Everyone can contribute! Learn DevOps and Cloud Native in our cafe ☕


Technology is moving fast in the DevOps and Cloud Native community.

Join the conversation and add your thoughts, tips, experiences, stories.

"Everyone Can Contribute" is inspired by GitLab's mission.

52. #EveryoneCanContribute Cafe: Learned at KubeCon EU, feat. Cilium Tetragon first try

Insights Michael F., Niclas and Michael A. talked about the KubeCon EU summary in the opsindev.news June issue and looked into the various KubeCon EU YouTube playlists: KubeCon EU eBPF day SecurityCon WASM day GitOpsCon At first, Michael shared the insights from eBPF day, and highlighted Tetragon now being open source. Niclas mentioned that they use Cilium in production. Isovalent open-sourced Tetragon as a new Cilium component that enables real-time, eBPF security observability and runtime enforcement. Read More…


Date published: June 14, 2022

51. #EveryoneCanContribute Cafe: First look: Chainguard Enforce with Carlos Panato

Carlos Panato started with a short introduction into Software Supply Chain Security and which problem Chainguard aims to solve. The demo follows a great story line on deploying a container image with GitLab CI/CD, verify the image manually, showing Chainguard on the CLI to pull image policies, create custom policies, observe and enforce, sign using cosign inside CI/CD. The following discussion touched topic such as SBOM, key signing, and also cluster runtime security with eBPF. Read More…


Date published: May 10, 2022

50. #EveryoneCanContribute Cafe: First look: Dagger with Niclas Mietz

Niclas Mietz started with an introduction to Dagger and a Hello World example with CUE. We’ve discussed Dagger actions, packages and the interaction with buildkitd to run actions in containers, first impressions, ideas to contribute and future potential. Niclas also did a live demo with a GitLab project deployed to Netlify with Dagger, using CI/CD. Insights We’ve learned about: Dagger Run Dagger actions in containers Describe actions in CUE lang Action steps come as packages, example Buildkitd is required as daemon, any container compatible runtime Many actions and CI/CD integrations are work in progress, e. Read More…


Date published: April 12, 2022

49. #EveryoneCanContribute Cafe: Aqua Security and Open Source with Anaïs Urlichs

Anaïs Urlichs did a deep dive into the OSS tools from Aqua Security: Trivy, tfsec, Starboard, Tracee and more. We have discussed usage scenarios, custom policies, the integration touch points between the tools, and how to contribute. Insights We’ve learned about: Overview of Aqua Security OSS projects Trivy Container and IaC security scanning Getting started Differences to tfsec Custom policies Trivy exporter for Prometheus Starboard Vulnerability scanning in Kubernetes clusters Custom policies for Trivy Starboard operator, with Prometheus metrics Starboard integrations: Polaris, Conftest Aqua Enterprise insights into runtime protection Tracee Runtime security and forensics using eBPF - story of tracee Differences to Falco discussion How to contribute: Join Slack and explore the projects Q&A: Starboard reports dashboard, alerting, OOTB support in Aqua Enterprise, open-sourcing the tools to keep the pace of development, and reduce server load. Read More…


Date published: March 8, 2022

48. #EveryoneCanContribute cafe: Blockchain and web3 with Niclas Mietz

Niclas Mietz explained Blockchain from the fundamentals to deploying a program on Solana as an example. We’ve discussed Ethereum, web3 principles and more ideas about blockchain development, CI/CD, Ops (storage, backup, observability). Insights We’ve learned about: Identities, smart contracts, proof of work vs. proof of stake Blockchain getting started - Solana on localhost, quickstart works also with Gitpod Deploy a program, following the resources on awesome-solana Develop own programs in Rust, C++, etc. Read More…


Date published: February 8, 2022