Lots of observability posts this week, from introductions to instrumentation to consideration for data engineering. Plus software bill of material standards, the complexities of branching, security posture management and more.
StackHawk sponsors Devops Weekly
On July 28, ZAP Creator Simon Bennetts is giving a first look at ZAP’s new automation framework. Grab your spot:
The NTIA Multistakeholder process has published the minimum elements for a software bill of materials. Lower level than most considers will care for, but lots happening in this space at the moment on the standards and early tooling fronts.
A look at the tradeoffs between testing in a pipeline and observability in production for data engineering.
A post describing 6 categories of security posture in need of management, from cloud and applications to identity and devices.
The OpenTelemetry standard is making it easier for generic client libraries to have built-in instrumentation, but there are still interesting tradeoffs and design decisions as discussed in this post.
Large open source projects have interesting dynamics. This thoughtful post from the Knative project considers whether a project or product mindset would be best for the long term future of the project.
A post on the complexity of branching strategies and the fact many teams just take that friction for granted rather than try something simpler.
A deep dive on what’s happening under the hood of AWS Lambda.
An example of using Google Cloud, Pulumi and Debezium, a Change Data Capture framework, to build a fault tolerant event driven architecture.
A nice summary of what observability is and why it’s important.
A handy Kubernetes operator that simplifies the management of Role Bindings and Service Accounts, using a declarative configuration for RBAC with new custom resources.
Moco is a MySQL operator on Kubernetes using GTID-based semi-synchronous replication.