Why are start-up companies or companies which do not even use Kubernetes asking interview questions about Kubernetes

This is my second interview where I was bombarded with Kubernetes questions and in the end when I asked the DevOps lead if they use Kubernetes. He replied currently he does not see a reason why they want to move to Kubernetes. If so, then why he did ask me questions related to K8s for 15 min straight? My understanding is that they want to interview a candidate on tools that they currently use or the ones which they are planning to implement.

https://redd.it/zrwpss
@r_devops

Tools for SBOM vulnerabilities report-to-issue tracking

We scan our docker images using docker syft and grype. This gives us a good view of vulnerabilities for every build/release. Next step is to automatically track vulnerabilities in github or jira. Does anyone know of an open source tool that does that already?

essantially I'm looking for the `track` part of the `scan | check | track` pipeline.

The tool's required features seem quite straight forward:

1. take sbom / vulnerabilities as input
2. for each vuln found, lookup corresponding issue; if not found create it
3. update the issue or add a comment (e.g. update list of components, comment to track latest scan)
4. retrieve issue status and include back back into sbom
5. optionally output a summary report of new/changes vuln + issues

Ideally the tool works with either/or github, gitlab, jira. We are using cyclonedx as our sbom format, however the format is not critical.

https://redd.it/zrrlml
@r_devops

I am looking for someone in a devops role at a large company to speak with.

I work at a large company and am looking to into moving from my current infrastructure related role to something more devops. I have a lot of devops aspects to my current role, but that is not it's focus. I would like to talk to someone and ask dumb questions.

https://redd.it/zrxo5k
@r_devops

nginx proxy reverse on docker - how add authentication for selected domain?

I want add to selected domain like test.domain.com, authentication on password.


Bellow my configuration docker-compose.yml for nginx
+ letsencrypt and docker-compose.yml for single domain.

- docker-compose for nginx + le

services:
    nginx:
        container_name: nginx
        image: nginxproxy/nginx-proxy
        restart: unless-stopped
        ports:
            - 80:80
            - 443:443
        volumes:
            - /var/run/docker.sock:/tmp/docker.sock:ro
            - /var/docker/nginx/html:/usr/share/nginx/html
            - /var/docker/nginx/certs:/etc/nginx/certs
            - /var/docker/nginx/vhost:/etc/nginx/vhost.d
        logging:
            options:
                max-size: "10m"
                max-file: "3"

    letsencrypt-companion:
        container_name: nginx-le
        image: jrcs/letsencrypt-nginx-proxy-companion
        restart: unless-stopped
        volumes_from:
            - nginx
        volumes:
            - /var/run/docker.sock:/var/run/docker.sock
            - /var/docker/nginx/acme:/etc/acme.sh
        environment:
            DEFAULT_EMAIL: [email protected]

- docker-compose for single domain

services:
    web:
        container_name: test.domain.com
        image: kornkitti/express-hello-world
        expose:
            - "8080"
        environment:
            VIRTUAL_HOST: test.domain.com
            LETSENCRYPT_HOST:  test.domain.com
        networks:
          - proxy

networks:
  proxy:
    external:
      name: nginx_default

I want for domain test.domain.com add autehtnication on password, for other domains no.

https://redd.it/zrkuy5
@r_devops

AIOPs for Predictive Insights

Folks, I'd appreciate some thoughts and ideas going on this subject.

Assume you have implemented an AIOps/observability stack and have established all of the descriptive KPIs (basic monitoring). What top predictive KPIs would you like for the ML component to generate on your infrastructure?

We just got into this phase of development. One of the KPIs we are working on is predicting when we'll run storage on certain disks based on utilization trends from 6-8 months of data we have. Another one we have is looking at the utilization of our M365 subscription and when we'd run out of licenses based on utilization with the data we have on employee hire/retire triggers.

https://redd.it/zrvzn6
@r_devops

Git pull vs. Pulling custom image

I am currently working on a production release pipeline and am asking myself why are people even using container registries to build and push their images when they could also pull the whole repository and run compose up?

Don't get me wrong, I know that docker is perfectly for setting up equal environments and I am using it too in production and development. I just would like to know if there are any benefits in choosing to pull released images instead?

From my perspective I am setting up every dependent service within docker-compose
for my app, which I would not have access to anymore if my release pipeline would pull the production image instead. On the other side when I choose to pull the repo I just run docker-compose up
from my production folder and all dependencies are installed - including the dockerized application via Dockerfile.

https://redd.it/zs5mq4
@r_devops

I’m doing my thesis and looking for those that work ON-CALL to participate in an anonymous online survey. Please help

I’m from CQUniversity and looking for those that work ON-CALL to participate in an anonymous online survey to study the effects of on-call work in the areas of sleep quality and anxiety.

Click the link https://cqu.syd1.qualtrics.com/jfe/form/SV\_eX3J6NYVyw8rJVc

CQUniversity is examining many of the issues affecting sleep and anxiety levels of on-call workers. The survey will be looking at the impact of an on-call workers on both anxiety and sleep.

By participating in this survey, you could be assisting researchers to identify key areas where employers and industries can make possible changes to support those in on-call settings, to experience better sleep, and improved anxiety levels, and thus long and short-term health outcomes in the future. Better health outcomes for workers equal improved efficiencies for businesses, the relevant sectors, and the community.

