DevOpsLinks

This week’s drop has it all: Terraform laser-focus, identity crises in engineering, and a 78% cloud cost cut that’s almost too good to be true. Plus—AWS speeds up CI, PyPI gets hit again, and we revisit Kubernetes... the hard way. 🧠⚙️

⚡ Accelerating CI with AWS CodeBuild: Parallel testing now live
🐍 Malicious Python Packages on PyPI downloaded 39,000+ times
🧱 Terraform -target: Power tool or tech debt trap?
🧠 The Software Engineering Identity Crisis
🏗️ Kubernetes The Hard Way: Vagrant, Ansible, and Cilium
🛡️ OPKSSH: Single Sign-On for SSH, open sourced by Cloudflare
💸 How dacadoo saved 78% with Kubernetes & serverless
🧪 Asymmetric Experiments @ Meta: Control group madness
☁️ Sequencing Cloud Migration for smarter ROI
📉 Terraform DR strategies without the chaos

📎 Read. Think. Ship.

Struggling with Kubernetes visibility? Join ManageEngine and DevOps expert Viktor Farcic in this exclusive webinar to uncover strategies for enhancing performance, eliminating blind spots, and optimizing your Kubernetes environment. Register now !

AWS CodeBuild chops test times from 35 minutes to a mere 6. How? It brilliantly deploys a sharding strategy for running tests side by side. Efficiency on steroids.

Cybersecurity researchers found malicious libraries in the Python Package Index repository designed to steal sensitive information and test stolen credit card data, attracting hundreds of downloads before being taken down. One of the packages, disgrasya, contained a carding script targeting WooCommerce stores, while the others attempted to overwrite legitimate commands with malicious code to exfiltrate sensitive data. These packages were part of a broader attack category known as automated transaction abuse.

Meet OPKSSH: the eager bouncer for your SSH keys. It kicks out crusty manual keys and rolls out the red carpet for OpenID Connect—ensuring keys self-destruct on schedule. No more long-term lurkers. Available now for the curious on GitHub!

Ditch pricey commercial software to chop down Total Cost of Ownership during cloud migration. Target migrations when contracts expire for faster ROI victories.

dacadoo chopped costs by a jaw-dropping 78% while pulling off an uptime miracle at 99.999%. The secret sauce? Ditching clunky VMs for Kubernetes then waltzing into a fully serverless future with AWS Lambda, API Gateway, and DynamoDB. This serverless swagger didn't just beef up scalability; it also untangled the ops team from mundane tasks, giving the SRE crew the bandwidth to chase shiny, new ideas.

The Terraform Pro exam doesn't play—it's all about real-world scenarios. Forget the theory-only approach. Dive into hands-on practice in your own setup. Consider HashiCorp's docs your secret weapon.

Learn how Terraform can help play a key role in disaster recovery strategies by simplifying and accelerating the provisioning of DR related infrastructure, while simultaneously reducing costs.

Orca's agentless snapshot scanning? It's the secret sauce that turns Sendbird's AWS security from a headache into a leisurely stroll through cloudland. Shove over clunky processes—onboarding and cloud wrangling just got slick. Swapping IAM users for Okta SSO? Now that's living smart. User management’s never been this elegant. Then there's Teleport, keeping EC2 and K8s access as tight as a snare drum—securing every engineer's workflow while letting them strut their productivity stuff.

ChatGPT Plus aces coding tests. Meanwhile, Microsoft's Copilot and Meta AI trip over their virtual feet. These AIs can patch bugs like pros, but crafting full-fledged apps? Not in their current skill set.

IaC goes wild once you try tracking NHIs' owners. In Terraform, you might log each file's role, but tag inheritance throws a wrench into scaling it up.

Vagrant and VirtualBox join forces to build an on-premise Kubernetes cluster, with Ansible cracking the whip on configuration, and Cilium handling network duties without touching the cloud. Say goodbye to kube-proxy—we’re Cilium all the way. This project gets gritty, peeling back Kubernetes' layers like an onion. Want to issue certificates by hand and maneuver through private networks to save on cloud bills? Welcome to the jungle.

Terraform's -target command slices through the noise, nailing tweaks on specific resources like a hawk-eyed laser. It's your secret weapon for speedy Azure Function App updates. But overindulgence? That leads to the creeping chaos of infrastructure drift. So double-check those dependencies and commit to full deployments now and then, lest the tech gods demand their price.

HAProxy flexes its consistent hashing muscle, cracking the Omnissa Horizon protocol puzzle with finesse. It syncs TCP and UDP minus the drama. Stateful mechanisms? Who needs them. Complexity? Gone. It amps up reliability and makes load balancing look like a Sunday stroll.

AI isn't just tinkering with code; it's upending engineering identities. Once builders, we're now orchestrators. Cue the existential crisis as AI churns out 95% of new code in certain Y Combinator startups.

Seeking advice on how to improve programming skills as a DevOps professional.

The CSV magician

Automatically generates beautiful and easy-to-read ER diagrams from your database.

curl-like access to AWS resources with AWS Signature Version 4 request signing.

Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)

BlackCat is a PowerShell module designed to validate the security of Microsoft Azure. It provides a set of functions to identify potential security holes.

Did you know that Netflix uses a custom-built tool called Spinnaker for continuous delivery? Originally developed in-house and later open-sourced, Spinnaker helps Netflix deploy code thousands of times per day across its global infrastructure. It supports multi-cloud environments, enabling seamless rollouts on AWS, Google Cloud, and more. One of its key features is automated canary analysis, which deploys new code to a small subset of users and monitors for issues before a full rollout—helping Netflix ship faster while keeping their 200+ million users streaming smoothly.

“If you can’t describe what you are doing as a process, then you don’t know what you are doing.” ― Clayton M. Christensen, Competing Against Luck: The Story of Innovation and Customer Choice