For today's donations Monday, I'd like to share once again the standing Monobank jar for FPV equipment.

This jar is for the unit in which a guy from my wife's hometown serves.

https://send.monobank.ua/jar/4WLw91UqFe

#donations #Monday

Wanna become a true Terraform SLOPerator?

Here is a carefully vibecoded solution by Anton Babenko. I can confirm that he checks the docs at least once during his Claude conversations, so you can be confident in the quality :)

Jokes aside, this is a cool Skill for Claude Code, which currently works better than any other official or popular alternative out there.

#terraform #ai #claude

Bring Back Ops Pride is a new article by Charity Majors on how it comes that the operational work is often seen as of lower importance, and why is it bad.

This is her answer to the comments under her another article “You Had One Job”: Why Twenty Years of DevOps Has Failed to Do it. This article has some interesting ideas, but it's a marketing material, so beware.

#ops #culture

Unfortunately, kubectl flame tool for profiling in Kubernetes wasn't updated in 4 years. It cannot even run on ARM-based machines.

But what if you need to profile something in your systems? You can use continuous profiling, if it's available in your observability stack.

Or you can use kubectl prof to do some ad-hoc profiles.

- Tool on GitHub
- Medium post

#kubernetes #performance

A book bundle for exam and interview preparations from Manning press.

I'm not sure how good are those books outside the context of interviews, but Manning books usually considered good.

#books

I know that the last thing you'd like to see on Wednesday is yet another remote code execution possibility in Kubernetes, but here you are.

Kubernetes Remote Code Execution Via Nodes/Proxy GETPermission

and here's a lab for that.

tl;dr: web sockets use GET to initiate a connection and then upgrade it, but the permissions are only checked for GET, regardless of what you send through that web socket later. Thus, read permissions are enough to run some code.

P.S. This news came from the chat. If you want to join our chat (in Ukrainian), you can use this link.

#kubernetes #security

Some time ago, I posted here an article from a well-known company on how they use Terraform.

When I was reading that article, I had a thought: “C’mon, I also can write crap like that!”.

So I did!

I hope you like it!

#terraform #oc

The first newsletter of this year is live!

https://newsletter.catops.dev/p/catops-digest-2026-01-30

#newsletter #digest

A book bundle for Solutions Architect exam preparations from Packt.

Packt didn’t have the best reputation, but the topic may be interesting to many people in this channel.

#books

​​For today’s Donations Monday, let’s help our friends from DevOps 01 chat to buy an EcoFlow for 154s Separate Mechanized Brigade.

https://send.monobank.ua/jar/5fYjQVfvFA

There’s just a small push left!

#donations #Ukraine

Hello Kubernetes Community,

Multiple issues are disclosed today in ingress-nginx, and assigned the following CVE IDs: CVE-2026-1580, CVE-2026-24512, CVE-2026-24513, CVE-2026-24514.

The most serious of these issues have been rated HIGH (CVSS calculator, score: 8.8).

https://groups.google.com/a/kubernetes.io/g/dev/c/9RYJrB8e8ts?pli=1