Thank you for your time I really appreciate it.

https://redd.it/zs7uow
@r_devops

Most favourite environment

I recently came to a conclusion that my favourite environment for deploying and running applications is serverless (AWS Lamba or GCP Function), due to its simplicity and minimum time it requires for maintenance.

At work and for my side projects I am using all possible variants to suit my needs i.e. charged intel e-2386 with 128GB of RAM for processing constant and heavy blockchain calculations, serverless for running static websites and small APIs, containers for local development and backend applications (microservices), etc.

Out of curiousity, I would like to ask here what is everyone's most preferable environment they are happy to work with the most:

View Poll

https://redd.it/zs79nh
@r_devops

TIL: There is a Flux web UI called Weave GitOps

I just learned today that there is a web UI for Flux called Weave GitOps

https://docs.gitops.weave.works/docs/intro

Does anyone use this? How does it compare to Argo? I’m already using Flux, not sure if I need a web UI at this point.

https://redd.it/zs8i7l
@r_devops

How Ambassador Edge Stack secures your microservices

Ambassador Edge Stack is an API Gateway & Ingress controller that offers Edge-as-a-Service & security features to app developers.

In this article, Supratip shares 8 ways Ambassador Edge Stack can be used to secure your microservices.

https://blog.getambassador.io/how-ambassador-edge-stack-secures-your-microservices-ebd4cdd1f99e

https://redd.it/zruyr0
@r_devops

Is there a tool to automatically containerize Jenkins jobs for future use in other tools?

I want to see if there's a method or a tool where I can containerize my jobs/stages in such a way that I can run it as a container in another tool/environment

https://redd.it/zshuff
@r_devops

Project management in AWS vs GCP

I have basic idea on AWS cloud.
Currently working on GCP cloud in my org, where we manage multiple projects with parents children hierarchical order.
just wondering how people manage multiple projects in AWS.

https://redd.it/zsl2vp
@r_devops

API release strategies with API Gateway

In this post, we will explore 3 popular API release strategies that use an **API Gateway** nowadays.


https://api7.ai/blog/api-release-strategies-with-api-gateway

https://redd.it/zsm028
@r_devops

A good feature flag system

Whats a good feature flag product to use in AWS with a Nodejs front end?

https://redd.it/zsmc9h
@r_devops

Take a pay cut so expectations are lowered?

UK Post. I have 3 YOE in the DevOps space. I've no prior experience in dev or ops before then so this was all knew to me 3 years ago at my first job. I've moved on to my second job where things haven't gone as planned. Long story short - the level I've come in at has not been met and I'm due to be put on pip in the new year. I think this might have been partly because I asked for too much money for the role (consulting).

Should I take a pay cut for my next job so that the expectation of me is not so high? 3 years isn't much and there's still a ton I don't know. I'm considering going back to my previous company. It was much safer environment and everyone knew I was a junior so there was no imposter syndrome.

What's happened at this job has really knocked my confidence and I really don't want this to happen again and I'm now scared to of asking for too much money and history repeating itself.

https://redd.it/zspvz2
@r_devops

Backstage Plugin Development 101

https://www.getport.io/blog/backstage-plugin-development-101-introduction-and-a-basic-example

https://redd.it/zspqol
@r_devops

an interesting case study by eBay on the adoption of opentelemetry at scale

https://tech.ebayinc.com/engineering/why-and-how-ebay-pivoted-to-opentelemetry/

https://redd.it/zswpwp
@r_devops

Vanus: An open-source message queue that natively supports the CloudEvents protocol

An open-source message queue that natively supports the CloudEvents protocol, and can directly deliver events to any workload that supports cloudevents, such as Dapr, Knative, and OpenFaaS.

GitHub: https://github.com/linkall-labs/vanus

Slack: https://join.slack.com/t/vanusworkspace/shared\_invite/zt-1lyi74px3-HZ6G7jJIsWYtsQpZ2eD19w

https://redd.it/zspedu
@r_devops

.net core - rebuild while application is running, possible?

I am curious if it's possible to rebuild dll's while website is running?

When I try, the build failed because the dll is already in use.

And I cannot find anything on googling, maybe you know the trick. ;)

https://redd.it/zsu4y8
@r_devops

It's almost 2023 - How do you logrotate? Seriously.

I'm legitimately interested - there's a surprising amount of nuance to rotating logs. Good old crontab+logrotate? Cron+find -delete? "Who cares, we let fluent handle it"? Copy truncate? Kubernetes cron jobs? Sidecar images?

There's no one right answer, and I'm sure each use case has its own requirements and pros and cons.

I've seen just about all the above methods used in different places - how do y'all do it?

https://redd.it/zsyvtd
@r_devops

CI/CD with Long Running Regression Tests

In CI/CD, every time a commit is pushed to the master branch, a container is spun up, the code is pulled down, and the tests are run. If the tests pass, the code is merged into master and deployed to prod.

How does this work if your tests are not fast? Let's say between 1-2 hours.

I know most of you agile people will say "then use mocks to make the tests faster", but just assume for sake of argument that you are working with legacy code and in no circumstance are willing to change the existing test suite.

Can you still do CI/CD when you have long running tests?

Is there anything to be aware of? For example let's say at t=0 minutes one person pushes to master, and at t=10 another person pushes to master. But the tests take 1 hour to run. Is this going to be a problem?

https://redd.it/zsp4ox
@r_devops