A note about Detroit

I have heard through the grapevine many folks hating on Detroit as the city of choice for KubeCon NA 2022. Let me shove that theory into the refuse bin for you. Time just named Detroit one of the World’s 50 greatest places of 2022. That’s right, Detroit is dope af, and I can’t wait for you to experience it at KubeCon NA.


My friends, I’ve checked in on almost every Ukrainian I know during the past two weeks. To a person, they pleaded, “Please let everyone know that there is still a war in Ukraine.” A donation or a link from your socials to Operation Dvoretskyi (named after my friend Ihor Dvoretskyi) means the world to many of my Ukrainian friends. Ukrainians need our continued support.

With the world so focused on the outcomes of Russian sanctions, food shortages, inflation, higher fuel costs, etc. We must remember why we all are enduring this. It’s bigger than all of us. It’s for the world. It’s for Europeans. It’s for Ukrainians. These are all messages from my friends that I share with you at their behest. This is how they’ve asked me to help.

Last Week

Remember how last week, I said I felt like I was snakebit. This week was the exact opposite story. I’ve been kicking systems’ asses and taking names. Work has been great; lots of kicking tires hard and head-scratching, which I enjoy. If you have or know of a complex, open sourced Dockerfile, I’d love to take a look at it and poke at it. I’ll go spelunking into Jess Frazelle’s dockerfiles otherwise.

I installed Chrome OS Flex on a 10-year-old, out-of-support Apple MacBook Air breathing new life into old hardware (more on that in a second). Our “new” Plex box is now using the SSD-based RAID 10 array in my lab’s server over NFS. Max is grateful for the performance and reliability improvement. I briefly explained the setup to him, and he responded, “That’s cool!” My code-server environment had a hiccup. I migrated it to the lab server, which is way more redundant and stable than the box I named bugs (Looney Tunes naming standards are legit).

I’m using nothing but open source solutions to manage my VMs and storage (with some guidance from my old Red Hat teammates; forever grateful to all of you). I have to say; I’m glad I went this route. Moving KVM/libvirt boxes from system to system on a local network is pretty easy, and the level of complexity is low.

Even though I’m not fond of Chrome these days, I find that with proper DNS filtering, Privacy Badger, and DuckDuckGo’s browser extension and search engine, I’m sidestepping as much as possible from Google’s data slurping ecosystem. But, like Kevin Mitnick once said (paraphrasing), “If I have physical access, it’s only a matter of time.” Well, I gave Google physical access, so there’s that.

Chrome OS Flex is the Chrome OS I wanted when I beta tested the Cr-48 way back in the day. A lightweight OS optimized to run on damn near anything. I’ve got the Linux dev environment up and running, too. I get a decent Linux CLI experience. But, the one (for me, major) drawback is that while the Linux dev environment can have Tailscale running on it, it’s inside its happy little sandbox. But, right now, Chrome OS Flex can’t install Android apps yet. I’ll wait for that to develop more as that is the current default way of installing Tailscale on a ChromeOS machine. Then it has a real shot at being a laptop I could use daily.

The week ahead

I’m in Seattle this week. On Monday, I’ll finally walk into an Amazon building as an employee for the first time. I am also attending DevOpsDays Seattle. Funny story there. I joined the Kubernetes Contributor Comms meeting this week. In the pre-recording banter, Kaslin Fields mentioned she was organizing DevOpsDays Seattle. I was like, “Hey, I’m in Seattle next week…” A quick DM convo with my boss, and before the meeting was over; I had the green light to attend. On Thursday, I’m at an internal AWS event. Then I’m flying home on Friday.

I look forward to going to a DevOpsDays again. I need to start submitting CFPs again for in-person events. But, getting my feet wet in the new world is an excellent first step. Let me know if you’re in Seattle and want to link up for coffee that isn’t Starbucks or a meal.

O’Reilly Book on Observability Engineering—Get Yours Free from Honeycomb!

Manage complex cloud-native systems, improve customer experiences, and build & run better software using Honeycomb. Get your FREE copy of our new O’Reilly book and register for our Authors’ Cut Series to discuss key concepts.


Editor’s note: If your event would suit the DevOps’ish audience, please let me know!

DevOpsDays Seattle

DevOpsDays is coming back to Seattle for 2 days in person! Speakers include my friends Kat Cosgrove, Aaron Aldrich, and Laura Santamaria as well as many other awesome folks. As I mentioned in the intro, I’ll be in attendance so grab a ticket and join me.


JULY 28-31, 2022

SCALE is the largest community-run open-source and free software conference in North America. It is held annually in the greater Los Angeles area. This summer it returns to an in person show at the LAX Hilton.


SEPTEMBER 19 – 21, 2022

ArgoCon is designed to foster collaboration, discussion, and knowledge sharing on the Argo Project, which consists of four projects: Argo CD, Argo Workflows, Argo Rollouts, and Argo Events. This event is aimed at audiences that are new to Argo as well as providing depth to those currently using Argo within their organization. Connect with others that are passionate about Argo and interact with project maintainers. Learn from practitioners about pitfalls to avoid and best practices on how to adopt Argo in your cloud native environment. Get inspired by and provide input to Argo leads on project roadmaps.

eBPF Summit

SEPTEMBER 28 - 29, 2022

eBPF Summit is a virtual event, targeted at DevOps, SecOps, platform architects, security engineers, and developers. Register to save the date and stay updated on event information.


What Can the Tech Community Do to Protect Its Trans Members?
Heather Joslyn, The New Stack
“[Aeva] Black, whose keynote alerted the conference attendees about how the rights of transgender individuals are under attack around the United States, and the role tech can play, currently works in Microsoft Azure’s Office of the Chief Technology Officer and holds seats on the boards of the Open Source Initiative and on the OpenSSF’s Technical Advisory Council.”

Kubernetes and OpenGitOps with Chris Short
Last Week in AWS Podcast
“It’s how much does your team want to manage? That’s the customer obsession part of AWS coming through when it comes to containers is because there’s so many different ways to run those workloads, but there’s so many different ways to make sure that your team is right-sized, based off the services you’re using.”

“Critical” projects and volunteer maintainers
Jake Edge, LWN
“As Luis Villa noted last year, FOSS maintainers are being asked to do more and more things; often they are being asked to do so without any compensation, though perhaps “doors opening” counts to a limited extent. As more critical projects are identified, it is likely we will see more conflicts of this nature. What happens when a maintainer does not want to follow the recommendations of OpenSSF (or some other similar effort) on changes? Forks are generally seen as a hostile move, but one suspects that may ultimately happen for projects that find themselves at odds with sponsoring organizations. That is a rather different world than the one FOSS grew up in.”

A Bored Chinese Housewife Spent Years Falsifying Russian History on Wikipedia
Rachel Cheung, Vice
“What’s mom doing on the computer?”
“Contributing nearly 300 articles on Russian history that are all ficticious.”
“Oh… Well I guess that’s more exciting than crocheting, huh?”

Publishing your work increases your luck
Aaron Francis, GitHub
When your project gets picked up by a major vendor and contributions start coming in. When your blog post takes off. When your newsletter has a great week. You have to be your own best agent to total strangers on the internet.


Retbleed: Arbitrary Speculative Code Execution with Return Instructions
Computer Security Group
Maybe speculative execution is a big mistake. It’s gotta be hard to defend these days. The hits just keep coming. If someone has seen a light at the end of the tunnel, please pass that along. I could write a blog post on corporate responsibility and ethics in our modern world on this topic alone.

First Cyber Safety Review Board report finds Log4j has become an ’endemic vulnerability’
The Record by Recorded Future
Log4j is in a close second to speculative execution on being a critical flaw worldwide, over and over again. This goes to the fact that a lot of this is built and maintained by volunteers that SHOULD be compensated for their globally acknowledge as wildly popular works. Software is The Renaissance’s art. We should insure it similarly.

Basic Apple Guy
I need to do this myself. My problem is I’ll buy a year of something for the savings then end up replacing it with something better a few months later. We should all take stock of our subs in this subscription economy. Your sources of truths are varied and numerous here. Good luck!

Lessons in Frugality: Why Pay for Linktree?
Chris Short, chrisshort.net
Speaking of things I buy for a year and replace in a few months with something else… Following the “own your platform” mantra, I’ve rolled out <chrisshort.me> as a replacement for Linktree. Believe me, you can do this and you can usually do it for free.

AWS is quietly getting better at open source
Matt Asay, TechRepublic
There are a group of us pushing very hard towards helping open source helps our customers. We’ve embodied that in our work by doing work upstream as well as downstream. It is working. Please see my disclaimer.

What Is Delaware’s Court of Chancery and Its Role in Elon Musk’s Twitter Deal?
Kalley Huang, The New York Times
“Twitter has sued Mr. Musk to force a sale of the company, and the case will be determined by a 230-year-old court in Delaware.” This was a fascinating read.


Kubernetes Gateway API Graduates to Beta
Shane Utt (Kong), Rob Scott (Google), Nick Young (VMware), Jeff Apple (HashiCorp), Kubernetes
“Gateway API is a collection of resources centered around Gateway resources (which represent the underlying network gateways / proxy servers) to enable robust Kubernetes service networking through expressive, extensible and role-oriented interfaces that are implemented by many vendors and have broad industry support.”

Twitter now lets all users ‘unmention’ themselves in tweets
Aisha Malik, TechCrunch
Finally! I can duck out of conversations after they’ve gone from good to horse kicking. Also, I immediately texted VM Brasseur when I heard the news.

OSS Insight
“OSS Insight, short for open source software insights, is a powerful insight tool that can help you analyze in depth any single GitHub repository, compare any two repositories using the same metrics, and provide comprehensive, valuable, and trending open source insights.” Now this shows how active someone is in open source on GitHub in a whole new way.

Samsung QVO vs. EVO: SSD differences explained
Monica J. White, Digital Trends
I was confused based off pricing from different sites which Samsung drive had the better performance. I share this with you for when you go to upgrade your NAS/lab/etc.

“GitOps Visual Studio Code Extension” I’m kinda surprised they aren’t available on code-server but I guess that is part of the sacrifice I made. Friends from Coder feel free to educate me here.

“The global index of everything you can do with Pulumi”

“Simplified Find command made with Rust.” You had me at Simplified Find.

“Fast container image distribution plugin with lazy pulling”

“KubeFire 🔥, creates and manages Kubernetes Clusters using Firecracker microVMs” Remember kids, fire and Kubernetes mix well.

“Programmatically delete AWS resources based on an allowlist and time to live (TTL) settings”

“Master programming by recreating your favorite technologies from scratch.”

“Fast cross-platform HTTP benchmarking tool written in Go”

DevOps’ish Post of the Week

Lily Ray 😏 on Twitter: &ldquo;My jaw actually dropped. @wilreynolds showed 3 examples of black doctors/nurses where Google&rsquo;s Vision AI rated the image as 70%+ &ldquo;Street Fashion&rdquo; despite them literally wearing scrubs When he painted the nurses white, it switched to &ldquo;Formal wear&rdquo; Truly unbelievable #mozcon https://t.co/hgM3gA9uvO&rdquo; / Twitter)

Got a newsletter worthy post?

Have a story for the newsletter? Getting exposure via this newsletter is a pull request away. Tips is the very first option, click “Get Started”, and send in your shiny, new thing.