HackerTrans
TopNewTrendsCommentsPastAskShowJobs

stasge

no profile record

comments

stasge
·3 mesi fa·discuss
The problem is not Kubernetes but how it's treated. From its inception I've been seeing two anti-patterns: treating it as a platform (and being frustrated for Kubernetes not meeting expectations) and treating it as a product or part of a product (investing heavily into its customization and making it a dependency). Neither is practical unless you are building a platform and it is your product. Otherwise it should be viewed as an OS and treated as a commodity. You create a single big VM with MicroK8s per project (zero-ops vanilla Kubernetes) and make no dependency on how exactly Kubernetes is setup. This way you can run the same setup locally and in a data center. If ever needed your app could be moved to any cloud as long as that cloud meets basic prerequisites (like presence of persistent storage or load balancer). The best part is Kubernetes (unlike traditional OS) is API driven and your apps could be nicely packaged and managed using Terraform/OpenTofu or similar tooling.
stasge
·7 mesi fa·discuss
My commute to work is quite long but there is no "sitting" in Tokyo's trains in mornings/evenings so I program on a smartphone. Yes, it's not impossible but it takes time to get used to it.
stasge
·11 mesi fa·discuss
There is a low hanging fruit in making GitHub Actions more secure (anyone from GitHub here?):

  - Forbid (or at least warn about) shell interpolation in composite actions and guide to using environment variables instead
  - Warn unless all external actions are pinned by git commit (with customizable exceptions)
  - Warn unless all used docker images are pinned by digests
stasge
·anno scorso·discuss
Time for a new term "Synthocial Engineering"?
stasge
·anno scorso·discuss
While I agree that GitHub Actions could be more "secure and safe" by default most gaps are easy enough to fill. With https://github.com/marketplace/actions/check-actions you can ensure timeouts, permissions and version pinning. With https://registry.terraform.io/modules/giner/repo/github you can manage all repos together with workflows.
stasge
·2 anni fa·discuss
Unfortunately Mozilla has greatly contributed to this. At the time when Firefox had a good user share Mozilla instead of promoting RSS has decided to remove RSS/Atom feed icon from the address bar because of their telemetry showing rare usage. While it is still possible to install the icon as well as live bookmarks as add-on to do that one needs to know of their existence.