What is the largest unexpected cloud bill you’ve received and what caused it?

Hey! As I wrote in the title - I’d like to hear your experiences when it comes to being charged unexpectedly high amounts of money for cloud services.

https://redd.it/1gfl6qa
@r_devops

Thoughts on crowd-sourcing on-call

Hey everyone, I'm working on a product to crowd source on-call responses.

Before I get any further with it, I'm wondering if there are people who would be interested in chatting with me about it. Would you be interested in helping respond to problems you know a lot about?

E.g. if you have some contributions to ClickHouse or have run it in production, would you be interested in responding to a page from a company having a ClickHouse outage?

Here's the service: https://pagersquad.com

You'd of course be paid by companies for being on-call and responding to outages. I figured it might be a decent way for people to get paid for knowing a ton.

https://redd.it/1gfn82s
@r_devops

Cloud or physical severs?

Do you recommend owning my own physical servers in order to host my own data and my web application or do you recommend going for a cloud solution, if so which cloud and how can I protect my self on being charged for high bills or fees I cannot pay?

https://redd.it/1gfotl3
@r_devops

Quick review of Pulumi ESC

I have been playing with Pulumi ESC since they went GA last month. Here are my quick thoughts on it:

1. It's very practical for centralizing configuration or secrets in environments that can inherit from each other
2. I like how ESC can get secrets from other stores like Azure Key Vault or 1Password. This feature makes it more than just a vault. Unfortunately, some sources like Bitwarden are not yet supported
3. I found that configuring OpenID Connect was quite challenging but once it's set up, being able to easily retrieve short cloud access tokens from an environment opens up a whole range of possibilities
4. ESC has interesting integrations with other tools (like Direnv of Terraform). I've only used the Pulumi IaC integration which is very handy
5. ESC is not completely open source (it seems only some parts like the CLI are) so you can't self-host it unless you pay a license 😕
6. The vscode extension is fairly basic but very nice to modify the environments
7. I didn't check the audit logs, but I'm sure that having environments that are auditable and versioned can be valuable for some companies

https://redd.it/1gfpnnb
@r_devops

k8s deployment workflow (GitOps, kustomize with ArgoCD). marketplace recommendations?

Hi there

I am setting up brand new deployment platform with a typical GitOps patterns (with kustomize & ArgoCD). We use GitHub Actions for the setups and noticed the marketplace for the GitHub Action: https://github.com/marketplace/actions/kustomize-github-action

I always create the bases/overlays with the proper kustomization.yaml in the folders. I never used the marketplace item before and not sure how to incorporate into the setups.

Looking for recommendations to see how community is setting up their kustomize modules (with or without marketplace items). If you used marketplace, how did you setup kubevals & other checks that's usually go under kustomize modules. 🫡

https://redd.it/1gfr1v2
@r_devops

Vybes, share what you are listening to in real time with friends

I recently published this social media that lets you share the music you're listening to (from your favorite streaming service) in real time with your friends.
You can download it here https://vybess.app/download
Let me know what you guys think

https://redd.it/1gfwdo6
@r_devops

Which job would you pick

I’m interested in hearing which job you would pick going off the compensation. Just for fun.

Job 1
Base: £50,000
Annual bonus: 9%
Pension: 4% employee 11% employer
Additional benefits: £120 per month benefit in kind for health and well-being
Company type: Corporate
Progression: level 2 of a possible 4.
Working pattern: fully remote

Job 2
Base £65,000
Annual bonus: 2-4%
Pension: 5% employee 5% employer
Additional benefits: None
Company type: Small to medium sized business
Progression: None
Working pattern: Hybrid 1 day every two weeks in office (20 mins drive)

Edit: Clarified Job 2 Hybrid working.


https://redd.it/1gfx2ab
@r_devops

Need help with ansible and drone ci pipeline

This is probably a low level issue for a lot of you but im kinda stuck on this.

Im using Drone as my CI/CD to deploy a binary to a server, I have a ansible repo for deployment. The process is as follows for now (this is just temporary since im building a deployment and goes only to staging):

push to development > builds binary > names it binary_git_short_sha > deploy it to server with command

ansible-playbook -i .ansible/inventory -e "binary_name=${BINARY} " --limit staging .ansible/playbook.yml

BINARY variable has the value of the binary name, but when i call it in drone pipeline in a step i get binary_name= in the -e variables. If i replaced the ${BINARY} with lets say ${DRONE_BRANCH} that is an environment variable set by drone at the start of the pipeline the value is there it would be binary_name=development but any time i define a variable by hand it does not work. Ive tried even running a bash script that would define the variables and pass them to the ansible command and run it all inside the script but the source would be the same and the result would be the same as well.

I tested it in the docker container itself on my machine, the entire process and it does work but in drone ci it does not. Feel like im losing my mind a bit.

edit: edited formatting a bit

https://redd.it/1gfzdi2
@r_devops

How to write a production ready code in Python " Clean Architecture focuses"

How to write a production ready code in Python

Clean Architecture focuses on separating the software system into layers with strict boundaries, enhancing maintainability and testability. The core idea is to keep the business logic (or domain logic) independent from the external factors like databases, UI, and frameworks.

