Learning how to handle APIs, swagger, postman... etc

I come from a SysAdmin background. My development knowledge is basic. During our standups I feel quite lost while terms like Swagger, postman, collections, get, post, api gateway get thrown around. I want that to change. Where can I start?

I have access to a linuxacademy account, and willing to purchase any courses if they can help.

https://redd.it/jqwwrq
@r_devops

What comes after DevOps?

So I've recently started out in a DevOps position wheres I'm learning all the agile methods and CI/CD tools as well as networking, linux and python etc. But I'm unclear as to what the career steps are.

I can imagine you go from junior-medior-senior but then after that, what's next?

I was thinking solution architecture but that is pre-sales stuff I've come to understand. Is cloud architecture more 'advanced' or is that just a lateral movement. Just a little confused.

Thanks in advance.

https://redd.it/jr7mlq
@r_devops

Suggestion for a fresher?

What would you suggest to a fresher just getting out of an undergrad program to start his/her career in DevOps? Assuming he/she just has some prior python coding experience?

https://redd.it/jrb1g1
@r_devops

I've been working with DevOps on AWS for around a year and finally got around to sitting the certification exam (AWS DevOps Pro). I made a video brain dumping all my tips and advice for those thinking about taking the exam, including a more general roadmap beyond just AWS.

Here's the video: [https://www.youtube.com/watch?v=wIknowaQEYg](https://www.youtube.com/watch?v=wIknowaQEYg)

There is a bit of an "intro to DevOps" for the uninitiated until around 4:10, so I'd recommend you guys skip to there unless you're new to the field. Beyond that point I go in depth about the specific AWS DevOps services that come up on the exam as well as more general DevOps skills and tools.

I'm by no means a DevOps expert so if you have any feedback I'm all ears! This video is mainly for those who want a run through of how to get from square one to AWS exam ready, with a focus on properly learning the necessary skills.

Cheers and have a great day everyone!

https://redd.it/jrbjfa
@r_devops

Do DevOps Engineering interviews usually ask "leetcode" type of questions?

Hey lad,

(I come from a strictly programming background so I don't really know how DevOps Engineer interviews are like)

What I mean by DevOps Engineering = Programming + Cloud + CICD and similar things.

​

I'm a decent DevOps Engineer, got a few websites with decent monthly traffic and some "complex" technical challenge projects under my belt, BUT I'm currently quite bad at "leetcode" programming type of questions.

​

I have been practicing for about a week and have barely improved. I need to sit down and learn popular algorithms so I can solve most of the questions.

​

Ultimately, my question is: Should I expect to get asked such questions in let's say a half programming half devops job?

​

Thanks for reading this and have a nice day!

https://redd.it/jr29ym
@r_devops

How to debug Lambda?

I have a Lambda function that will randomly fail taking up the timeout period of 6 seconds, the rest of the time when working it will take up less than 200ms assuming warmed up. The 6 seconds is after being warmed up too.

​

I am pretty new to Lambda and have no real idea on how I can figure out the failure point causing the timeout. The function is pretty simple, it runs a DB query (DB metrics on Atlas look fine) and then creates some SQS messages with that. I know it's not because of too many messages as I control that and tested it will fail even with just one.

​

Any suggestions on how I can debug this timeout issue?

https://redd.it/jr96p4
@r_devops

CPanel subdomains/folders pointing to different DO droplets?

So I have a personal blog hosted on namecheap and my domain is with them as well. I am building a portfolio of apps for job hunting, but namecheap doesn't support my stack. I've been buying domains for each individual project, but this is not scalable long term. Is there any way I can set a structure similar to this?


https://myMainDomain.com // Hosted on Namecheap, classic LAMP stack.
https://labs.myMainDomain.com // Maybe some plain HTML list of my projects, still on namecheap.
https://labs.myMainDomain.com/twitter // Some bullshit Twitter clone, hosted on its own DO droplet.
https://labs.myMainDomain.com/spotify // Some bullshit Spotify clone, hosted on its own DO droplet.
https://labs.myMainDomain.com/facebook // Some bullshit Facebook clone, hosted on its own DO droplet.
[...]


