Nyefan

joined 1 year ago
[–] Nyefan@programming.dev 1 points 1 year ago

Early in the history of docker, a lot of bits and bobs hadn't been worked out yet, and I had a bug land on my desk where a service was leaking memory until it crashed, but only when running in a container. Turns out, the jvm at the time just never collected in a container because the /proc directory was mounted from the host rather than the k8s scheduler. So it would only collect if it did not receive a second allocation request during the GC.

[–] Nyefan@programming.dev 2 points 1 year ago (1 children)

This is no longer true with buildkit - you can use the --secret to securely pass a secret in as an argument.

[–] Nyefan@programming.dev 5 points 1 year ago

I do a code review in the problem domain for my applicants. For instance, for my devops/sre interviews, I have some shell, docker, python, terraform, helm, and circleci files in a repo that all have some issues. For frontend dev, I do the same but with the frameworks we use (next/react, jest, cypress), and the same for backend (python, sam, flask, flyway, and pytest).

Some of these problems are logical, some are syntactic, and some are obvious poor practices, and some are esoteric issues that would only be obvious to an SME (and may not be obvious then, because it should become a discussion of the tradeoffs of one approach over another). The projects are not any bigger than they need to be to function for the interview, and they should not take more than an hour or two to read and assess for the caliber of candidates we seek.

I give candidates access to the repo a week ahead of time and ask for them to come to the interview with a list issues to discuss.