KCL v0.4.6 is Coming — Rust-Based IDE Extension, Helm/Kustomize/KPT Integrations
The KCL team is pleased to announce that KCL v0.4.6 is now available! This release has brought three key updates to everyone: Language, Tools, and Integrations.
+ Use KCL IDE extensions to improve KCL code writing experience and efficiency
+ Helm/Kustomize/KPT cloud-native community tool integrations
+ Improve the KCL multilingual SDK for easy application integration.
See here for more: https://kcl-lang.io/blog/2022-kcl-0.4.6-release-blog/
https://redd.it/12p75ny
@r_devops
The KCL team is pleased to announce that KCL v0.4.6 is now available! This release has brought three key updates to everyone: Language, Tools, and Integrations.
+ Use KCL IDE extensions to improve KCL code writing experience and efficiency
+ Helm/Kustomize/KPT cloud-native community tool integrations
+ Improve the KCL multilingual SDK for easy application integration.
See here for more: https://kcl-lang.io/blog/2022-kcl-0.4.6-release-blog/
https://redd.it/12p75ny
@r_devops
kcl-lang.io
KCL v0.4.6 Release Blog | KCL programming language.
Introduction
View Kubernetes Secrets Quickly with a Single Command
Ever struggled to view kubernetes secret value as we have to identify and decode it.
Not anymore, view this youtube short and learn how to view the secret value with a single kubectl command.
https://youtube.com/shorts/XIRBdqAJkag?feature=share
https://redd.it/12ozske
@r_devops
Ever struggled to view kubernetes secret value as we have to identify and decode it.
Not anymore, view this youtube short and learn how to view the secret value with a single kubectl command.
https://youtube.com/shorts/XIRBdqAJkag?feature=share
https://redd.it/12ozske
@r_devops
YouTube
Kubernetes 101: View Kubernetes Secrets Quickly
View Kubernetes Secrets Quickly using a kubectl plugin named view-secret kubectl krew install view-secret : install the plugin with this command.kubectl view...
Help Project repo structure with common code, dependencies, IP protection issues
Hello everyone,
I'm currently struggling on taming a brown field project for an embedded device, particularly on enabling basic CI processes, mainly due to the poor codebase structuring the project has. For context, on a high-level, the product application is distributed, that is, we have multiple subsystems (e.g., vision, navigation, safety-control) that communicate either via a kind of a message broker or a point-to-point communication channel (e..g, using I2C). Some of these subsystems may be deployed to different hosts, with different OS and platform architectures (i.e., different build toolchains might be required).
Currently, the way the project is structured is a bit of a mess (simplified example):
\- Repository A, for subsystems X and W, to be deployed on platform Alpha;
\- Repository B, for subsystem Y, to be deployed on platform Beta;
\- Repositories [C, D, E\], for subsystem Z, to be deployed on platform Alpha. Some of these repos depend on each other (yuck...);
\- Repositories F and G, one with all necessary build toolchains and third-party dependencies, the other with "common code" such as definition of data structure for the messages being exchanged between subsystems/components. These are either pulled to create the build environment or used as dependency for some subsystems (in the form of git submodules).
Hopefully, you can imagine the headaches resulting from managing the build environments, dependencies, and submodules. My initial thought either to join everything into a mono-repo, with a "common" folder for the code shared between subsystems, and each subsystem residing in a dedicated folder comprising the corresponding source code and everything it needs to be built (toolchain, third-party packages, etc). Another approach, was to have one repo per domain/subsystem in a way that it is decoupled and fully buildable in isolation (ala microservices). Alas, I'm not sure how to deal with common code using this approach and the impact it has on the CI process...
To complicate things, we have externals working on parts of a subsystem (say repos C and D for subsystem Z) that cannot have access to an IP-protected part of the same subsystem (say repo E). My thoughts to "solve" this was to merge the "public" codebase for this subsystem into a single repo (H=C+D) and have the IP-protected code being imported as a git submodule (the externals wouldn't have permissions to the corresponding repo, and thus, couldn't pull it). I could also follow a similar approach for a mono-repo with the IP-protected part as a submodule but...the externals must be exposed to as few parts of the project as possible.
