lirantal/dockly: Immersive terminal interface for managing docker containers and services
"Immersive terminal interface for managing docker containers and services
"
Archives (2008 - 2023)
wagoodman/dive: A tool for exploring each layer in a docker image
"A tool for exploring a docker image, layer contents, and discovering ways to shrink your Docker image size.
"
GitGuardian/APISecurityBestPractices: Resources to help you keep secrets (API keys, database credentials, certificates, ...) out of source code and remediate the issue in case of a leaked API key. Made available by GitGuardian.
"This repository provides resources for developers to keep their secrets secret.
"
Cilium
"A microservices-based application is split into small independent services that communicate with each other via APIs using lightweight protocols like HTTP, gRPC, Kafka and more. However, existing Linux network security mechanisms (e.g., iptables) only operate at the network and transport layers (i.e., IP addresses and ports) and lack visibility into the microservices layer.
Cilium brings API-aware network security filtering to Linux container frameworks like Docker and Kubernetes. Using a new Linux kernel technology called BPF, Cilium provides a simple and efficient way to define and enforce both network-layer and application-layer security policies based on container/pod identity."
Cross-Cluster Network Connectivity for Kubernetes | Submariner
"Submariner enables direct networking between pods in different Kubernetes clusters on prem or in the cloud."
k3s - Lightweight Kubernetes | k3s
"Easy to install. A binary of less than 40 MB. Only 512 MB of RAM required to run. "
A Great Engineer Needs the Liberal Arts
Every Problem is a Communication Problem / Model Software Communication After Human Communication / The Importance of Empathy
Building Services at Scale at Airbnb: QCon London Q&A
"Encapsulated access to data storage with a single service as its owner Services should address a specific concern Avoid duplicate functionality Data mutations published via standard events Build with best practices for production, including technical architecture, observability, and alerts (avoid cutting corners for "prototypes", "only admins", or aggressive deadlines) Good practices include:
Standardization for consistent APIs, observability, client and server functionality, plus build and deploy processes Invest in tools and solutions to autogenerate code instead of relying on humans to manually write boilerplate and shared frameworks Include reliability and robustness features in autogenerated clients and servers; fail fast Perform comparisons of monolith and service request life cycles asynchronously to avoid adding extra latency to production paths Make RPCs to dependencies asynchronously to get performance benefits due to parallelization"
Cloud Native: Getting Culture Right - Container Solutions
"The three major types of culture within enterprises are Waterfall, Agile and Cloud Native."
2019 Database Trends – SQL vs. NoSQL, Top Databases, Single vs. Multiple Database Use - High Scalability -
"Wondering which databases are trending in 2019? We asked hundreds of developers, engineers, software architects, dev teams, and IT leaders at DeveloperWeek to discover the current NoSQL vs. SQL usage, most popular databases, important metrics to track, and their most time-consuming database management tasks. Get the latest insights on MySQL, MongoDB, PostgreSQL, Redis, and many others to see which database management systems are most favored this year."
Architecture et documentation : les ADRs | Blog Xebia - Expertise Technologique & Méthodes Agiles
"Les systèmes sur lesquels nous travaillons évoluent dans le temps. Cette évolution s’applique également à leur architecture, la documentation de l’architecture se doit donc d’y être adaptée. C’est la problématique à laquelle se proposent de répondre les Architecture Decision Records, ou ADRs.
Cet article a pour objectifs de vous aider à comprendre ce qui définit un ADR et de vous donner quelques clés pour la mise en place de ce nouveau mode de documentation."
knative/docs: User documentation for Knative components
" Knative (pronounced kay-nay-tiv) extends Kubernetes to provide a set of middleware components that are essential to build modern, source-centric, and container-based applications that can run anywhere: on premises, in the cloud, or even in a third-party data center."
Best Practices for Measuring Your Code Pipeline
"In a recent webinar, Best Practices for Measuring Your Code Pipeline, we examine the solution to this challenge: using instrumentation to automate and accelerate the code pipeline while increasing the quality of deployments and of the overall development process. "
koalaman/shellcheck: ShellCheck, a static analysis tool for shell scripts
"ShellCheck is a GPLv3 tool that gives warnings and suggestions for bash/sh shell scripts:
"
trimstray/htrace.sh: My simple Swiss Army knife for http/https troubleshooting and profiling.
"My simple Swiss Army knife for http/https troubleshooting and profiling. "
Best Practices for Canary Deploys
"But what makes for an effective canary deploy? Here, we’ll look at some of the best practices we’ve evolved at New Relic for using canaries to move quickly while minimizing disruption to our users and our platform."
