news​

• AWS:
  • Monitor hybrid connectivity with Amazon CloudWatch Network Monitor
  • How to record resource configuration changes periodically with AWS Config
  • Amazon EKS now surfaces cluster health status details
  • AWS to Shut down Aurora Serverless v1, their sole relational database with scaling capacity to zero.
• Map of GitHub projects
• 'everything' blocks devs from removing their own npm packages
• OpenTofu 1.6.0 stable release.
• Major IT, crypto firms exposed to supply chain compromise via new class of CI/CD attack
• Android: warning As 1Password, DashLane, LastPass and 3 others leak passwords

news​

• gvisor: Process-based Application Kernel for Containers by Google.
• Maestro: a Unix-like kernel and operating system written from scratch in Rust.
• Arc: New Chrome-based browser with better tab management, integrates with GitHub.
• OrbStack 1.3 released.

tooling​

• hermitcrab: Terraform Provider network mirroring service.

• Radius: Radius is a new application configuration tool. Using Bicep to define the components of an application, and use reusable recipes to run that on various infrastructure platforms.

news​

• Amazon EKS introduces upgrade insights.
• otf (An open source alternative to Terraform Enterprise) archived on Dec 26, 2023.
• GitHub promotes LICENSE (if available) as a tab with the README in the UI.

tooling​

• snk: generate a snake game from a GitHub user contributions graph
• gh-dash: a GitHub CLI extension to display a dashboard with PR and issues by filters
• Latacora (SecOps for hire) published recommended SCPs in Terraform.
• CNCF Incubating HeadLamp: A Kubernetes web UI that is fully-featured, user-friendly and extensible.
• GitHub Action to install GitHub Releases binaries.
• Neosync: Open source Test Data Management. HackerNews post.
• danswer: OpenSource Enterprise Question-Answering. Connects to tools like Slack, GitHub, Confluence, etc.

blogs​

Some of the best blog posts and articles we've seen in 2023:

• A post on using open source LLM models, in particular focused on engineering for performance, including details of benchmarks and optimisation techniques.
• A detailed, technical, post on embracing eBPF for monitoring at the network layer and providing better control of a large microservice and infrastructure platform.
• A look at applying some of the DORA findings to improving incident management practices.
• Having a formal lead role for incident management is a common pattern. This post explains what that role should do, and why it’s important.
• A great post with tips for being on-call. Covering why on-call is hard, and what you and your team can do to make it suck less.
• A set of collected views on how generative AI can aid incident response. Lots of great observations and ideas, some of which will undoubtedly become features and products in the future.
• How InfoSec and risk management teams can support FinOps.
• Post on moving to Bazel, including local and remote instrumentation, parallel running and staggered rollout.
• Treating observability instrumentation as a first class part of software development.
• Second wave of devops tools. Some good observations here about what’s changed over the last 10+ years, and what hasn’t.

news​

• Mitchell Hashimoto leaves HashiCorp, planning to archive all his GoLang projects.
• Linkedin abandons plan to migrate to Microsoft Azure.
• Microsoft.com adds 192.168.1.1 to their DNS record.
• 116 malware packages found on PyPI repository infecting Windows and Linux systems.
• AWS finally released EKS Cluster Access Management API (auth-config) with Terraform support forthcoming.
• AWS adds automated detection of unused IAM roles, users, and permissions.
• OpenTofu v1.6.0-rc1 released.
• Novel Terrapin SSH attack.

news​

• HashiCorp Vault forked into OpenBAO. Backed by IBM.
• Terraform 1.7.0-beta2 adds mock providers support to terraform test
• Top 50 Terraform Cloud Interview Questions and Answers
• Amazon Route 53 Application Recovery Controller launches zonal autoshift
• TIER Mobility releases their own Terraform Registry - boring-registry
• Alpine 3.19.0 removes all HashiCorp BSL licensed tools (Consul, Nomad, Packer, Terraform, Vault)