1 minute read

Build engineering, metrics design, explaining architecture, supply chain security and PXE booting tools amongst other topics this week.

StackHawk sponsors Devops Weekly

ICYMI: DevOps empowered developers to own their apps from start to finish… So why hasn’t security kept up?? StackHawk’s CEO Joni Klippert shared how to embrace this challenge with DevOps philosophies at DevSecCon24.
https://sthwk.com/DevOps-worked

News

A detailed post on drastically reducing the build time of a large, complex Go project.
https://eng.uber.com/how-we-halved-go-monorepo-ci-build-time/

A post on the inherent complexity at scale of identity and access management, looking at the evolution of AWS IAM services, especially in relation to constant real-world S3 concerns.
https://blog.symops.com/2022/06/24/aws-whats-new-iam/

Some thoughts on explaining architecture through diagraming, in particular the advantage of scrappy videos to show diagramming step-by-step.
https://alicebartlett.co.uk/blog/how-to-explain-technical-artchitecture-with-a-natty-little-video

Measurement and metrics are an important part of devops practices, but establishing metrics always risks issues with vanity metrics. This post explains what they are and how to avoid them.
https://amplitude.com/blog/vanity-metrics

A walkthrough of new SLSA tooling for GitHub Actions to help with assuring artefact integrity to improve software supply chain security.
https://slsa.dev/blog/2022/06/slsa-github-workflows

An attempt to catalogue cloud provider vulnerabilities in a standardised way.
https://www.cloudvulndb.org/

Events

SCALE is the largest community-run open-source and free software conference in North America. It’s in its 19th year, and coming up later this month in LA on July 28th to 31st.

www.socallinuxexpo.org

During SCALE, on 29th July, it’s also DevOps Day LA. Talks on supply chain security, developer productivity, cloud engineering and more. You can get a 50% discount on tickets with the code DEVWK too.
https://www.devopsdays.org/events/2022-los-angeles/welcome/

Tools

netboot.xyz lets you PXE boot various operating system installers or utilities from a single tool over the network.
https://netboot.xyz/

Nubegen aims to easily generate Terraform and Bicep templates to bootstrap Azure project.
https://nubesgen.com/

Mist is an open source multi-cloud management platform. It provides visibility across cloud and on-premise infrastructure, along with lifecycle management features. There are also commercial add-ons available.
https://github.com/mistio/mist-ce

Updated:

You May Also Enjoy

DEVOPS WEEKLY ISSUE #694 - 21st April 2024

less than 1 minute read

A theme of architecture this week, with posts on the development of large systems, infrastructure evolution at scale, internal developer toolchains and more.

DEVOPS WEEKLY ISSUE #693 - 14th April 2024

2 minute read

I’ve been crazy busy this week and travelling today, and with it being the start of a new quarter I thought a highlights issue, with some of the top posts fr...