Where to find ARM buildpacks for Node.js?

I use Oracle Ampere arm instance to run Dokku inside Docker container.

I installed pack on the host:

(curl -sSL "https://github.com/buildpacks/pack/releases/download/v0.28.0/pack-v0.28.0-linux-arm64.tgz" | sudo tar -C /usr/local/bin/ --no-same-owner -xzv pack)

ubuntu@arm1:~$ pack --version
0.28.0+git-b10e41f.build-3729

I had to bind mount pack binary inside the Dokku container so it can see it:

services:
  dokku:
    image: dokku/dokku:0.29.0
    container_name: dokku
    ports:
      - "3022:22"
      # - "8443:443"
      # - "8080:80"
    environment:
      - DOKKU_HOSTNAME=dokku.${DOMAIN}
      - DOKKU_HOST_ROOT=/var/lib/dokku/home/dokku
    volumes:
      - ./dokku-data:/mnt/dokku
      - /var/run/docker.sock:/var/run/docker.sock
      # mount pack binary
      - /usr/local/bin/pack:/usr/local/bin/pack

But when I push and build Next.js app I get this:

fc251a6e7981: Download complete
e79f28f8f2a6: Verifying Checksum
e79f28f8f2a6: Download complete
fc251a6e7981: Pull complete
e79f28f8f2a6: Pull complete
Digest: sha256:f75a04887fced3ae0504a37edb2c0d29d366511cd9ede34dbb90c5282b106e79
Status: Downloaded newer image for buildpacksio/lifecycle:0.16.0
===> ANALYZING
remote: [analyzer] exec /cnb/lifecycle/analyzer: exec format error
remote: ERROR: failed to build: executing lifecycle. This may be the result of using an untrusted builder: failed with status code: 1
remote:  !     Removing invalid image tag dokku/nextjs-blank-dokku:latest
remote:  !     App build failed
To dokku.arm1.localhost3002.live:nextjs-blank-dokku
 ! [remote rejected] main -> main (pre-receive hook declined)
error: failed to push some refs to 'dokku.arm1.localhost3002.live:nextjs-blank-dokku'

I assume I need to pass url to custom BUILDPACK_URL that will work on arm, where can I search such buildpacks and do you already know some that will work?

https://dokku.com/docs/deployment/builders/herokuish-buildpacks/#detection

https://redd.it/1167klu
@r_devops

Having root directory inside location block in Nginx

Hi, I've got to know that we can have the root directory specified inside the location block of a nginx configuration instead server block. So I tried and when I redirect to that location, Nginx returns 401 Unauthorized.

Below is my server block.

server{
listen 80;
server_name plex.hylon.com;

location / {
proxy_pass https://127.0.0.1:32400;
}

set $weekend 'NO';

#check if weekend

if ( $date_local ~ 'Monday|Friday' ){
set $weekend 'Yes';
}
location /demo {
root /sites/demo;
return 307 /index.html;
}

}

When I pass [`plex.hylon.com/demo`](https://plex.hylon.com/demo) I got the 401 Unauthorized. Any reason why I can't do this? TIA

https://redd.it/1168kvs
@r_devops

Are any of you worried about AI affecting DevOps Engineering jobs?

Title. Jw was the DevOps community is thinking about this topic.

https://redd.it/1168rak
@r_devops

Devops' intense focus on fast code releases inevitably compromises security. While development cycles have become agile, security processes have remained stuck in the past.

Good article. Source.

On one hand, the agile development cycle demands rapid code changes, which often exclude security as a hurdle to quick development. On the other hand, traditional security processes tend to be slow and disconnected from the development cycle, causing production delays. Additionally, containerization and the rise of attack vectors, as well as cloud architecture, can further complicate security efforts.

What are your thoughts on these challenges, and how do you approach DevOps security in your own organization?

https://redd.it/116an8l
@r_devops

Coding challenges for a senior role?

