Go @Hila F! 🙌

Security and IaC Security gets often forgotten in cloud native setups, but many orgs face security threats and, frankly, quite often issues are noticed only after release. IaC can help. Here is my summary of reasons why IaC is key to detect issues before they reach runtime: • Speed. IaC automated tools provide an instant workflow of processes that also prevents misconfigurations due to human error and minimizes security risks. • Scalability. For rapidly growing businesses, security practices must be implemented at the same rate of expansion (if not faster). Usage of IaC tools increases scalability as IT teams can roll out new applications with security embedded throughout the process. • Consistency. In order to avoid the time-consuming monitoring process of whether or not security policies are up to date, IaC eliminates the documentation process because all the infrastructure is defined as code. • Accountability. As IaC provides accurate data cycling in an environment, every misconfiguration can be detected easily without guessing or spending time finding the person responsible for any discrepancies. • Reduced costs. Businesses that use IaC save money on hardware and additional people to operate that hardware. It also minimizes “recovery costs” from any type of cyberattacks. • CISOs new best friend. CISOs not only have to secure the enterprise, but to simultaneously drive growth at the same time. IaC helps CISOs achieve both of these goals by preventing problems before deployment. What other aspects would you excerpt here?

Hello, all! Does anyone support serverless architectures (like AWS Lambda, EventBridge, API Gateway, etc.) in your internal developer platforms? I'm curious if you had to change the way you handle governance or CI/CD to match that app paradigm.

Hey folks! I work at a company called incident.io with my colleague @Lisa Karlin Curtis, and we both spoke at the last PlatformCon. We’ve recently published a practical guide to incident management, which covers a range of subjects from on-call, setting up your process, responding to incidents and how to learn and improve after. Not looking to spam the channel, but it feels like Platform Engineers value getting good at incident response, so I thought I’d share the link in this channel. Hope you find it useful! https://incident.io/guide/

Hey hey!! 👋 It's time to take a look back at what June served 🍽️ us throughout the month. It was an amazing month for Platform Engineering community, especially with the first ever PlatformCon 😛latformcon:. So what are the stats of the month of June? 👇

And here is the 🔥 conversation from last month. Feel free to join it 👇

What is the opinion of where data management and in particular backup resides with Platform Engineering?

👋 Wanted to share this talk on Kubernetes Operators for Internal Platforms we had at our company this month given by @Brandon McNama from Nirvana Money on how they developed and write Kubernetes Operators to manage 50+ services and not write 600,000 lines of YAML while simplifying the experience for their Product teams. 📹 Recording Link: https://files.aoyfe.online/file/dwsr-public-files/GMT20220608-160431_Recording_1920x1118.mp4 It's really inspiring to us of how much value you can gain by building a platform from the start rather than adopting one in the later stages of an organization. Some technology used here: Kubernetes, Crossplane, Kube-builder.

One of our last articles from the Humanitec blog, DevOps vs. SRE vs. Platform Engineering, was re-published by CNCF, so I thought I’d share it here with you too. In it I have tried to describe the evolution of these terms and how they overlap with each other. Wondering what folks here think of that? And where are we going from here?

Interesting fact: in the last 10 months, Kubescape was used to scan over 10K unique K8s clusters to map out state of risks, compliances, and security vulnerabilities. We are hosting a meetup with Shauli Rozen, ARMO CEO & Co-Founder, tomorrow June 7. He will share interesting insights on why and where Kubernetes deployments are failing, the weak spots, and how to get better statistics on which controls fail most and what are measures to take in order to eliminate them. You can sign up here 👈

We are looking to implement some unified view of build pipelines across teams, products and providers (GH Actions, GL Pipelines, Circle CI etc.) as a central cockpit for engineering health. Does someone have experience with what might be most useful to track from an operational/management point of view? Pros/cons? Good idea/stupid idea? Feel free to DM as well.

I am considering not using VNETs in Azure, because only the higher tier services have that capability and thus cost would be an an issue. Can my architecture be secure if I am not using VNETs?

We’re starting to share some insights about our (internal) Platform 🙂 Reducing blast-radius and simplifying operations when upgrading Kubernetes components isn’t always easy. Tanat tells a bit about how we do it at Adevinta (Marktplaats, Ebay kleinanzeigen, Leboncoin, Fotocasa, Milanuncios, etc) https://medium.com/adevinta-tech-blog/achieve-a-smaller-blast-radius-with-highly-available-kubernetes-clusters-96f9a475544b

Going live now with Shauli!

👋 Hi everyone!

