DEVOPS WEEKLY ISSUE #502 - 9th August 2020

1 minute read

Lots of interesting tools this week, include a new container runtime and a new Envoy-based service mesh. Also posts covering anti-patterns for digital transformation, a recent public container registry incident review and information dashboard design.

env0 sponsors Devops Weekly

Kubernetes + Namespaces + Terraform = a powerful combo for managing and scaling lots of environments. Omry dives deep on how to set it all up and make your life easier.
https://www.env0.com/l/devops-kubernetes-namespaces

News

A list of anti-patterns for transformation projects in large organisations. Good advice on choosing technology, technical management, roadmaps and more.
https://www.mckinsey.com/business-functions/mckinsey-digital/our-insights/ten-antipatterns-that-are-derailing-technology-transformations

A detailed incident review for the recent Quay container registry outage. Reading these sorts of reviews can help everyone learn from incidents, this one related to a storm of database connections.
https://www.openshift.com/blog/about-the-quay.io-outage-post-mortem

A great post on dashboard design, with lots of reasoning, hints, tips and examples.
https://aws.amazon.com/builders-library/building-dashboards-for-operational-visibility/

A look at several tools that are useful to validating and testing Kubernetes configuration files. Useful comparison table and examples of each of the different tools.
https://learnk8s.io/validating-kubernetes-yaml

A good discussion of all things Service Mesh and the SMI specification.
https://www.arresteddevops.com/service-mesh/

A post on using Conftest and Regula to help write secure Terraform code and test as part of a CI process.
https://dev.to/prince_of_pasta/securing-your-terraform-pipelines-with-conftest-regula-and-opa-4hkh

Tools

Open Service Mesh is a new lightweight, extensible, service mesh for dynamic microservice environments. It provides out-of-the-box observability features and uses SMI for configuration.
https://openservicemesh.io/
https://github.com/openservicemesh/osm

Sysbox is a new container runtime that makes it easier to run low-level software, like Systemd, Docker, and Kubernetes, in containers. You can run it with Docker too due to the pluggable runtimes feature.
https://github.com/nestybox/sysbox

We’re starting to see application frameworks and developer tools provide high-level abstractions for running on platforms like Kubernetes. Tye is an interesting .NET tool that eases running .NET applications on cloud native platforms.
https://github.com/dotnet/tye

Turandot allows for using TOSCA with Kubernetes. TOSCA provides a high-level service description aimed at portability and interoperability between underlying infrastructure.
https://turandot.puccini.cloud/

Copper is a configuration file validator for Kubernetes. It supports writing bespoke tests using a built-in Javascript DSL.
https://github.com/cloud66-oss/copper

Updated: