The blog post on VLT Technology discusses a significant vulnerability within the npm ecosystem known as "manifest confusion." This issue arises because npm package manifests are published independently from their tarball contents without thorough validation, leading to potential exploits through inconsistent or malicious data in package dependencies or noscripts. The post details the history, the problem's implications, and steps to reproduce the issue, emphasizing the widespread impact on security and package integrity.
https://blog.vlt.sh/blog/the-massive-hole-in-the-npm-ecosystem

Opensource IDE For Exploring and Testing Api's (lightweight alternative to postman/insomnia)
https://github.com/usebruno/bruno

Garnet is a remote cache-store from Microsoft Research that offers strong performance (throughput and latency), scalability, storage, recovery, cluster sharding, key migration, and replication features. Garnet can work with existing Redis clients.
https://github.com/microsoft/garnet

Good introduction for starting set up on-call culture in your company.
https://grafana.com/blog/2024/03/28/call-me-maybe-designing-an-incident-response-process/

The blog post delves into the challenges faced by on-call personnel due to alert fatigue and the subsequent risk of burnout. It outlines Cloudflare's approach to enhancing alert observability within their systems, aiming to make alerts more actionable and reduce false positives. By leveraging open-source tools and implementing best practices, Cloudflare's observability team shares insights on improving alert management, thereby easing the on-call experience and promoting personnel well-being.
https://blog.cloudflare.com/alerts-observability/

Write tests against structured configuration data using the Open Policy Agent Rego query language
https://github.com/open-policy-agent/conftest

Self-Hosted Remote Dev Environment

https://github.com/lapce/lapdev

In the fast-paced world of Kubernetes and container orchestration, monitoring and metrics play a pivotal role in ensuring the health, efficiency, and reliability of applications. The article provides an insightful exploration into the criticality of pod metrics within the Kubernetes ecosystem
https://komodor.com/blog/harnessing-the-power-of-metrics-four-essential-use-cases-for-pod-metrics/

The introduction of Kubernetes Gateway API v1.0 marks a significant milestone, promising to enhance how developers and cluster operators manage and expose their services. The article dives deep into the nuances of this new API version, comparing it with the traditional Ingress controllers and highlighting its potential to redefine traffic routing within Kubernetes clusters. F
https://dev.to/apisix/kubernetes-gateway-api-v10-should-you-switch-45c0

eBPF distributed networking observability tool for Kubernetes

https://github.com/microsoft/retina

🍨 Crossplane Troubleshooting Tool by Komodor

https://github.com/komodorio/komoplane

Blog post addresses a critical aspect of container security—the ReadOnlyRootFilesystem flag. This insightful article elucidates the concept of making the root filesystem of a container read-only to prevent unauthorized modifications, which can be a common vector for security breaches.
https://alexandre-vazquez.com/readonlyrootfilesystem/

This article explores the underutilized Postgres feature of HOT (Heap Only Tuple) updates and the strategic use of fill factor to enhance database performance. It delves into how HOT updates allow for modifications within the same table page, bypassing index updates and reducing system load.
https://www.crunchydata.com/blog/postgres-performance-boost-hot-updates-and-fill-factor

A Vault swiss-army knife: A CLI tool to init, unseal and configure Vault (auth methods, secret engines).
https://github.com/bank-vaults/bank-vaults

Hyperscale OpenShift - clusters with hosted control planes
https://github.com/openshift/hypershift

In this article, the author delves into a critical vulnerability discovered in Argo CD, a popular continuous delivery tool for Kubernetes. The vulnerability poses significant security risks, potentially allowing unauthorized access and manipulation of deployment configurations. Their detailed analysis explains the nature of the vulnerability, its potential impact, and recommended mitigation strategies to secure your Argo CD implementations.

https://cycode.com/blog/revealing-argo-cd-critical-vulnerability/

Good guide for k8s side containers
https://komodor.com/learn/kubernetes-sidecar-containers-practical-guide-with-examples/

In this article, I show you two examples of how to convert a sample Microsoft Azure-based Terraform template to AWS using Amazon Bedrock, a fully managed service for building generative AI applications on AWS.
https://aws.amazon.com/blogs/infrastructure-and-automation/save-time-converting-terraform-templates-to-aws-using-amazon-bedrock

Simple xDS server for Kubernetes

https://github.com/wongnai/xds

Interesting idea - Images as code
https://www.chainguard.dev/unchained/images-as-code-the-pursuit-of-declarative-image-builds

Optimize Docker images in the right way
https://bhupesh.me/publishing-my-first-ever-dockerfile-optimization-ugit/