Thoughts on using GPT tools with databases
Team members have discussed the implementation of an AI product for querying databases. While I have some initial reservations, I am also intrigued by the product's innovative features. I understand that it may appeal to small/medium companies with limited resources, but I am interested in exploring its potential and determining if it offers any advantages over developing a solution using open-source tools.
I would welcome any insights or perspectives from those who have knowledge or experience with similar tools.
For reference:
https://twitter.com/python\_spaces/status/1620607399299280897
https://redd.it/10rjuei
@r_devops
Team members have discussed the implementation of an AI product for querying databases. While I have some initial reservations, I am also intrigued by the product's innovative features. I understand that it may appeal to small/medium companies with limited resources, but I am interested in exploring its potential and determining if it offers any advantages over developing a solution using open-source tools.
I would welcome any insights or perspectives from those who have knowledge or experience with similar tools.
For reference:
https://twitter.com/python\_spaces/status/1620607399299280897
https://redd.it/10rjuei
@r_devops
Twitter
Search Your Databases faster using AI
GPT is changing the way we use databases. Ask any question in text and it’ll return the answer in under 30 seconds.
This will make data analysis 10x faster
https://t.co/4bHEJGdXOQ
GPT is changing the way we use databases. Ask any question in text and it’ll return the answer in under 30 seconds.
This will make data analysis 10x faster
https://t.co/4bHEJGdXOQ
CVE vs CWE
Hi all, so my company is moving from Veracode to Mend(White source) for code scanning - I’m trying to do a small test to check if mend is able to catch all the vulnerabilities caught by veracode for the same library. I noticed that mend wasn’t able to catch some vulnerabilities that veracode could figure out. We also use codeQL for CWE scans and I don’t have that data yet with me- but I wanted to know how much of a difference will it make if I do get the CWE data for the same library- will it be able to make up for the discrepancy as CWEs are different from CVEs. I really need some help here! Thanks a lot in advance!
https://redd.it/10rk576
@r_devops
Hi all, so my company is moving from Veracode to Mend(White source) for code scanning - I’m trying to do a small test to check if mend is able to catch all the vulnerabilities caught by veracode for the same library. I noticed that mend wasn’t able to catch some vulnerabilities that veracode could figure out. We also use codeQL for CWE scans and I don’t have that data yet with me- but I wanted to know how much of a difference will it make if I do get the CWE data for the same library- will it be able to make up for the discrepancy as CWEs are different from CVEs. I really need some help here! Thanks a lot in advance!
https://redd.it/10rk576
@r_devops
Reddit
r/devops - CVE vs CWE
Posted in the devops community.
Azure DNS query logs for analysis
Hello Everyone,
I am working on a project where I have to do analysis of the DNS Queries (A record,AAAA record,CNAME record) on Azure Platform to make cloud infrastructure related decisions.
I have checked the metrics option in the Azure Portal that seems to be with limited with the scope i.e. query volume of A records.
I am looking for solution with more insights on the DNS Queries, can this be achieved using any Azure Services or any kind of scripting.
Thanks in Advance
https://redd.it/10rja9d
@r_devops
Hello Everyone,
I am working on a project where I have to do analysis of the DNS Queries (A record,AAAA record,CNAME record) on Azure Platform to make cloud infrastructure related decisions.
I have checked the metrics option in the Azure Portal that seems to be with limited with the scope i.e. query volume of A records.
I am looking for solution with more insights on the DNS Queries, can this be achieved using any Azure Services or any kind of scripting.
Thanks in Advance
https://redd.it/10rja9d
@r_devops
Reddit
r/devops on Reddit
Azure DNS query logs for analysis - 1 vote and no comments
Pearson VUE cancelled and refunded my 'AWS Professional devops engineer' cert test with no reason.
Anyone else have this issue? I signed up and payed earlier in January. Course showed as active upcoming. Today I received email stating my cert test time/date has been cancelled and refunded with no other reasoning. Is this normal? How can I guarantee this won't happen again or closer to the exam date?
Update: I contacted PEarsonVue customer support and they had no answers. They told me to apply again
https://redd.it/10qzh59
@r_devops
Anyone else have this issue? I signed up and payed earlier in January. Course showed as active upcoming. Today I received email stating my cert test time/date has been cancelled and refunded with no other reasoning. Is this normal? How can I guarantee this won't happen again or closer to the exam date?
