ContentPosts from @dipnesh..
Link
@faun shared a link, 2 months ago

Hunting Living Secrets: Secret Validity Checks Arrive in GitHub Advanced Security for Azure DevOps

GitHub Advanced Security for Azure DevOps just got sharper: it now checks if leaked secrets are actuallyvalid. Secrets are flagged asActiveorUnknownby pinging providers in real time. No setup needed. It auto-kicks in for supported secret types. Why care?Because not every secret leak is an emergenc..

Hunting Living Secrets: Secret Validity Checks Arrive in GitHub Advanced Security for Azure DevOps
Link
@faun shared a link, 2 months ago

Migrating Airbnb’s JVM Monorepo to Bazel

Airbnb yanked tens of millions of lines of Java, Kotlin, and Scala out of Gradle and dropped them intoBazel. Why? Faster builds, reproducible results, and smoother dev workflows. They didn’t just swap tools—they rewired the whole thing. A customautomated build file generatornow slices up targets fi..

Migrating Airbnb’s JVM Monorepo to Bazel
Link
@faun shared a link, 2 months ago

Can LLMs replace on call SREs today?

ClickHouse ran five LLMs through an autonomous root cause gauntlet using OpenTelemetry data. None nailed it solo. OpenAI’s o3 and Claude Sonnet 4 came closest. GPT-4.1 was the cheapest brain on the block. Things got weird under the hood. Token usage spiked unpredictably. Queries slammed observabili..

Can LLMs replace on call SREs today?
Link
@faun shared a link, 2 months ago

Dynamo, DynamoDB, and Aurora DSQL

Marc Brooker breaks down the jump fromAmazon DynamotoDynamoDBandAurora DSQL, tracing how the guts of cloud databases have changed. It’s a story about dropping old trade-offs and picking up stronger guarantees. DynamoDB ditches the old hash-ring replication for multi-AZ replica sets backed by Paxos...

Link
@faun shared a link, 2 months ago

Kubernetes v1.34 Sneak Peek: A Game-Changer for the Kubernetes Expert’s Lifecycle

Kubernetes v1.34 lands August 2025 with a clear agenda: smarter scheduling, tighter control, fewer surprises. Dynamic Resource Allocationgoes stable, letting clusters actually reason about GPUs, FPGAs, and NICs. AI/ML and HPC jobs stop guessing and start requesting what they need. ServiceAccount t..

Link
@faun shared a link, 2 months ago

How to Deploy a Kubernetes App on AWS EKS

AWS EKS takes the grunt work out of running Kubernetes. It handles the control plane, automates upgrades, hooks into IAM and VPC, and scales without breaking a sweat. Witheksctlandkubectl, devs can launch clusters fast, drop in their YAML, and wire up services through built-in load balancers...

How to Deploy a Kubernetes App on AWS EKS
Link
@faun shared a link, 2 months ago

Kubernetes Learning Roadmap

The Kubernetes Learning Roadmap covers key concepts such as understanding Kubernetes use cases, installing Kubernetes locally, interacting with Kubernetes using YAML and kubectl, managing deployments and replica sets, and networking in Kubernetes. Additionally, it includes topics like managing envir..

Kubernetes Learning Roadmap
Link
@faun shared a link, 2 months ago

Critical Kubernetes Capsule Vulnerability Allows Arbitrary Namespace Label Injection

Capsule v0.10.3had a problem. Tenant users could sneak their own labels into system namespaces—an easy way to punch holes in Kubernetes multi-tenancy. v0.10.4shuts that down. It tightens namespace validation and clamps down on label injection...

Link
@faun shared a link, 2 months ago

How Imagine Learning Reduced Operational Overhead by 20% With Linkerd

Imagine Learning tore down its old platform and rebuilt it onLinkerdwithAWS EKS, layering inArgo CDandArgo Rollouts. The result? GitOps deploys, canary releases via the Gateway API, and mTLS baked in from the start. The payoff: Over80%cut in compute costs. 97%fewer service mesh CVEs. 20%drop in op..

How Imagine Learning Reduced Operational Overhead by 20% With Linkerd
Link
@faun shared a link, 2 months ago

Tuning Linux Swap for Kubernetes: A Deep Dive

Kubernetes v1.34makesNodeSwapofficial. For the first time, swap on Linux nodes is fully supported—breaking with the old norm of just turning it off. Why it matters: NodeSwap gives the kubelet a pressure valve. Instead of firing off OOM kills, it can push some memory to disk. But this isn’t a free w..

Tuning Linux Swap for Kubernetes: A Deep Dive