Tag: continuous

Posted on by dbdb Posted in all No Comments ↓

Tomorrow (Tues 27, 2018) we’re going to have the next meetup to talk Continuous Integration. Got a burning desire to rant about the flakiness of an infinite number of shell scripts bundled into a container and shipped to a remote agent …

Next Chautauqua: Continuous Integration! Read More »

Tagged with: , , , , , ,

Posted on by dbdb Posted in all 4 Comments ↓

So one of the upstream projects I am working on has added some new tests. Should be a good thing, right? Suddenly, out of nowhere, we start getting ‘terminated 137’ on CI stages. The obscure unix math is… substract 128 …

CI’s Gone Wild: Totally Tenacious Test Tuning Read More »

Tagged with: , , , , ,

Posted on by dbdb Posted in all No Comments ↓

So you are pretty proud of yourself. You have a full micro-services running in Kubernetes with a service mesh (courtesy of Istio). You have configured your liveness probes to once per second. You are using an EFK stack (Elasticsearch / …

Laughably Loquacious Logging Read More »

Tagged with: , , , , ,

Posted on by dbdb Posted in all No Comments ↓

So earlier today I counselled to run your container filesystem read-only. Its higher security (something can’t weasel in as easily) You want to be able to dynamically dispose and restart containers somewhere else, how can you do this if they …

The agony and the ecstasy of the read-only Read More »

Tagged with: , , , ,

Posted on by dbdb Posted in all No Comments ↓

You’d be shocked at how few people copy these few lines into their YAML in Kubernetes. Highly recommend you do this. Why? Well, lets walk through them. runAsNonRoot: self explanatory. Why would you want root permission inside this container? What …

Have you set your security context recently? Read More »

Tagged with: , , , ,