Is there any way I can accomplish this?

https://redd.it/jr2p7j
@r_devops

Favorite Cloud Provider?

What is your favorite cloud provider, and why? I started using Google Cloud Platform last week and love it, especially for its automated workflows. I’m curious what the general consensus is on cloud providers?
Interesting to note: I see so many job postings for DevOps/SRE roles that ask you to know AWS. It makes it sound like AWS is preferred over all others.

https://redd.it/jr30bb
@r_devops

Comparison between Container Runtimes

Container managers (e.g., Docker, Podman) as well as orchestrators (e.g., Kubernetes) rely on low-level container runtimes to create containers.

The most common container runtime is the OCI runc, which works well for microservices but falls short when you want to run more complex workloads in containers or when you want strong isolation.

There are now several container runtime alternatives (e.g., kata containers, gvisor, etc.), each with a specific use-case. The following blog has a good comparison between these and Sysbox, a new container runtime that enables containers to act like VMs (but without using hardware virtualization).

[https://blog.nestybox.com/2020/10/06/related-tech-comparison.html](https://blog.nestybox.com/2020/10/06/related-tech-comparison.html)

Hope it helps!

https://redd.it/jr2qgt
@r_devops

FBI: Hackers stole government source code via SonarQube instances

>The Federal Bureau of Investigation (FBI) issued a flash alert warning of hackers stealing data from U.S. government agencies and enterprise organizations via internet-exposed and insecure SonarQube instances.

>
>SonarQube is an open-source platform for automated code quality auditing and static analysis to discover bugs and security vulnerabilities in projects using 27 programming languages.

>
>Vulnerable SonarQube servers have been actively exploited by attackers since April 2020 to gain access to data source code repositories owned by both government and corporate entities, later exfiltrating it and leaking it publicly.

[Complete article](https://www.bleepingcomputer.com/news/security/fbi-hackers-stole-government-source-code-via-sonarqube-instances/)

https://redd.it/jrh1uo
@r_devops

Continuous Integration with CircleCI Example Tutorial in Go

Hello,

[https://youtu.be/lYfRQQeZk00](https://youtu.be/lYfRQQeZk00)


Here is a video explaining 

 \- Continuous Integration (CI) and 

 \- An example implementation using CircleCI for a Go program. 

Cheers!

\#CircleCI #DevOps #CI

https://redd.it/jrjk71
@r_devops

Introducing Shipwright, a framework for building container images on Kubernetes

Many teams practicing DevOps use Kubernetes to deploy their applications. Packaging applications into a container image is a crucial part of this process, and today it is difficult to use Kubernetes to build container images.

Project Shipwright addresses this by creating a framework and APIs for building container images on Kubernetes. It open, flexible, and works with any tool that can be run inside a container.

Check out the project at [https://shipwright.io](https://shipwright.io), or on GitHub at [https://github.com/shipwright-io/build](https://github.com/shipwright-io/build), and let us know what you think!

https://redd.it/jrkwbs
@r_devops

Alternatives to SonarQube

We currently use SonarQube for code coverage.

Source code is primarily SQL and .NET Core.

Visual Studio for code, AzDO pipeline.

We’d like to evaluate some alternatives to SonarSource mostly because we are unhappy with their support, or lack there of.

We have a dev license.

I’m reading about ReSharper, Codacy and Veracode.

Anyone have any experience with these?

https://redd.it/jrmx20
@r_devops

Apache Kafka: 8 things to check before going live

Apache Kafka is a beautiful system. It scales well, it is stable and it provides phenomenal system architecture flexibility. After 5 years of running production Kafka clusters, I have collected a list of tips and pitfalls. Some of them were learnt the hard way. If you work in a small team rolling out Kafka to production, those might prove useful. The article assume familiarity with basic Kafka concepts, such as brokers, topics, producers and consumers. What is more, the following points should be valid for up to Kafka 2.6.0. Without further ado.

