Nathaniel Yocom

At the core of effective engineering leadership is the ability to stay connected with your team. This is perhaps the most challenging aspect because retaining the respect of your people is difficult unless you remain technically involved yourself. In my journey as an engineering leader, staying true to the individual contributor role that originally earned their respect has kept me close. This approach extends beyond technical expertise; it's about maintaining a deep connection with the core activities that propel product development forward at Gearflow. One of my biggest professional fears is becoming irrelevant or disconnected from my team and our work. This fear motivates me to continually reinvent and retool in response to market demands. Next month, I'll be sharing about my adventures generating synthetic data recently. And while I'm no expert when I start preparing for these talks, the process is incredibly valuable. It's less about delivering a perfect talk and more about how the preparation expands my thinking and exposes me to new capabilities. This helps me connect the dots to opportunities at Gearflow that bring real innovation to our customers. Speaking regularly holds me accountable and pushes me to learn ahead of the curve, ensuring I remain relevant and impactful day-to-day. Every talk is a journey of discovery, helping me to lead with humility, communicate clearly, and inspire a culture of innovation through a deep, technical understanding of our work.

19

CockroachDB 24.1 is here! I'm excited about this release because 241 is the older of the twin primes 239 and 241, but most importantly because we built this release for organizations who need to reduce operational complexity, enhance developer productivity, and keep their data secure and resilient. We made migrations simpler, with improved SQL compatibility as well as updates to our migration tool MOLT Fetch. If you’re still running on a legacy database and want to make the leap, CockroachDB can help support your cloud-native migration. We designed this release so you can spend less time on database management and more time building. CockroachDB 24.1 features enhanced support for UDFs, Stored Procedures, Read Committed transactions, CDC Google Cloud Pub/Sub, Azure Event Hub, and our CockroachDB Cloud Terraform Provider. We didn’t forget about resilience or security either. Cloud clusters are now officially backed by a SLA of 99.999%. You can organize roles and permissions with Folders and increase security controls with support for GCP Private Service Connect. And Self-Hosted customers can use Physical Cluster Replication with fast cutback to reduce risk from major incidents or disasters. This post is just scratching the surface of the impressive work the Cockroach Labs team has done in making this release possible, so dive into the blog below for an in-depth look at what’s new. https://lnkd.in/efwZCwr9 

71

2 Comments

I heard a few people are suspecting this live demo showing a call to a virtual agent is not real https://lnkd.in/gnBiGDfd I can tell you that the call was real and we are able to allow the users to talk to the virtual agent with a text UI while still on the call. To find more, search the newly launched feature called 'Call Companion' under Dialogflow

31

New blog post: The little things that got me into stream processing (https://lnkd.in/gU7Ba5Ym)

60

I’m proud to share a recent article from myself and Frances Wong: "Less is more: How HashiCorp removed 80% of its dashboards to drive adoption through Sigma." This program dramatically simplified our data processes, enhancing both access and engagement. 🔗 https://lnkd.in/g-SvDrK9 What We Learned: Simplification Enhances Engagement: Cutting down on rarely used dashboards made our remaining resources more effective and user-friendly. Tech for Better Access: Sigma’s intuitive features and Python integration have revolutionized how we interact with data, making it a seamless part of our daily operations. This experience has reinforced a crucial lesson, simplicity drives usage. I’m eager to explore how these insights can transform data analytics and engineering across our industry. What are your thoughts? Could your organization benefit from a similar approach? #DataAnalytics #Sigma #HashiCorp

102

5 Comments

An eye-opening piece on the "Observability Cost Crisis" by bitdrifts Matt Klein. It suggests a major shift in how we handle logging, metrics, and traces to curb the spiraling costs. The idea? . . . . . . . . . . . . Default to storing no telemetry data unless specifically identified as needed on the fly. While this sounds radical, the argument is that recent advancements in infrastructure AI/ML can make it a reality. #CloudEngineering #Infrastructure #Observability #SaaS #CostEfficiency

1

🚨 Aqua Security has uncovered a significant risk in Git-based Source Code Management (SCM) systems like GitHub, GitLab, and Bitbucket. Deleted or updated secrets—like API tokens and credentials—can persist in these systems, creating "phantom secrets." 🚨 Why This Matters To You Even if developers overwrite or delete these secrets, they can remain accessible. This vulnerability has led to major exposures, notably in high-profile projects like Mozilla and Cisco Meraki. Here's the scoop: when developers commit hard-coded secrets in SCMs and then overwrite or delete them, these secrets can still persist in the repository versions. This makes them easy prey for malicious actors, especially in open-source projects or public repositories. The Scanner Shortfall Most secrets scanners today can't effectively scan these buried files. They typically use the git clone command to snapshot and scan repositories, missing some files deep in the file system. However, attackers who know what to look for can find them. The Takeaway Developers should never commit code with hard-coded secrets. Regularly rotate secrets and view secrets management as a full SDLC challenge. At Akeyless, we focus on making secrets management seamless and secure for developers from day one. Our solution not only secures your development lifecycle but also simplifies it and massively reduces costs by removing the burden of servers and maintenance. Protect your enterprise from the hidden risks of phantom secrets. Learn how Akeyless can help you secure your development lifecycle from start to finish like our Fortune 500 clients. Read this compelling research today. #DevOps #DevSecOps #GitHub #GitLab #Bitbucket

