For my Last two posts Got Support, Got Critique. So what's Next...a New Idea Brewing

So just wanted to share a small update and a thought that's been on my mind lately.

Over the past few weeks, I’ve been helping folks fix cloud/devops infra issues (mostly through DMs), and wow… I’ve learned a lot more than I expected.
Out of the 3 people I helped closely, one of them paid and, but I didn’t mind , it genuinely felt good fixing things and learning in the process.

Later, I spoke to a few senior brothers and they referred me internally to their companies. Hopefully, something clicks by next month 🤞

But here’s the thing:
After talking to so many people and solving real infra pain points, I’m convinced there’s a huge scope in the backend/infrastructure/devops space right now especially in this AI-first world where everyone’s trying to scale fast but forget infra is the backbone.

So... last weekend I sent a DM to 8-10 folks who had reached out earlier just asking them some questions and casually sharing what I was thinking.
To my surprise, a few replied like:

>

I didn’t reach out to more because, honestly, I can only manage 2-3 people at the moment and I don’t want to waste anyone’s time. But just knowing that folks are willing to collaborate gave me a lot of confidence to maybe take a first small step soon.

Still figuring it out... just wanted to thank everyone who gave honest feedback, even the ones who roasted me a bit but it helped 🙂

If you're building something similar or have ideas in this space, feel free to drop in. I’m always open to chat and learn.

https://redd.it/1l5obz4
@r_devops

Switch from DevOps to SDE

I currently work as a DevOps Consultant at AWS. The pay is good but I realised lately a lot I am doing is not DevOps related like I have never worked with Linux and so far never got a project with K8s. I have built a lot of infrastructure with Terraform, built event driven architecutures on AWS, have done a lot of backend work with Python and built CI/CDs. I always had a deeper interest in coding than troubleshooting and I was wondering if it would be worth to switch to SDE either internally or externally?

Some things I’m grappling with:

* Would switching to SDE be a career **step sideways or backwards** in terms of scope, compensation, or growth path—even within FAANG?
* Long-term, is there more **upside and flexibility** in being an SDE versus staying in DevOps/SRE/platform?
* Is it common (or even possible) to switch internally within FAANG from DevOps to SDE, or would it require an external move?
* How do SDEs and DevOps compare when it comes to **technical depth** and **impact** on product?
* Anyone made a similar switch at a big tech company? Regrets? Wins?

Would love to hear from others who’ve made this kind of transition (or decided not to). Any advice on how to evaluate this properly—or how to make the move if I decide to go for it—would be hugely appreciated.

Thanks!

https://redd.it/1l5rrei
@r_devops

Haven't done this before, docker versions, environments, and devops

Greetings,

I just got my first github build action working where it pushes images up to the packages section of my repository. Now I'm trying to work out the rest of the process. I'm currently managing the docker stacks on the internal network using Portainer, so I can trigger an update using a webhook. I'm going to set up a cloudflare so that I can trigger the portainer updates via webhook from github while still keeping things protected.

However, I'm a little stuck. At the moment, portainer setup can reach out to github and get the images (I think, anyway, I haven't tested this yet). What's the best way to tag my docker images when I build them such that my two docker stacks (dev and production, I guess) in portainer can tell which images to pull? The images are in github in the packages section for my repo currently, so what's a good way to differentiate the environments? I'm using docker compose for structuring my stacks, btw.

https://redd.it/1l5twb7
@r_devops

Is DSA required for DevOps Roles ?

I am a cs student currently in final year learning DevOps. I just want to know that is DSA required for the DevOps Roles or even asked in interviews or technical rounds.

https://redd.it/1l5yzbh
@r_devops

Would love feedback on our Zero Drift browser security engine before we release it

I’ve been developing a browser-native security platform (patented) that tackles fingerprint spoofing, identity cloaking, session lockdown, and high-trust privacy in real time—with zero reliance on external APIs or cloud calls.

The project is called Zero DriftX7, and it’s designed for high-integrity, offline-and Airgap first environments. I’m building this for both advanced privacy users and organizations that need hardened browser tools without giving up control to third-party clouds.

Here’s what the early product suite includes (names are finalized, features in ongoing development):

⸻

CoGen / Zero DriftX7 Product Suite

DriftLockX7

Locks session activity to a live fingerprint snapshot and alerts or freezes interaction if drift (device or identity tampering) is detected.

Snapshot Engine

Browser-integrated capture and verification of the user’s session environment. No server pings. Fully local diff checker for spoofing attempts.

Remote Kill Switch

Instant, remote-triggered disablement of a browser instance or tab cluster—configurable to run offline.

Cloaked Decoy Mode

Creates high-fidelity ghost session environments for penetration testing, bot evasion, or behavioral masking.

Session Watchdog Engine

Constant validation loop running locally that self-terminates rogue script execution or extension mutation.

Trust Fingerprint

Unique locally-generated user signature to enforce trust zones between browser tabs, without calling external fingerprint services.

GeoTrust & IP Zone Control

Region-based enforcement policies (e.g., block actions outside your trusted country, even without VPN or proxy detection).

CSP Enforcer + Frame Guard

Hardens browser frame execution, enforcing fine-tuned Content Security Policies with zero third-party injection exposure.

Local Analytics & Activity Vault

Everything is stored client-side in encrypted blobs, viewable only via authenticated extension access. No remote telemetry.

⸻

This is all still under internal testing (no public repo or code yet), but I’d love to hear:
• Would you trust a browser-native privacy suite that runs entirely offline?
• What features matter most to you in browser-level threat defense?
• Are there attack surfaces you think we’re missing?

Any and all feedback welcome—this is early-stage and built by a DevSecOps engineer who’s tired of cloud bloat and telemetry leaks.

Thanks

https://redd.it/1l618ko
@r_devops

Need suggestion about my first Devops project

https://github.com/ad1822/cloudOps/blob/main/diagram\_new.png

I’m learning Kubernetes, AWS, and TF, so I built this project purely for learning purposes.

Tech Stack:

CI/CD: GitHub Actions
Infra as Code: Terraform
GitOps: ArgoCD
Backend: Go (Gin)
Frontend: React
DB: AWS RDS
Image Storage: S3 + CDN
Hosting: AWS EKS (Kubernetes) with LoadBalancers for both frontend & backend

The app lets users upload images → images go to S3, links (with image name) are saved in RDS, and the React frontend renders them from the CDN.

I’m a beginner, and this is my first project — the diagram might have a few mistakes, so feel free to drop suggestions or feedback. 🙌



https://redd.it/1l69048
@r_devops

DevOps Isn’t Just Pipelines—It’s Creating Environments Where Quality Can Emerge

In the DevOps world, we champion automation, CI/CD, and fast delivery. But what about the organizational conditions that make true quality sustainable?

My new post looks at the resistance to quality practices (tests, simple design, pair programming) and how it's often tied to:

* Short-term delivery pressure
* Team-level silos and lack of alignment
* Poor feedback loops

We need more than tools—we need cultures that enable trust, learning, and shared ownership.

Full post here: [https://www.eferro.net/2025/06/overcoming-resistance-and-creating-conditions-for-quality.html](https://www.eferro.net/2025/06/overcoming-resistance-and-creating-conditions-for-quality.html)

How are you addressing the “people and incentives” side of quality in your DevOps practices?

https://redd.it/1l69g0j
@r_devops

Open to take suggestions and review on my skills and projects for Internships

I am open to take suggestions and what other projects can I build for DevOps roles and internships.And how to get internships or jobs and where to apply ?
What else can I change and modify. And what else can I include?

Programming Languages : Java, Python, SQL, MySQL

Web Technologies: Spring Boot

DevOps & Cloud: Git, GitHub, Docker, Shell Scripting (Bash), Terraform, Azure, Jenkins
(Beginner), AWS (Foundational)

Operating Systems: Linux (Ubuntu, Red Hat)

Tools: VS Code, IntelliJ IDEA, Vim, Jupyter Notebook

GitHub: https://github.com/ariefshaik7


Projects:

