Nexteam is sponsoring this newsletter. Please tell your friends and colleagues about this publication. Thank you.
Going Serverless on AWS Lambda? Recognize Potential Risks
The article discusses the potential risks involved with using serverless computing on Amazon Web Services (AWS) Lambda. The author highlights that while serverless computing can provide cost savings and scalability benefits, it also introduces new security and operational challenges. The article emphasizes the importance of understanding and mitigating these risks through measures such as proper access control, monitoring, and testing.
https://thenewstack.io/going-serverless-on-aws-lambda-recognize-potential-risks/
How to get the latest Linux kernel on your Ubuntu box
Learn how to update part of Ubuntu that are not yet available to install, like the kernel or KDE.
https://www.theregister.com/2023/03/06/ubuntu_latest_kernel_kde/
Migrating to Ubuntu LTS: six facts for CentOS users
From Ubuntu blog.
https://ubuntu.com/blog/migrating-to-ubuntu-lts-six-facts-for-centos-users
Recordings from CfgMgmtCamp and Contributor Summit
For those who missed the events, or if you were there but missed some of the talks, or if you want to rewatch some of them (because they’re great!) - here are the playlists:
LFI Conf 23 | Embracing the Multi-Party Dilemma: Learning from Incidents Across Company Boundaries
Platforming the Developer Experience
An article discusses the importance of creating a platform that offers a seamless developer experience. The article argues that developers are the primary users of DevOps tools and technologies, and their experience should be a top priority. It emphasizes the need to design and develop platforms that are easy to use, have a unified interface, and provide automated workflows. The article also highlights the benefits of a great developer experience, including increased productivity, reduced errors, and better collaboration. The article concludes by emphasizing the importance of continuously improving the developer experience through feedback, experimentation, and innovation.
https://devops.com/platforming-the-developer-experience/
Bruno - Opensource IDE for exploring and testing api's
Bruno appears to be a fascinating project that functions as an Integrated Development Environment (IDE) specifically designed for API work. It allows for collections to be saved to disk, thereby enabling them to be checked into Git.
https://github.com/usebruno/bruno
ecsnv
A lightweight utility to dump AWS Fargate's ECS containers environment variables locally
https://github.com/dineshgowda24/ecsnv
Platform Engineering Is Not about Building Fancy UIs
This article discusses platform engineering and highlights a common misconception that simply introducing a new dashboard is enough to achieve platform engineering goals.
https://thenewstack.io/platform-engineering-is-not-about-building-fancy-uis/
IBM Donates SBOM Code to OWASP
IBM has contributed two open-source projects, SBOM Utility and License Scanner to the Open Web Application Security Project (OWASP).
https://thenewstack.io/ibm-donates-sbom-code-to-owasp/
Zero-Day Vulnerabilities Can Teach Us About Supply-Chain Security
As open source projects are terminally underfunded and understaffed, what lessons can we learn to manage and mitigate future threats?
https://thenewstack.io/zero-day-vulnerabilities-can-teach-us-about-supply-chain-security/
Oxy is Cloudflare's Rust-based next-generation proxy framework
Picture a server (like NGINX, that reader might be familiar with) that can proxy traffic with an array of protocols, including various predefined common traffic flow scenarios that enable you to route traffic to specific destinations or even egress with a different protocol than the one used for ingress.
https://blog.cloudflare.com/introducing-oxy/
A New Haskell Playground
Letting Governance Teams Govern
ACM.138 Preventing the riskiest actions and most egregious mistakes with cloud organizational policies.
https://medium.com/cloud-security/letting-governance-teams-govern-49d9854d7ebb
AWS is Asleep at the Lambda Wheel
The article by Corey Quinn went viral.
https://www.lastweekinaws.com/blog/AWS-is-Asleep-at-the-Lambda-Wheel/
Don't be fooled by serverless
Another super-opinionated article from DHH! I have to say I like his contrarian attitude and his original thinking.
https://world.hey.com/dhh/don-t-be-fooled-by-serverless-776cd730
The biggest problem with EventBridge Scheduler and how to fix it
A common issue that users face with Amazon EventBridge Scheduler, that the scheduled event is lost if it fails to trigger due to insufficient permissions. The article proposes a solution to this problem by creating a Lambda function that catches the failed event and reschedules it with the required permissions. The article also discusses how to set up the solution and provides code examples. Overall, the article provides a solution to a common problem with Amazon EventBridge Scheduler, which can improve the reliability of scheduled events.
https://theburningmonk.com/2023/02/the-biggest-problem-with-eventbridge-scheduler-and-how-to-fix-it
Newsletter sponsor: Nexteam
Technology, Experience, Delivered.
Thanks for reading Infra Weekly Newsletter! Subscribe for free to receive new posts and support my work.