DEVOPS WEEKLY ISSUE #562 - 3rd October 2021
Lots of new tools this week, along with several posts on Observability, data center monitoring and SLOs. Quite a classic operations feel this issue.
StackHawk sponsors Devops Weekly
Watch our latest video to see how StackHawk is changing the way application security testing works for software delivery teams:
https://sthwk.com/explainervideo
News
A solid argument for a more specific definition of observability, and why the definition matters to solving the problems at hand.
https://www.honeycomb.io/blog/observability-5-year-retrospective/
A post on data-center scope monitoring, including the evolution from SNMP-based systems to streaming telemetry.
https://medium.com/geekculture/expanding-the-observable-universe-or-scalable-model-driven-telemetry-with-sr-linux-custom-agents-b31363abcc37
A post on the concept of zero trust supply chain security, with a full worked example using cosign and sigstore.
https://dlorenc.medium.com/zero-trust-supply-chain-security-e3fb8b6973b8
A quick introduction to SLOs and SLIs and why you should care about them. Nice quick tips as well on where to start out.
https://engineering.solarisbank.com/slos-and-why-you-should-care-136f80bf686e
A post filled with hard one observations and recommendations for improving the operability of a legacy application.
https://medium.com/@edwige.fiaclou/production-issues-the-owl-effect-8b721819dc40
If you’re working with Kubernetes you’re likely to be familiar with the kubectl command line tool. kubectl supports a plugin mechanism, and there are quite a few handy plugins for administrators covered in this post.
https://martinheinz.dev/blog/58
Tools
Connaisseur is a Kubernetes admission controller that integrates container image signature verification and trust pinning into a cluster. Under the hood it supports Notary V1 and Sigstore for signing.
https://github.com/sse-secure-systems/connaisseur
Damon is a terminal user interface for Nomad. It provides functionality to observe and interact with Nomad resources such as Jobs, Deployments, or Allocations.
https://github.com/hashicorp/damon
Automated Cloud Advisor is a tool for facilitating cost optimization in AWS, by collecting data for resources that are under utilized.
https://disneystreaming.github.io/automated-cloud-advisor/
https://github.com/disneystreaming/automated-cloud-advisor
Tremors is an event processing system for unstructured data with rich support for structural pattern-matching, filtering and transformation with features like aggregation, rollups, an ETL language, and a built-in query language.
https://github.com/tremor-rs
https://www.tremor.rs
A new version of the Puppet Development Kit is in the works, providing a new set of tools for Puppet developers, starting out with Puppet Content Templates.
https://github.com/puppetlabs/pdkgo