Rookie question - Microsoft's Azure DevOps - Advanced Security

Does the static code analysis (CodeQL?) in Microsoft's Azure DevOps Advanced Security support Visual Basic code in any way?

https://redd.it/1lcd0ki
@r_devops

How I Hacked the Job Market AMA







After graduating in CS from the University of Genoa, I moved to Dublin, and quickly realized how broken the job hunt had become.

Reposted listings. Ghost jobs. Shady recruiters. And worst of all? Traditional job boards never show most of the jobs companies publish on their own websites.

---

So I built something better.

I scrape fresh listings 3x/day from over 100k verified company career pages, no aggregators, no recruiters, just internal company sites.

Then I fine-tuned a LLaMA 7B model on synthetic data generated by LLaMA 70B, to extract clean, structured info from raw HTML job pages.

Remove ghost jobs and duplicates:

Because jobs are pulled directly from company sites, reposted listings from aggregators are automatically excluded.
To catch near-duplicates across companies, I use vector embeddings to compare job content and filter redundant entries.

Not related jobs:

I built a resume to job matching tool that uses a machine learning algorithm to suggest roles that genuinely fit your background, you can try **here** (totally free)

---

I built this out of frustration, now it’s helping others skip the noise and find jobs that actually match.

💬 Curious how the system works? Feedback? AMA. Happy to share!

https://redd.it/1lcfrvz
@r_devops

(OC) From root to real accounts: automating AWS org setup with guardrails and Terraform transition

From r/ArtOfPackaging: documenting the AWS org/account structure we use as a foundation for build-once, deploy-many artifact delivery.

Covers account creation (CLI/CFN), OU design, SCPs, cross-account roles, and Terraform backend/layering. It’s the groundwork before we get into packaging and release pipelines in future posts.

Would love to hear how folks are structuring their orgs and Terraform for CI/CD at scale.

https://devoptimize.org/aws/aws-org-to-accounts/

https://redd.it/1lcfe6h
@r_devops

Best Cloud Hosting Solution?

I'm looking to deploy my backend server on a cheap and easy to use platform. Tried aws, was way too messy. Tried Digital Ocean, too expensive. I usually use Render but I don't like how it shuts off automatically and has a plan. Just discovered fly.io, is it really that good?

https://redd.it/1lcinwr
@r_devops

Struggling with etcd and control plane issues, is there a stripped-down, self-managed alternative to Kubernetes (not EKS/GKE) ?

Hi everyone, I'm relatively new to Kubernetes and honestly it's been a bit overwhelming, especially when it comes to debugging issues around the control plane and etcd.

We recently switched to K3s in production to simplify things, but we're still facing instability. Sometimes the server just goes down randomly, and etcd errors pop up without clear reasons. We're unable to keep the cluster reliably running.

I know this is a bit vague without much details/logs, but just wondering, if there is any stripped-down, self-managed alternative to Kubernetes that could help reduce operational overhead for the time being ?

note: not looking for fully managed solutions like EKS, GKE.

Thanks!



https://redd.it/1lcj72c
@r_devops

RMON Updates: Smarter Ping, Alert Grouping, and Regional MTR

We often hear from users who want to monitor the quality of their network links—not just checking if a host is reachable, but actually **understanding the stability of their connection** and catching degradations early. One such user recently joined RMON and needed monitoring across multiple regions. Their feedback helped shape some valuable improvements.

https://preview.redd.it/gxl6axw5187f1.png?width=2930&format=png&auto=webp&s=a21dbce5ab4f18fa920635f28537228b322e51fd

Here’s what’s new in [RMON](https://rmon.io), and how it stacks up against the classic tool SmokePing.

# Smarter Ping Checks

Previously, RMON's ping check sent only a single ICMP packet. That was enough for basic uptime checks, but not for meaningful diagnostics. Now, it's much more capable:

* You can now configure **the number of ICMP packets** to send per check.
* The system collects and displays:
* **min** RTT
* **max** RTT
* **avg** RTT (average)
* **mean** RTT (mathematical expectation)

>This is especially useful on unstable links, where a single ping might falsely indicate "all good" even when jitter or packet loss is present.

# Regional Alert Grouping

Users with multiple monitoring agents across regions faced a common issue:

>"When a host goes down, I get five duplicate alerts—from every region checking it."

Now, RMON automatically **groups alerts by host**:

* You receive **a single alert** listing all affected regions.
* This makes incident triage easier and significantly reduces notification noise in systems like Telegram, Slack, or PagerDuty.

