Nexteam is sponsoring this newsletter. Please tell your friends and colleagues about this publication. Thank you.
The Making Of The Phoenix Project
Gene Kim explains how he conceived one of the most important books in DevOps.
https://itrevolution.com/articles/construction-phoenix-project-and-selling-devops-downward-spiral/
Defining an AWS Organization Governance Architecture
https://medium.com/cloud-security/defining-aws-accounts-and-organizational-units-537cff5fc297
Why I Will Never Use Alpine Linux Ever Again
The list of Alpine Linux issues can cause you a great amount of grief.
https://medium.com/better-programming/why-i-will-never-use-alpine-linux-ever-again-a324fd0cbfd6
Automating Cybersecurity Metrics (ACM)
A series of blog posts on cybersecurity metrics and security automation.
https://medium.com/cloud-security/automating-cybersecurity-metrics-890dfabb6198
Orchestrating Application Workloads in Distributed Embedded Systems: Setting up a Nomad Cluster with AWS IoT Greengrass - Part 1
If you are not using k8s, you could think about Nomad which is a real alternative.
New HashiCorp releases
Terraform 1.4 - https://www.hashicorp.com/blog/terraform-1-4-improves-the-cli-experience-for-terraform-cloud
Vault 1.13 - https://www.hashicorp.com/blog/vault-1-13-adds-kubernetes-operator-mfa-improvements-and-more
Consul 1.15 - https://www.hashicorp.com/blog/consul-1-15-adds-envoy-extensions-and-enhances-access-logging
Nomad 1.5 - https://www.hashicorp.com/blog/nomad-1-5-adds-single-sign-on-and-dynamic-node-metadata
Boundary 0.12 - https://www.hashicorp.com/blog/boundary-0-12-introduces-multi-hop-sessions-and-ssh-certificate-injection
Waypoint 0.11 - https://www.hashicorp.com/blog/waypoint-0-11-strengthens-terraform-integrations-and-allows-user-api-access
Terraform Live Graph Extension for VSCode
https://github.com/adamiBs/vscode-terraform-live-graph#terraform-live-graph-extension-for-vscode-
PostgreSQL 14 Internals
A massive book (629 pages) on Postgres internals!
https://postgrespro.com/blog/pgsql/5969985
https://edu.postgrespro.com/postgresql_internals-14_en.pdf - download links
System roles – what, why, how?
Not everyone knows, but since PostgreSQL 9.6, we have some built-in roles.
https://www.depesz.com/2023/03/14/system-roles-what-why-how/
Adopting PgCat: A Nextgen Postgres Proxy
From the article: "we want a Postgresql proxy that goes beyond connection pooling. So in addition to being at feature parity with PgBouncer, we would like the proxy to handle load-balancing and replica failover. We also want to be able to safely extend the proxy with more features in the future."
https://tech.instacart.com/adopting-pgcat-a-nextgen-postgres-proxy-3cf284e68c2f
Chainloop
Chainloop is an open-source software supply chain control plane, a single source of truth for artifacts plus a declarative attestation process.
https://github.com/chainloop-dev/chainloop
https://docs.chainloop.dev/blog/introducing-chainloop - Medium introduction to Chainloop
actions-usage
Gather information about GitHub Action across an organization.
https://github.com/self-actuated/actions-usage
Setting Uber’s Transactional Data Lake in Motion with Incremental ETL Using Apache Hudi
Uber writes a comprehensive guide on running incremental ETL using Apache Hudi.
https://www.uber.com/en-GB/blog/ubers-lakehouse-architecture/
Building a Media Understanding Platform for ML Innovations
https://netflixtechblog.com/building-a-media-understanding-platform-for-ml-innovations-9bef9962dcb7
Netflix recently wrote a series of blogs about its media ML platform.
GPT-4
Version 4 of Chat GPT is out.
https://openai.com/research/gpt-4
Astrovim
A well-refined Vim config.
https://github.com/AstroNvim/AstroNvim
The Continual Evolution of DORA
An interview with Nathen Harvey who currently leads DORA at Google. They talk about recent changes to Google's key metrics and performance clusters, and how their research program is continuing to evolve.
https://www.linkedin.com/pulse/continual-evolution-dora-abi-noda/
Miller
Miller is like awk, sed, cut, join, and sort for data formats such as CSV, TSV, JSON, JSON Lines, and positionally-indexed.
https://github.com/johnkerl/miller
AWS Application Composer Now Generally Available
Visually Build Serverless Applications Quickly
You’ll Soon Be Using Vulnerability Exploitability eXchange
The Vulnerability Exploitability eXchange (VEX) is a Cybersecurity and Infrastructure Security Agency (CISA) working specification that is meant to be a machine-readable security advisory.
https://thenewstack.io/youll-soon-be-using-vulnerability-exploitability-exchange/
Biden admin’s cloud security problem: ‘It could take down the internet like a stack of dominos’
The Biden administration is embarking on the nation’s first comprehensive plan to regulate the security practices of cloud providers. The government is complaining that if cloud customers don't spend extra money the product they get has security weaknesses. This is a really important issue to address.
https://www.politico.com/news/2023/03/10/white-house-cloud-overhaul-00086595
Signs of Triviality
I post on email and especially MX records
https://www.netmeister.org/blog/mx-diversity.html
Using ChatGPT for DevOps
ChatGPT can be used to generate scripts and configuration, this is a post to get started.
https://blog.devgenius.io/using-chatgpt-for-devops-7daa7c1783e9
20 Terraform Best Practices to Improve your TF workflow
A few best practices for managing Infrastructure as Code (IaC) with Terraform.
https://spacelift.io/blog/terraform-best-practices
How to monitor an xDSL Modem using a Prometheus Exporter
FlameScope for Go
Learn how to visualize CPU samples from Go execution traces with FlameScope.
https://blog.felixge.de/flamescope-for-go/
Newsletter sponsor: Nexteam
Technology, Experience, Delivered.
Thanks for reading Infra Weekly Newsletter! Subscribe for free to receive new posts and support my work.