Suggested Reads
1_r/devopsish
Keeping secrets secret with git-crypt
Figuring out how to keep secrets secret using git-crypt and PGP keys.
16 Chrome Extensions Hacked, Exposing Over 600,000 Users to Data Theft
16 Chrome extensions breached, exposing 600,000+ users to credential theft; risks persist on endpoints.
Is This the End of Crossplane? Compose Kubernetes Resources with kro
Is This the End of Crossplane? Compose Kubernetes Resources with kro
Discover how to build internal developer platforms by composing resources and exposing them through APIs. In this video, we explore the new project, kro, which allows developers to define higher-level abstractions for Kubernetes resources. Learn how to simplify the creation of Custom Resource Definitions (CRDs) and controllers to enable developers to be self-sufficient. We'll go through a step-by-step setup, showcase examples, and compare kro with other tools like KubeVela and Crossplane. Join us as we delve into this exciting project and see if it could be a game-changer for your development workflow!
DevOps #Kubernetes #InternalDeveloperPlatform #kro
Consider joining the channel: https://www.youtube.com/c/devopstoolkit/join
▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬ ➡ Transcript and commands: https://devopstoolkit.live/internal-developer-platforms/is-this-the-end-of-crossplane?-compose-kubernetes-resources-with-kro 🔗 kro: https://kro.run
▬▬▬▬▬▬ 💰 Sponsorships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please visit https://devopstoolkit.live/sponsor for more information. Alternatively, feel free to contact me over Twitter or LinkedIn (see below).
▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/
▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox
▬▬▬▬▬▬ ⏱ Timecodes ⏱ ▬▬▬▬▬▬ 00:00 kro Intro 04:09 The Application Defined As Low-Level Kubernetes Resources 06:27 kro Resource Groups 11:31 kro ResourceGroup Conditionals 20:22 kro ResourceGroup With a More Complex Setup 25:51 Why kro?
via YouTube https://www.youtube.com/watch?v=8zQtpcxmdhs
Ghostty
Ghostty is a fast, feature-rich, and cross-platform terminal emulator that uses platform-native UI and GPU acceleration.
People were tripping and I was making money on applying patches | Y2K seems like a joke now, but in 1999 people were really freaking out
People feared the computer glitch would mean "the end of the world as we know it." Thankfully, Y2K didn't live up to the hype after years and billions of dollars were spent on painstaking preparation.
Kubernetes - What Are the Most Important Design Patterns and Principles?
Kubernetes - What Are the Most Important Design Patterns and Principles?
What are the most important Kubernetes design patterns and principles?
kubernetes #externalsecretsoperator #security
▬▬▬▬▬▬ 💰 Sponsoships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please use https://calendly.com/vfarcic/meet to book a timeslot that suits you, and we'll go over the details. Or feel free to contact me over Twitter or LinkedIn (see below).
▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/
▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox
via YouTube https://www.youtube.com/watch?v=GarGzjiuqFI
Must-change Zed Settings | Roman Zipp
Some inspiration on what configuration entries you could tweak to make Zed even more usefull!
Cognitive load is what matters
There are so many buzzwords and best practices out there, but let's focus on something more fundamental. What matters is the amount of confusion developers feel when going through the code.
BRICK BY BRICK VETERANS — Building a community of veterans and supporters to promote mental health, life skills, leadership, successful transitioning and play.
Building a community of veterans and supporters to promote mental health, life skills, leadership, successful transitioning and play.
5_Gamingdlvhdr/gh-dash
A beautiful CLI dashboard for GitHub 🚀 . Contribute to dlvhdr/gh-dash development by creating an account on GitHub.
If you're gaming on a PS5 add me as a friend or whatever —PlayStation Profile | Chris Short
Secrets in Kubernetes - How to Transfer Secrets from One Cluster to Another?
Secrets in Kubernetes - How to Transfer Secrets from One Cluster to Another?
How to transfer secrets from one Kubernetes cluster to another?
kubernetes #externalsecretsoperator #security
▬▬▬▬▬▬ 💰 Sponsoships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please use https://calendly.com/vfarcic/meet to book a timeslot that suits you, and we'll go over the details. Or feel free to contact me over Twitter or LinkedIn (see below).
▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/
▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox
via YouTube https://www.youtube.com/watch?v=ekV-Rwa_J8o
FTC bans hidden junk fees in hotel, event ticket prices
The rule is one of the final pieces of President Joe Biden's crackdown on junk fees that drive up consumer costs without providing visible benefits.
apankrat/nullboard: Nullboard is a minimalist kanban board, focused on compactness and readability.
Nullboard is a minimalist kanban board, focused on compactness and readability. - apankrat/nullboard
Our 2024 favorites: Apps and games
Runestone on Vision Pro, framed by Shareshot. Tailscale One of my persistent quests over the years has been making it easy to access all my devices no matter where I am. I’ve played with everything…
CVE-2024-53677: A critical file upload vulnerability in Apache Struts2
Learn how to address CVE-2024-53677, a critical Apache Struts2 vulnerability. Discover mitigation steps to secure your software supply chain.
Google Proposes Fix to Solve Search Monopoly
The search giant’s proposals included allowing flexibility for companies and consumers in choosing a search engine.
Huh... I'm not sure how effective this is | Do Not Fix Bugs Reported in Your Open Source Projects
Have you watched The IT Crowd? It’s a hilarious British television sitcom from around 2006 that cast a bunch of IT geniuses at the Reynholm Industries tech support department in London. One of the signature laughs is that every time the phone rang, Roy would pick it up and without waiting say “Have you turned it off and on again?”, then hang up. I often feel like Roy when engaging with users reporting bugs in open-source projects I maintain.
Apple Security and Privacy in 2024: The Year in Review - The Mac Security Blog
There was plenty of security and privacy news that affecting Apple users in 2024. Here are the most notable headlines from the past year.
The 10 Most Popular HBR Articles of 2024
Our top reads on job interviews, hybrid work, leading like Tom Brady, and more.
I have been approached to write here and passed because it had become known for low quality content | Forbes Fires Freelancers Due To Google's Site Reputation Abuse Policy
Forbes has reportedly fired some of its freelancers for some stories over its ongoing issue with Google's site reputation abuse policy, aka parasite SEO. The Verge wrote, "Forbes will stop using freelancers for some types of stories indefinitely — and has blamed the change on a recent update to Google Search policies."
DevOps Toolkit - Ep04 - Ask Me Anything About DevOps Cloud Kubernetes Platform Engineering... w/Scott Rosenberg - https://www.youtube.com/watch?v=loKy3At3OyU
Ep04 - Ask Me Anything About DevOps, Cloud, Kubernetes, Platform Engineering,... w/Scott Rosenberg
There are no restrictions in this AMA session. You can ask anything about DevOps, Cloud, Kubernetes, Platform Engineering, containers, or anything else. We'll have a special guest Scott Rosenberg to help us out.
▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/
▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox
via YouTube https://www.youtube.com/watch?v=loKy3At3OyU
Mastering Kubernetes: Volumes (Persistent Volumes and Claims, ConfigMaps, Secrets, etc)
Mastering Kubernetes: Volumes (Persistent Volumes and Claims, ConfigMaps, Secrets, etc)
Dive into Kubernetes Volumes in this comprehensive tutorial! We'll cover local volumes like emptyDir, CSI Drivers, Storage Classes, Persistent Volumes, Persistent Volume Claims, ConfigMaps, and Secrets. Learn how to use these essential components in Kubernetes for efficient storage management. Understanding volumes is crucial whether you're developing locally or deploying in production. Follow along with practical examples and commands to master Kubernetes volumes. Perfect for beginners and experts alike.
Kubernetes #Volumes #PersistentStorage #KubernetesTutorial
▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬ Sponsor: Zoho Corp 🔗 https://manageengine.com 🔗 https://www.zohocorp.com ▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬
Consider joining the channel: https://www.youtube.com/c/devopstoolkit/join
▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬ ➡ Transcript and commands: https://devopstoolkit.live/kubernetes/mastering-kubernetes-volumes-emptydir,-csi-drivers,-storage-classes,-persistent-volumes-and-persistent-volume-claims,-configmaps,-and-secrets 🔗 Kubernetes: https://kubernetes.io 🎬 Mastering Kubernetes: Workloads APIs (Deployment, StatefulSet, ReplicaSet, Pod, etc.): https://youtu.be/U6weXlzQxoY
▬▬▬▬▬▬ 💰 Sponsorships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please visit https://devopstoolkit.live/sponsor for more information. Alternatively, feel free to contact me over Twitter or LinkedIn (see below).
▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/
▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox
▬▬▬▬▬▬ ⏱ Timecodes ⏱ ▬▬▬▬▬▬ 00:00 Kubernetes Volumes Intro 00:34 Kubernetes Volumes (emptyDir) 01:17 ManageEngine (sponsort) 02:09 Kubernetes Volumes (emptyDir) (cont.) 05:03 Kubernetes Container Storage Interface (CSI) Drivers and Storage Classes 08:00 Kubernetes Persistent Volumes and Persistent Volume Claims 13:44 Kubernetes Config Maps 17:12 Kubernetes Secrets
via YouTube https://www.youtube.com/watch?v=yYQXKiiJzS8
How paying maintainers improves security and sustainability in open source
Lauren Hanford's insights underscore the need to invest in open source maintainers through compensation and support. Despite challenges like competition for funding and concerns about AI’s impact, there’s a clear path forward—companies and developers must prioritize the long-term health of the open source ecosystem. By leveraging tools like Software Bills of Materials (SBOMs), developers can help create a more secure, sustainable open source environment.
###
Save the date:
* All Things Open 2025 is happening October 12-14, 2025 -- Raleigh, NC | https://2025.allthingsopen.org/
* All Things Open AI is happening March 17-18, 2025 -- Durham, NC | https://allthingsopen.ai/
###
0:00 - Intro
0:08 - Welcome
0:33 - What excites you about helping open source maintainers get paid for their work?
1:04 - What are some of the challenges with paying and supporting open source maintainers?
1:45 - What is the State of the Open Source Maintainer Report?
2:20 - What are some of the biggest take-aways from the report?
3:30 - Other highlights from the reports?
4:32 - Do you have any tips, best practices, or new tools you're using to share with the ATO community?
5:18 - What is an SBOM and why are they important?
5:50 - What advice can you offer to help conference attendees apply what they've learned at ATO, beyond the event?
Key takeaways
* Paid open source maintainers are 55% more likely to implement critical security and maintenance practices, reinforcing the value of compensating maintainers.
* Organizational will remains a major hurdle in funding open source support, especially as AI continues to capture attention and budgets.
* Software Bills of Materials (SBOMs) are essential for understanding and securing the software supply chain, especially in light of increasing government regulations on software security.
###
About We Love Open Source
We Love Open Source is an open source community educational hub that includes blogs, interviews, presentations, podcasts, how-to's, and more, from the All Things Open community members:
* Start reading: https://allthingsopen.org/articles
* How to contribute: https://allthingsopen.org/welcome-to-we-love-open-source
About All Things Open
All Things Open is a universe of open source events and platforms designed to educate and connect technologists around the world. It includes the All Things Open conference, the largest open source / tech / web event on the U.S. East Coast, meetups in the Research Triangle Park (RTP) of NC, South Carolina, and New York City, and a YouTube channel with more than 1,000 free recordings. See everything we do at https://allthingsopen.org.
Join our meetups:
* Research Triangle Park, NC meetup: https://www.meetup.com/all-things-open-rtp-meetup/
* South Carolina meetup: https://www.meetup.com/open-source-south-carolina/
* New York City meetup: https://www.meetup.com/Open-Source-NYC/
Follow All Things Open:
* YouTube: https://www.youtube.com/c/AllThingsOpen/videos
* LinkedIn: https://www.linkedin.com/company/all-things-open
* Instagram: https://www.instagram.com/allthingsopen/
* Facebook: https://www.facebook.com/AllThingsOpen/
* X: https://x.com/AllThingsOpen
Control Plane - What Are The Main Benefits of Implementing It?
Control Plane - What Are The Main Benefits of Implementing It?
What are the main benefits of developing and implementing Control Planes?
controlplane #kubernetes
▬▬▬▬▬▬ 💰 Sponsoships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please use https://calendly.com/vfarcic/meet to book a timeslot that suits you, and we'll go over the details. Or feel free to contact me over Twitter or LinkedIn (see below).
▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/
▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox
via YouTube https://www.youtube.com/watch?v=TW_UzIilfIE
Canary Deployments - What Are Examples Where It Can Be Used Other Than for Cloud Resources?
Canary Deployments - What Are Examples Where It Can Be Used Other Than for Cloud Resources?
What are examples where Crossplane can (and should) be used other than for Cloud resources?
crossplane #kubernetes
▬▬▬▬▬▬ 💰 Sponsoships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please use https://calendly.com/vfarcic/meet to book a timeslot that suits you, and we'll go over the details. Or feel free to contact me over Twitter or LinkedIn (see below).
▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/
▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox
via YouTube https://www.youtube.com/watch?v=TlPvtY9Te9Q
But will it matter? 🤷♂️ | RFC 9639: Free Lossless Audio Codec (FLAC)
This document defines the Free Lossless Audio Codec (FLAC) format and its streamable subset. FLAC is designed to reduce the amount of computer storage
space needed to store digital audio signals. It does this losslessly,
i.e., it does so without losing information. FLAC is free in the sense that its specification is open and its reference implementation is open source.
Compared to other lossless audio coding formats, FLAC is a format with low
complexity and can be encoded and decoded with little computing
resources. Decoding of FLAC has been implemented independently
for many different platforms, and both encoding and decoding can
be implemented without needing floating-point arithmetic.
Canary Deployments - Is It a Good Practice to Combine Argo Rollouts with Ingress and Istio?
Canary Deployments - Is It a Good Practice to Combine Argo Rollouts with Ingress and Istio?
Canary Deployments - Is It a Good Practice to Combine Argo Rollouts with Ingress and Istio?
progressivedelivery #canarydeployments #kubernetes
▬▬▬▬▬▬ 💰 Sponsoships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please use https://calendly.com/vfarcic/meet to book a timeslot that suits you, and we'll go over the details. Or feel free to contact me over Twitter or LinkedIn (see below).
▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ BlueSky: https://vfarcic.bsky.social ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/
▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox
via YouTube https://www.youtube.com/watch?v=uDbJ0VgvzNc