#78: GPT3 Powered Terminal

This week's newsletter highlights the first publicly-known piece of malware deployed as a Lambda function, is Kubernetes the silver bullet to multi-cloud, how to lock down access to S3 resources, why is every layoff 10-15%, Terraform files autogeneration, how to waste $40K with a recursive Lambda function, Chrome DevTools for backend, getting answers from CLI commands from GPT3 from your terminal and more.
I hope you enjoy this week’s newsletter! Share it with a friend or colleague if you find it helpful, or drop me an email about topics you’d like to hear about in future editions 👋🏻

📖 POSTS OF THE WEEK

LambdaSpy - Implanting the Lambda execution environment
Recently, attackers made headlines with "Denonia", the first publicly-known piece of malware deployed as a Lambda function. This malware is a cryptocurrency miner deployed by attackers as a Lambda function that ran within customers environments using stolen or leaked AWS credentials.
Read more »

"How we accidentally burned $40,000 by calling recursive patterns" - To avoid recursive invocations between S3 and Lambda, its best practice to use a positive trigger, reserved concurrency and CloudWatch alarms - Read more »

"Kubernetes snapshots: What are they and how to use them?" - An introduction to snapshots in Kubernetes and an overview of typical usage cases. Creating PVC templates, cloning data for testing, and performing consistent backups. - Read more »

"5 tools to auto-generate Terraform configuration files" - This blog post aims to make this transition easier by exploring the available approaches and tools for importing cloud resources that already exist on the cloud into Terraform configuration files - Read more »

"Changing times (or, why is every layoff 10-15%?)" - Reading Elad Gil's market analysis can give you the context to understand why and how certain companies operate in today's economy and what it might imply for your company - Read more »

"Stop playing Whac-A-Mole, start using Least Privilege IAM policies" - This post looks at some of the challenges of setting up least privilege in AWS IAM and how you can start locking down access to S3 resources - Read more »

"How to implement DevSecOps in a Kubernetes cluster environment" - This hands-on tutorial uses kube-bench and other tools to check if the deployed Kubernetes cluster is secure by running checks against CIS Kubernetes Benchmarks - Read more »

"Bringing revsets to Git" - The git-branchless suite of tools introduces its own revset language which can be used with Git - Read more »

"Does Kubernetes really give you multicloud portability?" - All in all, deploying to a managed Kubernetes can’t be considered fully portable (or the silver bullet for portability), as there are add-ons or services that you would need to install and manage to ensure the application is deployed and configured as it is supposed to be - Read more »

🛠 PROJECTS OF THE WEEK

Sidekick is like open-source ChromeDev Tools for your backend. Collect real time data, cut your MTTR and monitoring costs with almost no overhead - Learn more »

Get answers for CLI commands from GPT3 right from your terminal. For example you could ask the following question and get the corresponding linux command "Check process running on port 3000" - Learn more »

Dynamically generate Grafana dashboard based on Prometheus metrics. Autograf generates Grafana dashboard directly from /metrics or based on a metrics matching provided selector - Learn more »

A curated list of WebAssembly and Docker resources (tutorials, videos and books). Learn how to build, share, and run WebAssembly apps using Docker - Learn more »

📰 NEWSWORTHY STORIES

"Elizabeth Holmes has been sentenced to over 11 years in prison" - Read more »

"Microsoft and Nvidia team up to build new Azure-hosted AI supercomputer" - Read more »

"Twitter’s security leads just quit. Now what?" - Read more »

📕 BOOK OF THE WEEK

This book solves one of the largest problems leaders have: how to give negative feedback and still remain friends.

Kim sets out a framework that is both kind and direct for giving employees feedback. If you supervise others, you deserve to read at least the framework from this book.

🎧 PODCAST/WEBINAR OF THE WEEK

This podcast discuss the foundations that any team needs to put in place when designing their incident management process. Starting from the basics of defining what we really mean by an incident, to how to set your severity levels, roles and statuses.

💼 OPEN JOBS OF THE WEEK

DevOps Engineer @TheyDo
AWS, Postgres, CloudFormation
🌎 Remote, anywhere
Read more »

Site Reliability Engineer @Sound
AWS, Kubernetes, Kafka
🌎 Remote, anywhere
Read more »

Senior DevOps Engineer @Evident
AWS, Ansible, Python
🌎 Remote, anywhere
Read more »

Hand-picked DevOps opportunities to work from home, remotely, freelance, full-time, part-time, contract and internships - See more »

🌎 EVENTS OF THE WEEK

AWS re:Invent is the most transformative event in tech. For 10 years, the global cloud community has gathered here to meet peers and cloud experts, get inspired, and rethink what’s possible. Join us again this year in Las Vegas for the biggest, most comprehensive, and most vibrant event in cloud computing - Register now

Kubernetes Community Days UK returns for 2022 and is taking place in-person at CodeNode, London on 22nd and 23rd November. This event brings together the cloud native community from across the UK to learn, network and collaborate - Register now

Join the WebAssembly community from around the world for two days of deep technical sessions. There is no better place to share, discuss, collaborate and socialize with other WebAssembly professionals - Register now

🐦 TWEET OF THE WEEK