Several posts this week on the Terraform licence change, covering the spectrum of opinions. Plus posts on attestation framework, actions from incident management, monitoring CoreDNS and more.
StackHawk sponsors Devops Weekly
[Aug. 31 @ 10 AM PT] StackHawk Office Hours: GitHub Insights. Unify developer tooling with StackHawk and GitHub—Automate security testing in familiar developer workflows to increase productivity and collaboration.
A three part series on incident management, and in particular the different actions we might decide to take following an incident.
Terraform, and other Hashicorp tools, are changing their licence terms, adopting the BSL and moving away from the open source MPL licence.
With the changes to Terraform’s licence, lots of folks are thinking about what this means for them? This post takes the view of a CTO and breaks down a few areas of interest.
Some in the Terraform community are looking at what they can do, with a proposal for a fork under a new open source foundation if the change goes through.
Running CoreDNS? This set of posts is a good review of the metrics you should be caring about, and how to monitor them.
Cold start times are still a topic of discussion for serverless applications. This post discusses using AWS Lambda and API Gateway to debug problems, using a Node application example.
Amplification is an opinionated platform for building Node.js apps. It’s intended to remove a lot of repeated work on application infrastructure, generating APIs, tools for data modelling and more.
TACOS is a framework for attesting to the development practices of open source projects. It’s intended to solve some of the requirements in the NIST Secure Software Development Framework (SSDF).