How is software developed at Amazon? - High Scalability -
"How is software developed at Amazon? Get a couple of prime pizzas delivered and watch this excellent interview with Ken Exner, GM of AWS Developer Tools. It's notable Ken is from the tools group, because progress in an industry is almost always made possible by the development of better tools.
The key themes from the talk: decomposition, automation, and organize around the customer."
Chaos Engineering Observability | Humio
"In this practical eBook, the author Russ Miles explains how Observability and Chaos Engineering go hand-in hand, since the fundamental process of running chaos experiments is built around the live observability of the engineered chaos testing. The eBook will will help you learn how to test and observe the health and resiliency of your systems and security controls, in real-time, by bringing observability to chaos engineering.
"
How We Prepared New York Times Engineering for the Midterm Elections
"Our mission was to organize a cross-team effort to ensure that election news and interactive content is stable, performant, always up-to-date and displayed as the newsroom intends for our readers. We assembled over 20 teams that have a hand in ensuring our election coverage is reliably served across all of our platforms. With so many teams to manage, we created an election leadership team that was led by a Directly Responsible Individual (DRI), a deputy DRI and two program managers."
Home | OpenSCAP portal
"The OpenSCAP ecosystem provides multiple tools to assist administrators and auditors with assessment, measurement, and enforcement of security baselines. We maintain great flexibility and interoperability, reducing the costs of performing security audits."
Airbnb's Migration From Monolith to Services
"Services should own both reads and writes to their own data. If several services need access to the same data, this is done via the owning service's API. Services should address a specific concern. For Airbnb, this was about trying to find the right granularity when creating services. They wished to avoid services having too much functionality, becoming monoliths in their own right, while also avoiding such fine-grained services that there would be a "polylith" or distributed monolith. Avoid duplicate functionality by using shared services and libraries. Data mutations should publish via standard events."
Accelerate - IT Revolution
"For years, we’ve been told that the performance of software delivery teams doesn’t matter—that it can’t provide a competitive advantage to our companies. Through four years of groundbreaking research, Dr. Nicole Forsgren, Jez Humble, and Gene Kim set out to find a way to measure software delivery performance—and what drives it—using rigorous statistical methods. This book presents both the findings and the science behind that research."
Why Do Cloud Migrations Fail? - Container Solutions
"I am going to stick to the facts, and bring to you, in under 1500 words, 100 of which I’ve wasted on this introduction, some of the key reasons why migrations to cloud and Cloud Native fail. Starting with executives who have lost the ability to function and ending with the widespread problem of mixing up cause and effect, we’ll do a quick safari through five common failures."
Sortir de la consanguinité logicielle | OCTO Talks !
Architecture and Design InfoQ Trends Report - January 2019
"Notable changes since we last reviewed this topic include "microservices" moving into the late majority, but our internal discussions also highlighted that the closely related themes of "correctly designing distributed systems", and designing for reactivity and fault tolerance are not so far along the adoption curve. We may well be approaching the bottom of the microservice “trough of disillusionment” in respect to the Gartner Hype Cycle.
We have also speculated that there are areas of architecture that will never move along the adoption curve to early majority or late majority, and unfortunately, they include several highly-effective patterns -- such as event-sourcing/CQRS-based or Actor model-based systems -- which can provide highly effective solutions for certain organisations and business problems."
The State of Microservices Maturity
"In July 2018, leaders of the O'Reilly Software Architecture Conference conducted a survey on microservices maturity to assess just how far organizations have come with this technology, including the practices they follow and the challenges they face along the way.
The responses we received are summarized in this report."
DevOps and Cloud InfoQ Trends Report - February 2019
"This article provides a summary of how we currently see the “cloud computing and DevOps” space, which focuses on fundamental architectural patterns, realisation of patterns in technology frameworks, and the design processes and skills that a software engineering must cultivate."
Service Catalog and Kubernetes
"The Service Catalog in Kubernetes needs to overcome some of its current limitations before being widely adopted and used safely in production. In the meantime, other projects inside and outside the Kubernetes community are being created either as complements or competitors to the Service Catalog and the Open Service Broker API."
How To Run A Game Day
"During an adversarial game day, a malicious actor (the adversary), introduces faults into a non-production version of our system to see how well our teams are prepared to recover."
Lynis - Security auditing tool for Linux, macOS, and Unix-based systems - CISOfy
"Lynis is a battle-tested security tool for systems running Linux, macOS, or Unix-based operating system. It performs an extensive health scan of your systems to support system hardening and compliance testing. The project is open source software with the GPL license and available since 2007."