Claim Ownership

Author:

Subscribed: 0Played: 0
Share

Description

 Episodes
Reverse
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00] Intro[00:01:13] Red Hat open sources StackRoxhttps://techcrunch.com/2022/05/17/red-hat-open-sources-stackrox-the-kubernetes-security-platform-it-acquired-last-year/[00:01:52] Easily Manage Access to Kuberneteshttps://github.com/infrahq/infra[00:03:40] Heroku CI and Review App Secrets Compromised (Dejavu?)https://news.ycombinator.com/item?id=31417993[00:04:56] AWS Control Tower can now use customer provided core accountshttps://aws.amazon.com/about-aws/whats-new/2022/05/aws-control-tower-now-use-customer-provided-core-accounts/[00:07:41] AWS SSO delegated administration to a member accounthttps://aws.amazon.com/blogs/security/getting-started-with-aws-sso-delegated-administration/[00:10:21] Yet Another Kubernetes Controller for Terraform (weaveworks, rancher, et al)https://www.appvia.io/blog/self-service-of-cloud-resourceshttps://github.com/weaveworks/tf-controllerhttps://github.com/rancher/terraform-controller[00:12:20] Terraform provider for Atlas Database Migrations https://atlasgo.io/blog/2022/05/04/announcing-terraform-providerx[00:15:56] What does cloudposse use for ingress controller?[00:24:41] I’m curious what kinds of patterns cloudposse has seen work for “On demand” environments, for microservices? [00:38:10] atmos.tools launched![00:39:33] Using Terraform to create a DB from scratch - how are we supposed to manage the DB passwords? [00:44:02] How would you set up IAM policies if starting from scratch? [00:46:42] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00] Intro[00:01:27] VSCode edit any GitHub Repositoryhttps://github.dev/cloudposse/geodesic[00:06:19] GitHub Actions: Enhance your actions with job summarieshttps://github.blog/changelog/2022-05-09-github-actions-enhance-your-actions-with-job-summaries[00:07:25] Validate Stack Configurations in Atmoshttps://github.com/cloudposse/atmos/releases/tag/v1.4.13[00:08:33] Another Terraform Tool for Refactoringhttps://github.com/craftvscruft/tfrefactor[00:11:45] AWS Secrets Manager Publishes Usage Metrics to Amazon CloudWatchhttps://aws.amazon.com/about-aws/whats-new/2022/05/aws-secrets-manager-publishes-usage-metrics-to-amazon-cloudwatch/[00:12:21] Announcing the HashiCorp Releases APIhttps://www.hashicorp.com/blog/announcing-the-hashicorp-releases-api[00:14:17] PR Feedback: Overhaul for IPv6 and flexibility https://github.com/cloudposse/terraform-aws-dynamic-subnets/pull/159[00:17:50] Join discussions: VPC Endpoints and Transit Gateway[00:25:55] DevOps Days - Ukraine Edition[00:27:11] OtterTune scored big round of funding https://techcrunch.com/2022/05/10/2309852/[00:28:55] CloudFlare SQL database announced[00:34:00] Pulumi YAML - Would love to discuss this with anybody who has had the chance to kick the tires. [00:48:21] What API Gateways are you guys using for your Kubernetes clusters?[00:58:50] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00] Intro[00:01:17] Atmos Adds Vendoring - pull terraform root modules (or anything) from anywherehttps://github.com/cloudposse/atmos/pull/145[00:07:30] Terraform 1.2 (RC1 just dropped) — adds pre/post conditions, bearer tokenshttps://github.com/hashicorp/terraform/releases/tag/v1.2.0-rc1[00:14:28] Amazon EKS web console adds Kubernetes Resource Viewhttps://aws.amazon.com/blogs/containers/introducing-kubernetes-resource-view-in-amazon-eks-console/[00:18:34] Werf: Consistent delivery toolhttps://werf.io/[00:26:32] Easy-to-follow set of instructions for a strategy that minimizes the cost of NAT gateways in ec2.[00:36:00] How many of you don't commit .terraform.lock.hcl to source control?[00:44:25] Explain to me how crossplane works? [00:53:35] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00] Intro[00:01:29] Git.io shutting down 2022-04-29 (GitHub provides 4 days notice!!!)https://github.blog/changelog/2022-04-25-git-io-deprecation/[00:02:53] Cloud Posse build-harness: update links to cloudposse.tools/build-harnesshttps://github.com/cloudposse/build-harness/issues/314[00:04:34] Google donates the Istio service mesh to the CNCFhttps://techcrunch.com/2022/04/25/google-donates-the-istio-service-mesh-to-the-cloud-native-computing-foundation/[00:05:05] AWS's Log4j patches blew holes in its own securityhttps://www.theregister.com/AMP/2022/04/20/aws_log4j_patches/[00:05:42] Fairwinds Helmfile Alternative: declaratively manage multiple Helm chart releaseshttps://github.com/FairwindsOps/reckoner[00:06:48] [2018] Kubernetes Edge Computing at Chick-fil-Ahttps://medium.com/@cfatechblog/edge-computing-at-chick-fil-a-7d67242675e2[00:08:17] Finally, a terraform-registry-proxy for “airgapped” environmentshttps://github.com/jasonwbarnett/terraform-registry-proxy[00:22:00] Aurora Serverless v1 is GA[00:23:26] Use IAM to control access to a resource based on the account, OU or organization that contains the resourcehttps://aws.amazon.com/about-aws/whats-new/2022/04/iam-access-resource-organization/[00:24:36] Karpenter workload consolidation/defragmentationhttps://github.com/aws/karpenter/issues/1091[00:29:37] How have folks automated AWS IAM Access Key + Secret Key rotation policies [00:34:23] Opinions and thoughts on K8s ingress controllers for high volume deployments. [00:42:25] What advice do you have for how to communicate expectations when people decide to use something brand new that is still super beta/rough, are having problems, and are annoyed that things aren't working?[00:52:30] Are you doomed without a tool like Spacelift? [01:00:23] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00] Intro[00:01:22] Terraform Experiment Update: Optional arguments in object variable type definitionhttps://github.com/hashicorp/terraform/issues/19898#issuecomment-1101853833[00:02:22] GitHub Says Hackers Breached Dozens of Organizations Using Stolen OAuth Access Tokens (from Heroku & TravisCI)https://thehackernews.com/2022/04/github-says-hackers-breach-dozens-of.html[00:05:53] Terraform Data Source for AWS Pricing Datahttps://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/pricing_product[00:06:26] How to Make 100K/year on GitHub Sponsorshttps://calebporzio.com/i-just-hit-dollar-100000yr-on-github-sponsors-heres-how-i-did-it[00:13:20] AWS Security Hub adds cross-Region security scores and compliance statuseshttps://aws.amazon.com/about-aws/whats-new/2022/04/aws-security-hub-cross-region-security-scores-compliance-statuses/[00:15:58] FYI, AWS Single Sign-On is now HIPAA eligiblehttps://aws.amazon.com/about-aws/whats-new/2022/04/aws-single-sign-on-hipaa-eligible/[00:17:00] AWS Shield adds automatic application-layer DDoS mitigation for ALBs with WAFhttps://aws.amazon.com/about-aws/whats-new/2022/04/aws-shield-application-balancer-automatic-ddos-mitigation/[00:23:01] Terraform + GitHub Actions & OIDC (via weekly.tf)https://blog.symops.com/2022/04/14/terraform-pipeline-with-github-actions-and-github-oidc-for-aws/[00:24:03] Hierarchical YAML Configurations in Terraformhttps://github.com/lyraproj/hiera[00:28:08] Rare Leakage of an S3 Stack Trace[00:30:21] Cloud Posse “Activation Days”? Who is interested….[00:32:27] What kind of a git repo structure do you recommend if I want to separate my terraform modules in repository?[00:39:48] Are there any examples on the use of helmfile that showcase how one might use it in a "bigger" situation?[00:54:53] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00] Intro[00:01:31] AWS Lambda Functions now support HTTPS Endpoints (e.g. Single-Function Microservices)https://aws.amazon.com/blogs/aws/announcing-aws-lambda-function-urls-built-in-https-endpoints-for-single-function-microservices/[00:12:04] AWS Provider version 4.0 Chaos. AWS Terraform Provider v4.9.0 was just released. https://github.com/hashicorp/terraform-provider-aws/issues/23106https://github.com/hashicorp/terraform-provider-aws/blob/v4.9.0/CHANGELOG.md[00:16:54] AWS Announces Data Transfer Price Reduction for AWS PrivateLink, AWS Transit Gateway, and AWS Client VPN