DEVOPS WEEKLY ISSUE #465 - 24th November 2019

2 minute read

KubeCon was all consuming last week, so I’m not sure I kept up with everything going on at the conference, never mind elsewhere. But still lots to read this week production readiness, configuration complexity, service mesh and more.

From our sponsor, VictorOps

Understanding the incident lifecycle can guide DevOps and IT engineers into a future where on-call sucks less. See how you can breakdown the stages of the incident lifecycle and use automation, transparency and collaboration to improve each stage:
https://go.victorops.com/devopsweekly-the-incident-lifecycle-guide

News

For folks who couldn’t make KubeCon, this set of posts covers many of the keynotes and some of the other highlights.
https://redmonk.com/kfitzpatrick/2019/11/18/kubecon-north-america-2019-day-0/
https://redmonk.com/kfitzpatrick/2019/11/19/kubecon-north-america-2019-day-1/
https://redmonk.com/kfitzpatrick/2019/11/20/kubecon-north-america-2019-day-2/
https://redmonk.com/kfitzpatrick/2019/11/21/kubecon-north-america-2019-day-3/

Updated large-scale research on container and Kubernetes adoption, with some interesting stats about growing adoption, popular languages and how quickly (or not) folks update Kubernetes.
https://www.datadoghq.com/container-report/

A report released by my employer at KubeCon, looking at vulnerabilities in the public Helm Chart repository. Some good stats and tips for maintainers and users to keep things secure.
https://snyk.io/helm-report

A post on production readiness, with a good example table of different properties (availability, performance, capacity and more) and a scale for different stages like alpha, beta and GA).
https://storj.io/blog/2019/11/measuring-production-readiness-using-qualification-gates/

A description of the configuration complexity curve and an introduction to the CUE configuration language and tooling.
https://blog.cedriccharly.com/post/20191109-the-configuration-complexity-curse/

This (admittedly opinionated) post is a good description of the state of service mesh. What is it? Why should you care? What about all the hype?
https://servicemesh.io/

A look at the changes to the AWS metadata server, in response to the recent Capital One breach. A good introduction to Server SIde Request Forgery and potential stringer mitigations too.
https://ejj.io/blog/fixing-capital-one

If you’re a Kubernetes administrator then having a powerful set of CLI tools installed can make management easier. This post looks at several powerful terminal tools.
https://medium.com/free-code-camp/how-to-set-up-a-serious-kubernetes-terminal-dd07cab51cd4

Events

Devopsdays New York is coming up, on the 3rd and 4th of March next year. The CFP is open now and the organisers are in particular looking for new local voices.
https://www.papercall.io/dodnyc2020

Tools

k3sup is a tool for bootstrapping a Kubernetes cluster (using K3s) on any local or remote VM. All you need is ssh access.
https://github.com/alexellis/k3sup

Fregot is a debugger and development tool for working with the Rego language used in Open Policy Agent.
https://github.com/fugue/fregot

Understanding the incident lifecycle can guide DevOps and IT engineers into a future where on-call sucks less. See how you can breakdown the stages of the incident lifecycle and use automation, transparency and collaboration to improve each stage:
https://go.victorops.com/devopsweekly-the-incident-lifecycle-guide

Updated: