1 minute read

A couple of posts this week looking at the recent Accelerate State of Devops research, along with a few behind the scenes of Kubernetes (on dual stack networking and container attached storage) and other interesting posts on supply chain security.

StackHawk sponsors Devops Weekly

Did you know that one of the greatest application security risks is API security? Learn what API security testing is, how it works, and how you can implement it in CI/CD in this guide.
https://sthwk.com/API-security

News

Supply chain security is an increasingly important topic. This presentation explains why it’s important, with well explained recent examples and a breakdown of the SLSA framework for categorizing threats and related open source projects.
https://docs.google.com/presentation/d/1moTIDDqTtqyD7ylaHxqtPSBa-a8XEZa6P-03-YuVDA4/mobilepresent

Slides with a great update on the state of devops in 2021, featuring recent research and looking at SPACE, a framework for measuring productivity.
https://www.slideshare.net/nicolefv/vmware2021-why-even-devop-nicolefv

Anything that helps get away from credentials in CI pipelines is a good thing. This post looks at federated ID, and specifically OpenID Connect usage in GitHub Actions.
https://blog.alexellis.io/deploy-without-credentials-using-oidc-and-github-actions/

Kubernetes now has dual stack networking support, for IPv4 and IPv6. This post is a nice behind-the-scenes look at the hard work behind the scenes to implement such a large feature.
https://containerjournal.com/features/dual-stack-networking-in-kubernetes/

A look at the 2021 Accelerate State of Devops Report, with observations about the relationship between Devops and SRE, risk taking, multi-cloud and security.
https://rootly.io/blog/google-s-state-of-devops-2021-report-what-sres-need-to-know

A post on the new OpenEBS release, which also acts as a good introduction to container attached storage in Kubernetes.
https://blog.mayadata.io/why-openebs-3.0-for-kubernetes-and-storage

Tools

CloudGraph is a GraphQL powered search engine for your cloud infrastructure. Handy for a number of use cases. The docs have some nice query examples too.
https://github.com/cloudgraphdev/cli

Updated:

You May Also Enjoy

DEVOPS WEEKLY ISSUE #694 - 21st April 2024

less than 1 minute read

A theme of architecture this week, with posts on the development of large systems, infrastructure evolution at scale, internal developer toolchains and more.

DEVOPS WEEKLY ISSUE #693 - 14th April 2024

2 minute read

I’ve been crazy busy this week and travelling today, and with it being the start of a new quarter I thought a highlights issue, with some of the top posts fr...