serviceshttps://aws.amazon.com/about-aws/whats-new/2022/04/aws-data-transfer-price-reduction-privatelink-transit-gateway-client-vpn-services/[00:18:08] GitHub Now Supports Organizational Profile Pageshttps://github.com/github[00:21:32] “Case Study” on the Longest (Atlassian) Outage of All Time! 2+ weeks OMG, 400+ customershttps://newsletter.pragmaticengineer.com/p/scoop-atlassian[00:35:10] Azure Terrafy and AzAPI are Microsoft’s alternative to “Terraformer” (by google)https://techcommunity.microsoft.com/t5/azure-tools-blog/announcing-azure-terrafy-and-azapi-terraform-provider-previews/ba-p/3270937https://github.com/GoogleCloudPlatform/terraformer[00:36:13] Scaling containers on AWS in 2022https://www.vladionescu.me/posts/scaling-containers-on-aws-in-2022/[00:51:17] Pros and cons of using the latest EKS AMIs or managing roll-out of new AMI releases manually? [00:57:10] How have folks automated AWS IAM Access Key + Secret Key rotation policies[00:57:54] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00] Intro[00:01:26] Cloud Posse Preparing to Update all modules to 1.x (graduating from 0.x)https://cloudposse.slack.com/archives/CB6GHNLG0/p1649231089390479[00:06:17] Helmfile has officially forked! Update your stars and sponsorship.https://github.com/roboll/helmfile/issues/1824?utm_source=hs_email&utm_medium=email&_hsenc=p2ANqtz-_Ya_HA-FCHjBeCSpFTnNuwrucqZCB9CT_s9Wd4rXoUPQELxMPnJJeiFVGwG5kC-9Rg2VeW#issuecomment-1086760859https://github.com/sponsors/mumoshu[00:09:26] Cloud cost estimates for Terraform in pull requests https://github.com/infracost/infracost[00:15:15] Monocle: How Chime creates a proactive security & engineering culture https://medium.com/life-at-chime/monocle-how-chime-creates-a-proactive-security-engineering-culture-part-1-dedd3846127f[00:21:49] GitHub can now auto-block commits containing API keys, auth tokenshttps://www.bleepingcomputer.com/news/security/github-can-now-auto-block-commits-containing-api-keys-auth-tokens/amp/[00:26:43] Google now requires two staff to sign off each Go changehttps://www.theregister.com/2022/04/05/google_go_double_sign_off/[00:28:39] GitHub Actions: Job management hooks for self-hosted runnershttps://github.blog/changelog/2022-04-04-github-actions-job-management-hooks-for-self-hosted-runners/[00:30:00] Amazon RDS Proxy finally supports PostgreSQL 13https://aws.amazon.com/about-aws/whats-new/2022/04/amazon-rds-proxy-supports-postgresql-major-version-13/[00:30:45] EKS add-ons support for EBS CSI driver is now generally availablehttps://aws.amazon.com/about-aws/whats-new/2022/03/eks-add-ons-ebs-csi-driver-available/[00:37:09] How to use Open Source modules in locked down enterprise environments?[00:42:44] Tips for dealing with Slack Spammers?[00:53:00] Terraform Operator vs Terraform Controllerhttps://github.com/isaaguilar/terraform-operatorhttps://github.com/weaveworks/tf-controller[01:01:49] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/#officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:41] Leapp release v0.10.0https://www.leapp.cloud/releases[00:03:43​] HCP Packer is now GA with a Standard tier that is free if you’re tracking up to 10 images.https://view.hashicorp.com/ODQ1LVpMRi0xOTEAAAGDMbACTGzhFoBRGgqpUUHjAH9kvJzh5Mj3m0luVaWNK3XTKSEkdRBvD9ycqhYcY_n08GeWotI=[00:07:28] Take the Cloud Posse Quizhttps://cloudposse.com/quiz[00:07:48] Stackoverflow Jobs Shutting Downhttps://meta.stackoverflow.com/questions/415293/sunsetting-jobs-developer-story[00:16:05​] Sunshine Protection Act to make Daylight Saving Time permanenthttps://www.cnet.com/culture/senate-unanimously-passes-bill-to-make-daylight-saving-time-permanent/[00:24:08​] Rad use of droneshttps://twitter.com/dennishegstad/status/1503202611062784002?s=21o[00:26:35​]For the folks using EKS how, do you avoid IP exhaustion? Any use case to avoid this?[00:38:27​] Whats everyone's experience installing/running https://goteleport.com/ on k8s? Any 1337 hax0rz to be aware of?[00:43:42​] Whats everyone’s experience with https://crossplane.io?