# Regional MTR Support

We’ve added the ability to launch **MTR (traceroute with extended metrics)** **from any selected region**:

https://preview.redd.it/mcbxv59d187f1.png?width=2940&format=png&auto=webp&s=5625cb52cb625ab009fc0a2c17091ac3e23bbfcb

* Accessible via web UI or API
* Instantly trace the route from a specific agent to a host

This is particularly useful for debugging cross-regional issues, CDN routing problems, or ISP bottlenecks.

# Comparison: RMON vs SmokePing

|Feature|SmokePing|RMON|
|:-|:-|:-|
|RTT & packet loss graphing|✅ Yes|✅ Yes|
|Alert grouping|❌ No|✅ Yes|
|Customizable ICMP packet count|✅ Limited|✅ Full control|
|Modern web UI|❌ (CGI-based)|✅ Modern and responsive|
|Regional MTR support|❌ No|✅ Yes|
|Multi-region agents|❌ (single host)|✅ Distributed agent system|
|Built-in alert integrations|Manual scripts|✅ Telegram, Slack, etc.|
|API access|❌ Very limited|✅ Full REST API|

**SmokePing** is a powerful legacy tool for tracking long-term network latency, but it suffers from architectural limitations, lacks multi-agent support, and requires manual setup for alerts.

**RMON**, on the other hand, is built from the ground up for:

* easy deployment;
* regional agents;
* live stats & alerting;
* and modern operational needs.

# What’s Next

We’re continuing to develop RMON as a **distributed network monitoring solution** with:

* regional telemetry;
* rich health checks;
* and integrations for DevOps workflows.

If you want to know **exactly where and when your network is degrading**, try RMON: [https://rmon.io](https://rmon.io)

https://redd.it/1lckhsy
@r_devops

Looks like again am getting rejected because of some random python quiz

I prepared to write some program.. But they asked me some random python quiz...

Other than that i had answered 95% of the answers correctly.... 😔😔😔😔😔

https://redd.it/1lclme4
@r_devops

How do you monitor mixed-hosted web apps? (Azure PaaS + Azure VMs + DigitalOcean VMs)

I’m managing a setup with multiple types of deployments and looking for advice or validation on the best way to monitor all of it.

Here’s what we’re running:
• Some apps are fully hosted in Azure Web Apps (PaaS) – frontend + backend
• Others are hosted entirely on VMs (SaaS-style) – some in Azure, some in DigitalOcean
• Some are hybrid setups – frontend in Azure Web App, backend on VMs (Azure or DO)

I want to set up a centralized monitoring system that can cover:
• App performance (frontend/backend)
• VM resource usage (CPU, memory, disk)
• Uptime and basic service checks
• Log centralization
• Alerts (Slack/Email)


https://redd.it/1lcp3zt
@r_devops

Reducing Infrastructure Friction; Web Hosting with Free Migration for Teams That Can’t Afford Downtime

Hey DevOps folks,

We know how critical stability, portability, and repeatability are when managing infrastructure especially in production environments. That’s why at UltaHost, we’ve doubled down on something simple but often neglected: offering Web Hosting with Free, Fully-Managed Migration, without compromising uptime or system integrity.

Too many engineering teams delay migration due to perceived complexity, potential downtime, or lack of internal bandwidth. We've worked with DevOps engineers across multiple verticals who were stuck on bloated legacy providers or hosting setups they’d long outgrown, not because they wanted to stay, but because migrating without incident felt like a luxury.

Here’s what we offer:

White-glove migration of complete stacks, databases, configs, cron jobs, SSLs, and custom setups (Docker, reverse proxies, etc.)
Pre-deployment testing to avoid post-move regression issues
Optimized environments for PHP, Node.js, Python, and static JAMstack workloads
No migration fees, ever because vendor lock-in through friction isn't our style

We’re not trying to replace your CI/CD pipeline or rewrite your infrastructure-as-code, but if you're hosting client-facing apps, dashboards, staging sites, or smaller services that still matter, we’re here to help you move them without pain.

If you’ve held back migrating because you’ve been burned before or just don’t want the operational hassle, let’s talk. We’ve built this service around actual use cases from engineers like you.

Would love to hear: What’s your biggest blocker when it comes to hosting transitions?

https://redd.it/1lcqrbv
@r_devops

Open Source Warp alternative for.. Everyone

Hi Good people of this subreddit.

We have recently created NTerm: Open Source Alternative to Warp.

