DEVOPS WEEKLY ISSUE #563 - 10th October 2021
A couple of posts this week looking at the recent Accelerate State of Devops research, along with a few behind the scenes of Kubernetes (on dual stack networking and container attached storage) and other interesting posts on supply chain security.
StackHawk sponsors Devops Weekly
Did you know that one of the greatest application security risks is API security? Learn what API security testing is, how it works, and how you can implement it in CI/CD in this guide.
https://sthwk.com/API-security
News
Supply chain security is an increasingly important topic. This presentation explains why it’s important, with well explained recent examples and a breakdown of the SLSA framework for categorizing threats and related open source projects.
https://docs.google.com/presentation/d/1moTIDDqTtqyD7ylaHxqtPSBa-a8XEZa6P-03-YuVDA4/mobilepresent
Slides with a great update on the state of devops in 2021, featuring recent research and looking at SPACE, a framework for measuring productivity.
https://www.slideshare.net/nicolefv/vmware2021-why-even-devop-nicolefv
Anything that helps get away from credentials in CI pipelines is a good thing. This post looks at federated ID, and specifically OpenID Connect usage in GitHub Actions.
https://blog.alexellis.io/deploy-without-credentials-using-oidc-and-github-actions/
Kubernetes now has dual stack networking support, for IPv4 and IPv6. This post is a nice behind-the-scenes look at the hard work behind the scenes to implement such a large feature.
https://containerjournal.com/features/dual-stack-networking-in-kubernetes/
A look at the 2021 Accelerate State of Devops Report, with observations about the relationship between Devops and SRE, risk taking, multi-cloud and security.
https://rootly.io/blog/google-s-state-of-devops-2021-report-what-sres-need-to-know
A post on the new OpenEBS release, which also acts as a good introduction to container attached storage in Kubernetes.
https://blog.mayadata.io/why-openebs-3.0-for-kubernetes-and-storage
Tools
CloudGraph is a GraphQL powered search engine for your cloud infrastructure. Handy for a number of use cases. The docs have some nice query examples too.
https://github.com/cloudgraphdev/cli