A sad note to start with this week. Carolyn Van Slyck passed away last week. She was a huge part of the Kubernetes community, building interesting software and improving the whole project through involvement and leadership of various working groups focused on contributors. She’ll be missed.
StackHawk sponsors Devops Weekly
gRPC security scanning is in open beta. Scan each microservice and improve engineering best practices with StackHawk’s support for scanning gRPC services. Sign up to join the first gRPC security testing beta available in the market!
A good primer on how in-toto relates to SLSA. If you’re interested in software supply chain security this is worth a read.
An experience report of porting a project to use Dagger for CI/CD. Dagger provides a provider-agnostic framework that turns CI/CD config into a real program.
A post on incident response processes, discussing how best to plan to start responding to a new incident.
A look at using ephemeral containers in Kubernetes to aid debugging.
Considering which service mesh to use? This post breaks down a large number of different options and presents a landscape along with an interesting timeline of development in the space.
SQLite has always seen use for interesting use cases, this post looks at why it’s particularly useful for edge applications, and describes a new open source fork aimed at building a contributor community.
More of an analyst piece, looking at the challenge to mainstream cloud providers from providers offering modern application platforms.