My daughter just informed me she very likely has contracted COVID-19. My apologies but, I’m going to forgo my usual introduction in the newsletter this week.

I was going to discuss this lengthy piece but, give it a read instead: The Developer-Led Landscape.

DevOps’ish is brought to you by Accurics. They’re cool people doing cool things with cloud native security. Check them out! Scanning Kubernetes IaC configurations with Terrascan

People

Kubernetes Contributors
“It is intended to be the hub for all things related to the Kubernetes Contributor experience. Who exactly is a contributor? We all are - Whether you’re writing docs, reviewing code, participating in the community and its many [Special Interest Groups] SIGs, everyone is welcome. We hope this site will be a pathway to success for our 35000+ Kubernetes contributors, providing current, up-to-date information on community events, contributor resources, Kubernetes SIGs, and more.”

One lone hero in production is not sustainable-not for you, not for high-functioning teams, and not for customers who depend on your service. Collaborate well by instrumenting observability from the very beginning, and enable more resilient teams to build more reliable systems sustainably.

In our guide, Developing a Culture of Observability, we lay out why o11y culture and tools go hand-in-hand. Learn how to build a culture of observability with Honeycomb. SPONSORED

The Social Dilemma
A must watch Netflix documentary for everyone in or using tech.

This Past Week on OpenShift TV
My life at $job in a synopsis blog post.

DevOps 049: DevOps, Open Source, and OpenShift with Chris Short
Talking about my day-to-day activities to pay the bills and give back somehow.

These Chrome extensions protect you against creepy web tracking
Privacy Badger is a Godsend. There is also Blacklight if you want to inspect a site before visiting.

Family of Northville man killed in hit and run increases reward to $15,000
A tragic story impacting a friend of one of my teammates (who happens to live here in Michigan). If you know something, please contact the Northville PD at 248-349-5100. Thank you.

Process

Crunchy HA PostgreSQL - Ensure your data is always available
Meet your “always on” data requirements with trusted, open source components. Crunchy HA PostgreSQL gives you an all-in-one production PostgreSQL solution: HA, DR, monitoring that is securely deployed. Chat with Crunchy Data to learn more. SPONSORED

Microsoft warns hackers are actively targeting Zerologon vulnerability. Patch pronto!
This is being called the worst bug in Windows history. Like, I don’t know how much more fucking terrified into patching your systems you should be but, if you haven’t patched your systems by the time you’re reading this, you’ve got some serious explaining to do.

Don’t Compare Averages
Comparing averages or even trying to determine an average in some cases (if you’ve never read this piece you should) can be a horrible, no good, awful practice.

10 Best Practices Worth Implementing to Adopt Kubernetes
Not a terrible list.

The Windows XP source code was allegedly leaked online
The next few weeks should be interesting in terms of low level Windows things being discovered. Of course, now that it’s leaked, can we actually use it in any other application ever? What if there are bits in here that aren’t licensed properly and invoke lawsuits? What if it somehow exposes a monopolistic plot? Who knows what’ll happen! 🍿🍿🍿🍿🍿

Snyk Acquires DeepCode to Apply AI to DevSecOps
It’s my understanding that Snyk is or at least was in a hardcore acquisition mode.

Why Magic Leap Failed: AR Hype Exceeded Product’s Capabilities
Next time, call me before you spend over $10 million on something. I’ll tell you if it’s legit or not for $250K. Dead serious.

Tools

Download today: Kubernetes security ebook - tips, tricks, best practices
The rapid adoption of Kubernetes to manage containerized workloads is driving great efficiencies in application development, deployment, and scalability. However, when security becomes an afterthought, you risk diminishing the greatest gain of containerization - agility. Download this ebook to learn how to (1) build secure images and prevent untrusted/vulnerable code, (2) configure RBAC, network policies, and runtime privileges, (3) detect unauthorized runtime activity, and (4) secure your Kubernetes infrastructure components such as the API server. SPONSORED

fatal: coudn’t find remote ref master · Issue #55 · openshift-evangelists/kbe
Ryan Jarvinen teaches me how to sanely go about renaming my default branches.

I’m losing trust in AWS. SNS is broken for 24 days.
“I’m frustrated. A major service of AWS is broken for 24 days. The Simple Notification Service (SNS) delivers messages to HTTPS subscriptions with a delay of more than 30 minutes. That issue impacts our SaaS business. But AWS did not fix the problem yet and did not even reveal an ETA for resolving the issue.” And no one I reached out to at AWS has said a damn thing in response to me. Not a good look, y’all.

Rebuilding Linkerd’s continuous integration (CI) with Kubernetes in Docker (kind) and GitHub Actions
“This post will detail Linkerd’s CI journey from a single, persistent Kubernetes cluster to theoretically unlimited one-off kind clusters. This journey includes a few detours on what patterns and tools worked well (and not so well) for Linkerd’s use case.”

YAML Templating Solutions: Helm & Kustomize
Writing config files by hand is like coding with Notepad instead of an IDE. Let’s find a better way, and take an overview of the popular solutions Helm & Kustomize.

Meet the ‘DPU’ - accelerated network cards designed to go where CPUs and GPUs can’t be bothered
General purpose processors are going to start becoming userland in a hurry. With the shot in the Arm Nvidia has, there’ll be single purpose chips, ASICs, and FPGAs like we’ve never thought or heard of before raining from the heavens.

Linux 5.10 To See RAID10 DISCARD Improvement - From 259 Seconds To Less Than 1 Second
As a RAID 10 user, I really like the sound of that.

10 Best Open Source Static Site Generators [2020] The annual reminder that static web sites are within your reach and that you shouldn’t use Medium (which I’ll remind you about often).

Todoist takes a shot at Trello with Kanban-style ‘boards’
Todoist just murdered Trello with a throat slit in the dark of night, in my opinion. I went Pro on Todoist the second the board feature went into beta. It’s life changing.

Two bad things about Mozilla this week:

couler-proj/couler
Unified Interface for Constructing and Managing Workflows on different workflow engines, such as Argo Workflows, Tekton Pipelines, and Apache Airflow.

jetstack/version-checker
Kubernetes utility for exposing image versions in use, compared to latest available upstream, as metrics.

polyaxon/polyaxon
Machine Learning Platform for Kubernetes

DevOps’ish Tweet of the Week

Want more? Be sure to check out the notes from this week’s issue to see what didn’t make it to the newsletter.