#office-hours (2020-03)

Using tfsec with GitHub Actions. Contribute to katapultmedia/training-tfsec development by creating an account on GitHub.

If you use Kubernetes as your application platform, one of the fundamental questions is: how many clusters should you have? One big cluster or multiple smaller clusters? This article investigates the pros and cons of different approaches.

Quarkus: Supersonic Subatomic Java

A deep dive into Kubernetes CPU throttling and its impact on service performance and reliability.

Hi everyone, I know a bunch of people are now working from home that haven’t before so I thought I’d start collating some resources for everyone so we can all share good tips and tricks without digging through tons of transient twitter posts. I’ve marked this post a wiki so feel free to edit, also feel free to just reply with your own tips. General Tips Dustin Kirkland’s setup after 20+ years of remote work @thockin’s long thread with tons of info randomfrankp’s room tours - this youtuber…

DixiApp - The #1 daily scrum bot for Slack & the best way to conduct asynchronous daily standup meetings. _Hot Features_ *that make DixiApp the best asynchronous daily stand up meeting

MinIO’s High Performance Object Storage is Open Source, Amazon S3 compatible, Kubernetes Friendly and is designed for cloud native workloads like AI.

MinIO is a high performance object storage server compatible with Amazon S3 APIs - minio/minio

Leading Open Source Container Attached Storage, built using Cloud Native Architecture, simplifies running Stateful Applications on Kubernetes. - openebs/openebs

KubeDB by AppsCode simplifies and automates routine database tasks such as provisioning, patching, backup, recovery, failure detection, and repair for various popular databases on private and public clouds

PostDock - Postgres & Docker - Postgres streaming replication cluster for any docker environment - paunin/PostDock

The Jarvis adjustable-height standing desk by Fully is the most configurable desk. Experience the quality of our stand-up desks - see the full collection.

Famous for supporting the widest range of the human form, the Aeron office chair has been remastered to better meet the needs of today’s work and workers.

Introduce high quality, yet affordable height adjustable standing desk - Autonomous SmartDesk 2, Business Edition. The autonomous desk features a heavy-duty industrial-grade steel motorized stand up frame backed by 7 year warranty.

Hi all, I can also ask this during the office hours tomorrow but wanted to see if you any of you have input.

I’m working through disaster recovery with terraform, primarily for the terraform remote state management of multiple regions. i wanted to have a duplicate set of resources created in a separate region (e.g. us-east-1 for primary, us-west-2 for failover). initially i thought it’d be best to have remote state separated in each region, such that a bucket in us-east-1 handled all of the us-east-1 resources and a bucket in us-west-2 handled all of the us-west-2 resources. however, i imagine this becomes an issue if the region is actually down, and the failover reads from terraform_remote_state of the primary. would it be better to have a primary remote state that manages resources in multiple regions, but is also cross-region replicated? that way if the region goes down, we can update our terraform configurations to read from the failover remote state bucket and pick up exactly where we left off

I’m tasked as objective this year to improve consistency in our terraform releases. I’ve done lots of various research and testing and am currently looking the following main approaches I’ve evaluating. I think it would be useful to dialogue on this with ya’ll and save myself some repeat work. I’m going to do more detail in a thread. Please comment in there

1. Terraform Cloud
2. Jenkins
3. Azure DevOps Pipelines
4. Others (harder to sell) could be Gitlab/CodeFresh or another if I got buy in.

Hey folks! I’m looking for some advice about how people are tackling the ‘chicken and egg’ problem with secret management. I had the idea to use terraform to provision Vault. But with this comes the question: from where do I get the secrets needed within the terraform scripts (of course, I’d love to use Vault for that!)? One solution I have heard is to place the tf scripts in a ‘super secret’ Git repository along with these secrets and restrict access to only a select few. While I guess this works, something about it feels dodgy. But I guess these init secrets have to be stored somewhere. How are others tackling this?

Hey,

can I somehow see which instances are out of stock for a specific aws region? we have been unable to launch c5.xlarge in eu-central-1a a couple of times this week and I am trying to find a source that will tell me when something is unavailable

Kubernetes 1.18 is about to be released! And it comes strong and packed with 39 new or improved features. Where do we begin?

Demonstrates how to obtain Let’s Encrypt TLS certificates for Kubernetes Ingress automatically using Cert-Manager.

Customizable Lambda functions to proactively notify you when you are about to hit an AWS service limit. Requires Enterprise or Business level support to access Support API. - awslabs/aws-limit-monitor

We are pleased to announce the alpha release of HashiCorp Terraform Operator for Kubernetes. The new Operator lets you define and create infrastructure as code natively in Kubernetes by making calls to Terraform Cloud.

HashiCorp is seeking Ambassador nominations to recognize community members for their efforts in sharing knowledge around HashiCorp tools. Nominations open now through April 5….

A Kubernetes controller and tool for one-way encrypted Secrets - bitnami-labs/sealed-secrets

Empower IT teams with autonomy and operational flexibility while maintaining corporate governance with the Scalr Cloud Management Platform.

HashiCorp delivers consistent workflows to provision, secure, connect, and run any infrastructure for any application.