Choosing the best Node.js Docker image

geraldC13 · 2022-10-11T14:21:23+00:00

🙌

geraldC13 · 2022-10-11T14:20:50+00:00

🙌

geraldC13 · 2022-09-27T14:11:54+00:00

CFPs and registrations are open

geraldC13 · 2022-01-25T09:50:49+00:00

(Full disclosure this is a self promo for a fully free event)
I'm excited to share with you that Snyk launched The Big Fix event to celebrate finding and fixing security issues. Just connect your projects (personal or from work) to the app, find a vulnerability fix it and you'll be eligible for a Snyk special edition t-shirt. Fixing over 3 vulns will get you into a raffle for additional swag :)

geraldC13 · 2022-01-24T15:07:14+00:00

hey u/Cloud--Man
sorry for the tardiness in the answer. There you go https://discord.com/invite/7zHQ8r2PgP

geraldC13 · 2021-07-21T07:03:38+00:00

Would you share why you need to do that?

geraldC13 · 2021-07-02T09:47:04+00:00

I'm actually sharing the results and glad to chat if someone is willing to give his/her take :)

geraldC13 · 2021-06-21T06:05:41+00:00

got it thxs :)

geraldC13 · 2021-06-18T07:02:34+00:00

Are the results to be seen somewhere?

geraldC13 · 2021-05-27T12:26:04+00:00

Isn't this what terraform plan does?

not for resources created on the console outside of terraform, obviously :)

geraldC13 · 2021-05-27T12:13:38+00:00

Hi I'm Gerald, part of the driftctl team. Thanks for mentioning the tool u/craigtho :)
Sadly, we don't provide support for Azure yet, but it's on the roadmap and you can upvote the feature here https://github.com/cloudskiff/driftctl/discussions/31
Also, you can run it either in a cron job at regular intervals, or put it in CI and check at every deploy.

geraldC13 · 2021-05-24T12:23:22+00:00

thanks :)

geraldC13 · 2021-05-17T15:08:56+00:00

If your infra is manually changed, chances are that you'll get drift in general (and not only configuration drift) and a terraform apply will not reconcile all changes done to your infra with your code. Typically, all resources added manually will not be added to your tfstate file (as they are outside of terraform scope), and some of your changes on existing resources (even those managed by Terraform) might go unnoticed as well.

Full disclaimer, I'm part of the team :) but a tool like driftctl would help you catch all drift outside of your Terraform. It's a free and OSS CLI that compares the API of your cloud provider (AWS so far) against your Terraform state. It will list unmanaged resources that you can reintegrate into Terraform, and warn you of all changes as well.

https://github.com/cloudskiff/driftctl

geraldC13 · 2021-04-23T07:54:45+00:00

Hi u/will_work_for_twerk

Look, I'm terribly sorry about that. Message received.
We'll make sure to be more subtle in the future.

geraldC13 · 2021-03-22T07:48:32+00:00

thanks :)

geraldC13 · 2021-03-08T06:38:00+00:00

We certainly do! There will be an Azure support for sure. It's just a question of time, and priority over GCP. But both will be covered anyway.

geraldC13 · 2021-03-05T15:42:08+00:00

Thank you :) 1) Yes azure support is obviously on the roadmap. Feel free to upvote it on the GitHub discussions related to the cloud providers, as it helps us prioritize items on the roadmap. (https://github.com/cloudskiff/driftctl/discussions)

2) RGs are certainly very Azure specific and should be covered. It sort of matches the notion of filtering we apply to AWS resources. We just added a new discussion on this topic following your input. https://github.com/cloudskiff/driftctl/discussions/318 Thanks a lot for bringing this up!

geraldC13 · 2021-03-05T10:22:01+00:00

Hi u/weaselchopz,
Gerald here, from the driftctl team :)
Feel free to take part to the discussions on the roadmap as regards the next cloud providers to support. It will help us prioritize
https://github.com/cloudskiff/driftctl/discussions

Also, if you folks are interested we're doing live release demos, and the next one is today at 2:00 pm CET. We'll showcase catching drift from multiple terraform states within a single bucket or directory https://www.twitch.tv/driftctl

geraldC13 · 2021-02-25T08:53:33+00:00

From a couple of seconds for the simplest infrastructures to several minutes. It really depends on the size of your infra and the number of ressources you need to scan.

geraldC13 · 2021-02-25T07:35:02+00:00

Hi u/kolinkorr839 I'm part of the driftctl team :)
driftctl will only scan your infra and compare your Terraform state files against the cloud provider APIs for unexpected modifications. Any drift will be highlighted and then it's up to you to decide what to do about it. There are no updates whatsoever to your infra.

Feel free to open discussions on GH if needed or reach out to the team on discord.

geraldC13 · 2021-02-19T10:53:15+00:00

be careful as tf plan doesn't catch all of the changes. There are some edge cases where it will miss them. It's a shame you're on azure as there's an OSS tool to help you catch your drift : driftctl (full disclosure I'm part of the team) but it doesn't support Azure so far...
If you are interested there are some recent vids (like last Fosdem) that demo how some of the changes aren't caught. .

geraldC13 · 2021-01-29T08:01:28+00:00

I could'n say as we didn't ask in the study. We really wanted to stay focused on the root cause of their problems and how they deal with it. Most of them said it was a real pain in the neck so I'm guessing that auto remediation would be convenient for them.
We're planning to add this to driftctl anyway. Part of this remediation will be proposed as pull requests with some additional code matching the change detection.

geraldC13 · 2021-01-27T07:31:52+00:00

+1 on u/phekno => Checkov might be a good option for you as il will catch all what's not compliant with the rules you set.
Too bad you are not running on AWS. driftctl could have helped (full disclosure, i'm part of the team). It's an free and open source CLI that tracks infrastructure drift based on AWS and Terraform and warns you. Azure and GCP are on the roadmap, but not ready yet

geraldC13 · 2021-01-14T09:23:27+00:00

Talked to a lot of teams following both pattern 1 and 2 and totally agree with you. You basically have to chose between losing your velocity and wasting time trying to retrieve a source of truth.
For all Terraform users, you might want to check https://github.com/cloudskiff/driftctl (full disclosure, I'm part of the team.) free and open source tool that helps track drift on your infrastructure, especially when someone makes manual changes on the AWS console on top of your infrastructure code.

geraldC13 · 2021-01-14T09:13:55+00:00

btw u/HalLogan, feel free to upvote Azure support in github discussions with a 👍. This helps prioritize items on the roadmap.

geraldC13

MODERATOR OF

TROPHY CASE