1 minute read

Several sets of posts this week on Prometheus and its ecosystem, coming out of the recent PromCon event. Plus discussion of being on-call, a counter-argument for those proposing building a platform and a scattering for other topics, from SBOMs to certificates.

StackHawk sponsors Devops Weekly

Fuel up for re:Invent with StackHawk and Snyk! Join us at YardBird in the Venetian on Nov 30 to start the day off right and meet some developer-first security testing buffs. RSVP now.
https://bit.ly/40lO6Ew

News

A great post with tips for being on-call. Covering why on-call is hard, and what you and your team can do to make it suck less.
https://hart-michael.medium.com/how-to-be-on-call-034e3a202729

Several good updates from the recent PromCon conference, all about Prometheus and with updates on OpenObservability, the new Perses project and more.
https://logz.io/blog/promcon-prometheus-ecosystem-updates/
https://logz.io/blog/promcon-recap-perses-project/

A nice counter argument to building your own platform. Definitely areas to consider before you make an investment, or things to watch out for if you’re building a platform.
https://wso2.com/library/blogs/why-building-a-platform-may-not-be-your-best-bet-exploring-five-critical-reasons/

A look at Certi, a tool for monitoring SSL certificate transparency and sending updates to various communication channels.
https://medium.com/@tomer.klein/certi-your-python-based-ssl-transparency-log-monitoring-tool-e2ed69295099

A double post on prometheus storage architecture. Looks at the challenge of scaling storage for time series data and recent advances.
https://blog.palark.com/prometheus-architecture-tsdb/
https://blog.palark.com/prometheus-centralized-storage-mimir/

Tools

npm now has native support for generating a software bill of materials. I think we’ll see this for other package management tools too.
https://docs.npmjs.com/cli/v10/commands/npm-sbom

Secretive is a macOS app for storing and managing SSH keys in the hardware Secure Enclave.
https://github.com/maxgoedjen/secretive

depot.ai is a container registry for public machine learning models, containing the top 100 models on Hugging Face. Nice integration with buildkit-based container build tools.
https://github.com/depot/depot.ai

Updated:

You May Also Enjoy

DEVOPS WEEKLY ISSUE #694 - 21st April 2024

less than 1 minute read

A theme of architecture this week, with posts on the development of large systems, infrastructure evolution at scale, internal developer toolchains and more.

DEVOPS WEEKLY ISSUE #693 - 14th April 2024

2 minute read

I’ve been crazy busy this week and travelling today, and with it being the start of a new quarter I thought a highlights issue, with some of the top posts fr...