2 minute read

For all the folks starting holidays at this time of year, think of all of the systems administrators and others keeping the lights on. Here’s hoping everyone has quite on-call shifts.

For mysterious reasons issue #468 didn’t go out last Sunday as intended, so this weekend you should have a double issue to read.

From our sponsor, VictorOps

Ever find yourself asking, “How do I write Ansible playbooks for new Terraform servers?” Well, this new walkthrough from Splunk + VictorOps has your answer:
https://go.victorops.com/devopsweekly-ansible-playbooks-with-terraform

News

Lots of good sysadvent posts this week, including on error budgets, generating Inspec from Terraform, and introduction to data management with IRODS and more.
https://sysadvent.blogspot.com/2019/12/day-19-sre-practice-error-budgets.html
https://sysadvent.blogspot.com/2019/12/day-22-metadata-rich-rule-based-object.html
https://sysadvent.blogspot.com/2019/12/day-18-generating-compliance-as-code.html

It’s easy to take API-driven infrastructure for granted if you don’t know what’s going on under the hood. This post presents a nice story of trying to build a hardware based cloud-like experience.
https://thebsdbox.co.uk/2019/12/08/The-alchemy-of-turning-bare-metal-into-a-cloud/

A good data migration story, in this case moving a data processing system over to BigQuery and then backfilling billions of events worth of data.
https://itnext.io/parsing-18-billion-lines-json-with-go-738be6ee5ed2

Introducing new terms is always fun, and one of those that’s garnered lovers and haters this last year has been devsecops. This post jumps in and breaks down some of the what, why and what’s next.
https://www.slideshare.net/littleidea/devsecops-the-end-of-the-beginning-austin

Scaling down is as important as scaling up, whether you’re thinking about single node, edge or development use cases. This post looks at a new OpenFaaS provider for containerd which removes the need for an orchestrator.
https://blog.alexellis.io/faas-containerd-serverless-without-kubernetes/

An interesting idea to support running commands on EC2 instances via Lambda functions rather than managing SSH jump boxes and the like.
https://www.transposit.com/blog/2019.12.18-using-lambda-as-an-ssh-proxy/

With the ever wider usage of YAML for authored configuration the pointy edges of the spec are a common way of introducing bugs. A post on the problems with implicit typing in YAML and what you should do about it.
https://hitchdev.com/strictyaml/why/implicit-typing-removed/

A handy checklist for running a service on Kubernetes. Covers everything from on-call and other operational concerns to CI/CD, security and application configuration.
https://srcco.de/posts/web-service-on-kubernetes-production-checklist-2019.html

Tools

Ytt is a new templating engine for YAML with a few interesting properties. The templates themselves are valid YAML documents and the focus is on data rather than text.
https://github.com/k14s/ytt
https://get-ytt.io/

Kube-query is an extension for osquery which allows for querying the state of your Kubernetes cluster using osquery and SQL.
https://github.com/aquasecurity/kube-query

Ever find yourself asking, “How do I write Ansible playbooks for new Terraform servers?” Well, this new walkthrough from Splunk + VictorOps has your answer:
https://go.victorops.com/devopsweekly-ansible-playbooks-with-terraform

Updated: