Hacker News: awoimbee

New comment by awoimbee in "Moving a large-scale metrics pipeline from StatsD to OpenTelemetry / Prometheus"

awoimbee — Thu, 16 Apr 2026 06:35:10 +0000

Directly emitting metrics using OTLP instead of having the OTel receiver scrape the metrics endpoint is interesting. I never made that move because the Prometheus metrics endpoint works and is so simple, and it's what most projects (eg kubernetes) use.

New comment by awoimbee in "OpenSUSE Kalpa"

awoimbee — Tue, 17 Mar 2026 17:58:02 +0000

Tubleweed has snapshots and rollbacks too by default. But yeah immutable distros are good for beginners so they don't destroy their system!

New comment by awoimbee in "Infrastructure decisions I endorse or regret after 4 years at a startup (2024)"

awoimbee — Sat, 21 Feb 2026 10:00:42 +0000

I was the sole DevOps at my company for a long time, the team is now bigger. I used terraform for AWS and pulumi for K8S (terraform was too restrictive).

IMO pulumi is a huge gain of productivity when you know what you're doing. Cons: * It's plagued by bugs and the pulumi-kubernetes provider is not getting enough attention from the pulumi team (they're always working on compatibility with yet another language instead of focusing on one thing) * You end up with your very specific/personal codebase instead of having a generic/standard thing

Still, no regrets, I saved so much time thanks to pulumi!

With a bigger team: * Oboarding people takes more time * You end up with code quality issues. Most "DevOps" people aren't devs, sadly.

New comment by awoimbee in "Garage – An S3 object store so reliable you can run it outside datacenters"

awoimbee — Fri, 19 Dec 2025 20:11:43 +0000

How is garage for a simple local dev env ? I recently used seaweedfs since they have a super simple minimal setup compared to garage which seemed to require a config file just to get started.

New comment by awoimbee in "Core Devices keeps stealing our work"

awoimbee — Tue, 18 Nov 2025 08:29:05 +0000

That's why the GPL license was created.

New comment by awoimbee in "Helm 4.0"

awoimbee — Sat, 15 Nov 2025 00:43:17 +0000

The feature that makes me love pulumi is crd2pulumi, it generates simple, type checked and documented libraries from CRDs.

E.g. these are the libs I use, generated from CRDs: https://github.com/Extrality/pulumi-crds

New comment by awoimbee in "Hyperflask – Full stack Flask and Htmx framework"

awoimbee — Fri, 17 Oct 2025 07:55:59 +0000

I ran into: - too high memory usage - no warning when a task doesn't yield - monkey patching: * general confusion like threading.local behaving differently * pain to integrate sentry in gunicorn with gevent since you need to import sentry after monkey patching. The OTel libs work better but you need to be careful * all compiled libs need to be replaced (eg psycogreen) ...

New comment by awoimbee in "Hyperflask – Full stack Flask and Htmx framework"

awoimbee — Thu, 16 Oct 2025 18:11:43 +0000

Building a framework on a non-async foundation (flask) in 2025 is bizarre. The only way to scale a flask API is to use gevent, which is just problems waiting to happen. Asyncio is just better, safer and has been adopted by the industry.

New comment by awoimbee in "iPhone Air"

awoimbee — Wed, 10 Sep 2025 06:08:57 +0000

THANK YOU FOR YOUR ATTENTION ON THIS MATTER

This announcement contains so many fake marketing words I can't help but read it in DJT's voice... Add Tim Apple's present and yeah, cool tech, not interested.

New comment by awoimbee in "I ditched Docker for Podman"

awoimbee — Fri, 05 Sep 2025 15:10:43 +0000

The main issue is podman support on Ubuntu. Ubuntu ships outdated podman versions that don't work out of the box. So I use podman v5, GitHub actions uses podman v3, and my coworkers on Ubuntu use docker. So now my script must work with old podman, recent podman and docker

New comment by awoimbee in "Unfortunately, the ICEBlock app is activism theater"

awoimbee — Tue, 02 Sep 2025 11:13:03 +0000

This can't be reduced to a boolean (as always). The issue is that ICE is doing #2 via #1.

