DEVOPS WEEKLY ISSUE #691 - 31st March 2024
eBPF, OIDC, A 20 year journey to fixing profiling, a platform maturity model and a range of other topics this week.
StackHawk sponsors Devops Weekly
[ICYMI] DAST is Dead! Long Live DAST! The Evolution of Dynamic API security Testing webinar is now available on YouTube. Watch on-demand here.
https://sthwk.com/long-live-dast-webinar
News
A good post highlighting the importance of OpenID Connect, looking at fine-grained RBAC for GitHub Action using Vault.
https://www.digitalocean.com/blog/fine-grained-rbac-for-github-action-workflows-hashicorp-vault
An exciting 20 year journey to fix frame pointers in Linux so that profilers can work more accurately.
https://www.brendangregg.com/blog/2024-03-17/the-return-of-the-frame-pointers.html
A look at the recently published CNCF platform maturity model and how you can use it to assess your current platform investments.
https://www.getport.io/blog/using-the-platform-engineering-maturity-model-to-evaluate-your-investment-in-internal-developer-platforms
A look at the native sidecar capabilities in Kubernetes 1.29+ for Jobs and CronJobs. A very nice quality of life improvement that simplifies a common use case.
https://medium.com/teamsnap-engineering/properly-running-kubernetes-jobs-with-sidecars-in-2024-k8s-1-28-ad9b51d17d50
CI and testing infrastructure are too often not treated like the production environments they are. This post explores how you can use monitoring tools to improve the developer experience for CI systems.
https://www.datadoghq.com/blog/best-practices-for-monitoring-software-testing/
A post on using Tetragon for monitoring file change events, and why eBPF makes things like this scalable.
https://isovalent.com/blog/post/file-monitoring-with-ebpf-and-tetragon-part-1/
A run down of some of the problems with documenting software projects, and why storing the documentation with the code can have benefits.
https://www.tabnine.com/blog/documentation-as-code-principles-workflow-and-challenges/
Tools
Bytesize Architecture Sessions are a prescriptive format for a 45m to 90m architecture session focused on helping teams build a shared language and common understanding of a system.
https://bytesizearchitecturesessions.com/