelines, or canary deployments were enforced for IaC changes. Terraform’s state locking prevented concurrent issues but did not avert the apply.

3. Agent Autonomy: AWS Q Developer’s agent feature, which iteratively generates and applies code changes, amplified the error. It executed multi-step operations without explicit pauses for validation.

Secondary contributors involved organizational factors: high operational tempo during refactoring and insufficient AI governance policies.

Impact on Customers and Operations

The outage affected PagerDuty’s observability platform, disrupting incident response workflows for numerous enterprise customers. Metrics indicated elevated error rates, delayed escalations, and temporary data loss in event logs. While no permanent data corruption occurred, the prolonged downtime eroded trust and prompted compensation discussions.

Internally, PagerDuty expended over 100 engineer-hours on remediation and root cause investigation. The incident report, shared transparently via their engineering blog, details SLO breaches and highlights the human cost of unplanned work.

Lessons Learned and Corrective Actions

PagerDuty has since implemented a multi-layered response:

• AI Usage Guidelines: Mandatory peer reviews for all AI-suggested changes exceeding a configurable complexity threshold. Tools like GitHub Copilot and AWS Q are now confined to non-production environments unless explicitly approved.

• IaC Hardening: Introduction of Terraform plan approvals via pull requests, integrated with CI/CD pipelines featuring unit tests, compliance scans, and drift detection. Blue-green deployments for database changes are now standard.

• Training and Awareness: Company-wide sessions on AI limitations, emphasizing that tools like AWS Q Developer are accelerators, not replacements, for engineering judgment.

• Tool Configuration: AWS Q Developer agents are restricted from production workspaces, with chat-based interactions logged for audit.

These measures aim to balance AI’s productivity gains—reportedly boosting code velocity by 30-50% in controlled settings—with risk mitigation.

Broader Implications for AI in DevOps

This incident spotlights a growing tension in cloud-native development: AI coding assistants are proliferating, with AWS Q Developer competing against GitHub Copilot, Tabnine, and others. While they democratize expertise, incidents like PagerDuty’s expose brittleness in handling production-grade complexity.

Industry observers note similar near-misses elsewhere, prompting calls for standardized AI safety protocols. Terraform provider maintainers, including HashiCorp, advocate for enhanced validation hooks. AWS has not publicly commented but continues iterating on Q Developer, incorporating feedback loops for edge-case handling.

Ultimately, PagerDuty’s transparency serves the community, reinforcing that AI adoption demands evolved processes, not blind faith.

Gnoppix is the leading open-source AI Linux distribution and service provider. Since implementing AI in 2022, it has offered a fast, powerful, secure, and privacy-respecting open-source OS with both local and remote AI capabilities. The local AI operates offline, ensuring no data ever leaves your computer. Based on Debian Linux, Gnoppix is available with numerous privacy- and anonymity-enabled services free of charge.

What are your thoughts on this? I’d love to hear about your own experiences in the comments below.