2020 has been a year like no other. Our dependency on digital services has reached new heights, leaving many companies trying to accelerate transformation initiatives while simultaneously keeping said digital services running perfectly. The ITOps and DevOps teams on the front line of this struggle are facing more pressure than ever. With the holiday season now in full swing, that strain will only grow as virtual festivities and online shopping pick up the pace.

Every CEO is looking for an edge. Every change in IT — whether we’re talking about the move away from company owned data centers to VMs, or the latest digital transformation we’re seeing today — has always been about gaining a strategic advantage. Companies want to do more at a lower cost, and they want the freedom to pivot quickly without fixed costs.

While JavaScript frameworks come and go, a change has been brewing over the last several years that will permanently change what it means to be a modern developer: how our code goes from our laptops to the wild.

Though the volume of serverless talks is lower this week, the quality and impact lacked nothing. Two must-see presentations emerged highlighting important practices for succeeding with serverless in the enterprise.

The upstream Kubernetes community recently discovered a security issue—CVE-2020-8554— affecting multitenant clusters that allows anyone who is able to create a ClusterIP service and set the spec.externalIPs field to intercept traffic to that IP address. There is no patch for this issue yet, and it can currently only be mitigated by restricting access to the vulnerable features.

To enhance and automate your vulnerability analysis, we’re excited to launch the Datadog Vulnerability Analysis GitHub Action. The action enables easy integration between your application, Datadog Continuous Profiler, and Snyk’s vulnerability database to provide actionable security heuristics. The action can be installed directly from the GitHub Marketplace, and does not require you to manage any additional scripts or infrastructure.

DigitalOcean has just announced the DigitalOcean Container Registry, which is directly integrated into the DigitalOcean Dashboard. While you can use any Container Registry in your DigitalOcean resources, the goal of the Container Registry is to provide for easy connection between the Container Registry and DigitalOcean Kubernetes resources.

I joined Civo just over a year ago (straight out of a web development bootcamp) and had to quickly become familiar with concepts of Kubernetes and modern cloud-native software development as we prepared to launch our #KUBE100 beta. So, I, along with the rest of the team, thought about how we could help new users learn the basics of Kubernetes in a simple, practical, and fun way. This is how KubeQuest was born.

🎼 Frosty the SRE/ Was a jolly happy soul/ With his runbooks tight and automated/ and SLOs made out of gollldddddd! 🎼 It’s the most wonderful time of the year, and to celebrate, here’s your December issue of the SREview! This monthly zine features epic Tweets, content, and events happening in the SRE and resilience engineering community.

As a result of the COVID-19 pandemic, the majority of companies (52%) say application development is a high priority initiative at their organization. But teams focused on building or improving apps face a number of bottlenecks — the three biggest of which are people, processes, and technology. Puppet and Pulse surveyed 200 IT executives to discover how modern technologies and processes are helping app development teams overcome common roadblocks and adapt quickly to the changing economy.