TLDR DevOps 2024-09-25

Are you confident that this can never happen to you?

Take LaunchDarkly's Software Release Risk Assessment to find out what can go wrong in your upcoming feature releases — and what you need to do to fix it.

The risk assessment is easy, free, and takes just 2 minutes to complete. Answer 8 quick questions to get your risk score.

📱

News & Trends

Enterprise Support for Argo and Priority Fixes from Argo Maintainers Now Available as a Service to All Argo Users (2 minute read)

Codefresh is extending its enterprise-level support for Argo to all users, even those not using its GitOps solution. This service includes 24/7 global support, access to Argo experts, and priority bug fixes to help users optimize and scale their Argo implementations.

Start auditing and controlling the AI models accessing your content (9 minute read)

The rise of AI-driven crawlers, like those used to train language models, has created a gray area between good and bad bots, as they scan public content but don't drive traffic to websites. To address this challenge, Cloudflare now offers tools to help site owners control AI crawling and ensure a fair exchange of value for their content.

AWS CloudFormation Git sync now supports pull request workflows to review your stack changes (1 minute read)

AWS CloudFormation now supports Git sync, allowing you to review and approve stack changes via Pull Request (PR) comments before deployment. This feature automatically posts change set details to PRs, helping prevent unwanted changes and ensuring smoother deployment by merging approved changes.

🚀

Interpreting Terraform Plan Outputs with the Help of an LLM (7 minute read)

LLMs can be used to translate complex Terraform plan outputs into human-readable summaries, making technical infrastructure changes easier to understand. Users can create scripts that summarize Terraform plans by using tools like Ollama and Langchain.

Hacking misconfigured AWS S3 buckets: A complete guide (9 minute read)

This article discusses common security misconfigurations in AWS S3 buckets, including issues with permissions and access controls that can lead to data leaks and other risks. It also provides guidance on how to identify and test these misconfigurations, along with recommended automated tools for vulnerability assessment.

🧑‍💻

Free OWASP Top 10 API Training Programs (Sponsor)

October is cybersecurity awareness month — and Security Journey is offering free training programs for developers who work with APIs, covering the OWASP Top 10 API Security Risks. This expertly-crafted, 12-lesson learning path is perfect for individual developers or teams. Get free access or learn more about training developers to write secure code.

Quarkdown (GitHub Repo)

Quarkdown is a versatile Markdown parser and renderer that enhances traditional Markdown capabilities. It supports functions, extensive syntax extensions, and scripting, enabling complex and dynamic content creation.

kestra (GitHub Repo)

Kestra is a universal open-source orchestrator that simplifies both scheduled and event-driven workflows, bringing Infrastructure as Code best practices to data, process, and microservice orchestration for reliable and manageable workflows.

🎁

Miscellaneous

How Discord Reduced Websocket Traffic by 40% (12 minute read)

Discord significantly improved app performance and reduced client bandwidth usage across iOS, Android, and desktop by implementing the zstandard compression algorithm with streaming support, achieving nearly a 40% decrease in gateway bandwidth, enhanced further by innovative optimizations like Passive Sessions v2.

Pinterest Tiered Storage for Apache Kafka®️: A Broker-Decoupled Approach (20 minute read)

Pinterest's Logging Platform team unveils how their open-sourced, broker-decoupled Tiered Storage for Apache Kafka®️ significantly reduces storage costs and enhances resource utilization by offloading data to cheaper remote storage solutions like Amazon S3®️, all while maintaining flexibility and ease of adoption.

⚡

Rental Car Vendor's Security Flaw Exposed Damage Claims Reports (3 minute read)

A forensic dive into a suspicious email from Hertz revealed a series of alarming security lapses, culminating in the exposure of a severe access control vulnerability - the issue was swiftly rectified following its discovery.

Kubernetes Traffic Management: Combining Gateway API with Service Mesh for North-South and East-West Use Cases (5 minute read)

In cloud-native environments, leveraging Kubernetes' Gateway API and Istio Service Mesh provides robust solutions for managing both external (north-south) and internal (east-west) traffic, enabling secure and scalable application deployments.

Grafana OpenTelemetry distributions: prioritizing simplicity, sticking to OSS values (4 minute read)

Grafana Labs has announced the general availability of its OpenTelemetry distributions for Java and .NET, simplifying observability with a focus on ease of use, cost-efficiency, and open source values.

Love TLDR? Tell your friends and get rewards!

Share your referral link below with friends to get free TLDR swag!

Want to advertise in TLDR? 📰

If your company is interested in reaching an audience of devops professionals and decision makers, you may want to advertise with us.

If you have any comments or feedback, just respond to this email!

Thanks for reading,
Kunal Desai & Martin Hauskrecht