Finally, I need to find a way to integrate everything into a cohesive product comprising the different subsystems (e.g., the product has subsystem X v1.0.0, subsystem W v.1.0.1, subsystem Y v.1.0.5, etc) and make sure everything works (via system tests, etc). The mono-repo would easily solve this; for the multi-repo approach I would have an "umbrella" repository importing each subsystem as git submodules at the necessary tag/version (plus any helper scripts that I would need to build, glue, and deploy everything).
Does anyone experienced a similar scenario? How would you solve this and how would your CI process look like? Is there any book discussing these kind of issues, strategies on how to structure projects using GIT repositories, etc., that you would suggest? Most of the content I seem to find relies on scenarios with perfectly clean or basic situations...
Thank you everyone, and apologies for the long post!
https://redd.it/12paw3k
@r_devops
Hello everyone,
I'm currently struggling on taming a brown field project for an embedded device, particularly on enabling basic CI processes, mainly due to the poor codebase structuring the project has. For context, on a high-level, the product application is distributed, that is, we have multiple subsystems (e.g., vision, navigation, safety-control) that communicate either via a kind of a message broker or a point-to-point communication channel (e..g, using I2C). Some of these subsystems may be deployed to different hosts, with different OS and platform architectures (i.e., different build toolchains might be required).
Currently, the way the project is structured is a bit of a mess (simplified example):
\- Repository A, for subsystems X and W, to be deployed on platform Alpha;
\- Repository B, for subsystem Y, to be deployed on platform Beta;
\- Repositories [C, D, E\], for subsystem Z, to be deployed on platform Alpha. Some of these repos depend on each other (yuck...);
\- Repositories F and G, one with all necessary build toolchains and third-party dependencies, the other with "common code" such as definition of data structure for the messages being exchanged between subsystems/components. These are either pulled to create the build environment or used as dependency for some subsystems (in the form of git submodules).
Hopefully, you can imagine the headaches resulting from managing the build environments, dependencies, and submodules. My initial thought either to join everything into a mono-repo, with a "common" folder for the code shared between subsystems, and each subsystem residing in a dedicated folder comprising the corresponding source code and everything it needs to be built (toolchain, third-party packages, etc). Another approach, was to have one repo per domain/subsystem in a way that it is decoupled and fully buildable in isolation (ala microservices). Alas, I'm not sure how to deal with common code using this approach and the impact it has on the CI process...
To complicate things, we have externals working on parts of a subsystem (say repos C and D for subsystem Z) that cannot have access to an IP-protected part of the same subsystem (say repo E). My thoughts to "solve" this was to merge the "public" codebase for this subsystem into a single repo (H=C+D) and have the IP-protected code being imported as a git submodule (the externals wouldn't have permissions to the corresponding repo, and thus, couldn't pull it). I could also follow a similar approach for a mono-repo with the IP-protected part as a submodule but...the externals must be exposed to as few parts of the project as possible.
Finally, I need to find a way to integrate everything into a cohesive product comprising the different subsystems (e.g., the product has subsystem X v1.0.0, subsystem W v.1.0.1, subsystem Y v.1.0.5, etc) and make sure everything works (via system tests, etc). The mono-repo would easily solve this; for the multi-repo approach I would have an "umbrella" repository importing each subsystem as git submodules at the necessary tag/version (plus any helper scripts that I would need to build, glue, and deploy everything).
Does anyone experienced a similar scenario? How would you solve this and how would your CI process look like? Is there any book discussing these kind of issues, strategies on how to structure projects using GIT repositories, etc., that you would suggest? Most of the content I seem to find relies on scenarios with perfectly clean or basic situations...
Thank you everyone, and apologies for the long post!
https://redd.it/12paw3k
@r_devops
Reddit
r/devops on Reddit: [Help] Project repo structure with common code, dependencies, IP protection issues
Posted by u/OverlyCivilXenomorph - No votes and no comments
Jenkins guides
Any places considered best references to study Jenkins ?
https://redd.it/12pkdwd
@r_devops
Any places considered best references to study Jenkins ?
https://redd.it/12pkdwd
@r_devops
Reddit
r/devops on Reddit: Jenkins guides
Posted by u/Opening_Wishbone_422 - No votes and no comments
OnCall Fiasco
Friends, I’ve recently started a new job that has brought a challenging work-life balance. This includes unpredictable weekly deployments and releases (9 PM), including Fridays. And be on an oncall every three weeks.