I just published Clean Architecture exaplme python and PostgreSQL 
https://medium.com/@rasvihostings/clean-architecture-exaplme-python-and-postgresql-59a95bcf8d56
This example illustrates how to implement Clean Architecture in a Python
\#Python \#fastapi \#cleancode \#CleanArchitecture

https://redd.it/1gg5ri3
@r_devops

Data Platform Strategy

So as part of our DevOps culture we moved to "Platform Engineering" we started to deploy tools for dev Teams and find ways for devs to easily deploy "directly" related infrastructure for their apps, etc.

However we are kinda struggling with the data scientists (and science people since we have a reseach branch in the company) They need tools such as juperhub, Argo Workflows, mlflow, etc

I understand this to be part of the company platform, however I wonder if there are other strategies with separate teams specifically for data engineering.

Until now we have considered data engineering as a separate responsibility, however there is no real ownership because of lack of resources, and even if it's not our strength I'm starting to think the only way is to integrate it with the Platform Team.

What do you think?

Which strategies you use in your companies?

Thanks

https://redd.it/1gg8pe5
@r_devops

Is development important for a Mid-Senior DevOps Job position?

I am currently working as an Azure Cloud Engineer with one year of experience, and prior to that, I worked as a Network Engineer for two years. I would like to know if development knowledge is essential for landing a Senior DevOps role, and whether I should consider learning web development for this purpose. I am already familiar with common DevOps tools such as Docker, Kubernetes, Terraform, Git, basic CI/CD, Python scripting, and I have cloud experience.

I'm unsure if I should further strengthen my skills with these tools or focus on learning web development to enhance my chances for a DevOps position. Since I am already working as a Cloud Engineer, I am aiming for mid-to-senior DevOps roles rather than junior positions. Could someone advise accordingly?

https://redd.it/1gfo328
@r_devops

Best static code analyzer for my android app's CI/CD pipeline?

Currently I'm using github actions ci/cd platform for: lint, ui/unit tests and packaging. I want to add static code analysis - SonarQube wa my first go-to but it turns out they are free only for public repositories. Looking for a good alternative

https://redd.it/1ggd9ck
@r_devops

Which books ?

I'm a senior devOps eng and wondering how I could improve my skill set.
I know how to learn technical stuff when it needs, but as I'm over 45 now, I think about "manage" a team. Maybe just a tech lead role would be great.
In that purpose, do you know books that could help me ?
Thx 🙏

https://redd.it/1gge1fa
@r_devops

Are there any free GitHub Actions for security scanning in private repos?

We currently have Checkmarx integrated with Actions with SAST and SCA scanning, but I was looking for some other tools like OSSF Scorecard and harden-runner and both are requires licensing for private repos. Do you guys have any other recommendations?

https://redd.it/1ggehw8
@r_devops

Organizing IaC by resource type

Does anyone else hate this and think it's an anti-pattern? For instance (assuming AWS Terraform):

- iam_roles.tf
- iam_policies.tf
- kms_keys.tf
- rds.tf

To me, this pattern isn't helpful since I'm almost always more interested in the "whole thing" and don't want to go through a bunch of individual files to figure out how the database is configured. I usually set things up like

- database.tf

then stick all the related resources like roles/policies/keys in the same file.

However, it seems like "organize by resource type" is a pretty pervasive pattern.

https://redd.it/1ggftwk
@r_devops

KEDA: Using metrics from OTEL collector for scaling

Any fellow KEDA users here? 🙋 Jirka just dropped a blog on a new OTEL Scaler for KEDA, which lets you go straight to OTEL for scaling metrics—no Prometheus server required. Setup’s pretty easy, and it’s perfect for those of us dealing with workloads that need instant scaling (AI/ML, web traffic spikes, etc.).

Worth a read if you’re looking to optimize your setup: https://kedify.io/resources/blog/using-otel-collector-with-keda?utm\_source=reddit&utm\_medium=social&utm\_campaign=blog\_post

https://redd.it/1gggvnn
@r_devops

Bad back?

Anyone else here got a bad back from all this office work?

https://redd.it/1gghq4b
@r_devops

Using Postman without sharing any data?

Hi everyone,

Firstly, I come up to this thread in the forum if you wanna check: Does Postman collect and store sensitive data such as API keys?

In our company, they decided to not use the Postman (and insomnia) but the problem is I absolutely love Postman and all it's features for simple testing. Right now we are allowed to use Bruno but to be honest i come up to several bugs that effected my performance. I personally opened many issues in their github page after my problems and I definitely support them.

What I'm wondering, is it possible to use the Postman with no data share whatsoever?

https://redd.it/1ggicrp
@r_devops

Struggling to Land DevOps Interviews - Any Tips on Improving My Resume , need help !

https://imgur.com/a/1aPCXgj
This is my current resume please guide me where it needs to be improved and what changes i have to make

https://redd.it/1ggmp0b
@r_devops

Senior Devops salaries UK

Senior Devops Engineer on 65k London. Fully remote, however I go in maybe 4 times a year for certain events.
Maybe the markets getting better recently but it seems that Seniors around 70k+

https://redd.it/1ggkzlu
@r_devops

cfgmgmtcamp talks are closing in just a couple hours!

it's coming down to the wire! Only a couple hours left. If you haven't got your #cfgmgmtcamp talks submitted, go do it NOW! https://cfp.cfgmgmtcamp.org/ghent2025/cfp

https://redd.it/1ggpeon
@r_devops