Channel: CatOps
A new (delayed) issue of the CatOps Digest is here!
https://newsletter.catops.dev/p/catops-digest-2024-03-24
Better late than never, right?
#digest #newsletter
https://newsletter.catops.dev/p/catops-digest-2024-03-24
Better late than never, right?
#digest #newsletter
newsletter.catops.dev
CatOps Digest 2024-03-24
What was on CatOps in the last few weeks
Hey!
Let's close that Starlink fundraiser by Dzyga's Paw. There's less than $1k left, so I'm pretty sure we can make it today :D
#donations #Ukraine
Let's close that Starlink fundraiser by Dzyga's Paw. There's less than $1k left, so I'm pretty sure we can make it today :D
#donations #Ukraine
Dzyga's Paw
101 Starlinks For Ukrainian Army! • Dzyga's Paw
We are buying 101 Starlink terminals for the Ukrainian Military! Support this fundraiser, and we will buy TWICE AS MANY Starlinks for the same money!
Some time ago, I predicted that there is going to be more Kubernetes distributions. Then it didn’t happen, so I thought I was wrong.
Yet, now Canonical has introduced their Kubernetes distribution.
It’s based on the upstream Kubernetes 1.30, has some built-in add-ons, and yes, you can install it with
#kubernetes
Yet, now Canonical has introduced their Kubernetes distribution.
It’s based on the upstream Kubernetes 1.30, has some built-in add-ons, and yes, you can install it with
snap.
#kubernetes
Ubuntu
How should a great K8s distro feel? Try the new Canonical Kubernetes, now in beta | Ubuntu
Try the new Canonical Kubernetes beta, our new distribution that combines ZeroOps for small clusters and intelligent automation for larger production environments that also want to benefit from the latest community innovations […]
A neat comparison between Argo and Flux.
I like the fact that the article mostly focuses on UX and use cases. Yet, I would disagree with this statement here:
I mean sure. If you have enough resources, go for it! However, I witnessed how getting down from “Argo per team” to “just one Argo” reduced resource consumption in a cluster by 90%.
#cicd #gitops
I like the fact that the article mostly focuses on UX and use cases. Yet, I would disagree with this statement here:
would deploy one Argo CD per tenant, where each tenant is an independent developer team with their applications, but it can work with multiple clusters, for example, dev/stage/prod, etc.
I mean sure. If you have enough resources, go for it! However, I witnessed how getting down from “Argo per team” to “just one Argo” reduced resource consumption in a cluster by 90%.
#cicd #gitops
Medium
Argo CD vs Flux CD
I’ve been seeing debates about two popular GitOps tools. I use both and I want to share with you my opinion and use cases.
People often say that Observability is a Data problem. Although, it sounds correct intuitively, I cannot say that I fully understood how Data engineering approaches could be applied to the Observability systems.
This article about Wide Events clarified things for me a bit. Indeed, if any event that happened in the system is just an object with some value and useful metadata, things like metrics, logs, and traces become less relevant - it's all events now!
Apparently, this is how Observability is done in Meta, according to the author, and apparently people in Meta like it. I never worked for Meta, I don't know what they really use there and if it's better than the tools available to us mere mortals.
However, this is an interesting concept, and it would be wonderful to see similar projects that are not internal to the Big Tech companies.
#observability
This article about Wide Events clarified things for me a bit. Indeed, if any event that happened in the system is just an object with some value and useful metadata, things like metrics, logs, and traces become less relevant - it's all events now!
Apparently, this is how Observability is done in Meta, according to the author, and apparently people in Meta like it. I never worked for Meta, I don't know what they really use there and if it's better than the tools available to us mere mortals.
However, this is an interesting concept, and it would be wonderful to see similar projects that are not internal to the Big Tech companies.
#observability
A Song Of Bugs And Patches
All you need is Wide Events, not “Metrics, Logs and Traces”
This quote from Charity Majors is probably the best summary of the current state of observability in the tech industry - a total, mass confusion. Everyone is confused. What is a trace? What is a span? Is log line a span? Do I need traces if I have logs? Why…
Kondense is a Kubernetes tool that allows you resize contianers in a pod based on the memory pressure.
It’s installed as a sidecar and uses real-time memory pressure to determine the optimal memory for each containers in a pod.
You can read the justification behind this tool in this Reddit post
#kubernetes
It’s installed as a sidecar and uses real-time memory pressure to determine the optimal memory for each containers in a pod.
You can read the justification behind this tool in this Reddit post
#kubernetes
GitHub
GitHub - unagex/kondense: Kondense is an automated memory sizing tool for kubernetes pods
Kondense is an automated memory sizing tool for kubernetes pods - unagex/kondense
RedHat reported a 10/10 vulnerability in the xz compression library.
The vulnerability provides remote backdoor access and present in xz 5.6.0 and 5.6.1.
There’s also an interesting discussion of this vulnerability on HackerNews:
#security
The vulnerability provides remote backdoor access and present in xz 5.6.0 and 5.6.1.
There’s also an interesting discussion of this vulnerability on HackerNews:
annoying - the apparent author of the backdoor was in communication with me over several weeks trying to get xz 5.6.x added to Fedora 40 & 41 because of its "great new features".
#security
The Register
Malicious SSH backdoor sneaks into xz, Linux world's data compression library
STOP USAGE OF FEDORA RAWHIDE, says Red Hat while Debian Unstable and others also affected
For those who also had holidays.
Everything you need to know about the recent
#security
Everything you need to know about the recent
xz
vulnerability in one place.#security
Ars Technica
What we know about the xz Utils backdoor that almost infected the world
Malicious updates made to a ubiquitous tool were a few weeks away from going mainstream.
A nice step-by-step guide of how to test a Python AWS Lambda function locally with LocalStack.
This guide doesn't cover fixtures in LocalStack, though. In my experience, adding fixtures into LocalStack is PITA, but I have a very specific scenario where I need to create a couple of thousands of S3 objects relatively fast.
#aws #serverless #python
This guide doesn't cover fixtures in LocalStack, though. In my experience, adding fixtures into LocalStack is PITA, but I have a very specific scenario where I need to create a couple of thousands of S3 objects relatively fast.
#aws #serverless #python
Qxf2 BLOG
Testing AWS Lambda locally using LocalStack and pytest - Qxf2 BLOG
Learn how to effectively test AWS Lambda functions locally using LocalStack and pytest. Explore step-by-step instructions to streamline your Lambda function testing process.
I almost forgot to post it here.
Today I'm speaking at the GeekOpsUA Virtual Meetup (in Ukrainian) at 19:00 Kyiv time (18:00 CET).
There's no specific topic, it's going be just a fireside chat.
Here's the link you can join today
- GeekOpsUA on Telegram
- GeekOpsUA on LinkedIn
- GeekOpsUA on YouTube
See you there!
#event
Today I'm speaking at the GeekOpsUA Virtual Meetup (in Ukrainian) at 19:00 Kyiv time (18:00 CET).
There's no specific topic, it's going be just a fireside chat.
Here's the link you can join today
- GeekOpsUA on Telegram
- GeekOpsUA on LinkedIn
- GeekOpsUA on YouTube
See you there!
#event
Google
Real-time meetings by Google. Using your browser, share your video, desktop, and presentations with teammates and customers.
Friday is a great day to listen to our CatOps voice chat (in Ukrainian)! Especially, since the topic of this episode is mental health and management.
We kinda slipped into discussing management at some point.
You can find the episode on:
- YouTube
- Substack
- Spotify
- Apple Podcasts
- RSS Feed
Enjoy!
#voice_chat
We kinda slipped into discussing management at some point.
You can find the episode on:
- YouTube
- Substack
- Spotify
- Apple Podcasts
- RSS Feed
Enjoy!
#voice_chat
YouTube
Говорилка CatOps: Менталка
Продовження попередньої розмови. Тут ділимось порадами, як втримати кукуху в гнізді, розмірковуємо про те, як стати хорошим менеджером і чим має займатись СТО.
Матеріали, що згадуються у випуску:
- https://www.amazon.com/Flourish-Visionary-Understanding…
Матеріали, що згадуються у випуску:
- https://www.amazon.com/Flourish-Visionary-Understanding…
A new issue of the CatOps Newsletter is here:
https://newsletter.catops.dev/p/catops-digest-2024-04-07
#newsletter #digest
https://newsletter.catops.dev/p/catops-digest-2024-04-07
#newsletter #digest
newsletter.catops.dev
CatOps Digest 2024-04-07
What happened on CatOps in the last couple of weeks
For today's Donations Monday we need to support a member of our community - Oleksa Baida, who's going to join the Armed Forces of Ukraine soon.
He managed to cover most of the equipment and medical expenses on his own, but there are still things left.
Monobank Jar:
https://send.monobank.ua/jar/7sYxdJPVuo
Top-up a card directly:
Bank requisites:
Отримувач: Байда Олексій Сергійович
IBAN: UA383220010000026202344355441
ІПН/ЄДРПОУ: 3139812353
Призначення платежу: Поповнення рахунку банки
Also, if you want to meet Oleksa in person, there gonna be a gathering in Kyiv tomorrow at 19:00 (Kyiv time).
If you want to join, please, fill out this form, so he can book a place with enough space for everyone.
https://forms.gle/Q6P6bHLGJcCEpUps8
#donations #Ukraine
He managed to cover most of the equipment and medical expenses on his own, but there are still things left.
Monobank Jar:
https://send.monobank.ua/jar/7sYxdJPVuo
Top-up a card directly:
5375411215704862
Bank requisites:
Отримувач: Байда Олексій Сергійович
IBAN: UA383220010000026202344355441
ІПН/ЄДРПОУ: 3139812353
Призначення платежу: Поповнення рахунку банки
Also, if you want to meet Oleksa in person, there gonna be a gathering in Kyiv tomorrow at 19:00 (Kyiv time).
If you want to join, please, fill out this form, so he can book a place with enough space for everyone.
https://forms.gle/Q6P6bHLGJcCEpUps8
#donations #Ukraine
send.monobank.ua
Безпечний переказ коштів
Надсилайте безкоштовно та безпечно кошти
Sometimes, people claim that I am anti-certifications, which is not true. I haven't had an experience in my life when I had to get a certificate for a new job or a promotion. However, if certification works for you, it's great!
Besides, until the 16th of April, you can buy courses from CNCF with 30% discount.
#courses #cncf
Besides, until the 16th of April, you can buy courses from CNCF with 30% discount.
#courses #cncf
Linux Foundation - Training
Linux Foundation Training - Plant the Seed for Learning: Save 30% Sitewide on Earth Day Deals!
If you've been waiting to get trained or certified in Linux, Kubernetes, Node.JS, Hyperledger or other open source projects, The Linux Foundation is discounting training courses, bundles, and certification exams 30% off thru April 16!
Despite a clickbait title, this is actually a good article with a list of good practices for Kubernetes.
tl;dr list:
- Use ephemeral contianers for debug
- Use admission controllers
- Kustomize is a nice tool
- Autoscale based on custom metrics if it makes sense
- Tweak API Priority and Fairness (APF) if it makes sense
- Submariner for multicluster (I have used other tools for multi-cluster, there are many ways of connecting clusters, so it's up to you to decide, what to use)
- Use Topology Spread Constraints
#kubernetes
tl;dr list:
- Use ephemeral contianers for debug
- Use admission controllers
- Kustomize is a nice tool
- Autoscale based on custom metrics if it makes sense
- Tweak API Priority and Fairness (APF) if it makes sense
- Submariner for multicluster (I have used other tools for multi-cluster, there are many ways of connecting clusters, so it's up to you to decide, what to use)
- Use Topology Spread Constraints
#kubernetes
Medium
7 Mind-Blowing Kubernetes Hacks
Kubernetes harbors capabilities that even seasoned developers might not be fully aware of. These hacks delve into the more esoteric, yet…
A programming books bundle on Humble Bundle by Manning Press.
There are a couple of books that could be interesting to you, even if programming is not your primary occupation.
#books #programming
There are a couple of books that could be interesting to you, even if programming is not your primary occupation.
#books #programming
Humble Bundle
Humble Tech Book Bundle: Code Like a Pro 2024 by Manning
Tackle coding challenges head-on with this book bundle from Manning! Learn about the strengths of Python, Rust, Go & more! Your purchase helps Girls Who Code.
or today's Donations Monday, I'd like to remind you about a big fundraiser by "Come Back Alive" to support the Ukrainian snipers there's still a long way to go, but the majority of the funds are already there.
#donations#Ukraine
#donations#Ukraine
savelife.in.ua
Снайпінг - savelife.in.ua
Збираємо 220 мільйонів гривень для снайперів, які працюють на великі і надвеликі дистанції
I had a whole talk about testing of the Helm charts, but it's not the only (almost) YAML that you could test!
This blog post describes how one could test their Prometheus alerts. Which is more productive than waiting till something happens.
#observability#testing
This blog post describes how one could test their Prometheus alerts. Which is more productive than waiting till something happens.
#observability#testing
Aviator Blog - Automate tedious developer workflows
A Guide to Unit Testing Prometheus Alerts - Aviator Blog
Although Prometheus alerts are widely used alerting system, unit testing these alerts is uncommon. Learn about best practices of testing these alerts.
I'm no Azure user - this thing came from the chat.
Azure has a collection of verified modules for Terraform and Bicep (their own IaC tool).
So, if you happened to work with Azure, check it out! Maybe, it could make your life a bit easier.
#iac #terraform #azure
Azure has a collection of verified modules for Terraform and Bicep (their own IaC tool).
So, if you happened to work with Azure, check it out! Maybe, it could make your life a bit easier.
#iac #terraform #azure
If you work with Kubernetes, there won't be any new information for you. However, when you encounter a namespace stuck in the "Termination" state the first time, it might be dumbfounding.
This article describes what to do in such situations. Also, it's good to learn about
#kubernetes
This article describes what to do in such situations. Also, it's good to learn about
finalizers
at some point anyway.#kubernetes
Devoriales
Resolve Stuck Namespaces in Kubernetes: A Step-by-Step Tutorial
HTML Embed Code: