The Missing Foundation of Non-Human Identity

I’ve been working on an identity/authorization system for machines and kept getting stuck on a basic question: what is machine identity, independent of any one stack (Kubernetes, cloud, OAuth, etc.)?

This post proposes a simple model based on where identity originates (self-proven / attested / asserted), what privileges it has at birth, and how it lives over time (disposable vs durable). I’ve also mapped common systems like SSH, SPIFFE/SPIRE, API keys, IoT, and AI agents into it.

I’d be very interested in counterexamples, ways this breaks down in real systems, or prior art I’ve missed.

Here's the post: https://www.hessra.net/blog/the-missing-foundation-of-non-human-identity

https://redd.it/1pf76t3
@r_devops

In AI/infra/devtools companies with usage-based pricing, who actually owns “adoption”?

In a lot of AI / infra / devtools products that charge by usage (requests, tokens, build minutes, cluster hours, etc.), there’s this blurry line after the deal is closed:

On paper, it looks like “someone on the post-sales side” owns adoption,
But in reality, I keep hearing about Solution Architects, Technical Account Managers, “technical success” folks, field engineers, SREs, and even core engineers getting dragged in when a key account’s usage isn’t where it’s supposed to be.

Sometimes usage is way below what was expected, sometimes it spikes in weird ways, sometimes it’s flat, but everyone feels something is off. And then suddenly there’s a Slack war room and a bunch of people with very different goals looking at the same graphs.

In your org (AI/infra/devtools, usage-based or pay-as-you-go):

When usage is clearly off for an important customer, who actually takes the lead on figuring out what’s going on and what to do about it, and what does that usually look like from your side?

Curious how this plays out in real life vs. how the org chart says it should.

https://redd.it/1pf8mi5
@r_devops

Job Switch

Currently working as a devops engineer and I like it a lot, been doing this for about 7-8 years. I want to switch into more backend/distributed systems but not sure what programming languages are best for this. I see it being split between Python & Go.

For anyone who has transitioned from Devops to BE/DSE or the other way around. What language would you say is best to learn ?

I’m trying to lock in for the next 12 months alongside grad school.

https://redd.it/1pf9974
@r_devops

Looking for developers

Hello Developers,

I’m a co-founder of Dayplay, an upcoming mobile app designed to help people quickly discover things to do—activities, local spots, events, hidden gems, and more. Our goal is to make finding something to do fast, easy, and fun.
We’re looking for a US-based full-stack developer with strong mobile app development skills to join our small founding team. We currently have two in-house devs, but one is going on leave due to personal reasons. Our MVP is 95% complete, and we’ll be launching on TestFlight for beta testers very soon. This role will have a big impact on the final stages of development and our early product growth.

About Dayplay
Dayplay is a mobile app built for quick decision-making. Users can instantly discover new places, activities, and experiences nearby through a clean, fast, and intuitive interface.

Who We’re Looking For
A well-rounded developer who can contribute across the stack and help push the mobile app to launch. Ideally someone with:
Full-stack experience (frontend + backend)
Strong mobile app development skills (React Native/Expo preferred)
Solid understanding of databases, APIs, and modern app architecture
Ability to move quickly, collaborate with a small team, and own tasks end-to-end
(If you want the full breakdown of the tech stack and responsibilities, feel free to DM me.)

Compensation
Compensation will be discussed directly and will be based on experience and expertise.



https://redd.it/1pf7402
@r_devops

I am so tired of debugging headless Chrome in Docker

I feel like I spend more time fixing my container setup than actually writing automation code. Getting a headless browser to run remotely without crashing from memory leaks is a huge pain. I just want to run my agent and have it work without spending a week on config files.

Has anyone found a way to just sandbox the whole thing? I am looking for something where I can just add a decorator or a simple command to handle the deployment side so I don't have to deal with the infrastructure mess.

https://redd.it/1pfcdam
@r_devops

Introducing localplane: an all-in-one local workspace on Kubernetes with ArgoCD, Ingress and local domain support

Hello everyone,

I was working on some helm charts and I needed to test them with an ArgoCD, ingress, locally and with a domain name.

So, I made localplane:

https://github.com/brandonguigo/localplane

Basically, with one command, it’ll :
- create a kind cluster
- launch the cloud-provider-kind command
- Configure dnsmasq so every ingress are reachable under *.localplane
- Deploy ArgoCD locally with a local git repo to work in (and that can be synced with a remote git repository to be shared)
- delivers you a ready to use workspace that you can destroy / recreate at will

This tool, ultimately, can be used for a lot of things :
- testing a helm chart
- testing load response of a kubernetes hpa config
- provide a universal local dev environment for your team
- many more cool stuff…

If you want to play locally with Kubernetes in a GitOps manner, give it a try ;)

Let me know what you think about it.