I'm curious if this is normal, especially for senior positions – Is it common for higher-paying roles to demand this much off-hour work?
https://redd.it/12po3hi
@r_devops
Friends, I’ve recently started a new job that has brought a challenging work-life balance. This includes unpredictable weekly deployments and releases (9 PM), including Fridays. And be on an oncall every three weeks.
I'm curious if this is normal, especially for senior positions – Is it common for higher-paying roles to demand this much off-hour work?
https://redd.it/12po3hi
@r_devops
Reddit
r/devops on Reddit: OnCall Fiasco
Posted by u/moistPoonTang - No votes and no comments
Any real benefit on going with Datadog for AWS monitoring?
I have been wondering why some steps were taken by my current company and this is one of them.
We only use AWS, hence we only need to monitor AWS services. Therefore I got puzzled on why would someone go the extra mile and pay for Datadog when we have an AWS built-in product like CloudWatch. I could understand using Datadog would be good if we used multiple clouds, but that is not the case and we do not foresee any change to this within a couple of years.
Is there a big difference that would make going for Datadog reasonable if a company only uses AWS services?
https://redd.it/12pofo8
@r_devops
I have been wondering why some steps were taken by my current company and this is one of them.
We only use AWS, hence we only need to monitor AWS services. Therefore I got puzzled on why would someone go the extra mile and pay for Datadog when we have an AWS built-in product like CloudWatch. I could understand using Datadog would be good if we used multiple clouds, but that is not the case and we do not foresee any change to this within a couple of years.
Is there a big difference that would make going for Datadog reasonable if a company only uses AWS services?
https://redd.it/12pofo8
@r_devops
Reddit
r/devops on Reddit: Any real benefit on going with Datadog for AWS monitoring?
Posted by u/Empire230 - No votes and 7 comments
Addressing high cardinality using streaming aggregation
https://last9.io/blog/high-cardinality-no-problem-stream-aggregation-ftw/
https://redd.it/12pqsk0
@r_devops
https://last9.io/blog/high-cardinality-no-problem-stream-aggregation-ftw/
https://redd.it/12pqsk0
@r_devops
last9.io
High Cardinality? No Problem! Stream Aggregation FTW | Last9
Managing high cardinality in time series data is tough but crucial. Learn how Levitate’s streaming aggregations can help tackle it efficiently.
Kubernetes-Native Synthetic Monitoring with Kuberhealthy
Today I published an article titled "Kubernetes-Native Synthetic Monitoring with Kuberhealthy", where I explain how you can spin up synthetic monitoring platform in your own Kubernetes cluster using Kuberhealthy, including how to deploy it, configure it, create synthetic checks and set up monitoring and alerting.
Here's the link: https://betterprogramming.pub/kubernetes-native-synthetic-monitoring-with-kuberhealthy-15a8939972a
Feedback is very much appreciated!
https://redd.it/12pojwu
@r_devops
Today I published an article titled "Kubernetes-Native Synthetic Monitoring with Kuberhealthy", where I explain how you can spin up synthetic monitoring platform in your own Kubernetes cluster using Kuberhealthy, including how to deploy it, configure it, create synthetic checks and set up monitoring and alerting.
Here's the link: https://betterprogramming.pub/kubernetes-native-synthetic-monitoring-with-kuberhealthy-15a8939972a
Feedback is very much appreciated!
https://redd.it/12pojwu
@r_devops
Medium
Kubernetes-Native Synthetic Monitoring with Kuberhealthy
Learn how you can run your own synthetic monitoring on your Kubernetes clusters without any expensive third-party tools and platforms
Advice for becoming a better DevOps engineer
Hi everyone,
I have been recently thinking about growing by DevOps skills set. I know most of the time the answer most companies push their employees with is doing certifications to advance your skills and career, but I don't think I agree with this fully.