[00:55:42] Terraform Cloud Posse 1.0 [00:58:03] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:20​] AWS & Google WAF bypassed via oversized POST requestshttps://portswigger.net/daily-swig/google-waf-bypassed-via-oversized-post-requests[00:02:18​] Amazon Web Services blocks new sign-ups from Russia and Belarushttps://www.nytimes.com/2022/03/08/technology/amazon-web-services-russia.html[00:02:58​] GitLab Critical Security Release: 14.8.2, 14.7.4, and 14.6.5https://about.gitlab.com/releases/2022/02/25/critical-security-release-gitlab-14-8-2-released/#unauthenticated-user-enumeration-on-graphql-api[00:03:26​] Sharing GitHub Actions within your enterprise is now GA - GitHub Changeloghttps://github.blog/changelog/2022-03-04-sharing-github-actions-within-your-enterprise-is-now-ga[00:04:50​] Take the Cloud Posse Quizhttps://cloudposse.com/quiz[00:05:40] It’s pretty common to render static pages for docs purposes directly from Github Action or Gitlab[00:12:10​] Is there a good argument for or against adding remote_state entries in a Terraform module[00:01:02​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:40​] Intro[00:02:04​] Amazon Drops “Elasticsearch” from Product Nameshttps://wptavern.com/amazon-drops-elasticsearch-from-product-names-to-settle-trademark-infringement-lawsuit-with-elastic[00:03:11] Sustainable architectures in a world of Agile, DevOps, and cloudhttps://stackoverflow.blog/2022/02/24/sustainable-architectures-in-a-world-of-agile-devops-and-cloud/[00:04:12​] Announcing the first iteration of the new unified AWS Health Dashboardhttps://aws.amazon.com/about-aws/whats-new/2022/02/aws-health-dashboard-first-iteration/[00:04:36​] Brand new UX/UI of Leapp, the local Desktop App that helps you in managing Aws credentialshttps://twitter.com/a_cava94/status/1496846237722632196[00:07:56] Keptn - Cloud-native application life-cycle orchestrationhttps://keptn.sh/[00:14:12​] AWS carbon footprint service - Well Architected Frameworkhttps://aws.amazon.com/architecture/well-architected/?wa-lens-whitepapers.sort-by=item.additionalFields.sortDate&wa-lens-whitepapers.sort-order=desc[00:15:12​] Take the Cloud Posse Quiz to find out if you’re a customer fithttps://cloudposse.com/quiz[00:16:11] If I am making a job for a gitlab pipeline in .gitlab-ci.yml with a script section[00:18:05​] I would like to restrict people in my team from being able to terraform apply|destroy  and most probably plan from their local machines[00:19:22​] Does anyone know about when aurora serverless v2 will go live?[00:23:20​] Attempting to use eksctl within gitlab pipelines. Currently i'm using the alpine/k8s image but im running into the follow error[00:24:50​] Trusted advisor supports an organizational view. Can you create such a report via the cli?[00:29:15​] aws-extend-switch-roles[00:45:00] goofys[00:58:53] https://jmespath.org/[00:59:45​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:24​] Announcing the general availability of AWS Backup for Amazon S3https://aws.amazon.com/about-aws/whats-new/2022/02/general-availability-aws-backup-amazon-s3/[00:03:21​] AWS Firewall Manager now supports versioning for AWS WAF managed rule grouphttps://aws.amazon.com/about-aws/whats-new/2022/02/aws-firewall-manager-waf-rule-group/[00:04:02​] AWS Launches Discourse Forum/Community for QuickSighthttps://community.amazonquicksight.com/t/troubleshoot-analysis-titles-and-subtitles-failed-to-load-narrative-editor/1776[00:05:20​] Introducing auto-adjusting budgetshttps://aws.amazon.com/about-aws/whats-new/2022/02/auto-adjusting-budgets/[00:06:31​] cloudposse/terraform-aws-s3-bucket adds AWS Provider v4 supporthttps://github.com/cloudposse/terraform-aws-s3-bucket/releases/tag/0.48.0[00:07:30​] GitHub Opens Advisory Database to contributionshttps://github.blog/2022-02-22-github-advisory-database-now-open-to-community-contributions/[00:09:20​] Other[00:10:19] Amazon EKS Release calendarhttps://docs.aws.amazon.com/eks/latest/userguide/kubernetes-versions.html#kubernetes-release-calendar[00:11:54] Waxing philosophical: DevOps sometimes feels like building sandcastles[00:17:49​] Why is it a best-practice from a compliance/ops standpoint to put all s3 buckets into their own AWS project?