DEVOPS WEEKLY ISSUE #455 - 15th September 2019

3 minute read

A quick shout out to say the 10 year Devopsdays anniversary event is coming up, at the end of October in Ghent. The term devops was coined for the very first event, and 10 years seems something of a milestone. https://devopsdays.org/events/2019-ghent/welcome/

From our sponsor, VictorOps

Machine learning is already being used in many DevOps processes – driving highly efficient workflows across the entire software delivery lifecycle. See how machine learning is currently being used to improve incident management and response in production environments:
http://try.victorops.com/devopsweekly/machine-learning-and-incident-management

News

SSH is still the ubiquitous solution to remote management, and most of those use public keys to authenticate. This post argues we’ve collectively got this wrong, and the user experience and security when using SSH certificates is much superior.
https://smallstep.com/blog/use-ssh-certificates/

An interesting presentation on instrumenting your applications, covering consuming instrumentation, writing code that is easy to instrument and writing the instrumentation itself.
https://speakerdeck.com/jcchavezs/instrumentation-fly-safe-in-production

I’ve been experimenting with Octant recently, which is a new Kubernetes dashboard with lots of functionality built-in as well as a nifty plugin mechanism. This post is a good introduction.
https://cormachogan.com/2019/09/10/a-first-look-at-octant-visualizing-your-k8s-clusters/

The latest Accelerate State of Devops report is out, featuring insights about how organisations are using cloud, models for improving organisational performance and lots of data about devops adoption.
https://cloud.google.com/blog/products/devops-sre/the-2019-accelerate-state-of-devops-elite-performance-productivity-and-scaling

A useful post on security-minded code review for Kubernetes applications and configuration, featuring a checklist of things you should be considering when looking at third party code in particular.
https://pushbuildtestdeploy.com/security-code-review-for-public-kubernetes-and-helm-code/

Distributed tracing is still a new concept to lots of folks, and this post does a great job of introducing tracing from the basics, and explains the various terms from scratch.
https://kinvolk.io/blog/2019/09/a-shallow-dive-into-distributed-tracing/

Open Standards are just as important as Open Source, and projects like Open Telemetry are good examples of making software more compatible. This post covers some recent news about existing agents adopting Open Telemetry.
https://www.datadoghq.com/blog/opentelemetry-instrumentation/

Observations about new Serverless frameworks running on top of KUbernetes, in particular at CloudState which builds on Knative and focuses on stateful services.
http://blog.thestateofme.com/2019/09/10/stateful-serverless/

Helm 3 is nearing release, and resolves lots of the concerns folks had about Helm 2, as well as adding some useful new capabilities. This post covers how to migrate to the new version given the old Tiller controller is no more.
https://helm.sh/blog/migrate-from-helm-v2-to-helm-v3/

How we organise work often has an impact on the work we deliver. This epic post looks at outcomes vs outputs, local vs global optimisation and several other antipatterns when looking to most more quickly in the right direction.
https://medium.com/sooner-safer-happier/agility-build-the-right-thing-69d316aeb56b

Always interesting to see experience reports from Devopsdays events. My experience is some of these points are quite local, but some useful observations about what folks are talking and thinking about at the moment.
https://www.darkcoding.net/software/a-developer-goes-to-a-devops-conference/

Events

KubeCon and CloudNativeCon North America are coming up in San Diego from the 18th until the 21st of November. The schedule has just been announced and it’s packed with talks on the CNCF projects like Kubernetes, Envoy, Helm as well as case studies, community meetings and more. The schedule is extended with separate focused events on the first day, each one on a specific topic including security, CI/CD and Observability. Hope to see a few readers in San Diego.
http://bit.ly/2ko9SrP

The O’Reilly Velocity Conference heads to Berlin, 4–7 November. Velocity is the best place on the planet for web ops and systems engineering professionals to get expert insight on building and maintaining cloud native systems. With 4 days of practical content on cloud native infrastructure, DevOps, Kubernetes, and more, there’s something for everyone. Passes start at €596 when you use the code DEVW20 (applies to Gold, Silver, and Bronze passes). Offer expires 20 September. Register today!
https://oreil.ly/99PIf

Tools

Kuma is another new service mesh, described as a universal control-plane for Service Mesh and Microservices that can run and be operated natively across both Kubernetes and VM environments,
https://kuma.io/
https://github.com/Kong/kuma

Machine learning is already being used in many DevOps processes – driving highly efficient workflows across the entire software delivery lifecycle. See how machine learning is currently being used to improve incident management and response in production environments:
http://try.victorops.com/devopsweekly/machine-learning-and-incident-management

Updated: