conversations (very important for building a tool that is mainly used by developers)
* Write and review system designs for more complex features
* Assist in debugging support issues

Our team isn’t writing tasks for any of this important work, so it doesn’t get stakeholder-allocated, and, by extension, it can’t be factored into our velocity. We don’t use velocity to measure the team's performance (for this exact reason). However, we aim to be predictable with our output so stakeholders can plan ahead. We’re dealing with the inconsistent velocity for now and adding formal tasks for larger bodies of work (e.g., system designs). We don’t want to create a culture where “if there’s no ticket for it, I’m not doing it.” Engineers, as with all team members at Doppler, are deeply trusted to work on what they think will be most valuable for the company.

**🎉 It’s working!**

Overall, our team has been happy with this system over the past few months! We need to make more tweaks to accommodate large projects and unticketed work. Still, ultimately, it feels like we did what we set out to do: build a flexible, transparent, and democratic system for both stakeholders and engineers.

Has anyone else tried this (or something similar)? I’m curious to hear what’s working and what’s not for other teams. - Nic Manoogian (Head of Engineering @ Doppler)

https://redd.it/1e02k0l
@r_devops

Encrypted secrets in version control

We all have the mantra : "Never store secrets in version control !" (If you don't have it, what's wrong with you ?)

That being said, while working on a company project, based on Rails, I recently discovered the encrypted secrets mechanism.

It's seems very elegant. Indeed, whenever you introduce a new environment variable in your codebase (e.g. when connecting a new API), it's often super tiresome to think about updating the production environment, to create it with the production value before deploying the new feature. Since the file is in version control, you just introduce the new secret with your PR.

Since I haven't seen it in other tech stacks (Go, Node, Spring or whatever), I was wondering what were the limitations of this, if any ?

PS : I'm aware of "better" and more professional alternatives like Vault, KMS, etc.

https://redd.it/1e065nl
@r_devops

SwarmCD: a declarative GitOps and Continuous Deployment tool for Docker Swarm

Hello everyone,

I'm working on this open source tool that is inspired by ArgoCD but for Docker Swarm. It periodically watches Git repos that contain Docker Swarm stacks and config files, and keeps deploying new changes to the cluster. What are your thoughts? Contributions would be very appreciated since I'm relatively new to Golang and because the tools is still lacking many features.

https://github.com/m-adawi/swarm-cd

https://redd.it/1e09lwo
@r_devops

AWS Marketplace configuration question

I created an app that consists of AWS CodeBuild, S3 for storage, SSM for configuration and SNS for notifications. I am interested in looking into offering my product to a larger audience. The app I created is used to export BitWarden vault data and stores in an s3 bucket. Currently I am storing configuration information that includes a username and password combination, as well as an API key that would need to be created in BitWarden account.

That information is pulled and stored in a single SSM Parameter Store key, but I am wondering if there is a more optimal consideration if I am going to offer it as a Marketplace product.

Thanks in advance, and look forward to comments

https://redd.it/1e0akof
@r_devops

Logging HTTP events

I'm setting up a Node server and I want to log every HTTP request and response that it handles. I thought about using Splunk because I have worked with it at a previous company and the API & dashboard are easy to work with, but it appears that Splunk is primarily enterprise software that isn't too startup friendly in terms of cost. Based on articles and other posts it looks like $100 per ingested GB/mo is somewhat average, and this seems like a lot especially compared to the costs of some other cloud services we're using.

Is this typical pricing for something like this? If so, what other solutions are people using for logging HTTP events?

https://redd.it/1e0f4hw
@r_devops

Stuck on Drone CI + Gitlab Subgroup project.

Hello,
I'm currently running the latest version of Drone on a VM, and the setup is complete. However, I've encountered an issue: Drone doesn't directly support GitLab subgroups, and my main project resides in a subgroup that I cannot relocate.
Is there a workaround I can employ? Or should I abandon Drone altogether?

https://redd.it/1e0ff3f
@r_devops

Bitbucket exports and imports

I'd like to share with you a step-by-step guide on how to export and import data in Bitbucket, which can be useful in case of migrating the project or platform (for example you need to switch from GitLab or GitHub to Bitbucket, or vice versa), etc. : https://gitprotect.io/blog/bitbucket-exports-and-imports-explained/

https://redd.it/1e0klib
@r_devops

Python program for reading and sending mail from office 365 custom domain

Is using the msal library and graph api the best way to have a python app to read and send emails on a office 365 custom domain?Are there better alternatives? TIA

https://redd.it/1e0lqqh
@r_devops

Guide to setting up self service with gitops backed by Terraform

Hi can anyone recommend a guide for setting up a git based self service platform, backed by a tacos system?

I've worked with a few of these systems but they've always been built over several years, and I have a chance to start with a clean slate. I have a notion of what I'm looking for, but would like to read a bit more

Is there a set of articles anywhere on this? Ideally I'd like one that covers having a registry/manifests repo as the entry point for developers

https://redd.it/1e0ms08
@r_devops

Send email notification on git pull

Folks, I want to send email notification if there is git pull happen on server for specific repo in specific path. Can anyone suggest how to do that?
I already have the send email python script.

https://redd.it/1e0oq3n
@r_devops

GitHub ARC (Actions Runner Controller)

Edit: title should’ve been “Using GitHub ARC (Actions Runner Controller)”, to clarify it is not a clickbait/seeking attention post.

Does anyone else use ARC in DinD/Kubernetes mode and getting such shitty performances?
If so, how did you encounter the problem, and if you’re getting good performances, PLEASE, what’s your secret man?
Sometimes I wonder if GitHub can handle large scale IPs.. It has so many problems!!

Thanks for the (future) replies.

https://redd.it/1e0pee6
@r_devops

Need guidance for automation

I manage sonarqube self-hosted instance and there's usual admin tasks like user/group management, monitoring quality gate, setting up pipeline integration etc... Since the user/group management aspect of my work is recurring and follows a set pattern, i want to automate this. I know i can make use of api's. I haven't looked into them yet. Just a preliminary opinion.

What would be the best approach for this task? Python? Bash? Ansible?
If you'll are aware of something that already exists for this, please point me to the resource/work.

Expectation:
* Should be able to do sonarqube user/group management remotely

https://redd.it/1e0qadi
@r_devops

Recorded shared ssh and powershell sessions

I've joined a slightly wild west feeling DevOps team, which is doing (and needing) lots off ssh, rdp and winrm sessions.

Culturally I don't think I can get everyone to move to running everything though cac pipelines just yet, but I would like it if there is a transparent way to have recorded ssh/terminal sessions. I don't mind if people can soft-redact parts either, I spend a lot of time making silly typos that would be embarrassing to share l. Are there such tools?



I once saw a talk from someone from GitHub about their "SlackOps", where they could start ssh sessions from inside slack. We have Teams here so I don't want to go down that route...

https://redd.it/1e0ocom
@r_devops

Kintana Package PPM Automation

Hello everyone I hope all is well.

I've joined a new company lately and one of the requirements that we have is that we need to use Kintana PPM software to create packages in order to apply fixes and SQL scripts using the UI/Destop app that they have. Is there a possibility to automate this process through script that would created the packages? I was searching but i could't find a lot of info since kintana is pretty old and legacy software. Does anyone have a solution for this? Maybe kintana has APIs that could use?

https://redd.it/1e0v8uj
@r_devops

Love working in GitHub codespace.

I only recently started coding in GitHub codespace and absolutely love to work there and to know I can access it from anywhere, even coding on my phone. Is there any other cool cloud based coding spaces you guys are using or is GitHub the way to go?

https://redd.it/1e0wv9i
@r_devops

Build a node and python dev container image.

I have a repo where I need node and python. I need to create an image to use as a dev container. I have been tinkering with it on and off for a couple weeks. Here is what I have tried so far.