PS: it’s a very very wip project, done quickly, so there might be bugs. Any contributions are welcome!


https://redd.it/1pf2nr9
@r_devops

API Schema Pollution: When Malformed Requests Break Your Entire Backend 🧩

https://instatunnel.my/blog/api-schema-pollution-when-malformed-requests-break-your-entire-backend

https://redd.it/1pfgoa4
@r_devops

How do you manage multiple chats and focus on your work

Initially I was allocated to a single project and was working in that project. For that project also there were like 5 chats. Dev Chat, DevOps chat, Support chat ( with support team ), Product chat ( with customers ) which is fine. But the problem is they were expecting a reply within few minutes, and If I don't due to some reason, they gonna raise a complain, which is actually toxic.

Now the problem is, recently I'm responsible for reply to chats with few other projects as well. So there are like 20 teams chats, and messages are popping up like in every few mins. We have 4 team members. But everyone is expected to do the same.

I'm a person who don't like frequent context switching and like to focus on one task at a time.

But this new approach is driving me crazy. What should I do. This frequent messages are adding more stress.

https://redd.it/1pfijxk
@r_devops

Zerv – Dynamic versioning CLI that generates semantic versions from ANY git commit

TL;DR: Zerv automatically generates semantic version numbers from any git commit, handling pre-releases, dirty states, and multiple formats - perfect for CI/CD pipelines. Built in Rust, available on crates.io: `cargo install zerv`

Hey r/rust! I've been working on Zerv, a CLI tool written in Rust that automatically generates semantic versions from any git commit. It's designed to make version management in CI/CD pipelines effortless.



🚀 The Problem

Ever struggled with version numbers in your CI/CD pipeline? Zerv solves this by generating meaningful versions from **any git state** - clean releases, feature branches, dirty working directories, anything!



✨ Key Features

\- `zerv flow`: Opinionated, automated pre-release management based on Git branches

\- `zerv version`: General-purpose version generation with complete manual control

\- Smart Schema System: Auto-detects clean releases, pre-releases, and build context

\- Multiple Formats: SemVer, PEP440 (Python), CalVer, with 20+ predefined schemas and custom schemas using Tera templates

\- Full Control: Override any component when needed

\- Built with Rust: Fast and reliable



🎯 Quick Examples

# Install
cargo install zerv


# Automated versioning based on branch context
zerv flow


# Examples of what you get:
# → 1.0.0 # On main branch with tag
# → 1.0.1-rc.1.post.3 # On release branch
# → 1.0.1-beta.1.post.5+develop.3.gf297dd0 # On develop branch
# → 1.0.1-alpha.59394.post.1+feature.new.auth.1.g4e9af24 # Feature branch
# → 1.0.1-alpha.17015.dev.1764382150+feature.dirty.work.1.g54c499a # Dirty working tree



🏗️ What makes Zerv different?

The most similar tool to Zerv is semantic-release, but Zerv isn't designed to replace it - it's designed to **complement** it. While semantic-release excels at managing base versions (major.minor.patch) on main branches, Zerv focuses on:

1. Pre-release versioning: Automatically generates meaningful pre-release versions (alpha, beta, rc) for feature and release branches - every commit or even in-between commit (dirty state) gets a version
2. Multi-format output: Works seamlessly with Python packages (PEP440), Docker images, SemVer, and any custom format
3. Works alongside semantic release: Use semantic release for main branch releases, Zerv for pre-releases



📊 Real-world Workflow Example

https://raw.githubusercontent.com/wislertt/zerv/main/assets/images/git-diagram-gitflow-development-flow.png

The image from the link demonstrates Zerv's `zerv flow` command generating versions at different Git states:

\- Main branch (v1.0.0): Clean release with just the base version

\- Feature branch: Automatically generates pre-release versions with alpha pre-release label, unique hash ID, and post count

\- After merge: Returns to clean semantic version on main branch

Notice how Zerv automatically:

\- Adds `alpha` pre-release label for feature branches

\- Includes unique hash IDs for branch identification

\- Tracks commit distance with `post.N` suffix (commit distance for normal branches, tag distance for release/* branches)

\- Provides full traceability back to exact Git states



🔗 Links

\- **GitHub**: https://github.com/wislertt/zerv

\- **Crates.io**: https://crates.io/crates/zerv

\- **Documentation**: https://github.com/wislertt/zerv/blob/main/README.md



🚧 Roadmap

This is still in active development. I'll be building a demo repository integrating Zerv with semantic-release using GitHub Actions as a PoC to validate and ensure production readiness.



🙏 Feedback welcome!

I'd love to hear

your feedback, feature requests, or contributions. Check it out and let me know what you think!

https://redd.it/1pfjp4o
@r_devops

Sonarqube and other Code Qualify with mono repo support

So we have been using sonarqube for a while, but our dev team feels its a bit clunky - running the self hosted dev version, but the issue is the next jump to enterprise just to utilize the AI suggestions cost 25k USD a year, and way over my budget.

