Newslurp

<< Stories

Terraform Google Provider 6 🆕, Privacy Aware Infra ⚖️, Migrations Across 2,800 services 🦅

TLDR DevOps <dan@tldrnewsletter.com>

August 28, 11:06 am

TLDR DevOps
The Terraform Google Provider v6.0.0 is now GA, introducing enhancements like the ability to opt-out of the default "goog-terraform-provisioned" label 

TLDR

Together With Lumigo

TLDR DevOps 2024-08-28

How to Scale End-to-End Observability in AWS Environments (Sponsor)

Join this Lumigo webinar to hear from Yan Cui, AWS Serverless Hero, and Leon Kotler, Sr. Backend Engineer at Compete. They will be sharing battle-tested tips and best practices for scaling observability across AWS infrastructure and creating complete visibility into your growing systems. RSVP to attend live or watch on-demand
📱

News & Trends

Announcing Terraform Google Provider 6.0.0: More Flexibility, Better Control (2 minute read)

The Terraform Google Provider v6.0.0 is now GA, introducing enhancements like the ability to opt-out of the default "goog-terraform-provisioned" label and new deletion protection fields for multiple resources. The update also allows reducing the suffix length in "name_prefix" for various resources while maintaining support for earlier Terraform versions.
Go wild: Wildcard support in Cloudflare Rules and a new open-source wildcard crate (5 minute read)

Cloudflare has introduced wildcard support across its Ruleset Engine-based products, enhancing flexibility and simplifying dynamic URL pattern management. This new feature, available to all plans for free, allows users to create complex rules with improved performance and intuitive configurations, addressing user demand for wildcard matching in redirects and beyond.
🚀

Opinions & Tutorials

How Meta enforces purpose limitation via Privacy Aware Infrastructure at scale (12 minute read)

Meta's Privacy-Aware Infrastructure (PAI) initiative revolutionizes data protection by implementing purpose limitation at scale, ensuring user privacy while enabling efficient and reliable data handling across the company's vast systems.
Back to School - Exploiting a Remote Code Execution Vulnerability in Moodle (16 minute read)

This blog post uncovers a critical remote code execution vulnerability in Moodle, demonstrating the dangers of using eval() with user input and highlighting the importance of secure coding practices in educational platforms.
How we run migrations across 2,800 microservices (7 minute read)

This article describes Monzo's approach to efficiently updating libraries across 2,800 microservices using a centralized strategy. The method leverages automation and a monorepo to ensure library consistency and ease of upgrades. Key components include automated refactoring, config-driven control for deployments, and a focus on gradual, safe rollouts. This centralized approach reduces coordination efforts and increases consistency in handling large-scale updates.
🧑‍💻

Resources & Tools

Expert Insights: Your Guide to Supplemental Development (Sponsor)

At some point, you're going to have to hire external developers, either to overcome delivery bottlenecks or for projects that require specific expertise. However, choosing the wrong partner will cost you. Download the guide from Onsharp to learn how to avoid common gotchas and use supplemental development effectively.
Skupper (GitHub Repo)

Skupper simplifies cloud-native application networking by creating secure, application-layer connections across diverse environments without the complexity of traditional networking solutions.
Valkey (GitHub Repo)

Valkey offers a powerful, flexible, and open-source solution for developers seeking a robust key-value store with advanced data structure capabilities and customizable features.
🎁

Miscellaneous

Introducing delayed destruction for Secret Manager, a new way to protect your secrets (6 minute read)

Google Cloud Secret Manager now offers delayed destruction of secret versions, allowing administrators to prevent immediate deletion and recover secrets during a configurable delay period. It also has new Pub/Sub notifications that alert admins of destruction attempts, enhancing security against accidental or malicious secret deletion.
AWS CloudFormation simplifies resource discovery and template review in the IaC Generator (1 minute read)

AWS CloudFormation has enhanced its IaC generator with a graphical summary of resource types and a template preview feature in AWS Application Composer. These updates help customers more easily generate infrastructure-as-code from existing resources and visualize application architecture before deployment.
Working with Protobuf in 2024 (9 minute read)

Protocol Buffers (protobuf) are crucial for data serialization in applications like gRPC services. Traditionally, working with protobuf involves defining .proto files, compiling them, and implementing logic, which can be error-prone. Modern tools like JSON to Proto, Protobuf Pal, and Buf CLI have improved this process by automating protobuf definitions, enhancing code generation, and ensuring consistency. Buf Studio and FauxRPC support rapid prototyping and testing, streamlining protobuf development significantly.

Quick Links

CISOs Struggle to Govern Use of AI in Application Development (3 minute read)

29% of organizations have established AI governance, while 99% report the use of AI tools for code generation despite prohibitions.
Lidl's Cloud Gambit: Europe's Shift to Sovereign Computing (3 minute read)

Lidl's unexpected entry into cloud computing highlights Europe's growing push for sovereign digital infrastructure, challenging tech giants and reshaping the landscape of data management and privacy in the EU.

Love TLDR? Tell your friends and get rewards!

Share your referral link below with friends to get free TLDR swag!
https://refer.tldr.tech/fc7198a6/10
Track your referrals here.

Want to advertise in TLDR? 📰

If your company is interested in reaching an audience of devops professionals and decision makers, you may want to advertise with us.

If you have any comments or feedback, just respond to this email!

Thanks for reading,
Kunal Desai & Martin Hauskrecht


If you don't want to receive future editions of TLDR DevOps, please unsubscribe from TLDR DevOps or manage all of your TLDR newsletter subscriptions.