Our newest version of the Skyscrapers Security Policy is publicly available

We are excited to announce a new version of our Security Policy to reflect the latest changes in our organization, continously improving our security practices. There are some significant changes, with emphasis on the introduction of the “Data Classification and Handling” and “Asset Management” policies. Furthermore, following these new policies, we have made this new version available via our public documentation website.

Upgraded Teleport to version 15.4.21

We’ve upgraded all Teleport clusters to 15.4.21. Teleport is a tool we mostly use internally to provide secure and auditted access to (EC2) instances, Kubernetes clusters and several dashboards. The nodes will gradually be upgraded to the new version when new instances are launched. You can find more information on this release in the Teleport changelog.

More …

New Grafana SRE dashboards

we’ve integrated open-source dashboards taking advantage of the newest features in Grafana to our setup. These dashboards are designed to help you monitor your services and infrastructure more effectively. They are available in your Grafana under the SRE section. Here is a quick overview of the new dashboards:

More …

Maintenance: OpenTofu upgraded to 1.8.3

We’re excited to announce that we are now using OpenTofu version 1.8.3 to deploy our environments. This release includes several bug fixes and new features that we can leverage going forward. No action is needed on your part, as the upgrade is part of our automation processes. Most of our codebases still allow using OpenTofu >= 1.6. If you encounter any issues or have any questions, please don’t hesitate to contact us.

More …

New feature: Dependabot scanning for Terragrunt/OpenTofu

We’re excited to announce that Dependabot has been integrated into our GitHub repositories to ensure our Terragrunt and OpenTofu modules stay up to date. Dependabot will automatically scan our repositories for outdated dependencies and generate pull requests to update them. This proactive approach helps us maintain the security and stability of our modules while keeping them current with the latest features and bug fixes. No action is needed on your part, Dependabot will handle the pull requests, and we’ll take care of reviewing, adjusting, and merging them.

[ACTION REQUIRED] Upgraded cluster add-ons

The following updates have been rolled out to non-production clusters, and will be pushed to production in the coming week. Notable updates include the major release of Karpenter v1 and improvements across various add-ons, ensuring enhanced performance and security. This is also a reminder to for Actions to take regarding the Grafana AngularJS deprecation!

More …

Upgrading Concourse CI to version 7.11.2

We’re happy to announce we’re finally upgrading to the latest version of Concourse CI, v7.11.2, which brings a lot of new features and improvements. Considering this is quite a substantial upgrade, we will get in touch with each customer individually in the coming weeks to start the upgrade process. This will also incur Concourse downtime, so we will work with you to find the best time to do this.

More …

Upgraded Teleport to version 15.4.16

We’ve upgraded all Teleport clusters to 15.4.16. Teleport is a tool we mostly use internally to provide secure and auditted access to (EC2) instances, Kubernetes clusters and several dashboards. The nodes will gradually be upgraded to the new version when new instances are launched. You can find more information on this release in the Teleport changelog.

Upgraded Teleport to version 15.4.9

We’ve upgraded all Teleport clusters to 15.4.9. Teleport is a tool we mostly use internally to provide secure and auditted access to (EC2) instances, Kubernetes clusters and several dashboards. The nodes will gradually be upgraded to the new version when new instances are launched. You can find more information on this release in the Teleport changelog.

Upgraded cluster add-ons - hotfixes

We’ve upgraded several components, most notably Karpenter, mid cycle to fix several bugs. This resolves the AWS notice regarding a defect in Karpenter’s AMI drift detection logic, which could lead to unexpected, unneeded, node replacements. We have rolled out the update to all our managed environments.

More …

New feature CloudWatch integration in Grafana

We are excited to announce that we have configured the CloudWatch integration in Grafana by default. This allows you to query and visualize your AWS CloudWatch metrics in Grafana. This is especially useful if you are already using Grafana for monitoring and want to have all your metrics in one place.

More …

Introducing Flux as a feature to the k8s platform

We are excited to introduce Flux, a powerful GitOps tool for Kubernetes, to our platform. It is designed to keep your Kubernetes clusters in sync based on the configuration in git and to automate updates to configuration when Flux detects it. If you think this could be useful for your team, get in touch with us so we can enable it on your cluster(s), and offer you guidance and training on how to leverage it for your use-case.

More …