Update: I contacted PEarsonVue customer support and they had no answers. They told me to apply again
https://redd.it/10qzh59
@r_devops
Reddit
From the devops community on Reddit
Explore this post and more from the devops community
Boast the Potential of DevOps with CI/CD
Article link: https://www.impactqa.com/blog/boast-the-potential-of-devops-with-ci-cd/
​
The above article discusses the potential result of the combination of continuous integration & continuous deployment (CI&CD) with DevOps. Do you think they did right? I am not an expert in this field but they did omit a few important aspects.
https://redd.it/10rn9w8
@r_devops
Article link: https://www.impactqa.com/blog/boast-the-potential-of-devops-with-ci-cd/
​
The above article discusses the potential result of the combination of continuous integration & continuous deployment (CI&CD) with DevOps. Do you think they did right? I am not an expert in this field but they did omit a few important aspects.
https://redd.it/10rn9w8
@r_devops
ImpactQA
Boast the Potential of DevOps with CI/CD | ImpactQA
Continuous testing plays a significant role in tying all the stages of software development, and deployment in collaboration with DevOps.
Dockerized Jfrog Platform
Hi friends,
My team and I are looking to install the Jfrog platform (Artifactory, Xray) but we’re hesitant if we should run these services as docker containers. Especially the Postgres DB for each service. We are a supporting around 100 developers.
Update: it will be self-hosted.
https://redd.it/10rnskd
@r_devops
Hi friends,
My team and I are looking to install the Jfrog platform (Artifactory, Xray) but we’re hesitant if we should run these services as docker containers. Especially the Postgres DB for each service. We are a supporting around 100 developers.
Update: it will be self-hosted.
https://redd.it/10rnskd
@r_devops
Reddit
r/devops - Dockerized Jfrog Platform
Posted in the devops community.
Best way to draw attention of knowledge acquired through home labs
I want to get into a Dev-Ops job in the future, the issue I am facing is that all my previous work experience and training have been in the Electrical/Project Management field. Most of my knowledge of Dev-ops comes from running my home servers, setting things up as I need them, or seeing things that others have done that look interesting.
I am going to update my GitHub with a project to provision a Kubernetes cluster on my local Proxmox server using Terraform and Ansible, so I will at least have something for others to potentially look at. I know it is not terribly inventive, but it does show that I can at least use those technologies, along with Git.
My question is how can I show that I have this knowledge to potential job employers? I can easily pass the A+ certificate, but, I think that will lead to more of a help-desk role. I can do a help-desk role, but that seems like it leads more to a sys-admin role than a dev-ops role. If I study a bit, I can pass the CKA certificate, but after looking last night at job offers, it doesn't seem that many people are specifically looking for that certificate. Any suggestions?
https://redd.it/10rqtsa
@r_devops
I want to get into a Dev-Ops job in the future, the issue I am facing is that all my previous work experience and training have been in the Electrical/Project Management field. Most of my knowledge of Dev-ops comes from running my home servers, setting things up as I need them, or seeing things that others have done that look interesting.
I am going to update my GitHub with a project to provision a Kubernetes cluster on my local Proxmox server using Terraform and Ansible, so I will at least have something for others to potentially look at. I know it is not terribly inventive, but it does show that I can at least use those technologies, along with Git.
My question is how can I show that I have this knowledge to potential job employers? I can easily pass the A+ certificate, but, I think that will lead to more of a help-desk role. I can do a help-desk role, but that seems like it leads more to a sys-admin role than a dev-ops role. If I study a bit, I can pass the CKA certificate, but after looking last night at job offers, it doesn't seem that many people are specifically looking for that certificate. Any suggestions?
https://redd.it/10rqtsa
@r_devops
Reddit
r/devops - Best way to draw attention of knowledge acquired through home labs
Posted in the devops community.
How to learn ArgoCD without using a Cloud provider?
Can ArgoCD be hosted locally in your laptop and used to deploy to a local Kubernetes cluster?
https://redd.it/10rsj3l
@r_devops
Can ArgoCD be hosted locally in your laptop and used to deploy to a local Kubernetes cluster?
https://redd.it/10rsj3l
@r_devops
Reddit
r/devops - How to learn ArgoCD without using a Cloud provider?
Posted in the devops community.
I would like some constructive criticism on my resume
I recently found an entry level position in my area at a decent company and figured now would be a good time to plant myself in one company for a few years.
That said, I want to put my best foot forward as far as the resume is concerned. I'm using the resume that got me my most recent position, but I'm not sure how well it communicates my experiences or skills.