Terraform Azure Jenkins Setup – GitHub May 2025
• Provisioned a Jenkins-ready Azure VM using modular Terraform with secure networking and NSGs.
• Automated Jenkins setup using a Bash script executed via Azure CustomScript extension.
• Designed reusable infrastructure modules for seamless CI/CD environment provisioning.
Azure Infrastructure with Terraform – GitHub May 2025
• Engineered scalable Azure infrastructure using modular and reusable Terraform codebase.
• Integrated remote backend for Terraform state management via Azure Storage for team collaboration.
• Supported multi-environment deployment using workspace-specific configurations and variable files.
Bash Scripts for Linux Automation – GitHub April 2025
• Built robust Bash scripts to automate system updates, cleanup, health checks, and resource backups.
• Developed CLI tools for cloud operations like Azure resource enumeration via Azure CLI.
• Enhanced consistency, efficiency, and maintainability across Linux server environments.
Todo Web Application – GitHub Feb - Mar 2025
• Developed a full-stack CRUD web app using Spring Boot, Thymeleaf, and MySQL.
• Containerized the application with Docker Compose for repeatable deployments.
• Implemented MVC architecture and validation for clean code and robust user input handling.

https://redd.it/1l6a0ib
@r_devops

I tried making DevOps easier and myself obsolete

# How everything started...

Life as a developer ain't easy. Don't get me wrong, I absolutely love a good challenge, and I get lots of energy from tackling complex problems all throughout the day. That may also be one of the reasons why I love the fact that our development teams at work, despite having a small dedicated DevOps team at hand, are advised to build their own deployment pipelines, terraform modules and such.

As time passed, I tried helping where I could and supported those who were missing some knowledge to properly handle their DevOps requirements, essentially taking load off of our small team of DevOps experts. They loved it, I loved it. It was or rather still is a win-win situation. After all, I did have prior DevOps experience due to previous employments and also my side-business (which, tbh., probably at least every second IT guy out there has).

Doing all of this, I noticed that most of the processes that I faced were kind of repetitive and follow the same steps or at least principals. Yet, since non-DevOps people were doing this work, some of the more complex stuff was prone to errors. Nothing inherently bad or anything. Just the usual problems understanding the deeper functionality of the required tooling, which was needed to complete a task. Thus, a need for support was given that I was more than happy to satisfy. Of course, the rise of AI helped a lot with this already. However, if you don't know what you are searching for, AI is not going to help you much either, so human knowledge was and is still the way to go.

# Making DevOps easier and myself essentially obsolete...

Seeing patterns and constantly noticing repetitive work made me think about potential opportunities for further process automation. Being a developer, I did have the tools at hand which were needed to build an application. So I did and not much after, Kublade was born. At its core, the application is a templating engine for Kubernetes manifests, which allows DevOps teams to offer a certain set of templates which can then be utilized by development teams to rapidly deploy new applications with a minimal risk of errors.

Whilst the software used to be pretty basic and just a kind of crazy experiment back in the day (the first line of code was written at least 3 years ago), it has involved to be a very helpful companion in my daily DevOps journey. It may not be perfect and require some setup, but I tempt to save lots of time not having to modify the same YAML structures by hand over and over again.

Now, did I make myself obsolete with this? Essentially, yes. Sadly, due to regulatory madness, I could not directly integrate the software with the clusters at work, but generating most of my manifests using templates allowed me to focus on the more interesting challenges. Also, making the software open-source allowed me to share it with the community, so others may enjoy it even more than I personally can as of now.

If you want to check it out or even contribute, you can do so jumping over to the homepage. Over there you can also find a documentation and API specification should you be interested in taking a closer look at what I've built.

# Why did I do it?

Writing a software like this is lots of work. So why did I do it? The short answer to that is as simple as they come: I'm a nerd and a sucker for process simplicity. So when I saw an opportunity, I had to jump on it. Also, it gave me a chance to experimentally explore new topics like AI chat integration, proper prompt building and in general just stuff that I don't have too many touchpoints with during my day job. Thus, I would encourage everyone who has an idea to go for it and see what happens (as long as the risks don't exceed the benefits, ofc.).

# Let's discuss...

First and foremost. Thanks for reading through this huge of a post. Let me know what you think! Does DevOps need new tools like this? Is AI going to

revolutionize DevOps as we know it? What's your experience with all of this? Looking forward to having a lively discussion!

https://redd.it/1l6bzmx
@r_devops

Still editing PrometheusRules manually ? Please, take care of your mental health.

Manually rewriting PrometheusRule YAMLs or recreating them from scratch just to change a label or "for:" duration is like rebuilding your house because you want to repaint the mailbox.

Between awesome-prometheus-alerts and monitoring Mixins, it's chaos.

