Posts on everything from secure supply chain, performance testing and reliable systems design to conversational architecture and team organisation. A good range of technical and people topics this week.
StackHawk sponsors Devops Weekly
Shifting security left has become a buzzword that is thrown around constantly. But what does it matter for your team? Find out:
An interesting post looking at the architecture of the recently launched James Webb space telescope. Discussion of testing, single points of failure and building reliable systems.
A paper exploring a tricky challenge, creating an automated system for performance testing able to run in CI systems.
A look at applying the approaches from the team topology book to machine learning teams.
A short set of recommendations gleaned from the fallout of Log4Shell.
Some thoughts on observability tooling consolidation and potential future tooling development.
Architecture is important, but often misunderstood (or misapplied as top down control). This article talks about why, and how to adopt a more conversational decentralised approach.
A post on building a more secure pipeline for an application, using GitHub Actions, Cosign and a range of other open source tools.
Sinker is a handy tool that syncs container images from one registry to another. This is useful in cases when you rely on images that exist in a public container registry, but need to pull from a private registry.
Shellfirm is a handy utility to help avoid running dangerous commands without an extra step of approval.