DEVOPS WEEKLY ISSUE #488 - 3rd May 2020

1 minute read

Several architecture posts this week, along with posts looking at modern continuous deployment tools, shell scripting, complexity and more.

From our sponsor, VictorOps

Our people and tools need to be connected now more than ever before. That’s why VictorOps is offering free, 90-day extended Enterprise trials for on-call incident response and alert management, up to 100 users, to anyone who needs it:
https://go.victorops.com/devopsweekly-extended-trials-for-incident-response

News

A detailed summary of modern deployment tools, looking at Jenkins-X, Flux and ArgoCD. A nice mix of facts and opinions.
https://blog.container-solutions.com/fluxcd-argocd-or-jenkins-x-which-is-the-right-gitops-tool-for-you

A well documented set or security architecture antipatterns, mainly focused on the risks of management access.
https://www.ncsc.gov.uk/whitepaper/security-architecture-anti-patterns

A set of posts looking at Tekton, explaining what it is (a platform for building CD tools) and why it’s important.
https://medium.com/relay-sh/whats-going-on-with-tekton-part-1-9c3e006d39fc
https://medium.com/relay-sh/whats-going-on-with-tekton-part-2-ab39176c9c45

Bash (or shell scripts in general) are still incredibly useful. This post points out a few common problems, and pointers for writing better bash scripts.
https://blog.yossarian.net/2020/01/23/Anybody-can-write-good-bash-with-a-little-effort

A comprehensive body of knowledge around modern digital and IT practices, based on Agile, cloud-native, Lean, and DevOps principles.
https://gitlab.com/theopengroup/dpbok-community-edition

While it can be easy to think everyone already has automated deploying applications, it’s definitely not the case. This post contains a good list of benefits for those still making the business case.
https://octopus.com/blog/the-five-big-benefits-of-automated-deployment

A useful look at extracting binaries from container images without needing to pull the full image. Another example of the flexibility of the OCI spec.
https://medium.com/@thomas.shaw78/extracting-a-single-artifact-from-a-docker-image-without-pulling-3fc038a6e57e

A look at adding policy controls (using Open Policy Agent and Conftest) to Terraform deployments using Atlantis.
https://marcyoung.us/post/atlantis-opa/

Something that has a lot of bearing on operations is complexity, and I think this post points to one issue with seemingly simple services being complex to operate in aggregate.
https://ferd.ca/complexity-has-to-live-somewhere.html

Jobs

King is looking for new members for the Infrastructure engineering team to help manage the streaming data platform and the MySQL based backend for its games. Are you interested in helping games develop faster and scale to global presence, take a look at our open roles.
https://careers.king.com/jobs/job/14780-site-reliability-engineer-technology/

Tools

Kubexit is a command supervisor for coordinated Kubernetes pod container termination. The README has a nice set of use cases that explain where it’s useful.
https://github.com/karlkfi/kubexit

Our people and tools need to be connected now more than ever before. That’s why VictorOps is offering free, 90-day extended Enterprise trials for on-call incident response and alert management, up to 100 users, to anyone who needs it:
https://go.victorops.com/devopsweekly-extended-trials-for-incident-response

Updated: