#53: Kubernetes Toolkits

Faros AI connects the dots between your engineering data sources – ticketing, source control, CI/CD, and more – giving unprecedented visibility and insight into your DevOps processes - Learn more at faros.ai

🎧 PODCAST/WEBINAR OF THE WEEK

Is your idea of fun sitting in front of a camera, live streaming to the internet, debugging and fixing a broken Kubernetes cluster? What if these Kubernetes clusters were intentionally broken by members of the Kubernetes community, tasked with making your chances of fixing said clusters as slim as possible? Well, watch David Flanagan sharing the key methods, tools and takeaways from fixing over 50 Kubernetes clusters 🤯

📖 POSTS OF THE WEEK

Testing Pipeline 101 For Frontend Testing
Automated testing can give you much confidence in merging your changes, especially in extensive refactoring or working with your teammates. Don’t know where to start? This hands-on tutorial will walk you through implementing a testing pipeline from scratch.
Read more »

"RBAC Explained with Examples" - Kubernetes RBAC tutorial with two examples, using ServiceAccounts and OpenSSL to create separate contexts for users - Read more »

"Think like Git" - This article is for people who already know how to use git day-to-day, but want a deeper understand of the why of git to do a better job reasoning about what should or should not be possible rather than just memorizing incantations - Read more »

"GitOps repos: Five lessons on what to include and what to skip" - This article provides a decision framework to help practitioners choose what to manage with GitOps and what to avoid - Read more »

"Over 380k+ open Kubernetes API servers" - Damn! If you are notified of an instance that is accessible, please consider implementing authorization for access or block at the firewall level to reduce your exposed attack surface - Read more »

"Software bill of materials: What it is and why you need one" - Learn what a software bill of materials is and why it is important for DevOps - Read more »

"Scaling Dumb Fuzzing with Kubernetes" - Fuzzing at its core is throwing malformed input at a given target binary (in this case radare2) to hopefully illicit a crash. Then, inspect the crash and see if this could be used for something beyond a local DoS - Read more »

"Robust Terraform setup with workspaces" - Snowflakes as code is an antipattern where separate instances of infrastructure code are maintained for multiple instances of infrastructure that are intended to be essentially the same - Read more »

"Lessons learned from running Apache Airflow at scale" - Shopify shares some of the lessons learned and solutions they built in order to run Airflow at scale - Read more »

📕 BOOK OF THE WEEK

One of the greatest books you can ever read about Genghis Khan and the Mongol Empire. The book goes into detail regarding how the Mongols influence the world while also challenging the, fortunately, outdated beliefs that they were merely ruthless conquerors.
I read this book and listened with audible, really enjoyable book!

🛠 PROJECTS OF THE WEEK

If you manage AWS Cloud accounts you might be interested in forwarding all your EC2 logs with ease to 3rd parties through Kinesis Firehose from one centralized place – if this is the case – check out this Rsyslog Server product made by 0x4447. The company 0x4447 builds products to increase standardization and security in AWS Organizations. They do this with automated pipelines that use well structured projects to create secure, easy to maintain and fail tolerant solutions - Read more »

KoolKits (Kubernetes toolkits) are language-specific container images that contain a (highly-opinionated) set of tools for debugging applications running in Kubernetes pods. Those images are intended for use with the new kubectl debug feature, which spins up Ephemeral containers for interactive troubleshooting - Read more »

External Secrets Operator is a Kubernetes operator that integrates external secret management systems like AWS Secrets Manager, HashiCorp Vault, Google Secrets Manager, Azure Key Vault and many more. The operator reads information from external APIs and automatically injects the values into a Kubernetes Secret - Read more »

OWASP WrongSecrets p0wnable app is packed of various ways of how to not store your secrets. These can help you to realize whether your secret management is ok. The challenge is to find all the different secrets by means of various tools and techniques - Read more »

Import Tracker is a Python package offering a number of capabilities related to tracking and managing optional dependencies in Python projects. The tool enables developers to track the dependencies of a python project to map each module within the project to the set of dependencies it relies on. It also enables lazy import errors - Read more »

A utility tool powered by fzf for using git interactively. This tool is designed to help you use git more efficiently. It's lightweight and easy to use - Read more »

💼 OPEN JOBS OF THE WEEK