what are the better alternatives to sonarqube that you use currently?

Hey r/DevOps,

Most of our codebase is in JavaScript, TypeScript, and React, and we're currently looking for alternatives to SonarQube.

Does anyone have experience with AI tools that can help with static code analysis, code quality checks, and security vulnerability scanning for these languages?

Would love to hear what’s worked for you and if any new + reliable AI tools can take up the task!

https://redd.it/1ik11bs
@r_devops

Getting Nothing But Automated Rejection Emails. Roast My Resume!

I got my current role as a contractor on a state project shortly after a reduction in workforce at my last startup as a Site Reliability Engineer, and was looking to stay afloat rather than looking for the perfect place. I'm happy with the mission in my role, but very unhappy with the fact that I get no PTO, no holidays, and health insurance that's more expensive than what I can get through the state insurance portal, all that in addition to the organization going through a bunch of half-baked structural changes wherein we've been given a technical demotion. We were all hired as senior devops engineers, now we're all "platform engineers", so they essentially stripped us all of our senior titles, introduced new "senior" roles that don't have job descriptions and told us all to talk to our managers if we want those roles. That was months ago and no one as of yet has gotten a promotion.

Another small note, I have experience from 2014-2017 as customer facing desktop support for a large consumer technology retailer. Is that experience worth putting on my resume?

That being said, I'm starting to look elsewhere, but have not gotten any traction getting interviews, leading me to think of three possibilities:
1. My resume sucks
2. I don't have enough coding experience?
3. Everyone else in the market has longer tenure in their roles, leading to me being seen as a "job hopper"

\#3 seems possible but seeing as the only way around that is to stick it out in this tough spot for another few years, I'm hopeful that I'm somehow missing something in my resume, or something I can focus on learning to improve my odds.

For reference, the jobs I'm applying for are all Senior, Team Lead, Manager, or Staff level software engineering roles with "infrastructure" "platform" "devops" "kubernetes" in the title.

This is my sanitized resume: https://imgur.com/a/xut1KEB

I'm very grateful in advance for any feedback!

https://redd.it/1ik36u7
@r_devops

Built an open-source tool to find orphaned Kubernetes resources – would love feedback!

Hey folks,

I’ve been working on **Orphan Resource Collector (ORC)**—an **open-source** tool that helps detect orphaned resources in Kubernetes clusters. Things like unused PVs, orphaned Services, Ingresses and etc.

It’s super simple to use:

* Install a **lightweight agent** in your cluster (Helm chart available).
* It scans for orphaned resources and **sends findings to a dashboard**.
* You get a clear view of **what’s lingering in your cluster**—no API access needed.

Right now, ORC **only detects** orphaned resources (deletion is coming soon). You can **self-host it** or use the **SaaS version** to connect your cluster in less than a minute.

Would love any feedback - does this sound useful? Anything you’d want it to do differently?

Repo: [**https://github.com/origranot/orc**](https://github.com/origranot/orc)
SaaS: [**https://getorc.com**](https://getorc.com/)

Appreciate any thoughts! 😊



https://redd.it/1ik6geo
@r_devops

History lane Operations in 2000s: Opsware and Loudcloud

Does anyone remember how these two companies worked in the early 2000s? From what I understand Opsware was basically our Ansible, and Loudcloud our current AWS/GCP/Azure.

But how did Opsware work, does anyone know? Was it scripts in C, was it YAML? How were the 2000s?


https://redd.it/1ik8vbu
@r_devops

Why Golang?

Hey people! I am new to the DevOps space and cloud in general and I am from world of Javascript. I have seen multiple posts on reddit, linkedin, x, etc. Why do people start there journey with Golang as scripting language ? Even KodeKloud's DevOps path recommends learning Golang, for me as a final year student and not a job in hand should I give time learning Golang? And if so how can I do it? Thankyou all!

https://redd.it/1ikecbd
@r_devops

Homelab Ideas for Learning DevOps

So im currently going through KodeKlouds devops path, but I feel like it would be useful to do some sort of "homelab" type things to learn just general DevOps/SysAdmin.

