Lots of great content this week, from post-indent reviews to infosec/operations collaboration, microservices testing, API transport options and more.

From our sponsor, VictorOps

Our people and tools need to be connected now more than ever before. That’s why VictorOps is offering free, 90-day extended Enterprise trials for on-call incident response and alert management, up to 100 users, to anyone who needs it:
https://go.victorops.com/devopsweekly-extended-trials-for-incident-response

News

Post-incident reviews are increasingly common, but how many of them focus on learning from incidents vs blame or simplistic understanding? This deck contains lots of tips for how to improve the practice.
https://speakerdeck.com/jallspaw/incident-analysis-how-star-learning-star-is-different-than-star-fixing-star

A detailed tutorial on how to build a GitHub Action. Covers everything from managing dependencies to testing and releasing the Action.
https://jeffrafter.com/releasing-github-actions/

A podcast recording (and handily notes) on microservices testing approaches, covering everything from bridging technology generations to the pros and cons of local tools vs remote/staging environments.
https://www.getambassador.io/podcasts/podcast-livin-on-the-edge-podcast-3-matt-klein-on-testing-microservices-and-building-cloud-platforms/

An in-depth post on the need for coordination between operations and information security folks, looking at the benefits of organising games to improve coordination.
https://swagitda.com/blog/posts/shall-we-play-a-coordination-game/

A series of blog posts looking at the foundations of Open Policy Agent, and exploring the Rego policy language.
https://blog.openpolicyagent.org/rego-design-principle-1-syntax-should-reflect-real-world-policies-e1a801ab8bfb
https://blog.openpolicyagent.org/rego-design-principle-2-embrace-hierarchical-data-8a4913bdfea1
https://blog.openpolicyagent.org/rego-design-principle-3-optimize-performance-automatically-2d29ad3ce96d

An opinionated take on API transports, comparing gRPC, OpenAPI and REST style APIs and when to choose which option.
https://cloud.google.com/blog/products/api-management/understanding-grpc-openapi-and-rest-and-when-to-use-them

A look at building a LinuxKit virtual machine to run on Azure, specifically for running container workloads.
https://stevenfollis.com/2020/04/17/creating-a-minimal-os-for-containers-with-linuxkit-and-azure/

A post on hosting your own Helm Chart repository on Google Cloud, using Terraform and CircleCI in the mix.
https://medium.com/@swade1987/creating-a-helm-repo-on-google-cloud-d970cccb60c9

If you find yourself writing or editing lots of Kubernetes YAML files in Vim this post is for you. It shows how to configure a language server to provide autocompletion and inline hints for the various properties.
https://octetz.com/docs/2020/2020-01-06-vim-k8s-yaml-support/

A good list for anyone interested in bare metal provisioning and management tools.
https://github.com/alexellis/awesome-baremetal

Tools

Pomerium is an identity-aware proxy that enables secure access to internal applications, providing an interesting alternative to custom authentication systems and VPNs.
https://github.com/pomerium/pomerium

Our people and tools need to be connected now more than ever before. That’s why VictorOps is offering free, 90-day extended Enterprise trials for on-call incident response and alert management, up to 100 users, to anyone who needs it:
https://go.victorops.com/devopsweekly-extended-trials-for-incident-response