1 minute read

WASM use cases, low level performance debugging, supply chain security concepts and several posts and tools for container development this week.

StackHawk sponsors Devops Weekly

Come party with StackHawk and Snyk at re:Invent! RSVP for the Code Faster. Safer. Happy Hour or stop by booth #131 to learn how these speedy security tools keep product delivery on track and the whole team happy
https://sthwk.com/reinvent-happy-hour

News

Moving a CPU heavy service to a larger instance should result in better performance. How would you debug things if it didn’t? A good technical low-level blog post.
https://netflixtechblog.com/seeing-through-hardware-counters-a-journey-to-threefold-performance-increase-2721924a2822

A good use case post on WASM, highlighting two particular real world uses of web assembly, for client/server consistency and multi-language plugin architectures.
https://blog.fiberplane.com/how-we-use-webassembly-at-fiberplane/

A good introduction to the concept of VEX, an accompaniment to a software bill of materials that describes vulnerability exploitability.
https://www.chainguard.dev/unchained/reflections-on-trusting-vex-or-when-humans-can-improve-sboms

A good talk and full transcript of a talk on deterministic software releases, with a focus on serverless environments and Java applications and tooling.
https://www.infoq.com/presentations/releases-serverless/

A four part series on getting started with open telemetry with Python. Covers manual usage, auto-instrumentation and metrics collection.
https://dev.to/ashokan/getting-started-with-opentelemetry-for-python-4882

A nice architecture post on implementing a content ranking service and then developing that into a platform for wider usage.
https://www.reddit.com/r/RedditEng/comments/z137m3/from_service_to_platform_a_ranking_system_in_go/

Tools

Wazuh is an open source tool used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments.
https://github.com/wazuh/wazuh

Finch is a new container development tool, specifically it’s an integrated distribution of lower-level tools including containerd, nerdctl, BuildKit and Lima.
https://aws.amazon.com/blogs/opensource/introducing-finch-an-open-source-client-for-container-development/
https://github.com/runfinch/finch

cdebug looks like a handy tool for debugging running containers. Support for several container runtimes, and tools for running a shell, exporting filesystems and forwarding ports to localhost.
https://iximiuz.ck.page/posts/container-tools-tips-and-tricks-issue-2
https://github.com/iximiuz/cdebug

Updated: