DevOps

Kubernetes has revolutionized the way we deploy applications, but managing numerous Kubernetes resources for complex applications can quickly grow to become a heavy burden. That’s where Helm, the package manager for Kubernetes, comes in. However, as your deployments become more complex and approach production environments, vanilla Helm may not be enough. As with any production system, you need robust tooling to ensure that your Helm charts are clean, maintainable and secure. ...

Following our previous tutorial about using AWS KMS for secrets management, this second part explores how to leverage AWS Secrets Manager with Terraform/OpenTofu for more advanced secrets management capabilities. AWS Secrets Manager provides additional features like automatic rotation, fine-grained access control, and centralized secrets management. Prerequisites AWS Account with appropriate permissions Terraform/OpenTofu installed AWS CLI configured [Optional] Basic understanding of AWS KMS (covered in Part 1) 1 — Setting Up AWS Secrets Manager First, let’s create the necessary resources to store and manage our secrets: ...

In Terraform, drift detection helps spot any mismatches between the infrastructure you’ve outlined in your code and what’s actually out there running in your cloud accounts. This is super important for keeping your Infrastructure as Code (IaC) practices on point, making sure everything is consistent, efficient, and secure. Steampipe, which is an open-source tool, takes this a step further by letting you run real-time SQL queries on your infrastructure data. When you bring Steampipe into the mix, you get a clearer picture and more control over your setup, making it easier to keep your code and infrastructure in sync and strengthening your IaC game. ...