I ended an interview process early because I had completed 3 coding challenges on codility and now they want me to do two pair programming exercises on a project they're working on. That's where I ended it. Just wondering how common it is among y'all to have coding or programming interview questions? This was for a principal devops position.

https://redd.it/116bjgj
@r_devops

Bad experience of Udacity's "Cloud DevOps Engineer"

I just went through a frustrating experience with this program. I was disappointed there was so little on EKS but decided to go ahead and finish the thing since I had paid for it. Before I started the final project I requested to use gh actions to the CI/CD part of the project instead of Jenkins or Circle CI (I am not sure why Jenkins is a choice here as it is not even covered at all in the course). I was told I could very clearly my a mentor in the forums. A month later I finally finished it and after quite much work it was rejected for, that's right, using gh actions. The total of my feedback was a red line under this requirement. I was told I would have to start again and the original permission I was given was a mistake. This would of course mean I would have to pay quite a bit for another month and this decision obviously had absolutely nothing to do with pedagogy or the my learning. I don't really need the paper, so I just said "no more". All in all, I was left feeling the whole thing was a bit of a sham.

https://redd.it/116d43s
@r_devops

Hiring challenges - looking for some feedback

Hi,

My company has implemented some new tech challenges recently. Our hiring process involves the candidates attempting these challenges (offline) in advance (they get given them around a week before their interviews), and they then walk through their solutions in our "tech interview" (while getting questioned by a couple of lead/principal engineers). This comes after a half an hour screening (basically done to get a sense of the candidate's background, motivations, etc).

After the tech interview, if they pass, they'd have a behavioural/managerial interview later in the day. If they pass that, they'll be given a verbal offer by the end of the day.

We send the same tech test out to all levels of candidate, with the expected quality of answers increasing depending on the position they've applied to, etc. I'll be rewriting the wording of the challenges, but the basic gist will be there. We have a variety of roles, some leaning towards SRE, some towards Cloud Engineering, some being more Platform Engineering, and we like to use these challenges to work out strengths/weaknesses/where new hires will fit in best. I work for a very large engineering organization, and we run basically any type of software project that you could think of.

Challenge One

"Automate the deployment of a single web app on the cloud provider of your choice. Bonus points if the app is running."

The idea behind this is for the candidate to write some terraforn/pulumi etc that will deploy... something. During the interview, we'll get them to explain what they've built, and ask them how they'd "productionize" it. We'd love it if there's pipelines etc (both to deploy the IAC, and to deploy the app), but it's not strictly required (as long as the candidate mentions in the tech call that pipelines would be required to get it into production). We'll also look for red flags like hardcoded credentials, local state (and them not thinking this is bad, etc). This also aims to verify candidates' tech experience - questions will be asked if they say they're an expert on Serverless, but they then deploy this "app" onto bare EC2 instances using userdata.

Challenge Two

"Programatically list out the top 15 articles from a famous website."

The idea here is to test the candidates' scripting skills. The website in question has an API with no authentication - we'd like people to find it (instead of using web scraping), and write some code that calls it. The applicant would get bonus points for testing, etc, but again this isn't required (we'll ask about this during the call anyway). The very best answers that I've seen combine this with the first challenge, and deploy a basic app that displays the top articles by calling the aforementioned API.

Challenge Three

"Our client suspects their systems are under attack. Analyse the attached log files to find the nature of the attack, and make recommendations that would improve their security."

This is my least favourite challenge. We attach a \~1000 line log file, that has logs which show ongoing SQL injections/DDOS attacks/API calls with no tokens, etc. The idea being that they'd identify the attack, recommend a WAF, recommended HTTPS/JWT tokens, etc etc. The very best candidates ingest the logs into something like Elasticsearch, worse candidates go through each line manually (and don't see that this would be hard to scale).

Would be great to get some feedback on these challenges (too strict, not strict enough, etc etc). I'm happy to answer any questions/clarify things in the replies :)

https://redd.it/116ijed
@r_devops

Stay up-to-date on the latest trends and insights in DevOps with our weekly dispatch!

