DEVOPS WEEKLY ISSUE #675 - 3rd December 2023
Posts on observability, large systems evolution, software supply chain security, architecture principles and AWS re:Invent this week.
StackHawk sponsors Devops Weekly
StackHawk users can now manage vulnerability findings directly from Security in Jira alongside other issues. Learn how recent enhancements to the integration have simplified vulnerability management for teams using Jira.
https://sthwk.com/stackhawk-in-jira
News
An argument for treating observability instrumentation as a first class part of software development, in the same way that unit tests have become.
https://www.honeycomb.io/blog/observability-is-about-confidence
An interesting post looking behind the scenes of an internal data platform. Focused on the evolution of the software, and the metrics used to drive those improvements.
https://medium.com/pinterest-engineering/a-glimpse-into-the-redesigned-goku-ingestor-vnext-at-pinterest-d68159473464
A talk from the recent ACM SCORED event on how Google manages open source supply chain security.
https://www.youtube.com/watch?v=6H-V-0oQvCA
A post on simplicity in software systems, how its benefits compound, and how it generally requires design work to achieve.
https://commandcenter.blogspot.com/2023/12/simplicity.html
AWS re:Invent finished up a week or so ago. This set of posts contains raw notes from sessions across the 5 days.
https://medium.com/@AaronKalair/aws-reinvent-2023-day-1-monday-6a6c1c938b2e
https://medium.com/@AaronKalair/aws-reinvent-2023-day-2-tuesday-28d8ca739396
https://medium.com/@AaronKalair/aws-reinvent-day-3-wednesday-e8d2a144e0f1
https://medium.com/@AaronKalair/aws-reinvent-2023-day-4-thursday-095aafec0deb
https://medium.com/@AaronKalair/aws-reinvent-2023-day-5-friday-f9cf24273523
A deep dive into how Kubernetes CPU requests and limits work.
https://www.datadoghq.com/blog/kubernetes-cpu-requests-limits/
Tools
open-appsec builds on machine learning to provide preemptive web app & API threat protection against OWASP-Top-10 and zero-day attacks. It can be deployed as an add-on to Kubernetes Ingress, NGIN, and API Gateways.
https://github.com/openappsec/openappsec