jervis
home
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
jervis
-
mTLS in 15 Minutes
Clone my jervis project which has some java-based encryption
-
HashiCorp Vault vs AWS Secrets Manager
I have some open licensed code for vault and AppRole client management you can draw inspiration from if you wanted to create your own client for devs or even directly copy (following its license/attribution/etc).
-
Dependency tracker for (really big) builds / deploys
If you wanted to learn more about SBOMs the DependencyTrack website has great videos on the subject by Steve Springett. If you wanted to try DependencyTrack from your laptop I have it integrated in my open source project along with sonarqube. https://github.com/samrocketman/jervis/tree/main/dependencytrack
-
junior dev ops here - need to configure Linux and Windows build/dev workstations on demand, for CI/CD pipelines and on-premise developers with special drivers/install processes that sometimes take 2-3 days manually. ML/AI. What tech stacks would you advise for config?
In my groovy project, VSCode is integrated with the source code within the same repository. A local instance of SonarQube (for code coverage and static analysis), DependencyTrack (security scanning of dependencies), and HashiCorp Vault for my Vault API client for development. It has several tasks for generating documentation, running codenarc, submitting code coverage reports, etc.
-
What is the best course/courses to learn pipeline as code with Groovy and Jenkins
README
-
What do you use for storing your git history in production?
Hopefully my description is specific enough that others can replicate it easily. Currently, working on building out GitHub App support for cloneable so that you need only grant readonly access to all repositories to be backed up using service credentials. The backend API client I wrote is called Jervis.
-
How to setup docker as a development environment ?
My pet project named Jervis. This is an example of VSCode dev containers integrated directly with the project source code. This VSCode dev container is for Groovy/Java development. It also provisions sonarqube for static analysis and code coverage metrics. It provisions DependencyTrack for dependency vulnerability scanning. Can set breakpoints for Java debugging and Groovy Console for REPL.
-
The most secure way of building untrusted Docker images?
Are you referring to a CI/CD environment? I built one out based on Jenkins called Jervis where it focuses on ephemeral agents, CI code in repositories, self service onboarding, and isolation. I currently run it in AWS.
home
-
Securing your temp space for internet browsing
From a server perspective, you make all user writable space noexec but that’s not very practical for desktop. I also configure a firewall with inbound and outbound rules, but that’s a bit more advanced than configuring fstab for new users. Although, I’m an admin I don’t like posting in admin subreddits.
-
GitHub Actions Metrics/Alarms/Telemetry data
github_wait_actions.sh
-
Bash: help me learn!
Reading the man page will blow your mind. You can make a bash e-book for easier reading outside of the terminal like a tablet.
-
Should CI/CD tooling build & deploy its own configuration and infrastructure?
Jenkins infrastructure relies on AWS features. It's uptime is maintained by an autoscaling group. The active half (say blue) sets desired capacity of green to 1 and follows up by setting its own ASG to desired capacity 0. AWS takes over from that point. Green waits for the volume to become available and if the volume is blue it takes a snapshot and waits for the snapshot to complete. After the snapshot completes it updates the AWS tag of the data volume from blue to green. Then, it hands off to this attach volume script. The script attaches, mounts the volume and sets up /etc/fstab in case of a reboot. After the storage is available then systemctl start jenkins.service is called.
-
Open source/free registry with HA
Hmm, I'm using EBS as well. I use a script on the autoscaling EC2 instance which attaches EBS before starting Nexus.
-
What do you use for storing your git history in production?
On boot, EBS store is auto mounted and pulls secrets from secrets manager.
- Where can I get or generate a pdf doc of more current vim documentation?
-
Searching for a good bash course to improve my scripting skills
Functions take compound commands. People treat bash like other programming languages but it is more powerful at specific things. Functions can take more than {} which is unlike other programming languages.
What are some alternatives?
gradle-nexus-staging-plugin - Automatize releasing Gradle projects to Maven Central.
ShellCheck - ShellCheck, a static analysis tool for shell scripts
Jenkins - Jenkins automation server
Harbor - An open source trusted cloud native registry project that stores, signs, and scans content.
jenkins-bootstrap-shared - Jenkins as immutable infrastructure made easy. A repository of shared scripts meant to be used as a git submodule. Packing Jenkins, plugins, and scripts into immutable packages and images.
pandoc - Universal markup converter
job-dsl-plugin - A Groovy DSL for Jenkins Jobs - Sweeeeet!
cloneable - A Java CLI utility which lists available GitHub repositories under a user or organization.
endless-sky-vscode-devcontainer - Portable Development Environments for the Endless Sky community.
quickstart-hashicorp-consul - AWS Quick Start Team
job-dsl-gradle-example - An example Job DSL project that uses Gradle for building and testing.
jenkins-script-console-scripts - A repository of one-off script console scripts for Jenkins.