[00:24:57​] Is anyone using AWS SSM Session manager to enable devs to connect to a staging RDS instance, and NOT using ssh keys/connections managed through SSM?[00:34:23​] How do you build the observability model at the app level?[00:43:47​] I’m looking for examples to build a VPC without internet connection without losing connection to ECR, S3 and DynamoDB. Do you have any suggestions?[00:52:16] Terraform wirenodes  https://github.com/jbraswell/terraform-wireguard[00:55:52​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:30​] Terraform AWS Provider v4.0.0 released (with breaking changes)https://github.com/hashicorp/terraform-provider-aws/releases/tag/v4.0.0[00:05:47​]  Set up Tracing on GitHub Actions Workflows using Datadoghttps://docs.datadoghq.com/continuous_integration/setup_pipelines/github/#compatibility[00:07:32​] HTTP/3: Everything you need to know about the next-generation web protocolhttps://portswigger.net/daily-swig/http-3-everything-you-need-to-know-about-the-next-generation-web-protocol[00:09:23​] Include diagrams in your Markdown files with Mermaid (With example)https://github.blog/2022-02-14-include-diagrams-markdown-files-mermaid/https://github.com/mermaid-js/mermaid#flowchart-docs---live-editor[00:17:10​] Embed SVGs in GitHub Markdownhttps://github.blog/changelog/2022-01-21-allow-to-upload-svg-files-to-markdown/[00:18:38​] Amazon Elastic File System Update – Sub-Millisecond Read Latencyhttps://aws.amazon.com/blogs/aws/amazon-elastic-file-system-update-sub-millisecond-read-latency/[00:20:09​] 1Password for SSH & Git (Beta)https://developer.1password.com/docs/ssh/[00:22:08​] Observation: The rise of the specialized cloud[00:26:30] AWS WAF ruleset for credential stuffing[00:28:19​] Has anyone found a tool that can facilitate mass migration of data from one tier of Glacier to the other? [00:31:14​] What are people doing in the wild with respect to pinning for ACM generated certificates?[00:35:33​] What is the recommended way for EKS pods to CRUD on S3 buckets?[00:37:27​] Is there a way to basically do AWS IPAM, but just in TF?[00:43:07​] Has anyone had to deal with uploading and offloading child accounts. I had like over 50 accounts to create on New Relic and i had to manually add this accounts on the UI[00:46:37​] In your centralized logging system (ELK/Loki), How do you deal with a spike of logs that overwhelms your pipeline? [00:52:26​] Giving the infra deploy pipeline full admin in AWS vs fine-grained permissions that seem more secure but troublesome to manage[00:57:08​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:16​] Datadog adds Cloud Cost Management for AWS (private beta)https://docs.datadoghq.com/infrastructure/cloud_cost_management/[00:02:08​] Argo CD releases patch for zero-day vulnerability https://www.zdnet.com/article/argo-cd-releases-patch-for-0-day-vulnerability/[00:03:11​] Amazon S3 Batch Replication synchronizes existing data between bucketshttps://aws.amazon.com/about-aws/whats-new/2022/02/amazon-s3-batch-replication-synchronizes-existing-data-between-buckets/[00:07:29] SweetOps Slack Upgraded to Paid Team (Big Thanks to our Spacelift sponsors)[00:08:17​] Replicating existing objects between S3 buckets https://aws.amazon.com/blogs/storage/replicating-existing-objects-between-s3-buckets/ [00:09:35​] App runner gets VPC support https://aws.amazon.com/blogs/aws/new-for-app-runner-vpc-support/[00:14:00​] What pitfalls might I encounter I develop a feature by deploying live resources namespaced by my current git branch?[00:28:38​] Revisit: insights CDNs optimized to minimize http 2 response delays?