Hello All,

I was recently taken as a devsecops PO in a company. Currently the organisation have well standards with respect to azure cloud ( there are dedicated cloud engineers for infra deploy etc ), but when it comes to devsecops except sonarqube and azure devops there is nothing much. The org seems to have lot of hesitations with respect to having other tools approved.

How should I go forward in this scenario? Please share your experiences

DM if interested.

Newbie engineer who needs to deploy on Heroku a fork of open-source software and willing to pay $$$ to a DevOps engineer who can help me. I forked the code on Github, cloned it using Git, and now am trying to deploy my local instance of the forked code to Heroku. I need to

-build a .jar file or docker image for deployment

-deploy the .jar or docker image to heroku

- set up simple branching (develop, staging, and production) and a simple ci/cd pipeline using Github actions

I first tried building the .jar file locally (successfully) using the build script provided by the repo, created a Heroku app, and then deploy the .jar file using Git and the Heroku CLI. With this method, I ran into several errors when trying to deploy including errors relating to the build pack and relating to the Procfile which Heroku requires. After many modifications I got slug size too large error for Heroku. Errors with building and pushing a Docker image included: 405 Method Not Allowed.

What is the community’s take on the pros and cons of Docker v Apptainer?

I’m currently picking up Apptainer as a result of its non-root aspect.

What kind of questions or scenarios should you be able to answer well or articulate during an interview for a junior role or what should be expected from someone starting compared to someone who has been working in devops for a while?

How do you create a npmrc file to access a javascript repository on Google Cloud? I am guessing you create the key and then store it as a secret, but then how do you associate it to a particular account to give users access, and then how do you create the npmrc file? I am guessing you can just write down the info manually to create the npmrc file, but is there a better way?

I built a pipeline with CircleCI that has an approval step just before production deployment. So the idea is that whenever a push happens on main branch, it goes through the following steps:

• Dev deployment
• Integration tests
• Staging deployment
• End to end tests
• Approval step
• Production Deployment

It's working as expected. But sometimes, multiple changes could go through before an approval yakes place. And when the final version gets approved. All the previous workflows will keep hanging at "Needs Approval".

How do I automatically cancel those hanging workflows?

This is a question that I've been wondering for a while but can't find any information on

What tools/stacks are used by companies that offer "on-demand" servers.

Two platforms that I've used with this setup are KodeKloud and TryHackMe. The user flow is that a logged in user clicks a "Start Server" button and within a few minutes (what I assume is a container) spins up and can be accessed by the user.

How are these environments created and destroyed?

I recently got into a DevOps/SRE/Platform Engineer role right out of completing a BTech in CS. Tech stack on the job is your standard DevOps stuff - Terraform, AWS, k8s, Datadog, NewRelic, CircleCI etc.

How good would my skill level need to be to make a job switch into a company that would pay me at least 2x to what I'm getting paid now. I see most openings ask for 2 years, or more commonly 3 years of experience in DevOps. I am currently at 5 months total.

I understand the bluntness of my question, but I also understand that this domain isn't exactly full of "Junior" DevOps Engineers so the playing field for job switches is interesting and extremely nuanced. It is actually the opposite. Does this mean the competition is lesser? I'd love more thoughts on this.

Cheers!

Hi, I am moving from the US and would like to donate these books if anyone wants them. Throughout the pandemic I switched roles to DevOps/Cloud arch and those books helped me a lot in the process of learning everything from scratch and getting a few promotions etc. so I thought before just donating them to some bookstore I'd check if anyone else is also going though the same thing and would benefit directly from having them. The only rule is you pick it up, I'm in Michigan, Sterling Heights area.

Pic
https://imgur.com/a/GTgbAAW

I have joined in a company as jr Devops engineer a month ago, Do i need to consider taking the AWS certification now?( If yes can anyone suggest me how to prepare)

I may be wrong to conflate the 3 above roles for the sweeping generalization I am about to make, but the demand for these roles is not nearly as high as ML roles. I know a guy with 6 yrs experience who has been making a switch and albeit he is brilliant, even then the number of interviews he is being called in for is staggeringly high. I cannot imagine this being the case for me 3 years down the line when I decide to make a switch to another company for a 2x salary hike.

LinkedIn jobs do not show as many openings for these roles and I just do not hear about these openings in my network which is pretty spread across.

Am I being restless? Does this make sense? Am I stupid to compare the hype of anything against the great advent of Machine Learning?