I'm open to plenty of changes, so don't be afraid to be direct. Thanks for taking the time to help!
https://i.imgur.com/My9UjoH.png
https://redd.it/10rtxik
@r_devops
I recently found an entry level position in my area at a decent company and figured now would be a good time to plant myself in one company for a few years.
That said, I want to put my best foot forward as far as the resume is concerned. I'm using the resume that got me my most recent position, but I'm not sure how well it communicates my experiences or skills.
I'm open to plenty of changes, so don't be afraid to be direct. Thanks for taking the time to help!
https://i.imgur.com/My9UjoH.png
https://redd.it/10rtxik
@r_devops
I am getting the opportunity to shadow the DevOps team at the company I work for.
I am very new to this field and am just starting to learn, and I am afraid of approaching this team and looking awkward or like an idiot. I’m not even sure what questions to ask. Does anyone have any advice?
https://redd.it/10rtqoa
@r_devops
I am very new to this field and am just starting to learn, and I am afraid of approaching this team and looking awkward or like an idiot. I’m not even sure what questions to ask. Does anyone have any advice?
https://redd.it/10rtqoa
@r_devops
Reddit
r/devops on Reddit
I am getting the opportunity to shadow the DevOps ... - No votes and 5 comments
Fig Scripts: Build internal CLI tools really fast
Hey everyone! I'm Brendan, founder of Fig. Fig makes the shell easier and more collaborative.
We recently started working on Fig Scripts, a ridiculously easy way to build and share internal CLI tools. I've included more info below. You can try it out here or watch this quick demo video.
Our ask
Our team would love to hear any feedback from people in the field on what we’ve built. Where would you use this? What would you use instead? It’s still early, there are kinks, but we really would love to hear your thoughts (positive or negative)! 😊
\------------------
Why did we build this?
There is surprisingly a lot of friction involved in building an internal CLI. Instead of writing business logic, a lot of your time is spent on boilerplate: integrating with the CLI framework, reading/validating user input, working out how to distribute/update your tool, tracking usage and errors, even adding colored output... This is stupid. You should be spending your time writing your business logic, not doing boilerplate!
How does Fig Scripts work?
We’ve built a platform to build, distribute, and manage your internal scripts and CLI tools. We handle all the boilerplate, you focus on writing your business logic.
Some key features are:
Jupyter-notebook style interface with multi-language support (bash, python, js/ts...)
Easy input definition: Fig's out-of-the-box terminal UI library makes accepting user input easy. We even generate the CLI flags for you.
Instant cross-device sync: Changes are instantly provisioned to everyone on your team.
Built-in usage monitoring and error reporting: See how frequently scripts/subcommands are used and what the most common errors are.
Coming soon, we are going to add integrations with popular developer infrastructure (like AWS, Docker, GitHub), cron jobs, new cell types (like markdown), more language support, and the ability to run scripts in the cloud.
https://redd.it/10rxbs3
@r_devops
Hey everyone! I'm Brendan, founder of Fig. Fig makes the shell easier and more collaborative.
We recently started working on Fig Scripts, a ridiculously easy way to build and share internal CLI tools. I've included more info below. You can try it out here or watch this quick demo video.
Our ask
Our team would love to hear any feedback from people in the field on what we’ve built. Where would you use this? What would you use instead? It’s still early, there are kinks, but we really would love to hear your thoughts (positive or negative)! 😊
\------------------
Why did we build this?
There is surprisingly a lot of friction involved in building an internal CLI. Instead of writing business logic, a lot of your time is spent on boilerplate: integrating with the CLI framework, reading/validating user input, working out how to distribute/update your tool, tracking usage and errors, even adding colored output... This is stupid. You should be spending your time writing your business logic, not doing boilerplate!
How does Fig Scripts work?
We’ve built a platform to build, distribute, and manage your internal scripts and CLI tools. We handle all the boilerplate, you focus on writing your business logic.
Some key features are:
Jupyter-notebook style interface with multi-language support (bash, python, js/ts...)
Easy input definition: Fig's out-of-the-box terminal UI library makes accepting user input easy. We even generate the CLI flags for you.
Instant cross-device sync: Changes are instantly provisioned to everyone on your team.
Built-in usage monitoring and error reporting: See how frequently scripts/subcommands are used and what the most common errors are.
