🔥Telegram İfşa

It’s unfortunate that the old stance of “don’t run DBs on K8s” is still so widespread. This is at least 2 years old.

13 months ago I said to myself I never wanted to work for a German company again. Now I’m running one. Situational awareness and bias to action led me there.

Help! I built a monster.

The annoying thing when committing secrets to git with SOPS is code review. Reviewers will have to check out the commit, decrypt it, then check out the previous version, decrypt that, then base64 decode the payloads, then compare. 🥵

Flux v2.5 is out 🎉 This release is jam-packed with new features! We have integrated CEL to enable custom health checks, added support for GitHub App auth, ephemeral environment for Pull Requests & Merge Request and so much more. fluxcd.io/blog/2025/02/f…

I've been running a Kubernetes cluster made of Raspberry Pis (4Bs) for 4.5 years now in my basement without any interruption, not a single hardware failure, no service downtime. Ask me anything.

While Azure workload identities are kind of complex to set up at first, I don't ever want to go back to maintaining API access tokens myself (expired tokens, I'm looking at you!). It's more convenient, more secure and more transparent.

The greatest benefit of using AI code assistants is that they force me to express the functionality, invariants and non-functional requirements of the code to a level I've not done a lot before. You are basically writing your architecture documentation in the prompts.

Last year’s massive worldwide IT outages caused by CrowdStrike didn’t hurt CrowdStrike’s revenue and reputation among customers AT ALL. Revenue grew 25% y/y in the last quarter. Their stock price reached an all-time high this year. No one has learned anything from the incident.

TIL that you must run `optimize table` every now and then for MySQL to free up disk space used by InnoDB tables. Today we stumbled upon a 13 GiB table file on a production system for a table that had 0 (zero) rows. 🤯

Abu's and my Kubecon_ talk about the Life (and Death) of an API Request in kube-apiserver is up! Enjoy! youtube.com/watch?v=Hc0jj-…

I set up the build process for one of our software projects the other day, which included SLSA Level 3 attestations and Windows binary signing with Azure Trusted Signing. Building software artifacts used to be a simple 10-line Makefile...

The whole point of Open Source is definitely not the community, as exemplified by many single-vendor or near-single-vendor OSS projects. You can do successful OSS without a huge contributor community.

This was one of the longest, most interesting conversations I've ever had with another human in my life. Lots of great podcasts go deep, but Lex Fridman takes you to the bottom of the Mariana trench!

A feature I desperately need: Make a single Cmd+Tab invocation switch to the window that I'm looking at (I have a dual monitor setup). Switching windows is taking up too much of my daily time.

What's the most important thing for you before you leave the house for vacation? For me it's rebooting my homelab K8s cluster worker nodes. Rpis have a tendency to freeze from time to time and rebooting seems to anticipate that. 🤷🏻‍♂️

The cert-manager Helm charts are now officially published as OCI images as documented here: cert-manager.io/docs/installat…. OCI all the things! Great work Ash!

Someone is running an actual container registry at ghrc.io (not ghcr.io!) which might be used to steal credentials. Stay safe out there!