I have been looking around for alternatives, and some might have tested some. The two requirements we have is support for self hosted GitLab and support for monorepos, and some kind of AI suggestions (Not AI auto correct, but AI suggestions) - could be self hosted or managed.

The only tool I have ruled out if Qudona, because of Jetbrains non existing support

And yes, I have done google searches, but most of the tools pretty much say the same "im the best", but might be better options. I prefer a software that looks modern at least and a good UI/flow.

If it can integrate in Rider etc its a plus (yes I hate Jetbrains support, but he IDE is fine)

https://redd.it/1pfjcs9
@r_devops

can you actually automate end to end testing without coding or is that fantasy?

Non technical founder here trying to figure out testing for our saas product. We have 2 developers and they're focused on building features, don't have bandwidth to also become testing experts.

I keep seeing ads for tools that claim you can automate testing without writing code, just record what you're doing and it creates tests automatically. Sounds too good to be true but figured i'd ask if anyone has actually used these successfully.

Main concern is we keep shipping bugs to customers and it's embarrassing. Need some way to catch obvious issues before they go live but don't have budget to hire qa team yet.

Is no code test automation legit or am i gonna waste money on something that doesn't actually work? Would rather pay for a tool than have developers spend weeks learning selenium if there's a faster option.

https://redd.it/1pfksec
@r_devops

Help for Survey Needed😊

https://forms.office.com/r/E3RGz3Y0B3
Hi all, I’m working on my Final Year Project and I need your help! If you’re a Solution Architect, DevOps Engineer, Cloud Engineer, or anyone who wrangles cloud infrastructure for a living, I’d love to hear from you.



Cloud outages, failovers, DR drills that never happen—if these sound familiar, this survey is for you. I’m researching how teams actually handle cloud reliability and disaster recovery in the real world (not just what the documentation says), and your insights will help shape a practical automated multi-cloud DR/failover solution.



The survey only takes 5–7 minutes, everything is anonymous, and your experience could genuinely influence a tool designed for people like you.



If you have a moment, I’d really appreciate your input—thanks for helping make my FYP a little less painful and a lot more meaningful!

https://redd.it/1pfpnn9
@r_devops

Beginner in AWS: need mock papers resources and project recommendation

Asking again - I’ve been learning AWS for the past 2-3 months, along with Terraform, Gitlab, Kubernetes, and Docker through YouTube tutorials and hands-on practice. I’m now looking to work on more structured, real-world projects - possibly even contributing to public cloud related projects to build practical experience.

I’m also planning to take the AWS Cloud Practitioner exam. Could anyone suggest resources or websites that offer mock tests in an exam-like environment? Also, any recommendations for platforms where I can find beginner-friendly cloud projects to build my portfolio would be greatly appreciated.

https://redd.it/1pfpg1p
@r_devops

Self-learner seeking guidance. I want to know which of these online courses (CS50x and Helsinki Python Mooc) would be more useful if I want to build towards a devops job and what I should learn beyond them.

Basically as a beginner starting from scratch I would like to know which of these introductory programming courses would lay a foundation for learning devops. One is based on C and CS fundamentals (CS50x) and the other is based on python(Helsinki).

Other than these what else should I learn if I want to lay a foundation for devops and what resources should I look up? Like I looked into other threads and found this.

https://www.reddit.com/r/devops/comments/1bifxf7/comment/kvk7y17/?utmsource=share&utmmedium=mweb3x&utmname=mweb3xcss&utmterm=1&utmcontent=sharebutton

> I recommend https://www.linuxfromscratch.org/ and https://beej.us/guide/bgnet/ and later ansible/terraform/k8s/ci/etc for anyone who wants to have a serious career.

Is something like this necessary? Any advise would be appreciated.

https://redd.it/1pft0mm
@r_devops

reducing the cold start time for pods

hey so i am trying to reduce the startup time for my pods in GKE, so basically its for browser automation. But my role is to focus on reducing the time (right now it takes 15 to 20 seconds) , i have come across possible solutions like pre pulling image using Daemon set, adding priority class, adding resource requests not only limits. The image is gcr so i dont think the image is the problem. Any more insight would be helpful, thanks

https://redd.it/1pfukjc
@r_devops

Looking for Guidance & Referrals in DevOps — Tough Year, Still Trying to Stand Strong

Hi everyone,
I hope you're all doing well. I don’t usually post things like this, but today I really needed to take a chance and reach out.

This year has been extremely difficult for me — I’ve faced losses both in my family and in my personal life. Through it all, I’ve tried to stay focused on my work and on becoming a better version of myself every day. But lately things have become emotionally and mentally exhausting.