Coming soon, we are going to add integrations with popular developer infrastructure (like AWS, Docker, GitHub), cron jobs, new cell types (like markdown), more language support, and the ability to run scripts in the cloud.
https://redd.it/10rxbs3
@r_devops
Helm-Dashboard is generally available with the release of V.1.0.0
Komodor’s latest open-source project, [Helm-Dashboard](https://github.com/komodorio/helm-dashboard) is generally available with the release of V.1.0.0
Coincidently at the same time the project crossed 3K stars on GitHub (and hundreds of daily active users), only three months since it was released!
Some of the cool new features you can expect to see in the new version:
* Auto-update repositories when installed into cluster
* The ability to reconfigure charts without access to their source
* Specifying multiple working namespaces
* Self-sufficient binary, no helm/kubectl requirement
* REST API documented
As always, we welcome everyone to provide feedback and suggestions on the project’s roadmap on our social channels, [GitHub](https://github.com/komodorio/helm-dashboard), or the [Slack Kommunity](https://join.slack.com/t/komodorkommunity/shared_invite/zt-1lz4cme86-2zIKTRtTFnzL_UNxaUS9yw). We’ve even created a [user survey form](https://docs.google.com/forms/d/e/1FAIpQLScwuJf-LmpA2zk_fVaCh2eStZn5IjP0yGPWQ785wPEvDJLP7A/viewform) to make it easier on you 🙂
https://redd.it/10rv6p5
@r_devops
Komodor’s latest open-source project, [Helm-Dashboard](https://github.com/komodorio/helm-dashboard) is generally available with the release of V.1.0.0
Coincidently at the same time the project crossed 3K stars on GitHub (and hundreds of daily active users), only three months since it was released!
Some of the cool new features you can expect to see in the new version:
* Auto-update repositories when installed into cluster
* The ability to reconfigure charts without access to their source
* Specifying multiple working namespaces
* Self-sufficient binary, no helm/kubectl requirement
* REST API documented
As always, we welcome everyone to provide feedback and suggestions on the project’s roadmap on our social channels, [GitHub](https://github.com/komodorio/helm-dashboard), or the [Slack Kommunity](https://join.slack.com/t/komodorkommunity/shared_invite/zt-1lz4cme86-2zIKTRtTFnzL_UNxaUS9yw). We’ve even created a [user survey form](https://docs.google.com/forms/d/e/1FAIpQLScwuJf-LmpA2zk_fVaCh2eStZn5IjP0yGPWQ785wPEvDJLP7A/viewform) to make it easier on you 🙂
https://redd.it/10rv6p5
@r_devops
GitHub
GitHub - komodorio/helm-dashboard: The missing UI for Helm - visualize your releases
The missing UI for Helm - visualize your releases. Contribute to komodorio/helm-dashboard development by creating an account on GitHub.
Custom systemd service for NodeApp on uBuntu fails to connect to local MongoDB instance.
So I have a two tiered application running on separate instances on AWS, an API and Mongo.
The API (node app) instance provisions with a custom service to start the node app with forever as the uBuntu user.
When this happens I am unable to get responses from Mongo, but if I stop the service and start the app manually with node or forever it works.
So this seems like a service issue and perhaps permissions to establish a connection to Mongo db?
Any pointers on where to look for possible cause ?
Edit: Solved by adding any environment variables to the .service file.
https://redd.it/10rvumu
@r_devops
So I have a two tiered application running on separate instances on AWS, an API and Mongo.
The API (node app) instance provisions with a custom service to start the node app with forever as the uBuntu user.
When this happens I am unable to get responses from Mongo, but if I stop the service and start the app manually with node or forever it works.
So this seems like a service issue and perhaps permissions to establish a connection to Mongo db?
Any pointers on where to look for possible cause ?
Edit: Solved by adding any environment variables to the .service file.
https://redd.it/10rvumu
@r_devops
Reddit
r/devops - Custom systemd service for NodeApp on uBuntu fails to connect to local MongoDB instance.
4 votes and 3 comments so far on Reddit
Have an interesting issue and i am outta ideas…
So here I am.
Have a windows user in our internal app, not local she’s in another state. When making certain requests to a certain endpoint in the app, nothing happens. No network events, no console messages, nothing. Our API logs show 204/304 for those reqs, which isn’t unusual.
Cloudfront or ec2 logs aren’t showing anything abnormal.
Thought maybe it’s a machine issue.
So pulled network config things, nothing outta the norm there.
