Newsletter of Carlos Santana — Issue #14

Hello good friend. Remember, you are not alone; you need at least someone to believe in you. I believe you got this!

News

SRE Conference at IBM — www.ibm.com
Our first SREconference@IBM will be a virtual event spanning two days with the aim of nurturing, enabling and showcasing the growing SRE practice within IBM. We will be gathering together as technical professionals who care deeply about reliability, engineering and working on complex distributed systems at scale. Our primary audience is the SRE practitioner, the engineer performing the SRE role, and their leadership support.

What’s new in the Red Hat OpenShift 4.9 console | Red Hat Developer — developers.redhat.com
Discover new features improving general usability and the developer console experience for Knative, Tekton, and GitOps development on OpenShift.

GraalVM 21.3 is here: Java 17, Native Image performance updates and more 🚀 | by Alina Yurenko | graalvm | Oct, 2021 | Medium — medium.com
Today we are releasing GraalVM 21.3! It brings a lot of great features that have been long anticipated by the community, and in this blog post we’ll talk about some of the most interesting and…

SREcon21 — When Linux Memory Accounting Goes Wrong — www.youtube.com
When Linux Memory Accounting Goes WrongMinhaj Ahammed, LinkedInThis talk is about debugging an issue where the hosts ran out of memory and went inaccessible …

Google Cloud Managed Service for Prometheus | Operations Suite — cloud.google.com
This product or feature is covered by the Pre-GA Offerings Terms of the Google Cloud Terms of Service. Pre-GA products and features might have limited support, and changes to pre-GA products and features might not be compatible with other pre-GA versions. For more information, see the launch stage descriptions.

Introducing Google Distributed Cloud — in your data center, at the edge, and in the cloud — cloud.google.com
Google Distributed Cloud runs Anthos on dedicated hardware at the edge or hosted in your data center, enabling a new class of low-latency and/or regulated workloads.

CVE-2021–25742: Ingress-nginx custom snippets allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces · Issue #7837 · kubernetes/ingress-nginx · GitHub — github.com
Issue Details A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster. This issue has been rated High (CVSS:3.1/AV:N…

Announcing Language Support for Java by Red Hat 1.0 for Visual Studio Code — www.redhat.com
Red Hat is excited to announce that today we are shipping the 1.0 release of Language Support for Java by Red Hat on Visual Studio Code. The 1.0 release includes support for Java 17, type hierarchy and a number of performance improvements.

Introducing Node.js 17 — www.redhat.com
Learn more about the latest release of Node.js in this post by Red Hat’s Michael Dawson.

KubeCon NA 2021 Key Takeaways: DevX, Security, and Community | by Daniel Bryant | Oct, 2021 | Ambassador Labs — blog.getambassador.io
It’s that time of year again when we get to reflect on another awesome KubeCon NA. Although I couldn’t attend the event in person this year, several (US-based) members of the Ambassador Labs team…

Infrastructure in Your Software Packages · Daniel Mangum — danielmangum.com
Daniel Mangum’s personal website

Diablo II: Resurrected Outages: An explanation, how we’ve been working on it, and how we’re moving forward — General Discussion — Diablo 2 Resurrected Forums — us.forums.blizzard.com
Hello, everyone. Since the launch of Diablo II: Resurrected, we have been experiencing multiple server issues, and we wanted to provide some transparency around what is causing these issues and the steps we have taken s…

Assets

GitHub — walidshaari/Certified-Kubernetes-Security-Specialist: Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 — github.com
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 “Kubernetes Certified Security Specialist” Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you. — GitHub — walidshaari/Certified-Kubernetes-Security-Specialist: Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 “Kubernetes Certified Security Specialist” Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.

GitHub — ossf/scorecard: Security Scorecards — Security health metrics for Open Source — github.com
Security Scorecards — Security health metrics for Open Source — GitHub — ossf/scorecard: Security Scorecards — Security health metrics for Open Source

GitHub — ddosify/ddosify: High-performance load testing tool, written in Golang. — github.com
High-performance load testing tool, written in Golang. — GitHub — ddosify/ddosify: High-performance load testing tool, written in Golang.

GitHub — xntrik/hcltm: Documenting your Threat Models with HCL — github.com
Documenting your Threat Models with HCL. Contribute to xntrik/hcltm development by creating an account on GitHub.

GitHub — praetorian-inc/snowcat: a tool to audit the istio service mesh — github.com
a tool to audit the istio service mesh. Contribute to praetorian-inc/snowcat development by creating an account on GitHub.

Skills

Incident Review and Postmortem Best Practices — by Gergely Orosz — The Pragmatic Engineer — newsletter.pragmaticengineer.com
A survey of how companies deal with incidents today, and a peek into the best practices of the future.