I need some advice on which skills to focus on than can improve my DevOps career no matter the tech stack I am working with.
I find it pointless to just pump out cert after cert and in the end I might not even use the skills that the cert taught me. If there are recommended certificates to target, I would like them to be more broad so that I can use the skills from that cert across any project I work on. I am looking for skills and certs that can stand stand the test of time.
If anyone has some recommendations, it would be much appreciated.
https://redd.it/12ptp01
@r_devops
Hi everyone,
I have been recently thinking about growing by DevOps skills set. I know most of the time the answer most companies push their employees with is doing certifications to advance your skills and career, but I don't think I agree with this fully.
I need some advice on which skills to focus on than can improve my DevOps career no matter the tech stack I am working with.
I find it pointless to just pump out cert after cert and in the end I might not even use the skills that the cert taught me. If there are recommended certificates to target, I would like them to be more broad so that I can use the skills from that cert across any project I work on. I am looking for skills and certs that can stand stand the test of time.
If anyone has some recommendations, it would be much appreciated.
https://redd.it/12ptp01
@r_devops
Reddit
r/devops on Reddit: Advice for becoming a better DevOps engineer
Posted by u/Blitziggy - No votes and 1 comment
What's your take if DevOps colleague always got new initiative / idea?
Hello all, I want to ask and might need a new insight. What is your take if one of your colleague (same devops team) always got initiative / idea although your team is not strong or vast enough to do that due to lack of skill (might be a blocker instead of improvement)
Thank you for reply this thread.
https://redd.it/12ptlab
@r_devops
Hello all, I want to ask and might need a new insight. What is your take if one of your colleague (same devops team) always got initiative / idea although your team is not strong or vast enough to do that due to lack of skill (might be a blocker instead of improvement)
Thank you for reply this thread.
https://redd.it/12ptlab
@r_devops
Reddit
r/devops on Reddit: What's your take if DevOps colleague always got new initiative / idea?
Posted by u/Cultural-Pizza-1916 - No votes and 3 comments
Resume Review for DevOps/Cloud jobs
Hello,
Looking at getting feedback on my resume. Been in IT for 4 years and been a Cloud Engineer for past 2 years. Will be applying soon to DevOps/Cloud roles and wanted to confirm with the community if there are any glaring flaws in format or anything I might be overlooking.
https://www.reddit.com/r/resumes/comments/12ptaeg/need\_resume\_review\_cloud\_engineer\_4\_yoe/
Thank you!
https://redd.it/12pyoyj
@r_devops
Hello,
Looking at getting feedback on my resume. Been in IT for 4 years and been a Cloud Engineer for past 2 years. Will be applying soon to DevOps/Cloud roles and wanted to confirm with the community if there are any glaring flaws in format or anything I might be overlooking.
https://www.reddit.com/r/resumes/comments/12ptaeg/need\_resume\_review\_cloud\_engineer\_4\_yoe/
Thank you!
https://redd.it/12pyoyj
@r_devops
Reddit
r/resumes on Reddit: Need Resume Review - Cloud Engineer (4 YOE)
Posted by u/1ooking4advice - 1 vote and 1 comment
Kubecon EU 2023
Does it happen that you will be at Kubecon Europe 2023? We will be at booth P15, ready to talk about AI/ML, MLOps, open-source ML, Kubeflow, and more. There are a bunch of demos Ubuntu prepared and a fun keynote on secure MLOps. Read more and meet us there!
https://redd.it/12q00v6
@r_devops
Does it happen that you will be at Kubecon Europe 2023? We will be at booth P15, ready to talk about AI/ML, MLOps, open-source ML, Kubeflow, and more. There are a bunch of demos Ubuntu prepared and a fun keynote on secure MLOps. Read more and meet us there!
https://redd.it/12q00v6
@r_devops
Medium
Open source MLOps at Kubecon with Ubuntu
Would you like to learn more about Open source MLOps at Kubecon? Pass by Ubuntu’s booth at Kubecon EU 2023
DevOps career guidance
Hello! I'm new to this community and this methodology as well.