[00:29:33​] is it possible to set cloudfront to cache an image only after it has responded to the client request? [00:34:36​] Is it possible to set 2 origins (both s3 buckets) as part of a cloudfront behavior? [00:41:09​] Tools to refactor Terraform [00:50:15​] Terraform Mixins[00:55:00​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:19​] GitHub is down![00:01:38] SweetOps Upgraded to Paid Team (Big Thanks to our Spacelift sponsors)https://slack.cloudposse.com[00:05:07​] German Court Rules Websites Embedding Google Fonts Violates GDPRhttps://thehackernews.com/2022/01/german-court-rules-websites-embedding.html[00:05:48​] Earthly Builds for CIhttps://github.com/earthly/earthly[00:09:46​] Amazon GuardDuty now protects Amazon Elastic Kubernetes Service clustershttps://aws.amazon.com/about-aws/whats-new/2022/01/amazon-guardduty-elastic-kubernetes-service-clusters/[00:13:37​] Finally! A pretty dashboard to keep track of the status of your GitHub Actionshttps://github.com/chriskinsman/github-action-dashboard[00:20:37​] GOV.UK PaaS (on github!) https://www.cloud.service.gov.ukhttps://github.com/alphagov/govuk-terraform-provisioning[00:30:08​] Create an Impressive GitHub Profile README https://www.sitepoint.com/github-profile-readme/[00:32:39​] What tools are people already using to help refactor Terraform and what types of operations do they wish were more automated? [00:39:58] Integrations with Github Actions, Vault and Terraform Cloud[00:45:30​] Given the experience Cloud Posse has with being an open source-first company, what advice do you have for new startups with open source products?[00:54:54​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:31​] PSA: Docker pricing goes into effect 1/31 https://www.docker.com/pricing/faq[00:03:15​] Infracost adds policy supporthttps://www.infracost.io/docs/features/cost_policies/[00:04:25​] GitHub Actions by Examplehttps://www.actionsbyexample.com[00:05:19​] Private GitHub Actions Now Supported (Enterprise Only)https://github.blog/changelog/2022-01-21-share-github-actions-within-your-enterprise/[00:06:27​] GitHub Actions flaw enabled bypassing approvalshttps://portswigger.net/daily-swig/github-actions-flaw-that-allowed-code-to-be-approved-without-review-is-addressed-with-new-feature-rollout[00:07:20​] Atlas: New tool for database migrations in HCL (not terraform)https://atlasgo.io[00:09:11​] How GitHub Does DevOps for its iOS and Android Appshttps://www.infoq.com/news/2022/01/GitHub-devops-mobile-apps/[00:09:50​] AWS Security Hub Now Integrates with AWS Healthhttps://aws.amazon.com/about-aws/whats-new/2022/01/aws-security-hub-health/[00:10:27​] AWS Trusted Advisor adds SecurityHub Foundational Security Best Practiceshttps://aws.amazon.com/about-aws/whats-new/2022/01/aws-trusted-advisor-security-hub/[00:11:33​] Is helmfile a project you guys manage or is it its own thing?[00:53:36​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:28​] GitHub to Support Mermaid diagrams that can be displayed within Markdownhttps://github.com/github/roadmap/issues/372[00:02:16​] On-call Engineer’s Dinner for FAMILY during incidents should be expensedhttps://twitter.com/mipsytipsy/status/1482895726581485572?s=21[00:03:34​] AWS Proton Adds Terraform Support and Git Template Storagehttps://www.infoq.com/news/2022/01/proton-terraform-git/[00:06:17​] New Cloud Posse Terraform module to manage AWS Service Quotashttps://github.com/cloudposse/terraform-aws-service-quotas[00:08:59​] Get Infra costs from your Spacelift runs https://docs.spacelift.io/vendors/terraform/infracost[00:12:27​] AWS SSM Now Supports Outgoing Webhookshttps://aws.amazon.com/about-aws/whats-new/2022/01/aws-systems-manager-automation-third-party-applications-webhooks/[00:12:51​] AWS Systems Manager Automation runbooks from Slack (using AWS Chatbot)https://aws.amazon.com/about-aws/whats-new/2022/01/aws-systems-manager-automation-runbooks-slack/https://aws.amazon.com/chatbot/[00:13:10​] Terraform v1.1.4 released (nothing really noteworthy)https://github.com/hashicorp/terraform/releases/tag/v1.1.4[00:18:23​] PSA terraform-provider-awsutils gotchashttps://sweetops.slack.com/archives/CB6GHNLG0/p1642600261130900?thread_ts=1642600040.130400&cid=CB6GHNLG0[00:22:08​] Slick GitHub Action for Terraform (via weekly.tf)https://github.com/suzuki-shunsuke/tfcmt[00:27:41​] What is a good way to ensure that a terraform plan on one branch does not block other branches from doing terraform plan?https://sweetops.slack.com/archives/CHDR1EWNA/p1642620072006600[00:34:19​] Most organizations have at least 1 of these infrastructure problems? How are you solving them? [00:45:30​] Does anyone use, or has anyone used Ansible enough to shed some light on when (what types of tasks) Ansible would definitely be better than Terraform?