The Salesforce Platform-as-a-Service Security Assurance team is constantly assessing modern compute platforms for security level and features. We use the insights from these research efforts to provide fast and comprehensive support to engineering teams who explore platform options that adequately support their security requirements. Unsurprisingly, Kubernetes is one of the platforms that we deal with… Continue reading Looking at the Kubernetes Control Plane for Multi-Tenancy
Month: August 2021
How, Not Why: An Alternative to the Five Whys for Post-Mortems
When I got into the DevOps field, I was exposed to The Five Whys — a popular analytical method used in incident postmortems. The Five Whys is one type of root cause analysis (RCA): “The primary goal of the technique is to determine the root cause of a defect or problem by repeating the question ‘Why?.’ Each… Continue reading How, Not Why: An Alternative to the Five Whys for Post-Mortems
Faster, more efficient systems for finding and fixing regressions
Every workday, Facebook engineers commit thousands of diffs (which is a change consisting of one or more files) into production. This code velocity allows us to rapidly ship new features, deliver bug fixes and optimizations, and run experiments. However, a natural downside to moving quickly in any industry is the risk of inadvertently causing regressions… Continue reading Faster, more efficient systems for finding and fixing regressions
Native Scrolling in Salesforce mobile app
Native Scrolling in Salesforce Mobile App The Salesforce mobile app is a native app with hybrid functionality available for both iOS and Android platforms. A hybrid app combines the best of both worlds, leveraging native experiences with rich web customizations provided by the Salesforce platform via Flexipages, Lightning Web Components, Aura, and VisualForce. UI Scroller was… Continue reading Native Scrolling in Salesforce mobile app
SRE Weekly Issue #257
View on sreweekly.com A message from our sponsor, StackHawk: Keeping your APIs secure requires thoughtful design and testing. Learn how to protect your REST, SOAP and GraphQL APIs from security vulnerabilities with StackHawk http://sthwk.com/api-protection Articles Sometimes alerts have inobvious reasons for existing This one really got me thinking. Make sure you document why an alert… Continue reading SRE Weekly Issue #257
Zero Downtime Node Patching in a Kubernetes Cluster
Authors: Vaishnavi Galgali, Arpeet Kale, Robert Xue Introduction The Salesforce Einstein Vision and Language services are deployed in an AWS Elastic Kubernetes Service (EKS) cluster. One of the primary security and compliance requirements is operating system patching. The cluster nodes that the services are deployed on need to have regular operating system updates. Operating system patching… Continue reading Zero Downtime Node Patching in a Kubernetes Cluster
Minesweeper automates root cause analysis as a first-line defense against bugs
Root cause analysis (RCA) is an important part of fixing any bug. After all, you can’t solve a problem without getting to the heart of it. But RCA isn’t always simple, especially at a scale like Facebook’s. When billions of people are using an app on a variety of platforms and devices, a single bug… Continue reading Minesweeper automates root cause analysis as a first-line defense against bugs
The Origin of MLMon
by Means of Natural Selection, or the Preservation of Favoured Microservices in the Struggle for Life So this is going to be an experimental format for a blog post. I’m going to describe a problem and solution then the problems that came up after, then solutions to them, and new problems, etc. I am not claiming… Continue reading The Origin of MLMon
SRE Weekly Issue #256
View on sreweekly.com A message from our sponsor, StackHawk: Register now for the first-ever ZAPCon taking place March 9th. The free event will focus on OWASP ZAP and application security best practices. You wont want to miss it! http://sthwk.com/zapcon-sre-weekly Articles Slack’s Outage on January 4th 2021 Here’s a blog post from Slack giving even more… Continue reading SRE Weekly Issue #256
Analytical Model for Capacity and Degradation in Distributed Systems
Activity Platform (AP) is part of our Einstein Activity Capture (EAC) and Engagement Activity Platform (EAP) eco-system. AP captures, on behalf of users, their activities and engagement data generated from the interaction between users and their leads and contacts. Upon capturing those records, they are scoped, augmented with artificial intelligence models, stored, indexed, used to… Continue reading Analytical Model for Capacity and Degradation in Distributed Systems