Attention all tech enthusiasts! 🔥

Do you want to stay up-to-date on the latest trends and insights in Tech Acceleration & Resilience, Site Reliability Engineering, Enterprise DevOps, and Platform Engineering? Look no further - sign up for my newsletter and join the community of tech experts!

\--> https://techaccelerationandresilience.com/

As we enter a new era of technology, it's more important than ever to stay informed and connected with the latest developments in the field. With my newsletter, you'll receive news on the cutting edge of tech innovation, straight to your inbox.

From the latest in Site Reliability Engineering best practices to the emerging field of Platform Engineering, our newsletter is your one-stop-shop for everything you need to stay ahead of the curve. Join the community of tech enthusiasts and never miss a beat in the ever-evolving world of technology.

Sign up today and be a part of the conversation on the future of tech!

#devops #community #technology #engineering #sitereliabilityengineering #sre

https://redd.it/116j1qt
@r_devops

Devops becoming more common?

Recently I have been noticing many social media posts from Twitter LinkedIn that the college grads showing up their work creating a CICD app integrating of the docker and cloud I have been seeing this post many it it started to feel like these youngsters choosing devops as it has less programming and what is the outcome of their work do they actually succeed (get hired) ? If so devops will be more common job with less paid ?what is the next step for current experienced devops Engineer to get updated ? I don't see any away rather than switching to new domain

https://redd.it/116klyb
@r_devops

hi all , i signed up for a year and a half course of devops that starts in amonth.

hi all , looking for some advice. signed up for a year and a half course of devops that starts in amonth. what can i watch/read/practice in that month to help me in the course. no prior knowledge of this subject , worked as a 3d artist for the past 8 years🙏

https://redd.it/116lpmu
@r_devops

GitLab: Seeking Technical Suggestions for a Smoother GitOps Setup

Hey everyone,

I'm planning to migrate from a Jenkins-driven GitOps setup to a GitLab-driven GitOps setup soon, and I would love to hear your technical suggestions on this. Here are some details about my current setup:

-Infrastructure is on AWS and managed with Terraform.
-10 EC2 instances and RDS per environment.
-A ton of app configurations are written in Ansible.
-We dynamically provision a couple of environment instances from a single environment type, such as test1, test2, preprod1, preprod2.

Given the above, I'm looking for suggestions on how to best implement GitLab for our GitOps setup. I'm particularly interested in hearing about any practices that have worked well for others in similar situations. Any insights into potential pitfalls to avoid would also be greatly appreciated.

Thanks in advance for your help

https://redd.it/116kfql
@r_devops

Hello. Do different platform certifications worth it? Azure and AWS for example?

See title. Should I mention them in my CV?

https://redd.it/116obmp
@r_devops

OneUptime: Open Source StatusPage.io alternative that you can self-host.

I'm Simon, I'm the OSS contributor to OneUptime (https://github.com/oneuptime/oneuptime) . It's an open-source alternative to StausPage.io. We're working on adding APM functionalities to it to make it closer to an open-source alternative to data dog. It's 100% free and you can self-host it on your VM / server.

Let me know what you think! Happy to hear early feedback and make the tool better.

https://redd.it/116q7wm
@r_devops

Best way to get into Devops

I'm a Full stack engineer, looking to transition into Devops. I took a look at roadmap.sh/devops, But its seems overwhelming as there a lot of stuffs to learn. is there any fast, clear pathway? also for those that transitioned into devops, could you share any material, course you took.

https://redd.it/116msim
@r_devops

Notebook and Metrics Data

I am trying to gather some insights from the community on a use case.
If you could have IPython notebooks to access your Prometheus or OpenTelemetry Metrics. What would you use it for?

https://redd.it/116u6u2
@r_devops

What features do you wish programming languages had that would make DevOps so much better?