New comment by awoimbee in "XZ Utils Backdoor Still Lurking in Docker Images"

awoimbee — Tue, 19 Aug 2025 10:43:20 +0000

Containers != Docker Vulnerable software is an issue outside containers too. Containers allow better isolation.

New comment by awoimbee in "Google restricts Android sideloading"

awoimbee — Thu, 05 Jun 2025 17:05:03 +0000

I can't find sources to this one sided article nor can I find anything recent when searching for it

New comment by awoimbee in "CVE-2024-47081: Netrc credential leak in PSF requests library"

awoimbee — Tue, 03 Jun 2025 21:22:44 +0000

That's some horrible url parsing code...

But honestly urllib sucks:

url.hostname doesn't return the port url.netloc also returns the basic auth part So you have to f"{u.hostname}:{u.port}"

New comment by awoimbee in "Ask HN: What projects do you donate to?"

awoimbee — Tue, 27 May 2025 06:57:36 +0000

I donate to immich even though I still use Google photos since I don't want to host critical infra in my spare time

https://github.com/immich-app

New comment by awoimbee in "Writing "/etc/hosts" breaks the Substack editor"

awoimbee — Sat, 26 Apr 2025 17:55:55 +0000

I'm in the position where I have to run a WAF to pass security certifications. The only open source WAFs are modsecurity and it's beta successor, coraza. These things are dumb, they just use OWASP's coreruleset which is a big pile of unreadable garbage.

New comment by awoimbee in "Observability 2.0 and the Database for It"

awoimbee — Fri, 25 Apr 2025 06:13:28 +0000

It looks like what the grafana stack does but it's linking specialized tools instead of building one big tool (eg linking traces [0]).

The only thing then is that there is no link between logs and metrics, but I guess since they created alloy [1] they could make it so logs and metrics labels match, so we could select/see both at once ?

Oh ok here's a blog post from 2020 saying exactly this: https://grafana.com/blog/2020/03/31/how-to-successfully-corr...

[0]: https://grafana.com/docs/grafana/latest/datasources/tempo/tr... [1]: https://grafana.com/docs/alloy/latest/

New comment by awoimbee in "Ask HN: Who is hiring? (February 2025)"

awoimbee — Mon, 03 Feb 2025 17:00:56 +0000

Ansys SimAI | DevOps (more developer than SRE) | REMOTE (France, office is in Paris) | Full time

We're building products to predict the results of numerical simulation and act on them. Since joining the Ansys portfolio we are experiencing more demand than ever and we need help to transform a good product and infra into something truly great.

At SimAI we lightly use AWS and heavily depend on Kubernetes, both being 100% configured through Infrastructure as Code (a bit of terraform and a lot of pulumi). You will mostly work with Typescript (pulumi), Python (scripts and application code), Bash (scripts).

As a DevOps at SimAI you will work with me on exciting subjects like moving the compute closer to the customer, you will also work on improving our security posture and help secure more certifications for our platform. As part of my job at SimAI I personally maintain <https://github.com/Trow-Registry/trow>.

Don't hesitate to apply, motivation matters as much as experience to me ! Apply here: https://careers.ansys.com/job/Montigny-le-Bretonneux-Senior-...

New comment by awoimbee in "Wordpress.org Login: "I am not affiliated with WP Engine in any way""

awoimbee — Thu, 10 Oct 2024 06:49:48 +0000

The offer was quite good honestly: people who left got a $30k buyout.

New comment by awoimbee in "NumPy QuadDType: Quadruple Precision for Everyone"

awoimbee — Fri, 04 Oct 2024 15:41:34 +0000

> The long double type varies dramatically across platforms: > [...] > What sets numpy_quaddtype apart is its dual-backend approach: > Long Double: This backend uses the native long double type, which can offer up to 80-bit precision on some systems allowing backwads compatibility with np.longdouble.

Why introduce a new alias that might be 128 bits but also 80 ? IMO the world should focus on well defined types (f8, f16, f32, f64, f80, f128), then maybe add aliases.