I have been trying to learn DevOps since a month now and I'm interning at a company. I was interested in AIML at first, but they gave me DevOps and Development to study. I'm not good at coding tbh, but I'm trying my best to make logic skills strong. (Techstack - Java)
Now, about DevOps, could all the DevOps experts please recommend a road map as to how to learn DevOps and it's tools? What are the resources from where all of you learnt DevOps?
I have come across a lot of road maps and resources, but I want to know from all of you.
Kindly tell the resources as well, if available.
https://redd.it/12pte6d
@r_devops
Hello! I'm new to this community and this methodology as well.
I have been trying to learn DevOps since a month now and I'm interning at a company. I was interested in AIML at first, but they gave me DevOps and Development to study. I'm not good at coding tbh, but I'm trying my best to make logic skills strong. (Techstack - Java)
Now, about DevOps, could all the DevOps experts please recommend a road map as to how to learn DevOps and it's tools? What are the resources from where all of you learnt DevOps?
I have come across a lot of road maps and resources, but I want to know from all of you.
Kindly tell the resources as well, if available.
https://redd.it/12pte6d
@r_devops
Reddit
r/devops on Reddit: DevOps career guidance
Posted by u/ojay_2809 - No votes and 12 comments
A Kubernetes Operator in Rust
https://thetechtrailblazer.blog/2023/04/18/a-kubernetes-operator-in-rust/
https://redd.it/12q3wik
@r_devops
https://thetechtrailblazer.blog/2023/04/18/a-kubernetes-operator-in-rust/
https://redd.it/12q3wik
@r_devops
The Tech Trailblazer
A Kubernetes Operator in Rust
You can check the operator yourself here, or use it as boilerplate code to start your own rust operator. A little bit of background I’ve been writing Kubernetes operators for quite some time …
Docker desktop ?
I used to recall docker having instructions on their website to install docker locally with zero issue and now everything on their website eventually points to docker desktop??
Is this the only way to get it without having to install using via option Colima / other customized ways ?
I’ve never used docker desktop so please someone enlighten me why this now
Edit: on MacOS
https://redd.it/12q4wcd
@r_devops
I used to recall docker having instructions on their website to install docker locally with zero issue and now everything on their website eventually points to docker desktop??
Is this the only way to get it without having to install using via option Colima / other customized ways ?
I’ve never used docker desktop so please someone enlighten me why this now
Edit: on MacOS
https://redd.it/12q4wcd
@r_devops
Reddit
r/devops on Reddit: Docker desktop ?
Posted by u/nipaellafunk - No votes and 5 comments
How much networking is required for devops?
I want to work in devops. How much networking is enough for this role?
https://redd.it/12qbx86
@r_devops
I want to work in devops. How much networking is enough for this role?
https://redd.it/12qbx86
@r_devops
Reddit
r/devops on Reddit: How much networking is required for devops?
Posted by u/golesu - No votes and 2 comments
Rooftop Event – KubeCon Amsterdam
Hello all,
To enhance the finale of your KubeCon experience, FluxNinja has arranged a special rooftop gathering!
Where & When: W Lounge, Amsterdam at 9 pm on Thursday. Join us to unwind and connect with peers while enjoying sensational views of the city!
Reserve your spot on the waitlist here: **https://partiful.com/e/svc8K9IDtsEAli0hCKdc**
https://redd.it/12qdhjk
@r_devops
Hello all,
To enhance the finale of your KubeCon experience, FluxNinja has arranged a special rooftop gathering!
Where & When: W Lounge, Amsterdam at 9 pm on Thursday. Join us to unwind and connect with peers while enjoying sensational views of the city!
Reserve your spot on the waitlist here: **https://partiful.com/e/svc8K9IDtsEAli0hCKdc**
https://redd.it/12qdhjk
@r_devops
Partiful
RSVP to The FluxNinja Social Hour @ KubeCon Amsterdam | Partiful
The FluxNinja team is thrilled to invite you to an exclusive event during our upcoming visit to Amsterdam! Join us for a night of stimulating conversations, networking, and fun as we close out KubeCon in style.
This is a fantastic opportunity for you to…
This is a fantastic opportunity for you to…
What are your views on Harness / Argo / Gitlab?
