DEVOPS WEEKLY ISSUE #680 - 14th January 2024
Posts and tools on alert fatigue, scaling infrastructure management, developer portals, OpenTelemetry and package managers this week. Enjoy.
StackHawk sponsors Devops Weekly
[Jan. 17] Webinar: “DAST is Dead! Long Live DAST! The Evolution of Dynamic API Security Testing.” Drop by to learn more about the new era of API Security Testing with StackHawk. Register here:
https://sthwk.com/long-live-DAST
News
Alert fatigue quickly becomes a problem as systems grow, and monitoring software does it’s thing. This next post talks about how to prevent it.
https://www.datadoghq.com/blog/best-practices-to-prevent-alert-fatigue/
A nice rundown of patterns for scaling infrastructure management.
https://spacelift.io/blog/scalable-infrastructure
Never waste a crisis. This post describes the response to a major downtime incident and a commitment and investment in reliability, resulting in data centre expansion and architecture improvements.
https://www.infoq.com/news/2024/01/roblox-cellular-infrastructure/
A look back at OpenTelemetry and observability advances in 2023, and what the new year might bring.
https://thenewstack.io/opentelemetry-and-observability-looking-forward/
Internal Developer Portals are all the rage at the moment. This post ties this to the pursuit of improved developer productivity.
https://devops.com/the-state-of-internal-developer-portals-idps/
Events
DevOpsDays Kansas City is back, with the event on May 15th and 16th, and the CFP open now. With Devops coming up on 15 years old the CFP is looking for retrospective talks and ignites in particular.
https://talks.devopsdays.org/devopsdays-kc-2024/cfp
Tools
SBOMit is a new tool to add in-toto attestations to SBOMs. It allows for embedding assurance about certain practices and steps in a build process, which can be verified by a consumer.
https://openssf.org/blog/2023/12/13/introducing-sbomit-adding-verification-to-sboms/
https://github.com/SBOMit
Pgxman is a package manager for PostgreSQL extensions, along with a repository of packages. It integrates with native build systems for installation.
https://pgxman.com/
The CI tool Dagger now has a repository of modules in the latest experimental version. This makes composition of pipelines much quicker. There are already quite a few modules available too.
https://daggerverse.dev/