DEVOPS WEEKLY ISSUE #669 - 22nd October 2023
Posts on chaos engineering for security, DORA metrics for incident management and vulnerability management for containers this week, along with tools from API Gateways to AI-based developer assistants.
StackHawk sponsors Devops Weekly
Headed to Austin for LASCON? Stop by booth #10 to learn about StackHawk’s automated API security testing.
News
A look at applying some of the DORA findings to improving incident management practices.
https://firehydrant.com/ebook/dora-2023-incident-management/
A post looking at utilising chaos engineering practices to test for potential security issues.
https://www.datadoghq.com/blog/chaos-engineering-for-security/
How does Platform Engineering change the interaction between development and operations teams? It depends on the specific business problem you’re trying to solve.
https://thenewstack.io/at-run-time-driving-outcomes-with-a-platform-engineering-team/
A detailed post on vulnerability management, in particular looking at the complexity and patterns of vulnerabilities when it comes to container images.
https://eng.lyft.com/vulnerability-management-at-lyft-enforcing-the-cascade-part-1-234d1561b994
Tools
KrakenD is a high performance API Gateway designed around a stateless architecture and minimising operational cost.
https://github.com/krakend/krakend-ce
https://www.krakend.io/open-source
gittuf provides a security layer for Git using The Update Framework (TUF). gittuf handles key management for users of the repository, allowing for setting permissions for repository branches, tags, files and more.
https://github.com/gittuf/gittuf
https://gittuf.github.io/
Tabby is a self-hosted AI coding assistant, offering an open-source and on-premises alternative to GitHub Copilot that supports running on consumer GPUs.
https://github.com/TabbyML/tabby
https://tabby.tabbyml.com/
Helix is a modern console-based editor, integrating tree-sitter for syntax-highlighting and formatting, language-server for interoperability with various plugins, and implemented in Rust.
https://helix-editor.com/
https://github.com/helix-editor/helix