First, I built an image using an official node image as the base then built python from source.

Second, I built an image using an official debian image as the base, installed node from the nodesource apt repo, and built python from source.

Third, I copied the Dockerfile instructions from the official node and python images.

So far I prefer the third option because it's the most like the official images merged together. How would you approach this task?

https://redd.it/1e0zdq1
@r_devops

Any L&D recommendations?

Hi,

We’re being pushed to spend money on training/development, otherwise they’re going to reduce our teams L&D budget 🙃

On that note, does anyone highly recommend any books/courses/conferences, etc?

Note: budget is £500 per annum.

Thanks in advance!

https://redd.it/1e12o6b
@r_devops

Is Our DevOps Approach Too Extreme? Need Insights

I'm currently working at a startup company. As a Junior Software Engineer with 15+ years of programming (I have been coding since I was a teen) and 4 years of professional experience, I've been leading the development of an API on an AWS EC2 server using Portainer to manage our microservices and containers. Recently, our DevOps colleague proposed that we switch to using AWS CloudFormation to configure our infrastructure so that the server can be destroyed and rebuilt automatically, with all services starting up perfectly every time. This would include our API Gateway and a few other microservices. While I’m currently using Terraform to set up the system, our DevOps colleague prefers CloudFormation to stick to AWS services, and some colleagues are hesitant to use Terraform due to their lack of knowledge on using Terraform.



I argued that this approach is uncommon and perhaps overkill for our needs, as it requires extensive coding to ensure everything runs without errors each time the server is rebuilt. I understand that setting up such automation for disaster recovery is ideal, but what happens if there's a bug in our current setup that we don't notice right away? If the system goes down, we might trigger CloudFormation to rebuild everything, but it could fail during the process, leading to wasted time on configuring and coding the whole thing in the first place. While I see the benefits of automation and reliability in disaster recovery scenarios, I believe it's rare for companies to destroy and rebuild servers frequently, making this setup potentially wasteful of our time and resources. I'd love to hear from others in the industry: is this approach as uncommon as I think, or is it a best practice that we're wise to adopt despite the initial overhead?

https://redd.it/1e139dp
@r_devops

Ansible Vs Chef

Hello,

I am trying to help a prospect evaluate Ansible.

The environment is a mix of Linux & Windows VM’s. They have used chef for several years and have not run into any technical challenges with the tool but recently started using Terraform and would like to use it with AAP.

Any advice on how to effectively navigate the evaluation process is welcome. What I am trying to understand is the pros/ cons of Chef compared to AAP.

https://redd.it/1e1653m
@r_devops

We just launched a no-code CLI platform | Bashnode.dev

We are still very much in the learning stage and trying to find out our user market and who might benefit from this apart from a niche subset of power users.

Our aim is to help developers and enterprises save time and increase efficiency by eliminating the need for complex and single-use Bash scripts.

Bashnode is an online CLI (Command line interface) builder. Using our web-based CLI builder tool, you can easily create your own custom CLI without writing any code.

Try it for free today at bashnode.dev please stick around and give us some feedback on if you would consider integration into your workflow why or why not? We will answer as many questions as we can our aim is to support the community and grow in the field with our first launch!

https://redd.it/1e17rrz
@r_devops

Confused!! What should I do next in devops??

Hey everyone,

I wanted to learn devops in general. There are plenty of roadmaps available in the market that makes a life of a person harder who want to explore. As a student, I want to explore devops and want to get to a level so that i can build and contribute in the real world.

So, can anyone suggest me the ideal roadmap that will help to know what i should do next.

I have learn basic linux stuff and some basic shell scripting from the LFS101. What should i do next? I should jump into cloud or i should learn about docker.. it's so confusing..

And I more doubt which cloud should i choose AWS, GCP or Azure!!

You can share your experience how you did it. And if any free resources which i can follow you can share that too..

Thank you in advance!!

https://redd.it/1e1a8rk
@r_devops