Simply put, DevSecOps is the practice of integrating security tests into every stage of the software delivery life cycle. It is an extension of the DevOps approach that we have discussed so far in this book. Using tools and processes, it promotes collaboration between development, operations, and security teams. This results in software artifacts that […]
Category: Software Composition Analysis
Creating a workspace in Amazon Managed Service for Prometheus – Enabling the Observability of Your Workloads
Amazon Managed Service for Prometheus is a serverless Prometheus-compatible service that is highly resilient and scales automatically to changing storage or performance needs. It is well integrated with AWS’s container ecosystem. For our use case, we need a workspace that offers dedicated storage and querying capability for Prometheus metrics. At the time of writing, there […]
Exposing long-running tasks with ECS – Running Containers in AWS
Often, you will want to have long-running versions of your tasks. This is a common use case for web applications. ECS has a scheduler component that monitors your running tasks and reschedules them automatically when they fail. ECS also allows you to configure placement strategies and constraints if you like to customize how the scheduler […]
Overview of the target architecture – Enabling the Observability of Your Workloads
Before we dive into the code-level changes, let’s get a visual understanding of the components we plan to add around our test application stack, and how they communicate with each other. We will focus on capabilities that help us monitor the application logs and metrics on tools of our choice. We will extend our existing […]
Amazon CloudWatch, Application components, AWS Certification Exam, Early identification of issues, Software Composition Analysis
Deploying the stack in an AWS account – Enabling the Observability of Your Workloads
At this point, we can deploy our CDK stack in the AWS account. Alongside core infrastructure elements such as VPCs, subnets, and gateways, it will provision the ECS cluster, which contains three containers – the application, the database, and the OpenTelemetry collector. We will also deploy an independent workspace for Amazon-managed Prometheus. Toward the end, […]
Deploying a test application on ECS – Running Containers in AWS
It’s always fun to see what we’ve learned in action. Based on what we have explored so far, let’s get our hands dirty by deploying a test application on Amazon ECS. This time, we’ll create a newapplication that you can also use and customize beyond the scope of this chapter, as per your personal preferences […]
Application components, AWS Certification Exam, Early identification of issues, Software Composition Analysis
What is observability? – Enabling the Observability of Your Workloads
Simply put, it’s all about understanding the current state a running system is in, from the work it is doing and the data that it is emitting. Developing a solid observability strategy is not a one-time thing and it will always have scope for optimizations as your business needs evolve. But, before you can even […]