Our new website :D oxide.computer

Solving ArgoCD Secret Management with the argocd-vault-plugin - by Jake W
#argoCD #Kubbernetes #HashicorpVault #Gitops #SecretManagement Learnk8s Vault argoproj
itnext.io/argocd-secret-…

You're the CISO and you have to decide which of two $1M initiatives to allocate funding.

A. Penetration tests against all internet facing applications for the next 3 years

B. Deploying SAST integration into the IDEs of all developers

Which do you choose and why?

Finally got annoyed enough at work with not having a Vault logo in draw.io to finally do something about it. I've just published two libraries of Hashicorp logos at github.com/dwp/hashicorp-…. Enjoy! DWP Digital HashiCorp

I switched my primary dev environment to a graphical NixOS VM on a macOS host. It has been wonderful. I can keep the great GUI ecosystem of macOS, but all dev tools are in a full screen VM. One person said “it basically replaced your terminal app” which is exactly how it feels.

We have a lot of updates during HashiConf, but here is one prior to it: the Consul team released a new tool: Consul Terraform Sync. This allows you to configure event-triggered Terraform runs for managing network infrastructure. This thing is super slick! hashicorp.com/blog/announcin…

I got carried away sticking an @envoyproxy, with mTLS enabled, in front of every micro service and external authz backend, and now I have a much clearer picture of the overhead of trying to mesh.

A viable alternative to AWS Secret Manager using Vault on a simple #EC2 instance: useful for particular integrations or specific solutions where users can’t rely on AWS alone!
Thanks to Will Milner
HashiCorp
bit.ly/2Q8ZIav

Newest article is out: 'How to Run Keycloak in HA on Kubernetes' - Ramiro Algozino will walk you through the challenges of running Keycloak in production 🎉

👉 Read it: bit.ly/ha-keyloak-kub…
👉 Keycloak Fury Module (show me the code!): github.com/sighupio/fury-…

#kubernetes #keyloak

It's ready! 💥 github.com/FiloSottile/yu…

yubikey-agent is a seamless ssh-agent for YubiKeys. 🔒 Written in Go, it takes one command to set up, and never needs restarting. ✨

We’re rolling out some assistance for organizations who provide aid for COVID-19: free TF cloud, office hours, free 1:1 help. We’ve also been doing direct work (free too) behind the scenes with a few orgs to help if we can! hashicorp.com/blog/hashicorp…

This post on “Deploys at Slack” is I think the first time Slack has publicly noted their Consul usage. I’ll leave it for if/when they share more, but thanks for being a user! slack.engineering/deploys-at-sla…

HashiCorp has joined the CNCF! We’ve stepped up our commitment to CNCF projects in big ways the past couple years and look forward to collaborating with the community on continuing to do more and do it better. hashicorp.com/blog/hashicorp…

Okay, can we just post the amazing Tiktok content being put out these days!?????

We (HashiCorp) raised $175M at a $5.1B valuation, and welcome Franklin Templeton and T. Rowe Price as new investors! globenewswire.com/news-release/2…

We are happy to announce that we are joining the CNCF as Kubernetes Training Partner (KTP).

We are incredibly proud to be the first KCSP, KTP and Independent European vendor with a certified Kubernetes Installer/Distribution 🇪🇺🇪🇺

landscape.cncf.io/format=card-mo…

Your secrets are probably everywhere - and they should not be.

This article explains the risks of secrets sprawl and how to use tools like HashiCorp #Vault , Azure Key Vault etc.

Via Amazic

buff.ly/2Eaq1Ht

#DevSecOps

It’s been a mammoth week working on a difficult HashiCorp #vault project - managed to get the solution implemented, can rest easy this weekend 👍

We are releasing a stand-alone binary that allows HashiCorp #Vault secrets injection using init containers (pre-populate secrets at start time) and sidecars (dynamic renewal of secrets).

hashicorp.com/blog/injecting…