DEVOPS WEEKLY ISSUE #376 - 11th March 2018
Lots of tools this week (for deployment, managing functions as a service and conducting an open source license audit), as well as a mix of posts on canary deployments, web application firewalls, secrets management and more.
Sponsor
Take advantage of the intelligence and context in your incident management with Amazon CloudWatch and VictorOps.
http://try.victorops.com/DevOpsWeekly/AmazonCloudWatch
News
A detailed post on using automated canarying to quicken development, improve production safety and help prevent outages.
https://queue.acm.org/detail.cfm?id=3194655
Playbooks are always interesting, but generally not public. Which makes this Site Reliability Guide for mybinder.org worth mining for ideas - lots of details on deployment, accessing metrics, useful snippets and incident reports.
https://mybinder-sre.readthedocs.io/en/latest/
A discussion of the problems with web application firewalls, and a look at runtime application self-protection.
https://labs.signalsciences.com/three-ways-wafs-fail
A post on secrets management, explaining some of the theory behind standard approaches and providing a few examples.
https://sanderknape.com/2018/03/secret-management-design-decisions-theory-plus-an-example/
A look at the various commands and options for reading logs from Docker containers, including streaming logs, time slicing and searching.
https://hackernoon.com/to-boldly-log-debug-docker-apps-effectively-using-logs-options-tail-and-grep-53d2e655abcb
Pact is an interesting tool for implementing consumer-driven contract testing, a useful approach to integration testing. This post explores pact.js for testing Javascript applications, thought other Pact implementations exist.
https://itnext.io/node-js-integration-testing-with-pact-js-1a2ea8aa3116
Tools
Skaffold is a command line tool that facilitates continuous development for Kubernetes applications. It allows you to iterate on your application source code locally then deploy to local or remote Kubernetes clusters.
https://github.com/GoogleCloudPlatform/skaffold
Gloo is a new function gateway, built on top of the envoy proxy. It aims to allows users to compose gateway APIs from more granular components, i.e. the functions that compose services, rather than the services themselves.
https://gloo.solo.io/
https://github.com/solo-io/gloo
Flatcar Linuxis an immutable Linux distribution intended for containers. It’s a fork of CoreOS’s Container Linux.
https://www.flatcar-linux.org/
Licensed is a new tool to help with conducting an open source license audit, with initial support for Bower, Bundler, Cabal, Go and NPM.
https://github.com/github/licensed
Take advantage of the intelligence and context in your incident management with Amazon CloudWatch and VictorOps.
http://try.victorops.com/DevOpsWeekly/AmazonCloudWatch