[00:53:02​] Is it really a common practice to run terraform plan continuously to detect drifts?[00:57:17​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:32​] Mozilla sops call out for new maintainershttps://github.com/mozilla/sops/discussions/927[00:05:29​] Spacelift is launching a podcast! missionCTRL[00:06:04​] New Atmos Logo!https://github.com/cloudposse/atmos[00:07:47​] Atmos Now Supports Multiple Inheritance https://github.com/cloudposse/atmos/pull/101[00:28:16​] Geodesic Toolbox UX Improvement: Auto Set Workdirhttps://github.com/cloudposse/geodesic/pull/753[00:30:10​] How to Automate granting IAM Permissions to different Teams in growing company ?[00:46:14] Anyone know of a working json2hcl2 tool? [00:48:22​] Should our teams should avoid using terraform to configure Datadog Monitors and Dashboards?[00:52:54​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:17​] Cert-manager now supports Private CA ACM (no public ACM yet) https://aws.amazon.com/about-aws/whats-new/2022/01/acm-kubernetes-cert-manager-plugin-production/https://github.com/aws/containers-roadmap/issues/904[00:04:32​] Huge PR for Maintenance on Beanstalk Modulehttps://github.com/cloudposse/terraform-aws-elastic-beanstalk-environment/pull/203[00:05:25​] SQL Migrations with Terraform (via Oliver)https://registry.terraform.io/providers/paultyng/sql/latest/docs/resources/migrate[00:09:21] Checkout our #jobs Channel for new postings[00:10:02​] Ready to do things the Cloud Posse way? Take our quiz.https://cloudposse.com/quiz[00:11:41​] Is updating a securitygroup with lambda really the only way to protect endpoints behind Cloudfront from other traffic?[00:16:35​] Any insights on provisioning cdns that are optimized to minimize http 2 response delays?[00:30:30​] CloudTrail lake announced https://aws.amazon.com/blogs/mt/announcing-aws-cloudtrail-lake-a-managed-audit-and-security-lake/ [00:31:55​] Anyone working with VPC IPAM? [00:36:30​] Do you have any suggestions to prevent creation of resources without cost allocation tags?[00:39:00​] High CVE in containerdhttps://github.com/containerd/containerd/security/advisories/GHSA-mvff-h3cj-wj9chttps://nvd.nist.gov/vuln/detail/CVE-2021-43816[00:42:18​] Why would we move from ECS on EC2 to Kubernetes?  [00:53:19​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Cloud Posse holds public "Office Hours" every Wednesday at 11:30am PST to answer questions on all things related to DevOps, Terraform, Kubernetes, CICD. Basically, it's like an interactive "Lunch & Learn" session where we get together for about an hour and talk shop. These are totally free and just an opportunity to ask us (or our community of experts) any questions you may have. You can register here: https://cloudposse.com/office-hoursJoin the conversation: https://slack.cloudposse.com/Find out how we can help your company:https://cloudposse.com/quizhttps://cloudposse.com/accelerate/Learn more about Cloud Posse:https://cloudposse.comhttps://github.com/cloudpossehttps://sweetops.com/https://newsletter.cloudposse.comhttps://podcast.cloudposse.com/[00:00:00​] Intro[00:01:18​] Happy New Years! [00:01:57​] What is the current best practice for a cold start?[00:10:44] How to organize Terraform modules in a large enterprise?  [00:21:22​] Do we have a demo?    [00:25:14] Should I write my own providers? [00:34:44] Call for proposals for HashiTalks 2022 is open[00:40:52​] Outro #officehours,#cloudposse,#sweetops,#devops,#sre,#terraform,#kubernetes,#awsSupport the show (https://cloudposse.com/office-hours/)
Comments 
Download from Google Play
Download from App Store