I've found myself in between a few different requirements and would like a fresh perspective. One of my company's dev teams has an ECS based service that has only been used internally but now needs to be reachable for a third party integration. So our dev team wants a new public load balancer with just the third party's IPs whitelisted. We typically don't whitelist, instead opting for a zero trust based model using Cloudflare proxying, a comprehensive WAF ruleset, OIDC auth, etc. The third party has also recommended against whitelisting since their service uses 100+ multi-region IPs that will change over time. I have suggested everything from VPN access, client certificates / mTLS, private links, etc. instead of whitelisting, but our dev team is on a tight deadline and the solutions suggested would require either changing the existing service or getting the third party to make changes. Am I crazy for pushing against this? Are there any other options?

Hey friends, every week I search the internet for software engineer jobs that have been recently posted on a company's career page. I collect the jobs, put them in a spreadsheet, and share them with anyone whose looking for their next role. All for free.

I hand pick the ones I know are good roles, with market salaries, and no glaring flags (extremely low salaries, unreasonable expectations). Though its not easy to tell if the roles require leetcode or not. I want to figure out how to get the information in the future.

The data is sourced by my own web scraping bots, paid sources, free sources, VC sites, and the typical job board sites. I spend an ungodly amount on the web so you don't have too!

About me, I am a senior software engineer with a decade of work history, and ample job searching experience to know that its a long game and its a numbers game.

If there are other roles you'd like to see, let me know in the comments.

To get the nicely formatted spreadsheet, click here.

If you want to read my write up, click here.

if you want to get these in an email, click here.

If you want to see all previous job reports, click here.

Cheers!

The trade-offs between :

• JSON
• YAML
• ConfigParser (as used in setup.cfg)
• TOML

https://gist.github.com/njsmith/78f68204c5d969f8c8bc645ef77d4a8f

What are the bad parts about being a Devops Engineer?

KitOps, with an OCI-compliant packaging format enables the seamless sharing of all necessary artifacts involved in the AI/ML model lifecycle. This includes datasets, code, configurations, and the models themselves.

Kit modules for Dagger are now available on the Daggerverse.

Included Modules:

• kit : Use common kit commands such as pack, unpack, push, tag

• huggingface: Download repositories from huggingface

• gguf: Convert to GGUF model serialization

Find more

“No” is an easy default response to big technical asks. It manages the risk and expense of large projects with unknown complexity and (let’s be honest) will often take less of your time than a “Yes”. Some times it’s also the correct answer. No, we can’t make a square with three sides.

“No” usually doesn’t help the business though. There’s a reason the PHB is asking for a square with three sides. It might also be tied to some fundamental misunderstanding, but underneath the request is a problem they’re trying to solve (maybe they just need a triangle). Your job as a skilled devops professional is to understand and help solve that problem.

As a matter of soft skills, you should generally address their question in some way before telling them it sounds like the wrong question. “Squares definitionally have four sides, but we do have the ability to make three-sided polygons. They’re called triangles, and they can only have one right angle unlike a square.”

By the time a technical request makes it from the business side over to the tech organization, “yes” is really the only answer they’ll accept. You might be tempted to say “no” and leave it at that, but instead you should just tell them what “yes” looks like.

Switching analogies, let’s say the PHB wants to build a racquetball court as an addition to the office building. Instead of saying “that’s way out of budget and we can’t even get a building permit for that addition” try explaining what it would take to make it work if you had unlimited resources. Explain the cost of labor and materials for the building, the legal process of getting the permits, the unsolved problem of where to fit such a building on the premises.

At the end if you can give a ballpark of the time and total cost and what other projects will be deprioritized to accomplish it, your “yes, and” will have a much stronger case than a “no”. If you frame your answer as “yes” and then let them discover that such a project isn’t feasible, now you can work together to figure out another solution.

If you had just flatly said “no” in the first place you’re making the interaction adversarial. With a “yes, and” it’s collaborative. Alright, that won’t work but let’s explore other solutions.

And now comes the best question you can ever ask a business person: “What problem are we trying to solve?”

Contrary to popular belief, business people are pretty terrible at communication so they generally don’t think to start with the problem at hand. But once you have that you can use your special engineer brain to find a solution. If the PHB wants a racquetball court because they want to be able to play racquetball, you can suggest they get a YMCA membership instead. Now you’ve solved their problem and saved them a big pile of money. If you do this a few times you will be every PHB’s favorite engineer.

Hi everyone,

I am Cloud Engineer now, focusing only on AWS but I don't know what to do or how to begin to be a DevOps engineer. Is cloud engineer a good starting point to become a DevOps guy? What are the tools needed and must be mastered first in terms of DevOps requirement?

Thank you.

Hi All

We have installed Vikunja and Wikijs for task tracking and documentation via docker compose . They are working with http but need to enable https ,similar to proxy_pass on nginx like below

myhost.com/wiki --> route to wiki myhost.com/tasks ---> route to Vikunja

Using caddy installed as docker , I am able to route to either Vikunja or wiki at 443 but unable to achieve above setup .

