DEVOPS WEEKLY ISSUE #601 - 3rd July 2022
Build engineering, metrics design, explaining architecture, supply chain security and PXE booting tools amongst other topics this week.
StackHawk sponsors Devops Weekly
ICYMI: DevOps empowered developers to own their apps from start to finish… So why hasn’t security kept up?? StackHawk’s CEO Joni Klippert shared how to embrace this challenge with DevOps philosophies at DevSecCon24.
https://sthwk.com/DevOps-worked
News
A detailed post on drastically reducing the build time of a large, complex Go project.
https://eng.uber.com/how-we-halved-go-monorepo-ci-build-time/
A post on the inherent complexity at scale of identity and access management, looking at the evolution of AWS IAM services, especially in relation to constant real-world S3 concerns.
https://blog.symops.com/2022/06/24/aws-whats-new-iam/
Some thoughts on explaining architecture through diagraming, in particular the advantage of scrappy videos to show diagramming step-by-step.
https://alicebartlett.co.uk/blog/how-to-explain-technical-artchitecture-with-a-natty-little-video
Measurement and metrics are an important part of devops practices, but establishing metrics always risks issues with vanity metrics. This post explains what they are and how to avoid them.
https://amplitude.com/blog/vanity-metrics
A walkthrough of new SLSA tooling for GitHub Actions to help with assuring artefact integrity to improve software supply chain security.
https://slsa.dev/blog/2022/06/slsa-github-workflows
An attempt to catalogue cloud provider vulnerabilities in a standardised way.
https://www.cloudvulndb.org/
Events
SCALE is the largest community-run open-source and free software conference in North America. It’s in its 19th year, and coming up later this month in LA on July 28th to 31st.
www.socallinuxexpo.org
During SCALE, on 29th July, it’s also DevOps Day LA. Talks on supply chain security, developer productivity, cloud engineering and more. You can get a 50% discount on tickets with the code DEVWK too.
https://www.devopsdays.org/events/2022-los-angeles/welcome/
Tools
netboot.xyz lets you PXE boot various operating system installers or utilities from a single tool over the network.
https://netboot.xyz/
Nubegen aims to easily generate Terraform and Bicep templates to bootstrap Azure project.
https://nubesgen.com/
Mist is an open source multi-cloud management platform. It provides visibility across cloud and on-premise infrastructure, along with lifecycle management features. There are also commercial add-ons available.
https://github.com/mistio/mist-ce