I’m an investor in https://www.plural.sh/ and it went live on product hunt earlier today. Their platform simplifies deploying open-source infrastructure on Kubernetes with just two commands. I think it might be relevant to some people here, feedback is welcomed. Join me in supporting them. https://www.producthunt.com/

Hey, we are working on a few initiatives for the community based on the feedback you gave us after PlatformCon 😛latformcon:. Lots of interesting things in the pipeline, stay tuned 🙂 The first one is a newsletter dedicated to the cloud native and platform engineering verticals. It’ll be a round up of bite-sized nuggets and tweets, together with one deep dive op-ed on a topic every week. We have a few names we have been bouncing around, wanted to get a quick feedback here: 🌴 Platform Native ☁️ Cloud Weekly 🖥️ Platform Weekly 🚚 The Platform Delivery Vote with emojis and of course feel free to add more suggestions on names or formats in the comments. Hopefully we can launch it next week already.

👋 Hi everyone!

Per @Luca Galante recommendation wanted to share this video with the group. I work as a Sr. DA @ Hashicorp who was a Sr. SWE and Cloud Architect working in a Platform Engineering capacity pre-Hashi. Would appreciate any feedback. Thank you!

Does anyone use KubeVela for their Platform? Also looking if there are any vendors built on top of this project?

Hey everyone, quick question. We have seen a spike of DMs last week in the community analytics. This could be: 1. Because you are chatting a lot more with one another in private 2. Because there’s a bot or someone spamming If 1 we are very happy and keep it up 😄 But as you know we are working hard to keep this community clean and spam-free. So I just wanted to check that nobody is getting weird messages or saw suspicious bot/other activity? Thanks for helping out.

Hey all, We just launched our newest product: GitHub as Code

GitHub as Code is a comprehensive Terraform blueprint with fully automated and pre-configured GitHub Actions pipelines to enable everyone in your organization to manage on- and off-boarding of users, repositories, branch protections, secrets, and more through code.

I would love to get some feedback on the idea and also hear if you build something similar in your organization to work around the mentioned obstacles. If you like the idea, I’d appreciate some support by giving us an upvote on hackernews, many thanks! Thank You!

Hey all! I hope I have a good audience here, I could really use some help from people experienced with on-call rotation in Germany. Short background: We have a set up with level 1 support (ops people following runbooks) and level 2 support (developers - escalation contact). Level 1 is 24/7 support and their contract already includes point about on-call with the compensation plan. We still didn't figure out what to do with Level 2. So, the question is are there any Germany specific things we need to keep in mind? • is there requirement for the pay model (compensation for on-call shift, compensation only for hours worked on an incident, € compensation, free days compensation, etc) • how many days in a row a person can be on call? • is there a minimum wage for on call? Any recommendation, pointer, link is welcome!

Harness is hosting a video games event for software engineers and developers at Platform Shoreditch on Wednesday 20th July. Join us from 6 p.m. to test your skills against the tech community as we play popular console games such as Mario Kart, FIFA, and Call of Duty. It’s zero cost to attend and pizza and drinks are on us! https://harness.io/events/games-night-ldn-07-20-22/

Most of you probably know we have been publishing a DevOps benchmarking report, analyzing teams setups and their DevOps maturity (with our dedicated maturity scoring 😉 ). The 2021 edition has been a great success so far and we want to make sure we keep this up to date, so working on releasing a 2022 survey soon. Your input is super important to make sure the questions are as relevant as possible. Below are some questions from the questionnaire from last year 👇 • How many developers work in your organization? • What is the degree of containerization at your organization? • Do you store your application configurations in a version control system? • Do you store your system configurations in a version control system? • Do you store your infrastructure configurations in a version control system? • What is your orchestration tool of choice? • On what infrastructure do you run? • How often do you deploy to production? • What is your lead time - from code commit to running in production? • Imagine an outage from a product or system failure. How long does it take you to get everything fully operational again? • In how many cases do your deployments to production fail so that you need to rollback? 💡*What areas are we missing and should we focus on more this year?* Anything is fair game, please comment below 👇

Hi everyone, how does your platform team handle tools created by developers on other teams that could potentially be used outside of their team? Do you ignore them? Take ownership of them? Something in between?

Hi everyone, has anyone come across a comparison between Humanitec, Crossplane, Kubevela etc? A deep dive comparison based on different factors (Security, Observability, Dev Experience, Providers etc)?

anyone tried to use infiniband on kubernetes for distributed deep learning??

Live with Roni chatting about OpenTelemetry for who wants to join