Has anyone tried using caddy to achieve above setup ,not necessarily with wiki and Vikunja but with other solutions/services

Basically trying to achieve below using caddy

server { listen [::]:443 ssl http2; listen 443 ssl http2;

server_name myhost.com;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
location /wiki {
    proxy_pass http://localhost:3000;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Host $host;
}

location /tasks {
    proxy_pass http://localhost:3456;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Host $host;
}

}

Any help is appreciated 🙂 Thanks

Same as Title says, i have a other AWS and Azure certs not a professional ones associate level ones. is it good to have CKA in my resume.

Hello, I’m a new grad with a deep interest in DevOps.

To give you a brief introduction, I started my journey during a co-op term with the Ontario government, where I was involved in a Kubernetes project. This experience sparked my fascination with Kubernetes, which was not the kind of thing taught in university, leading me to dive deeper into studying and eventually discovering DevOps. Since then, I’ve been dedicated to building a strong foundation, earning certifications like CKA, CKAD, LFCS, AWS Admin, Azure Admin, and CCNA, and doing projects to hone my skills. I’m continually working to advance my knowledge and skills and would appreciate any advice on pursuing a career in DevOps.

1. I know that DevOps is not typically an entry-level position. Therefore, even if it's not exactly DevOps, what entry-level positions are there that involve technologies like Kubernetes, Jenkins, Terraform, and cloud platforms? I am very passionate about these tools and would like an opportunity to work with them.
2. I am aware that the job market is currently tough. I am open to part-time jobs or volunteering if it means gaining experience in my field. Are there opportunities available that would allow me to work with DevOps technologies in such capacities?

I appreciate any feedback you can provide.

I'm looking to provision an SQL database using services like DigitalOcean, Linode, Vultr, or AWS. For security reasons, I want to set up a Node.js API to interact with this database, as my application is a small WPF desktop app that will be used by no more than three users from their personal computers.

I have experience creating a Node.js API without any security features, primarily for testing. However, I now need to secure both the API and the database.

I realize that security can be a vast and complex subject, but I'm looking for some baseline practices that will allow me to achieve a reasonable level of security without diving into overwhelming details.

What are some practical steps or recommendations you would suggest for securing the API and the database in this scenario? Thank you!

Hello Everyone! I am a devops engineer with expiration of 3 years and am looking for new opportunity. Are there any companies which offer work from home in india and have very good work culture.

I am wondering why charmed kubeflow that uses juju and microk8s needs 50gb of storage and 32GB of RAM. Can anyone explain me why it need too much resources? I thought k8s is lightweight kubernetes distribution lol

Hey Everyone,

I am a recent grad and wanted to know any guide or resources for best practices while making produciton elevl applicaitons using Python and frameworks like Flask, Django ?

Thanks

Full Stack web framework with React + Faster. Automatic routes, reload and component bundle. It uses its own RSC engine, combining SSR and CSR. 100% Deno, no Node dependencies. Fully compatible with Deno Deploy and Serverless Environments. Please give a star :) link

I'm not an experienced developer, and have just been teaching myself. I believe I have a pretty novel idea and want to find someone experienced, to get some advice about how to approach building it. It concerns specific, intuitive analysis and ability to act on rules sets.

I recently came across a post saying Kubernetes is an abstraction of Linux. Since I already have basic Linux knowledge and have started learning Kubernetes, I'm wondering if I should first study Linux in more depth before moving on to Kubernetes, Docker, Ansible, etc.

So, how much Linux knowledge is enough, and where should I learn it? I’ve heard about Red Hat certifications—should I pursue one, and if so, which would you recommend? Do these certifications help with securing good DevOps or cloud roles? I’m currently a Cloud Engineer looking to deepen my expertise and grow into a senior position. I was also considering the CKA Kubernetes certification but paused for now. Which certification would be more beneficial, Red Hat or Kubernetes CKA? Any suggestions?

Link of post: Kubernetes is just Linux. I started working with Kubernetes a… | by Eric Jalal | Medium

Hey, I have to make Vault highly available using DynamoDB as backend, I know that Consul is an option but I prefer to use AWS service.
Currently we have the open-source version on a dev environment - k8s(EKS), one pod using encrpyted EBS volume.
I found this tutorial https://www.automat-it.com/blog/deploying-hashicorp-vault-to-eks-cluster-with-dynamodb-backend/ but I am not sure about it, and more specifically for the encryption step.
I've tried their documentation - "yea you can use it with DynamoDB" and that's.
If someone had similar task, please share some guidance.