However I am not sure where to start, I have decent just computer knowledge (I work as an SDET/Automation Architect) and i've been re-brushing up on my Linux fundamentals. I've been focusing on Docker/Kubernetes mainly right now.

One thing I am going to do is develop a very simple app to work on and attempt to take it through the docker-->kubernetes--->Helm/deployment just to get used to all that.

But as far as useful homelab idea's im honestly just not super knowledge on that. My networking knowledge is probably my weakest area (Am going to go for Network+ at some point but im focusing on Docker right now)

Really just kind of looking for ideas. Thanks! Some ideas I have I've posted below:

Self Hosted Gitlab Instance (To practice with deployment of the above webapp)
Plex Server/NAS (Not sure if on same Unit, maybe a Synology or R-pi
Home Assistant (Currently running on a raspberry pi 5
Other stuff (pfsense? some sort of firewalls?) I've thought about getting some Ubiquiti stuff since im wanting to get some of their cameras anyways

https://redd.it/1ikh4kv
@r_devops

Advice and Resume Roast

Hello all, i would appreciate if you can all give me some advice. I am trying to break into Devops, Sysadmin or similar roles.

I have years of experience as a web developer (PHP, MEAN Stack) and managing Ubuntu web servers on platforms including AWS, but no formal DevOps experience.

To break into Devops, i acquired Comptia A+, AWS CCP and Sysops certifications recently. I have also made demos to show possible employers. Demos are mainly of Terraform and Ansible.

Resume (one page for ATS): https://drive.google.com/file/d/1eFTnJmbau

Demos: https://github.com/umarbkh/AWSdemos

I am not sure what else i can do other than certifications and demos, every job post requiring a senior experienced professional is very discouraging and i feel like i wasted my time and effort. I have applied to hundreds of postings on Linkedin and directly, not a single interview.

https://redd.it/1ikikc4
@r_devops

Is the CKA Certification Worth It?

I am a student pursuing engineering in AI and currently in my final year. I love working with servers, exploring different distributions, Linux, and IT-related technologies. I have been preparing for a DevOps role, and now I have secured an internship as a DevOps Engineer at a very small startup.

However, my boss suggested that I go for the CKA (Certified Kubernetes Administrator) certification. I realized that preparing for this certification will take almost six months, and it is quite expensive.

So, my question is: If I focus on the CKA certification instead of grinding DSA coding questions for a decent job, will it be worth it?

https://redd.it/1ikjk2c
@r_devops

Wanting to switch to Devops

Hello,

I’m 28 and currently working remotely as a Cloud Engineer. While the job pays decently, it doesn’t match the income I was accustomed to from contracting overseas, though I understand those numbers are harder to achieve in the U.S.

In my free time, I day trade, which brings in a solid side income. However, I feel like I’m not progressing in my career and want to transition into DevOps. I started self-studying Docker last week and have a beginner-level understanding of it so far.

I’d appreciate any insight and guidance on how to break into a DevOps role and what skills I should focus on learning.


https://redd.it/1ikjto8
@r_devops

I’m Writing DevOps Books – Ansible Done, Terraform Next! Looking for Proofreaders!

📕 Hey folks,

I've been deep into DevOps for years, and for the past six, I’ve been taking notes with the goal of writing an Ansible book.

I finally did it - The Tao of Ansible is out! It's a concise, \~100 page book with a clean, no-nonsense approach to learning Ansible. Plus, it has a pretty sexy cover.

You can check out its Reddit post here and grab a copy on Amazon here.

It’s designed so you can go through it in just a few days to a week and get a solid grasp of Ansible.

👉 Up next: The Tao of Terraform. I’m currently looking for proofreaders. Same style—straightforward, easy to read, and practical. If you’re interested, your name will be credited in the book. Just DM me with your GitHub username and a way to contact you so we can discuss further.

You can find its Reddit post here.

🙏🏽 If you decide to pick up a copy, you'll get a good-looking, useful book - and you’ll also be fueling my late-night writing sessions with some quality Arabica coffee.

Appreciate the support!

https://redd.it/1ikjn0g
@r_devops

CKA 2025 Exam changes - killer.sh

I scheduled my CKA for the end of the month, but read this week that the 2025 exam changes with come into effect on 18th Feb.

As such I’ve bought my exam date forward to next week to be tested on the old syllabus, which I’ve been studying against.

My question is around killer.sh. I already used one of my sessions.

Does anyone know if I activated the second killer.sh session after Feb 18th, when the new syllabus becomes into effect, the question pool would based on the new changes, or the I’d just get the same questions as the first session? 

I was thinking it might be a better use of the second session if I get the new questions, in the event that I fail and need to retake on the new syllabus.

https://redd.it/1ikkzoc
@r_devops

My open-source project makes bootable OS images from Docker Containers. Can this be valuable somehow?

I made an open-source project PockerISO a few years ago where I use Hashicorp's Packer to create bootable ISO images for Ubuntu, Debian, Alpine using Docker Containers.

Recently I bumped the versions to Alpine 3.21, Debian Bookworm and Ubuntu 24.04.

This was just a hobby project, so never intended it to do anything hardcore.

However, I do tend to note that the ISO images are lighter and don't trawl in may bloated software (snap from Ubuntu etc.).

I am aware of other projects that do something similar like linuxkit and maybe Flatcar too i.e., use containers to build ISO images.

Any opinions, feedbacks, suggestions on if it might be worth looking into it more or can I let it float in the ether of many Side-Project OS repos?

https://redd.it/1ikmnh4
@r_devops

How do you keep track of "inventory"?

Hello,

I am facing this problem again and again, in different companies with different teams.

How do you keep inventory of resources. For example what Kubernetes clusters are there, what is deployed on the said clusters, what versions are the tools on it(e.g. nginx ingress, argocd). What RDBMS are currently running for which project, what version are they, should they be updated any known CVEs and others of this fashion (pet service running on VMs is a broad category)

What I do is write this down in Confluence/Sharepoint generally including information about why the services is deployed, how can it be reached(IPs/DNS), notes about patching (incl. version, next patch time etc..) and links to other documents about the system(i.e. playbooks during incidents, compliance documents). But this whole thing has always costed me a lot of time.

Solutions like SnipeIT aren't very useful in this context at least for me.

https://redd.it/1iko0pp
@r_devops

which Project Should I Choose?

Hey everyone! I'm planning to start a new project and I'm torn between these two ideas:

1️⃣ A complete, secure, and automated Kubernetes platform with:
✅ GitOps (ArgoCD, Terraform, Helm)
✅ High availability (HA) and resilient storage (Ceph, Velero)
✅ Security-first approach (Vault, mTLS with Istio, strict RBAC)
✅ Observability stack (Prometheus, Grafana, Loki, Jaeger)
✅ Hybrid support (containers + KubeVirt for legacy VMs)

2️⃣ A DevSecOps-focused project for securing and optimizing microservices deployment across multi-cloud/multi-cluster setups:
✅ Security automation (SAST/DAST with Trivy, Snyk)
✅ Centralized observability (Prometheus, Grafana, Loki, Jaeger)
✅ Automated deployments (ArgoCD, Helm)
✅ Network security & policies (Calico, Cilium)
✅ Secure CI/CD & Canary deployments

I’m looking for something challenging yet practical, ideally open-source friendly. Which one do you think is more valuable? Or if you have any suggestions for a better idea, let me know! 😊

https://redd.it/1ikp2dd
@r_devops

About SSL certs in K8S

We are offloading SSL on ingress. Security team says that do not keep ssl certs in secrets . We are keeping certs in secrets for ingress.
In fact security team wants to put certificate nowhere just in memory

I thinks keeping certs in secret is best we can do

What do you guys think ? How are you managing certs ?
Is security team asking too much ?



https://redd.it/1ikq0os
@r_devops

Acquired by a company 10x bigger with a different cloud

We use GCP in my shop, with which I feel pretty familiar after several years of managing.