[Full post](https://ariskk.com/kafka-8-things)

https://redd.it/jrm795
@r_devops

Are you doing more or less stuff in Datadog compared to a few months ago?

We are currently more dependent than ever on the observability stack we have in Datadog but our managers are telling us that we need to tighten the belt and pull some stuff out of datadog.

Doesn't make sense at all. I get it, they kinda shaft you on pricing and overages. But, now is not the time. I'm wondering if you are all also fighting this or if you are putting more processes and investment into Datadog lately.

[View Poll](https://www.reddit.com/poll/jrsn5m)

https://redd.it/jrsn5m
@r_devops

detects inconsistent builds in your CI/CD: BuildBasis

Hey guys, here is a free tool([https://buildbasis.com/](https://buildbasis.com/)) which detects inconsistent builds in your CI platforms.

While continuously integrating and deploying on CI/CD platforms, one of the major problem is due to flaky commits. You run a commit of code - build failed. Run again - build passed?

While this may temporarily pass a build into production, it gets dangerous as it builds on. Due to these inconsistent builds, successive builds start to behave the same way. Developers start to loose their productivity and also ship in bugs into production. Your work will likely affect your team slowing down the core process of your efforts.

BuildBasis is a CI analytics platform detecting such inconsistent builds along with other powerful metrics such as project reliability, CI time spent, release cadence. It also brings you the current primary branches that are failing into forefront of your focus. You can plan your production and deployment accordingly saving you from worrying about issues during inconvenient hours and holidays. It aggregates all your builds from different CI platforms at one place.

​

​

https://redd.it/jrnios
@r_devops

looking to capture correspondence/emails in devops

i'm looking to capture correspondence/emails in devops, is there any outlook plugin available to automatically add email correspondence to tasks/users stories?

https://redd.it/jrlqkc
@r_devops

I'm using a GitHub Action to downgrade a WordPress plugin, from PHP 7.4 (when coding) to 7.1 (for deployment)

It works running Rector (a transpiler for PHP) on the source code to downgrade it, and then generating the plugin on the GitHub action and uploading it to the Releases page in the repo.

I've written a step-by-step guide explaining how it works:

https://blog.logrocket.com/coding-in-php-7-4-and-deploying-to-7-1-via-rector-and-github-actions/

I hope somebody finds it useful!

https://redd.it/jrkn1g
@r_devops

What's the fuss about HashiCorp Waypoint?

Honestly, I do not understand the excitement about HashiCorp Waypoint. Am I the only one who sees it as being too simplistic for any "real-world" usage, even in dev environments?

https://youtu.be/7qrovZjdgz8

https://redd.it/jrj7o4
@r_devops

Looking for advice moving from devops to network security.

My european devops team has been dissolved because of budget cuts... We thought we were training a support team in a south american site to cover our "out of hours" and cut down on on call.

But we trained our replacements 😞

There are some positions open in Network Security with the firewall team that I fancy joining...

Can anyone here advise reading or courses?

TIA

https://redd.it/jrye7x
@r_devops

Service outage due to certificate expiry bringing down Kubernetes workloads

There have been several threads about how TLS certificates are a big cause of outages recently, which encouraged us to write-up our latest experience.

As we use different (TCP vs L7) load balancers for our Vault setup, we didn't realise our monitoring wouldn't alert us before the certificates expire. When they did, we discovered our Kubernetes workloads would die if they couldn't speak to Vault, due to specific configuration settings interacting in a surprising way.

Full write-up is here:
https://gocardless.com/blog/incident-review-service-outage-on-25-october-2020/

As a side note, we are hiring! If this type of work interests you, drop me a message.

https://redd.it/jrj2u6
@r_devops