And Why Helm is Actually a Light-Weight Approach to Kubernetes deployment Recently I saw several comments on various forums suggesting that Helm is a heavy-weight approach. Instead, people were resorting to using plain YAML applied via Kubectl and trying to use sed for modifications. In some cases they were going towards Kustomize even though Helm… Continue reading How To Convert Kubernetes YAML to Helm
Category: DevOps
GitOps for Ephemerals is a Mess
I was working with Ephemeral instances for quite some time now. At this point I believe a different solution rather than pure GitOps is needed for them to operate efficiently. I’ll give some explanation below. I What are Ephemerals? Currently in DevOps / SRE, we define 2 types of Deployment instances: Persistent Instances and Ephemerals.… Continue reading GitOps for Ephemerals is a Mess
On Feature Flags
Feature flags seem to be recurrent topic in few recent conversations I had. More so, misconceptions about them seem to be one of the major obstacles on the road to adoption of Trunk Based Development. Foreword – Context GitFlow is dead, long live Trunk Based Development. This is no longer a secret. If you want… Continue reading On Feature Flags
Helm Chart for ECR Login on Kubernetes
Unlike other Docker registries, ECR is a bit of a pain to work with. The usual authentication process with ECR goes as following: 1. Get your IAM account with ECR permissions (pull, or push, or both) – and obtain ID and Key for this account. 2. Using AWS CLI and IAM credentials obtain login and… Continue reading Helm Chart for ECR Login on Kubernetes
DevOps Via Negativa
I have finally finished reading “Antifragile” by Nassim Taleb and while this is a great book in general, a lot of things about Via Negativa resonated with me in regards to the DevOps field specifically. In short, Via Negativa is a way to achieve things by not doing something, rather than by doing. Below are… Continue reading DevOps Via Negativa
Jenkins Builds with Kaniko and Reliza: Tutorial
Here I would like to present complete tutorial how we integrate Jenkins kaniko builds with Reliza Hub. As a base I will use my toy project – Mafia game. Specifically, we would use UI project to do the builds – Mafia Vue. Quick summary of what we are going to do in the course of… Continue reading Jenkins Builds with Kaniko and Reliza: Tutorial
6 DevOps Trends for 2022
Traditionally before the New Year, I list most significant DevOps trends for the next year. Here is my list for 2022. 1. SBOMs are Getting Traction I previously mentioned Software Bills of Materials (SBOMs) in my list for 2021. The key trigger accelerating industry-wide SBOM adoption was Biden’s recent Executive Order requiring vendors to provide… Continue reading 6 DevOps Trends for 2022
Reliza Log4j Update
Since the discovery of first major CVE related to Log4j we had to fix several components in Reliza Hub exposed to this vulnerability. There was some back-and-forth with more CVEs published, after which we updated components one more time to make sure we are at 2.17.0 version of Log4j. This effort concluded on December 18,… Continue reading Reliza Log4j Update
My CKS is in!
Finally, completed my kubernetes certification path: CKA, CKAD and now CKS! It is also interesting that my first security-related certification coincided with the discovery of the largest security vulnerability of the year.
YubiKey for SSH on Linux and Chromebook
Here I’d like to share instructions how to use YubiKey for storing SSH keys with Linux and Chromebook (via embedded Linux). Recently I got myself a small Chromebook to be able to do emergency support on the go. Hence I decided to expand on my earlier post how to use YubiKey for SSH under Windows… Continue reading YubiKey for SSH on Linux and Chromebook