Here's the gh: https://github.com/Neural-Nirvana/iota

Looking forward to your feedback and pulls. XOXO

https://redd.it/1lcsv84
@r_devops

Free CI/CD services

Hey there, I'm in the process of starting a dev agency, and I'm facing the age old problem that you can't get any clients without testimonials, and you can't get testimonials without clients :D


So, to fix this, I'm offering some free CI/CD services. Need a pipeline built to automatically deploy your webapp when you push on master? Do you have a pipeline that bearly works and breaks every few days? I'm open to taking a look at it and fixing it for free as long as you're open to giving me an honest testimonial at the end of it.

,
About myself. I have 10+ years of experience as a dotnet developer. My frontend framework of choice is Angular but I've dabbled in React. I've built multiple stable pipelines in Gitlab and Github.



My startup has the following pipelines:

\- Automatic deployment of Prod/Test (automatically deploys a dotnet api to ubuntu server when code is pushed)

\- Automatic deployment of mobile app into Android store

\- Automatic deployment of mobile app into iOS store (yes this was a huge pain to setup)



https://redd.it/1lcwvcp
@r_devops

Docker volume

I am studying up on Dockers and can't fully grab the difference between docker volumes and copy/workdir entries in the Dockerfile. Doesn't it do the same thing? The only difference that I can think of is that dockerfiles are created before containers, whereas volumes you insert in the existing containers. Is that right and there there other differences?

https://redd.it/1lcy6j0
@r_devops

Is your 1st level ops outsourced? Where and what do they do?

Hello,
As the title says, is your 1st level operations outsources? Where and what do they do?

I heard of public cloud accounts with hundreds of nodes. They must be monitored 24/7 (on-call), alerts provisioned (whatever the monitoring tool), dashboards to be build, reporting to be done, on boarding of new customers, maybe some IaC provisioning, .... How are these done in your team? I guess it depends on the infrastructure size also. Are these activities outsourced to other companies? If yes, what else do these 1st level ops team do (except the one mentioned above)?

https://redd.it/1lcz9si
@r_devops

What fatal mistake do you see in my resume? I am getting 0 ( ZERO ) response to any job applications

Hi there,

https://imgur.com/a/JbkWDs2

My resume ^^

Ive been applying to 100+ jobs and ive actually only had 1 call back. I am using a resume template that has worked for me before very well, and ive looked over my resume to see if theres any mistakes in it and im not seeing it.

I think its OK. Any reason why im not even getting calls for a junior position?


Please dont nitpick some random thing, im aware of the job market right now.

https://redd.it/1ld3vbj
@r_devops

Does anyone else get annoyed asking GPT for command syntax all the time?

Like when you need to remember if it's terraform plan -out=file or --out file and you have to open another tab and ask GPT?

Been using this tool called ops0-cli where you just say "plan terraform for production" and it gives you the actual command. Pretty neat for Ansible and AWS stuff too and others

Do you guys use GPT for command lookups or just suffer through the docs?

https://redd.it/1ld74y2
@r_devops

Career progression

Hi everyone, a couple months ago I was lucky enough to land a devops/infrastructure job at a f500 company. While I love the job, in this day age, you can never be too careful and I wanna make sure that I am setting myself up correctly in case if something were to happen.

Our current stack is Microsoft ADO for CICD, git and so on, AWS for our db’s/bunch of other stuff, and some misc stuff here and there

I have two major questions for you

1. Is it worth it to get certs? I would be looking at the CKA/CKAD for Kubernetes’s stuff, or AWS certifications.

2. Is it worth it to keep my LinkedIn/resume up-to-date on things that I do at the company, or should I do a mass update when I am ready to start looking for a new job?


Tyia

https://redd.it/1ld8wql
@r_devops

DevOps team in the AI era

It feels like in near future DevOps team will be busy building, supporting, maintaining remote MCP servers across different teams. Kinda become AI tool enablers.

I can imagine that request will be “team, we are starting a new project, so we need support for a new tool in MCP server” or “please fix a bug in this MCP because our ai client recently got wrong response”. CI/CD of MCP 😅 hallucinations monitoring dashboards

https://redd.it/1ldebv1
@r_devops

We reduced our Kubernetes costs by 40% using automation — here’s what helped most

In our Kubernetes clusters, we've been focusing a lot on cost optimisation. We wanted to share a few minor yet significant adjustments that we found to be effective (we'd love to know what else is working as well):
✅ Developer namespaces were automatically reduced after business hours.
✅ Appropriate pod requests and limits according to actual usage (no more 2Gi on idle jobs 😅)
✅ Remaining debug pods, outdated replicas, and unused PVCs were cleaned up.
✅ To cut down on noise, usage-based triggers were used in place of always-on alerts.

