TLDR DevOps 2024-02-09

Go 1.22 🦫, Github Engineering Fundamentals πŸ—, Shellcode Evasion πŸƒ

πŸ“±
News & Trends

Go 1.22 is released! (1 minute read)

Go 1.22 introduces significant improvements such as resolving the long-standing "for" loop variable sharing issue, support for ranging over integers, memory optimizations in the Go runtime leading to improved CPU performance, and additions to the standard library.

See 2-10x Faster File Operation Speeds with Synchronized File Shares in Docker Desktop (3 minute read)

Docker Desktop has integrated Mutagen's file-sharing technology, offering synchronized file shares to developers for faster and more flexible host-to-VM file sharing and significantly improving performance for extensive codebases. Synchronized file shares optimize developer workflows by reducing latency and system calls while maintaining granular control and compatibility with existing workflows.
πŸš€
Opinions & Tutorials

Securing Credentials for GitOps Deployments with AWS Secrets Manager and Codefresh (6 minute read)

This tutorial explores the challenges of integrating GitOps practices with traditional secret management systems in Kubernetes environments, highlighting the need to unify these approaches for secure deployments. It provides an overview of leveraging the Argo CD Vault Plugin to inject secrets from AWS Secrets Manager into Codefresh/Argo CD applications, outlining steps to install the plugin, define secrets in AWS Secrets Manager, and configure Kubernetes applications for secure deployment with Argo CD.

Data migration using AWS DMS with Terraform IAC (9 minute read)

This whitepaper talks about why it's important to use automated tools to move data from one place to another. It explains how tools like AWS, DMS, and Terraform work and gives easy-to-follow instructions on how to set them up to move data automatically. The whitepaper aims to help companies move their data to the AWS Cloud without any issues by showing them the best techniques, testing methods, and real-life examples.

Open Telemetry and Lambda (4 minute read)

This author discusses the integration of Open Telemetry with Lambda functions, highlighting the trade-offs and challenges involved, particularly regarding observability, telemetry shipping methods, and language compatibility. Ultimately, they advocate for careful consideration of requirements, measuring telemetry impact on client performance.

CloudFront Blue/Green Deployment Using GitLab Where Origin Is ALB+EKS Service (10 minute read)

This tutorial guides users through the process of implementing a CloudFront Blue/Green deployment using GitLab with an ALB+EKS service as the origin. It covers essential prerequisites such as OIDC connectivity between GitLab and AWS, EC2 instance setup, EKS cluster creation, AWS CLI upgrade, installation of ALB and metrics server, and the creation of target groups. The tutorial also includes steps for Helm chart creation, Docker image building and pushing, Helm release deployment, and the establishment of a CloudFront Blue/Green environment.
🎁
Miscellaneous

No Dirty Reads: Everything you always wanted to know about SQL isolation levels (6 minute read)

Transaction isolation levels (e.g., READ UNCOMMITTED, READ COMMITTED, REPEATABLE READ, and SERIALIZABLE) are used to manage data integrity in databases. They balance concurrency and consistency differently, impacting performance and accuracy. Choosing the right level depends on factors like data integrity and performance needs.

Shellcode evasion using WebAssembly and Rust (9 minute read)

This article explores shellcode evasion techniques using WebAssembly and Rust, leveraging the capabilities of Metasploit's Meterpreter payload by incorporating a minimally modified Rust loader to avoid antivirus detection and ultimately employing WebAssembly to embed and execute the shellcode with reduced detection risk.
⚑️
Quick Links

Simple Precision Time Protocol at Meta (7 minute read)

Meta's Simple Precision Time Protocol (SPTP), a streamlined version of PTP, offers reliable clock synchronization with fewer resources. SPTP reduces network communication and complexity, providing a simpler, faster, and more efficient alternative for data center deployments. Source code is available on GitHub.

GitHub’s Engineering Fundamentals program: How we deliver on availability, security, and accessibility (5 minute read)

GitHub's Fundamentals program ensures that 100+ million users have seamless access. It focuses on Accessibility, Security, and Availability (A11Y) through automated Fundamental Scorecards. Designated champions enforce standards, ensuring reliability and continuous improvement.
Get our free daily newsletter with curated tools πŸ’», trends πŸ“ˆ, and insights πŸ’‘, for DevOps Engineers πŸ‘¨β€πŸ’»
Join 200,000 readers for