We’ve tried multiple browsers, machines, flushed DNS, ran network device cleanup, ran system file cleanupall w/ the same results of her not being able to make certain reqs to certain endpoints.
Checked Chrome HSTS settings, removed domain in question from HSTS.
Checked hosts file, nothing outta the norm there.
She tried on a personal machine, as I don't have another one to give to her (outta state).
She drove to a coffee shop, same result.
Host is pingable from the machine... Host is not accessible by IP.
VPN didn't change anything.
Request is initiated as a fetch.
​
Copied the xhr request as curl, had them run it on their machine and curl threw an error that it couldn't resolve any of the headers when she ran it.
​
So, here we are... Thoughts?
​
And this has only been happening since Tuesday. No new deploys, no changes to our DNS, no updates to user machine.
https://redd.it/10rz7ic
@r_devops
So here I am.
Have a windows user in our internal app, not local she’s in another state. When making certain requests to a certain endpoint in the app, nothing happens. No network events, no console messages, nothing. Our API logs show 204/304 for those reqs, which isn’t unusual.
Cloudfront or ec2 logs aren’t showing anything abnormal.
Thought maybe it’s a machine issue.
So pulled network config things, nothing outta the norm there.
We’ve tried multiple browsers, machines, flushed DNS, ran network device cleanup, ran system file cleanupall w/ the same results of her not being able to make certain reqs to certain endpoints.
Checked Chrome HSTS settings, removed domain in question from HSTS.
Checked hosts file, nothing outta the norm there.
She tried on a personal machine, as I don't have another one to give to her (outta state).
She drove to a coffee shop, same result.
Host is pingable from the machine... Host is not accessible by IP.
VPN didn't change anything.
Request is initiated as a fetch.
​
Copied the xhr request as curl, had them run it on their machine and curl threw an error that it couldn't resolve any of the headers when she ran it.
​
So, here we are... Thoughts?
​
And this has only been happening since Tuesday. No new deploys, no changes to our DNS, no updates to user machine.
https://redd.it/10rz7ic
@r_devops
Reddit
r/devops - Have an interesting issue and i am outta ideas…
2 votes and 1 comment so far on Reddit
Discovering Six Critical Docker Desktop Privilege Escalation Vulnerabilities. (Bonus: New OSS Tool!)
https://www.cyberark.com/resources/threat-research-blog/breaking-docker-named-pipes-systematically-docker-desktop-privilege-escalation-part-1
Eviatar also put his new tool PipeViewer up on github as well.
https://github.com/cyberark/PipeViewer
https://redd.it/10rynk0
@r_devops
https://www.cyberark.com/resources/threat-research-blog/breaking-docker-named-pipes-systematically-docker-desktop-privilege-escalation-part-1
Eviatar also put his new tool PipeViewer up on github as well.
https://github.com/cyberark/PipeViewer
https://redd.it/10rynk0
@r_devops
Cyberark
Breaking Docker Named Pipes SYSTEMatically: Docker Desktop Privilege Escalation – Part 1
Everything started when I was researching Windows containers. It required installing Docker Desktop for Windows, and I couldn’t help but notice that there were many Docker processes. Since some of...
My predictions for the future of observability
What do you want to see when it comes to the future of observability?
For me, I think our biggest opportunity is greater visibility into third-party cloud dependencies, because they are so common in our stacks, have a huge impact on our reliability, and reliable data about service health is so hard to get. My #1 hope is that we can have distributed tracing that crosses boundaries between my environments and the environments of the cloud vendors we build on.
I wrote about what I want here, and I'd love to hear what everyone else thinks the future has in store for us when it comes to observability.
https://redd.it/10s261i
@r_devops
What do you want to see when it comes to the future of observability?
For me, I think our biggest opportunity is greater visibility into third-party cloud dependencies, because they are so common in our stacks, have a huge impact on our reliability, and reliable data about service health is so hard to get. My #1 hope is that we can have distributed tracing that crosses boundaries between my environments and the environments of the cloud vendors we build on.
I wrote about what I want here, and I'd love to hear what everyone else thinks the future has in store for us when it comes to observability.
https://redd.it/10s261i
@r_devops
Metrist
My Predictions For the Future of Observability - Metrist
Observability is an exciting, emerging field. My co-founder, Ryan, and I have been here since the early days (including being some of the first hires at Server Density and New Relic, back when we just did monitoring), we’ve seen the field grow in significant…
How to make sure that my company laptop isnt tracked in any way from them
Hello guys,
I am ready to take this big leap and make my dream true. To break the Matrix! So i am considering really serious to start working abroad instead of the country of my employer (both EU though). That would make it a bit easier on moving around as digital nomad or working from my home country and avoiding the nonsense expensive rent that i pay now for being close to office and going just 6-7 tims per year...