The acquiring company uses AWS, which I can fumble my way through resource-wise since there's a lot of similarities, but I'd rather not just sloppily learn on the job when I'm integrated into a new team that's been doing this for years. Obviously, ramp up time will be necessary. I just want to minimize it.

Are there are relevant certs, courses, or projects for learning AWS as an old hand at GCP?

Perhaps a more juicy question that's less google-able - any advice for merging two sets of SRE culture, tooling, etc. like I'm about to? We're probably going to adopt 90% of their practices into our product, but I hope we can preserve some of the good stuff we have (like Nix as our dev env/build system 🤞)

https://redd.it/1iks97o
@r_devops

hi guys, do you maybe use somekind of a ticket estimation tool?

Hi guys, do you maybe use a ticket estimation tool? Cause I remember using it when I was working as an python developer. But never used it in a devops role before.


Thanks,

Tom

https://redd.it/1ikskmo
@r_devops

How to reduce the cost of traffic from America?

I have a server in Germany on GCP with a large number of pages, everything that could be transferred to CDN from images to style files.



Google often bypasses our site and thus generates a lot of traffic, which is why the bill at the end of the month has risen quite a bit, about 30% and I would like to ask you about a possible loophole or something else



The only way I see so far is to buy a second similar server and place it in America and make it take the nearest server in DNS, thereby minimizing the cost of traffic, but maybe there is something else that I don’t know about, please tell me

https://redd.it/1ikuij2
@r_devops

CI/CD tool to extract SQL queries

Hello, I'm looking for a tool to integrate in a pipeline that would extract the SQL queries from files in certain folder to separate file.

I'm working with Salesforce and Apex langues, and queries are looking like that:

List<Account> accounts = [SELECT Id, Name, Category__c FROM Account WHERE Industry = :industryParam];


String query = 'SELECT ProjectId__c from Project__c', nameToSearch = 'pp2';
List<sObject> projectList = Database.query(query + ' WHERE Name__c = :nameToSearch');

It probably is doable with some complicated regexes, but I'm wondering if there are dedicated tools for it.




https://redd.it/1il5b4e
@r_devops

I have a 45 technical assignment + interview coming up for a devOps/are intern position. What could that technical assignment potentially be?


45 minute interview*

Responsibilities of the role are:

1. Contribute to our production infrastructure (AWS, Kubernetes, PostgreSQL databases, Terraform, Helm)

2. Help triage and fix high-risk security and privacy issues in infrastructure and application components

3. Help implement security enhancements to our SDLC. Think continuous security monitoring: static code analysis pre-deploy (iroh.js, snyk.io, etc.), post-deploy (Zap), binary authorization, package signature, Terraform (tfsec)

4. Improve our data repositories (db, warehouse, lake) posture: engine upgrade, zero-downtime migrations, privacy taggings.

They’d also like an ideal candidate to have with experience in any of AWS, Datadog, Github Actions, k8s, with bonus points for knowing any of Terraform, Python, GNU/Linux, Burp Suite, and as a DBA (PostgreSQL).


https://redd.it/1il8nrn
@r_devops

What’s the current state of internal facing runbooks for other business units?

I'm trying to find a product that does runbooks in a way that exposes them as little automation jobs that are neatly exposed to nontechnical internal people like customer support. The UX should be dog simple from the user POV. Navigate to a given runbook, fill in some details like maybe some text boxes/dropdowns with dynamic values, maybe upload a file, then hit run as the runbook does its thing. The tools I've most experienced are either limited in expressing those UI options or only give a very shallow "runbook" experience like expecting the user to supply terraform code themselves. It should go without saying that audit logs for everything are a must.

Is there anything out there like that? I would be over the moon for meta-runbooks (a runbook for batches of other runbooks). Thanks

https://redd.it/1il9tpj
@r_devops