This piece offers a detailed look into the system architecture that powers Netflix's streaming service. It covers the company's cloud-native approach, its use of microservices, and its sophisticated content delivery network (CDN).
https://www.clickittech.com/software-development/netflix-architecture/

Karsten Schnitter's review on the OpenSearch blog explores how to visualize metrics ingested with OpenTelemetry using OpenSearch Dashboards. The author provides examples of creating insightful visualizations for monitoring Kubernetes container metrics.
https://opensearch.org/blog/opentelemetry-metrics-visualization/

Generate Kubernetes architecture diagrams from Kubernetes manifest files, kustomization files, Helm charts, helmfiles, and actual cluster state

https://github.com/philippemerle/KubeDiagrams

A cli tool to help discover deprecated apiVersions in Kubernetes

https://github.com/FairwindsOps/pluto

This treatise by Usama Malik explains how to create reusable infrastructure components using Terraform modules. The author highlights the benefits of modularity, such as improved efficiency, maintainability, and collaboration.
https://aws.plainenglish.io/how-to-create-reusable-infrastructure-with-terraform-modules-b4bbcf4c0ad1

Run Serverless on Servers AWS Lambda on EC2
https://aws.amazon.com/blogs/aws/introducing-aws-lambda-managed-instances-serverless-simplicity-with-ec2-flexibility/

A CNI meta-plugin for multi-homed pods in Kubernetes

https://github.com/k8snetworkplumbingwg/multus-cni

In this piece from Slack Engineering, the authors advocate for intentionally breaking systems to improve resilience. They share a real-world incident that led them to adopt "strategic chaos" as a way to test and strengthen their recovery processes.
https://slack.engineering/break-stuff-on-purpose/

Kubernetes PreUpGrade (Checker)

https://github.com/kubepug/kubepug

Finally, RDS Savings Plans
https://aws.amazon.com/blogs/aws/introducing-database-savings-plans-for-aws-databases/

Free IDE for Kubernetes

https://github.com/freelensapp/freelens

This essay by howardjohn explores different options for implementing mutual TLS (mTLS) in a Kubernetes environment. The author compares do-it-yourself methods with service mesh and CNI-based approaches, offering recommendations for various use cases.
https://blog.howardjohn.info/posts/mtls-kubernetes/

This report on HackerNoon offers a detailed look at implementing graceful shutdowns for Go applications running in Kubernetes. It explains how to handle termination signals to prevent data loss and ensure service stability during updates or scaling events.
https://hackernoon.com/mastering-graceful-shutdowns-in-go-a-comprehensive-guide-for-kubernetes

This walkthrough from Minimal DevOps demonstrates how to implement predictive autoscaling for Kubernetes workloads. It leverages KEDA to act on forecasts generated by Prophet, allowing scaling actions to anticipate demand rather than just reacting to it.
https://minimaldevops.com/predictive-autoscaling-in-kubernetes-with-keda-and-prophet-cbccd96cf881

How did you start your morning? Cloudflare decided that you’d had too much of the internet.

A change made to how Cloudflare's Web Application Firewall parses requests caused Cloudflare's network to be unavailable for several minutes this morning. This was not an attack; the change was deployed by our team to help mitigate the industry-wide vulnerability disclosed this week in React Server Components. We will share more information as we have it today.

https://www.cloudflarestatus.com/incidents/lfrm31y6sw9q

Fancy terminal UI for Apple Containers

https://github.com/andreybleme/lazycontainer

Will Sulzer's report details the process of deploying self-hosted GitHub Action Runners on Google Kubernetes Engine (GKE) using a rootless Docker-in-Docker setup. The instructions focus on achieving this with minimal privileges for enhanced security.
https://medium.com/google-cloud/github-action-runners-on-gke-with-dind-rootless-bd54e23516c9

This analysis explores how eBPF (extended Berkeley Packet Filter) can be used to gain insights into real-time SSL/TLS encrypted traffic. The author, TJ. Podobnik, discusses how this technology allows for monitoring without compromising security.
https://medium.com/all-things-ebpf/what-insights-can-ebpf-provide-into-real-time-ssl-tls-encrypted-traffic-and-how-435c8ad33efc