Email Details

Building OpenTofu Registry 🧱, Slack’s Chef Infrastructure🧑‍🍳, Cloudflare’s CDN Optimization ⚡

Cloudflare has introduced trie-hard, a new Rust-based data structure that significantly reduces CPU utilization in its high-traffic CDN infrastructure 

TLDR

Together With

TLDR DevOps 2024-09-20

Cloud Pricing Simplified: A Comprehensive Guide to Costs and Options (Sponsor)

Coming to grips with the different pricing options and costs available on public clouds can be infuriatingly difficult. Between reserved instances, spot instances, volume discounts, on-demand, and tier-based options, it's easy to get lost and end up overpaying.

This blog post is a handy summary of every single pricing model, details the pros and cons of each option, and highlights the simplest and most predictive solution for cloud infrastructure.

Read more on the Exoscale blog

📱

News & Trends

Artifact Hub becomes a CNCF incubating project (3 minute read)

The CNCF Technical Oversight Committee has voted to accept Artifact Hub, a web-based application for discovering, installing, and publishing cloud native packages, as a CNCF incubating project.
Gearset Acquires Clayton to Strengthen Salesforce DevOps Offering (2 minute read)

Gearset, a leader in Salesforce DevOps, has acquired Clayton, a code analysis platform that identifies and fixes vulnerabilities in Salesforce applications. This acquisition strengthens Gearset's DevOps suite, offering advanced tools to improve code quality and security for Salesforce teams.
🚀

Opinions & Tutorials

Securing Containerized Applications with SSH Tunneling (8 minute read)

As containerization becomes more common, ensuring secure communication through encrypted channels is essential. This article demonstrates how to set up SSH tunneling for secure data transmission between cloud-based containers and a remote SSH server.
GenOps: learning from the world of microservices and traditional DevOps (12 minute read)

This article addresses the need for a new operational model, "GenOps," to manage generative AI applications, highlighting how their requirements differ from traditional data science and DevOps practices. It emphasizes that generative AI's non-deterministic nature and complex integration needs demand unique operational strategies, such as centralized model management and security measures.
🧑‍💻

Resources & Tools

Arcjet: Native security for Bun, Next.js, Node.js, SvelteKit, Vercel, Netlify, Fly.io, and other modern platforms (Sponsor)

Arcjet helps developers protect their apps in code (no agent required). Implement bot protection, rate limiting, email validation, PII detection, and defense against common attacks; test everything locally so you don't break prod. Start free.
n8n (GitHub Repo)

n8n is a versatile, extendable workflow automation tool that uses a fair-code model, allowing for self-hosting, custom functions, and seamless integration with over 200 nodes to connect and automate various services.
Reader (GitHub Repo)

Reader streamlines web content for LLMs by converting URLs into LLM-friendly inputs and enabling advanced web searching, improving the functionality and output of AI systems.
kl (GitHub Repo)

kl is an interactive Kubernetes log viewer for the terminal.
🎁

Miscellaneous

Building the OpenTofu Registry (9 minute read)

A deep dive into the development and workings of the OpenTofu Registry and Search that explores the technical intricacies and challenges of building and maintaining the essential tool, which is now in beta.
Revisiting MiniFilter Abuse Techniques to Blind EDR (5 minute read)

Security researcher Eito Tamura explores the latest mitigations against the abuse of Windows MiniFilter Altitude to blind Endpoint Detection and Response (EDR) solutions, revealing vulnerabilities and demonstrating methods to bypass these defenses.
Advancing Our Chef Infrastructure (12 minute read)

In this blog post, Slack delves into its transition from a single Chef stack to a sharded Chef infrastructure, discussing challenges with node assignment, service discovery, inventory management, and cookbook versioning. It also introduces Chef Librarian, a new service designed to improve deployment efficiency and safety.

Quick Links

Pushing Pulumi ESC Secrets into External Platforms (5 minute read)

Explore how Pulumi's IaC-based approach offers a streamlined solution to managing secrets and configurations across multi-cloud environments by centralizing definitions and automating synchronization, effectively mitigating the risks of secret sprawl and manual errors.
A good day to trie-hard: saving compute 1% at a time (7 minute read)

Cloudflare has introduced "trie-hard," a new Rust-based data structure that significantly reduces CPU utilization in its high-traffic CDN infrastructure, improving performance by nearly 2.4x.

Love TLDR? Tell your friends and get rewards!

Share your referral link below with friends to get free TLDR swag!
https://refer.tldr.tech/57d4af95/10
Track your referrals here.

Want to advertise in TLDR? 📰

If your company is interested in reaching an audience of devops professionals and decision makers, you may want to advertise with us.

If you have any comments or feedback, just respond to this email!

Thanks for reading,
Kunal Desai & Martin Hauskrecht


If you don't want to receive future editions of TLDR DevOps, please unsubscribe from TLDR DevOps or manage all of your TLDR newsletter subscriptions.

© 2024 Email Dashboard. All rights reserved.