In addition to saving a tonne of engineering hours, Alertmend(https://alertmend.io/) helped us reduce idle resources by tying Prometheus metrics to cost insights and automatically running cleanup/scale workflows.
I'm curious about what other people are doing to save money over time, particularly if you're automating using Prometheus, scripts, or third-party tools.

https://redd.it/1ldfnsw
@r_devops

SREs – got 2 mins?

Working on a blog post about how (or if) AI is actually useful in incident management and observability. Trying to include thoughts from folks.

If you're an SRE or work on infra/on-call stuff, would love to hear from you. Even if your team hasn't touched AI tools yet, that’s super relevant.

**Form’s here (3-5 mins tops):**
👉 [https://docs.google.com/forms/d/e/1FAIpQLSc5Sxwv8ebPJD943xNKTZPKSkb0ECozEqrZzmjRy7K2AvRH4A/viewform](https://docs.google.com/forms/d/e/1FAIpQLSc5Sxwv8ebPJD943xNKTZPKSkb0ECozEqrZzmjRy7K2AvRH4A/viewform)

# A few things:

* No spam, no sales, just writing a blog.
* You can stay anonymous as there’s an option to be quoted if you're cool with that.
* Not asking for any infra details. Just your takes.

Will share the post here once it's live if folks are curious. Appreciate any responses 🙏

https://redd.it/1ldhrno
@r_devops

Who's using Backstage? What are your use cases?

Hey everyone,

I’m curious to hear if anyone is actively using [Backstage](https://backstage.io/) in production. I'm evaluating it for internal developer portals and wanted to get a better sense of real-world use cases.

* What are you using Backstage for?
* Which plugins do you rely on most?
* Any gotchas, lessons learned, or things you’d do differently?

Would really appreciate hearing about your setups — from solo dev projects to large orgs!

Thanks in advance 🙌

https://redd.it/1ldjjcu
@r_devops

Automation VS SOX Compliance - any insights?

I have been automating a lot of financial reporting for my employer using a variety of tools like Power Platform, ETL/ELT (Informatica, Snowflake, Azure Analysis Services I.E. AAS) etc.

Our accounting suite is SAP ECC (will likely migrate to S/4HANA by 2027).

And then our auditors yelped "SOX ITGCs/ITACs!"

(Sarbanes-Oxley Act Information Technology General/Application Controls, basically publicly traded companies need to disclose every single step in the data flow to auditors to guarantee data integrity between source and target.)

And they made it abundantly clear that automation cannot be done in case there is any sort of data flow that can affect data integrity, as it would have to be re-reviewed step by step each audit.

They (EY) make it seem like a black and white thing and frankly in a patronising manner. For instance, quarterly exports from SAP supported by printscreens from the moment of capture.

So what to do?

I am mainly looking into general insights, so do share. Sources on ITAC Controls would be even better. (ITGCs are straightforward, ISO 27001) but my issue in particular focuses on two parts:

1. SOX Compliance with middleware

We use both Informatica and Snowflake. Both offer SOX Compliance controls. None are set up yet.

But our issue is that we were previously working on Informatica - SQL Datawarehouse (AAS).

Now we are moving to Snowflake, but we are still using Informatica to move data from SAP to Snowflake.

I feel that is a step too many as it would require the same controls in both Informatica and Snowflake.

I also understand this is the only way to have continuous monitoring in place (as opposed to snapshots), which is where SOX 404 is going through from what I understand.

2. SOX Compliance without middleware

Limiting the data lineage from source (SAP) to target (audit report) is an obvious answer.

But now I want to play Devil's Advocate:

Do I have to do these repeatable steps manually?

Or:

Can't RPA do it?

Hypothetically (seriously I have NOT done this... yet), SUPPOSE if I were to implement automation through a mix of Python and maybe some Excel, then on the surface it would still look like I manually exported a quarterly report.

That way it is just a few repeatable steps automated through a form of RPA (Robotic Process Automation) under my username and without touching data integrity (no change to the source data).

And it could save the company hours. Seriously, we have one guy losing half a day each time he needs to do a datadump of SAP's ACDOCA table.

Auditors would not see the difference.

Okay I could also have the Python code audited, but is that really necessary when a process is automated on a user level?

SOX is supposed to be about controls, not manual tedium. That's not what they (EY) are having us believe however.

https://redd.it/1ldklhc
@r_devops