But the kube-prometheus-stack already ships with dozens of production-grade alerts, so, why not patch them in place ?

I built kps-alert-editor.sh, a simple Bash script that lets you:

Edit alert labels like team=devops
Change for durations (15m → 3m)
Route alerts via Alertmanager without YAML suffering
Keep a local changelog for tracking

Uses just kubectl + yq. No Helm, no chart rebuilding. Just run-and-patch.

Alertmanager routing with team label also explained with config example.

Github -> github.com/adrghph/kps-alert-editor.sh

bye!

https://redd.it/1l6bsfc
@r_devops

Life before ci/cd

Hello,

Can anyone explain how life was before ci/cd pipeline.

I understand developers and operations team were so separate.

So how the DevOps culture now make things faster!? Is it like developer doesn’t need to depend on operations team to deploy his application ? And operations team focus on SRE ? Is my understanding correct ?

https://redd.it/1l6djk5
@r_devops

New to DevOps

While I may have been taught some theoretical concepts of Cloud and DevOps during my CS Degree, I still know only the theoretical basics, mostly how AWS IAM and EC2 works, how Docker and Kubernetes is set up, how Terraform works. But I think doing projects and an on-the-go learning approach is always suited for developers.

Where and how do I start? What kind of contents did you follow to learn DevOps? What kind of projects can get you a good grasp on how DevOps is used in the industry?

Thanks :)

https://redd.it/1l6dinu
@r_devops

Writing my first script in linux, any advice?

I have learnt the basics commands and have a little experience in navigating linux but this is the first time I'm writing executable scripts and I want to know what were some mistakes you've done and corrected along the way and any advice is appreciated, i genuinely want to learn so please let me know.

https://redd.it/1l6egcf
@r_devops

What finally made Python click for me in the cloud world: automation

I used to think I needed to master Python before I could do anything useful with it.
Turns out, just learning how to automate basic cloud tasks completely changed the game.

There were small wins, but they gave Python a real-world purpose beyond just “learning syntax.”

I’m still figuring it all out, but the shift from theory to doing things with Python in a cloud setting really boosted my confidence.

Anyone else using Python this way for cloud or DevOps stuff?
Would love to hear your favorite use cases or beginner-friendly wins.

https://redd.it/1l6j6a3
@r_devops

Can you share some tips or what you've been learning about AI so far?

With the recent growth of AI, how are you preparing for your career? I want to adapt, but it feels overwhelming. I’m not sure what I should learn or how to adapt. Can you share some tips or what you've been learning about AI so far?

https://redd.it/1l6iffq
@r_devops

API and api gateway

Hi,

I never worked with API but I need something to understand .

They always say install api gateway in cloud ? But what is it exactly and if there is no cloud then is there anything similar for on prem ?


Regards


https://redd.it/1l6dlzy
@r_devops

DevOps Engineer Role at Rakuten

Has anyone attended the telephone interview round for DevOps Engineer at Rakuten (Canada) ?

https://redd.it/1l6q3o9
@r_devops

What Was Your "I Broke Something In Production" Moment?

A little under a year in my role as a DevSecOps engineer, and I have this huge fear around breaking something in production. A botched upgrade, loss of data, etc.. My coworkers reassure me that everybody breaks something at some point.

When did you, or someone you know break something in Production? What was the impact? What did you learn from that experience?

https://redd.it/1l6rnxp
@r_devops

GitHub Actions and nightly deployment question

Hi, hopefully you kind folk can help me out here. We've recently onboarded our build pipelines into GitHub Actions, and for the most part it's been pretty amazing. However we've got a recent requirement which doesn't seem to be easily accomplished. For context, we have 3 environments, dev, staging and production. Staging and production have deployment protection rules requiring reviewers to approve.

The new requirement is for nightly builds to be deployed to the staging environment. We can accomplish this by using a schedule in the workflow, however because of the deployment protection, someone has to manually approve these jobs.

Is there a way to automate nightly builds and still maintain an environments deployment protections?

https://redd.it/1l6vanq
@r_devops

Is it worth studying programming?

I was reading about the case of Shawn K, who has to make a living delivering orders because he can no longer find work as a programmer. On the other hand, Bill Gates says artificial intelligence cannot replace programmers.

What do you think?

https://redd.it/1l6xb8b
@r_devops