I'm tinkering with a language and want to make DevOps easier.

https://redd.it/116u6i7
@r_devops

How to pass dynamic values into Kustomize?

I would like to pass dynamic values, such as a git tag (which I need to retrieve during buildtime), as a label.

Kustomize seems very limited when it comes to passing values dynaimcally. I can't create an overlay, since I don't know the git tag beforehand

https://redd.it/116hzy9
@r_devops

DotNet SonarQube Scanning Code coverage checking

Hello Team,

Anyone here have tried to setup code coverage using dotnet sonarqube scanning?

Can you please share how to display it on sonarqube dashboard? What are the needs to configure? Thank you

https://redd.it/116xe9f
@r_devops

Nexus startup error (docker container) - authentication password: must not be blank

Hi All,

Our Nexus (Nexus3 3.38.0 - community edition, docker container) container is currently down and not able to start gracefully, we use docker to run nexus as a container and when we check the container logs, we get this error:

javax.validation.constraintViolationExceiption: attributeshttpclient.authentication.password: must not be blank

We got this error logs after shutting down nexus and restarting docker service.

we suspect it might be due to one of the proxy repository password field that became blank (which we usually update using curl by a jenkins job)

Can you please suggest if:

There is any workaround for this issue
Since we can’t open into nexus portal, can we fix this using backend / config files?
Is there any way to disable / delete docker proxy repository using nexus data / config files?
Any other suggestion which might help us here

https://redd.it/116wqrv
@r_devops

Which are the best Apache Pulsar Support Vendors?

I have this question on the DevOps Stack Exchange as well: https://devops.stackexchange.com/posts/17459/edit

Apache Pulsar will, in all likelihood, become a market leader for message brokering. Apache Pulsar itself has over a million lines of code, and so the average, small team, will probably require a support vendor to help manage production incidents.

I'm evaluating vendors that provide commercial support for Apache Pulsar. I wanted to start a post on the pros and cons of some of the top competitors.

Below is a list of vendors I've heard or confirmed have some kind of messaging broker support system utilizing Apache Pulsar. I've marked ones that I'm uncertain have any kind of meaningful Apache Pulsar based services with a ??

1. StreamNative
2. DataStax
3. Lightbend??
4. Cloudera??
5. Solace??
6. TIBCO
7. AWS??
8. Pandio
9. Datell

Anyone have experience with any of these? Can anyone confirm if the questionable items do or do not have Apache Pulsar services?

# Rough Research
## Stream Native
StreamNative provides enterprise-grade support for
Apache Pulsar, including consulting, training, and managed services.

## DataStax
DataStax offers a managed version of Apache Pulsar called
Astra Streaming, which provides a fully managed and scalable messaging
and event streaming platform.

## Lightbend??
Lightbend provides commercial support for Apache Pulsar,
including consulting, training, and development services.

## Cloudera??
Cloudera offers a managed version of Apache Pulsar as part
of its Cloudera DataFlow product, which provides a real-time data
streaming and management platform.

## Solace??
Solace provides a Pulsar adapter that allows Solace PubSub+
messaging to interoperate with Apache Pulsar messaging, enabling hybrid cloud and multi-cloud messaging.

https://redd.it/116ie51
@r_devops

Introducing loxilb: eBPF based cloud-native load-balancer

Glad to introduce loxilb : https://github.com/loxilb-io/loxilb

loxilb is a modern open source software load-balancer for cloud-native workloads. It is designed to power services/apps deployed on-premise, edge and public-cloud Kubernetes clusters as a service LB, but it should work equally well as a standalone LB. Its purpose-built eBPF engine gives it various advantages such as great performance, scalability and the flexibility to support tons of services ranging from simple tcp/udp/http(s) to exotic ones like sctp/nat66/nat64.There are also tons of visibility and configuration options built-in as well.

Hope the community finds it helpful and constructive !!

https://redd.it/1170hgq
@r_devops