What are your views on Harness / Argo / Gitlab ? Need reviews about all these 3 products. I tried harness but got stuck while installing "delegate". What is your view on this? and how did you manage to set up your delegate?
https://redd.it/12qcd0a
@r_devops
What are your views on Harness / Argo / Gitlab ? Need reviews about all these 3 products. I tried harness but got stuck while installing "delegate". What is your view on this? and how did you manage to set up your delegate?
https://redd.it/12qcd0a
@r_devops
Reddit
r/devops on Reddit: What are your views on Harness / Argo / Gitlab?
Posted by u/callmedevilthebad - No votes and 3 comments
I also hate it whenever I have to wait for a pipeline to finish wanting to know if my change is good and the pipeline passes or if there are problems I need to fix first.
https://www.infrastructureposts.com/p/e5-building-better-cicd-pipelines
https://redd.it/12qfol5
@r_devops
https://www.infrastructureposts.com/p/e5-building-better-cicd-pipelines
https://redd.it/12qfol5
@r_devops
Infrastructure as Posts
E5: Building Better CI/CD Pipelines
I’m personally in some kind of hate/love relationship with pipelines. I love them for all the work they do for me and could never imagine going back to a world without them. I also hate it whenever I have to wait for a pipeline to finish. Eagerly wanting…
TLS cert provisioning and secrets management for secure enclaves
Using secure enclaves should be simple, so we developed a system to provide TLS certificate provisioning and secrets management out of the box. To ensure that the abstraction would be completely language agnostic, we also added an on-enclave API to manage encryption, decryption and attestation document retrieval. Here's how we did it.
https://redd.it/12qfqk1
@r_devops
Using secure enclaves should be simple, so we developed a system to provide TLS certificate provisioning and secrets management out of the box. To ensure that the abstraction would be completely language agnostic, we also added an on-enclave API to manage encryption, decryption and attestation document retrieval. Here's how we did it.
https://redd.it/12qfqk1
@r_devops
Evervault
How We Built Cages: Cage Provisioning — Blog — Evervault
Providing TLS certificate provisioning and secrets management out of the box
Why wouldn't you just use all rules for a tool like Sonarcloud?
Our company uses Sonarcloud to do code analysis on our Github repos, to find hidden bugs or pitfalls, to ensure that it's maintainable, etc.
What I'm wondering is; if implementing these rules helps with code and reducing tech debt, why wouldn't a person just implement all rules? It would point out each and every issue with your repos - wouldn't that make you the 'ultimate' programmer, and maximize quality for your repos? Kind of like having a senior programmer standing over you & pointing out all of the ways you can improve your code?
If not, how do you best determine what rules are 'legit' & useful, and what aren't?
Side question: Could I use a tool like this on Visual Studio Code in order to have it critique my code as I write? (Theres an extension called Sonarlint, but I'm not sure if it's a good idea to use it or not, or it will slow down my learning of code)
My personal speciality is more cloud-oriented, and I don't know too much about the programming side of things.
https://redd.it/12qiuw5
@r_devops
Our company uses Sonarcloud to do code analysis on our Github repos, to find hidden bugs or pitfalls, to ensure that it's maintainable, etc.
What I'm wondering is; if implementing these rules helps with code and reducing tech debt, why wouldn't a person just implement all rules? It would point out each and every issue with your repos - wouldn't that make you the 'ultimate' programmer, and maximize quality for your repos? Kind of like having a senior programmer standing over you & pointing out all of the ways you can improve your code?
If not, how do you best determine what rules are 'legit' & useful, and what aren't?
Side question: Could I use a tool like this on Visual Studio Code in order to have it critique my code as I write? (Theres an extension called Sonarlint, but I'm not sure if it's a good idea to use it or not, or it will slow down my learning of code)
My personal speciality is more cloud-oriented, and I don't know too much about the programming side of things.
https://redd.it/12qiuw5
@r_devops
Reddit
r/devops on Reddit: Why wouldn't you just use all rules for a tool like Sonarcloud?
Posted by u/waste2muchtime - No votes and 5 comments