So, for what stuff i should check in my laptop?I have admin access so it shouldn't be problem to tweak stuff.
About the internet connection thing i know that even a VPN is not enough but isnt getting checked by the company and many people are also working abroad even temporary it shouldn't be a issue though i have come with a work around even for this...
Other useful tips/tools appreciated.
The only thing that i havent make sure how to cover yet its the issue if i use for months and months abroad my bank card from the employers country.
https://redd.it/10s68ux
@r_devops
Hello guys,
I am ready to take this big leap and make my dream true. To break the Matrix! So i am considering really serious to start working abroad instead of the country of my employer (both EU though). That would make it a bit easier on moving around as digital nomad or working from my home country and avoiding the nonsense expensive rent that i pay now for being close to office and going just 6-7 tims per year...
So, for what stuff i should check in my laptop?I have admin access so it shouldn't be problem to tweak stuff.
About the internet connection thing i know that even a VPN is not enough but isnt getting checked by the company and many people are also working abroad even temporary it shouldn't be a issue though i have come with a work around even for this...
Other useful tips/tools appreciated.
The only thing that i havent make sure how to cover yet its the issue if i use for months and months abroad my bank card from the employers country.
https://redd.it/10s68ux
@r_devops
Reddit
r/devops - How to make sure that my company laptop isnt tracked in any way from them
Posted in the devops community.
Transport, finance and other high risk fields
Hello everyone, I wanted to know how do senior developers write safe code in fields such as transportation, finance and others, where code can lead to huge mistakes.
What are the best practices to follow? If there are no best practices what should a person be trained in before they can work in such fields before becoming a senior developer?
https://redd.it/10rwey9
@r_devops
Hello everyone, I wanted to know how do senior developers write safe code in fields such as transportation, finance and others, where code can lead to huge mistakes.
What are the best practices to follow? If there are no best practices what should a person be trained in before they can work in such fields before becoming a senior developer?
https://redd.it/10rwey9
@r_devops
Reddit
r/devops on Reddit: Transport, finance and other high risk fields
Posted by u/Impossible_Worth_440 - 2 votes and 9 comments
Kubernetes, gcp and mutual tls
I want to be able to expose services on GKE with mutual TLS, which isn't handled by regular GCP HTTP(S) LoadBalancer
For now the architecture I have in mind would be something like this:
- create my services to be exposed (deployment and corresponding service)
- create a NGINX ingress in front of those (which is configured with mutual TLS)
- create a TCP LoadBalancer in front of the NGINX ingress
but I'm not sure exactly how to do this with Kubernetes, could someone show me?
https://redd.it/10rvl9v
@r_devops
I want to be able to expose services on GKE with mutual TLS, which isn't handled by regular GCP HTTP(S) LoadBalancer
For now the architecture I have in mind would be something like this:
- create my services to be exposed (deployment and corresponding service)
- create a NGINX ingress in front of those (which is configured with mutual TLS)
- create a TCP LoadBalancer in front of the NGINX ingress
but I'm not sure exactly how to do this with Kubernetes, could someone show me?
https://redd.it/10rvl9v
@r_devops
Reddit
r/devops on Reddit
Kubernetes, gcp and mutual tls
What are the best SAST tool for Docker containers?
What are the best SAST tool for Docker containers? I think Checkov does some analysis, but I am wondering if there are better things out there for containers.
https://redd.it/10rqezq
@r_devops
What are the best SAST tool for Docker containers? I think Checkov does some analysis, but I am wondering if there are better things out there for containers.
https://redd.it/10rqezq
@r_devops
Reddit
r/devops - What are the best SAST tool for Docker containers?
3 votes and 5 comments so far on Reddit
Multiple AWS Accounts vs Multiple AWS IAM Users vs Multiple AWS IAM Roles
What do you mostly use for managing AWS in your organization? and why?
Please share your experience!
https://redd.it/10sc958
@r_devops
What do you mostly use for managing AWS in your organization? and why?
Please share your experience!
https://redd.it/10sc958
@r_devops
Reddit
r/devops on Reddit
Multiple AWS Accounts vs Multiple AWS IAM Users vs... - No votes and no comments