I’m currently working in a service-based company, but I feel stuck and burned out. I’m passionate about DevOps and truly want to grow in this field I have 2.5 years of work ex. I’m actively looking for opportunities where I can contribute, learn, and be part of a team that values ownership, automation, and good engineering culture.

If anyone here is hiring for DevOps / SRE / Platform Engineering roles or knows someone who is, a referral or even guidance would mean a lot to me right now. I’m not looking for sympathy — only for a fair chance to prove myself.

Here’s my LinkedIn if someone wants to connect or check my profile:
🔗 **linkedin.com/in/nipun-kumar-85544a190/**

Thank you to everyone who took the time to read this. Even a small suggestion or connection can make a big difference. I truly appreciate it. 🙏

https://redd.it/1pfvkcq
@r_devops

🚀 Announcing Guardon v0.4 — Real-Time Kubernetes YAML Validation in Your Browser!

Hi everyone! 👋

I’m thrilled to share the release of **Guardon v0.4**, a browser extension that validates Kubernetes YAML *directly inside GitHub and GitLab* — no clusters, servers, or CI pipelines required. This release brings a major leap forward in usability, policy coverage, collaboration, and real-world cluster alignment.

# ✨ What’s New in v0.4

# 🔧 Interactive Rule Management

Create, edit, group, and organize rules visually — no coding required.

# 📦 Import & Export Rule Packs

Instantly load policy bundles, including:

* Custom enterprise rule packs

# ⚡ Live YAML Validation + Autofix

As you browse PRs, files, and diffs, Guardon:

* Detects misconfigurations in real time
* Provides actionable explanations
* Suggests copy-paste–ready fixes

# 📘 OpenAPI & CRD Schema Import

Validate manifests against **your actual cluster schema** for true environment-specific accuracy.

# 🤝 Collaboration & Team Workflows

Share rule packs, annotate findings, exchange feedback, and standardize policies across teams.

# 🧩 No-Code / Low-Code Policy Authoring

Enable security, DevOps, and platform teams to define guardrails without writing complex policy code.

# 🔒 Privacy-First Architecture

Everything runs locally in your browser.
No data leaves your machine — ever.

# 🔗 Useful Links

* **📘 README & Documentation:** [*https://github.com/guardon-dev/guardon/blob/main/README.md*](https://github.com/guardon-dev/guardon/blob/main/README.md)
* **🧩 Chrome Extension:** [*https://chromewebstore.google.com/detail/jhhegdmiakbocegfcfjngkodicpjkgpb?utm\_source=item-share-cb*](https://chromewebstore.google.com/detail/jhhegdmiakbocegfcfjngkodicpjkgpb?utm_source=item-share-cb)
* **💻 GitHub Repository:** [*https://github.com/guardon-dev/guardon*](https://github.com/guardon-dev/guardon)



# 🌐 Community & CNCF Journey

Guardon has successfully completed the **CNCF TAG-Security self-assessment**, and I’m actively working toward **CNCF Sandbox submission**. Community adoption, contributors, and early feedback will be critical to shaping its future direction.

# 🙏 Looking for Feedback & Contributors

Your feedback, suggestions, and contributions mean a lot!
Please give Guardon a try, share your thoughts, and help build the next generation of Kubernetes security tooling.

Thanks for your support — and more exciting updates are on the way! 🚀

https://redd.it/1pfuzse
@r_devops

Digital Ocean's bandwidth pricing is criminal. Any alternatives for image hosting?

 I run a small image hosting service for a niche community. My droplet bill is fine, but the bandwidth overage fees on Digital Ocean are starting to cost more than the server itself.

I am testing a migration to virtarix because they claim unmetered bandwidth on their NVMe plans. It almost feels too good to be true. I moved a backup bucket there last week and transfer speeds were consistent, but I am worried about hidden "fair use" caps.

Has anyone pushed more than 10TB/month through their pipes? Did they throttle you?



https://redd.it/1pfyc2d
@r_devops

is it possible to see request and response for API call in Dynatrace?

Hi All!
is it possible to see request and response for HTTP/Rest API in Dynatrace? I couldn't find it. It detects an API call but I cannot find what was the request

https://redd.it/1pfuqab
@r_devops

can you actually automate end to end testing without coding or is that fantasy?

Non technical founder here trying to figure out testing for our saas product. We have 2 developers and they're focused on building features, don't have bandwidth to also become testing experts.

I keep seeing ads for tools that claim you can automate testing without writing code, just record what you're doing and it creates tests automatically. Sounds too good to be true but figured i'd ask if anyone has actually used these successfully.

Main concern is we keep shipping bugs to customers and it's embarrassing. Need some way to catch obvious issues before they go live but don't have budget to hire qa team yet.

Is no code test automation legit or am i gonna waste money on something that doesn't actually work? Would rather pay for a tool than have developers spend weeks learning selenium if there's a faster option.

https://redd.it/1pg6gj5
@r_devops