12

Posting this for John Skender and others who weren't able to make it to K24 or at least this presentation at K24. Much of the presentation was a live demo explaining how to use now-sdk but you can also check out the list of features expected for Xanadu+ release which were announced at the show including Sandboxes (controlled availability), Dev Studio Pro-Code, script level granularity (versus scope level) for modern JS features (including global) and the yet to be re-named Fluent DSL for defining ServiceNow metadata as code.

117

19 Comments

Function calling in LLM is the mechanism to make the LLM respond back in specific format (json), which can be fed as input to an API.   #llm #rag #functioncalling #aiagent https://lnkd.in/gHycPaXq

19

A Deep Dive into the HashiCorp and OpenTofu Dispute The dispute between HashiCorp and OpenTofu highlights emerging complexities in open-source software development. HashiCorp issued a cease and desist to OpenTofu, alleging copyright infringement related to the "removed" block in OpenTofu's code, which mimics HashiCorp's Terraform. OpenTofu, an open-source infrastructure tool hosted by the Linux Foundation, enables users to manage cloud resources and is designed as a community-driven alternative to Terraform. This legal contention surfaces amid broader shifts in the open-source community, where entities like the OpenELA consortium are responding to restrictive licensing changes by major players like Red Hat. The situation emphasizes the importance of clear licensing, transparent code management, and community cooperation. OpenTofu's continued development despite legal challenges underscores the resilience within open-source frameworks, urging a balanced approach to innovation and copyright management. This incident underlines the need for improved licensing frameworks and tools to ensure code provenance to maintain trust and collaboration within the open-source ecosystem. Read Paul Nashawaty and my take here: https://lnkd.in/exYVAfNp

5

We published an article about all the awesome product observability features of Segment we have today and upcoming in the near future. Bookmark this if you are a Segment user!

36

🚨 I took down a major piece of infrastructure as a tech lead at Yahoo! and didn’t get fired…. I think this is the nightmare scenario for engineers - to not only break your own product, but to do broader carnage to systems at the company. I think we all fear what the repercussions are if we do this. However, when intent is good, recovery is swift and learnings documented, these things are actually quite formative. When it happened, I was able to remain calm and walk through a rollback in 2 minutes, which allowed the downstream infrastructure to recover in about 10 minutes. This was also the start to my reputation as a level-headed technical leader. Good relationships with my peers in the infrastructure team allowed us to quickly diagnose that my code push was the cause of the incident and take action. I was leading a team building a very powerful piece of software. We had a client library that was installed on every server and allowed us to push out front-end code to every web property simultaneously. Code changes would propagate in about 2 minutes from push. It allowed us to provide a consistent branding, search and navigation system.  Because we understood the power of the system, we also had plans in place if something went wrong and had practiced rollback and forwards. Typically, when things went wrong, they were minor UX bugs in the interface. Medium problems cost us some dollars in search revenues. However, this time, my change had a massive impact downstream. I had added a new polling feature that worked against the caching strategy of the platform I was calling. Within 2 minutes of diagnosis I executed the rollback strategy. The bad news was the product manager had to wait a few more days for the new feature to roll again respecting the caching strategy of the platform. The good news is that we recovered quickly. I learned a few lessons from this outage: 🚨 Outages happen all the time and you will likely not lose your job if you cause one. 📝 Your team should have plans should an outage happen how you will approach debugging and recovery. ⏰ Practice for urgent situations before they occur. 🏋‍♀️ Building and maintaining strong connections with leads of systems where you have dependency is key. 🧞‍♀️ I have a special ability to appear completely calm while feeling absolute panic inside, which is a good capability to have. 

59

9 Comments

<rant> Yesterday morning I wrote a post about the phrase "scaling independently" while waiting for my KIND cluster to spin up, and I promised that I would give an example of where you really DO want things to "scale independently" in a separate post. Well, that post is here. Let's talk about #apachekafka and its new Raft-based metadata solution, known as KRaft (yes, it evokes Mac-and-Cheese, which is partially why I like it so much). KRaft is a replacement for ZooKeeper's former role in Kafka. In a KRaft-based cluster, the Metadata Quorum is a group of Kafka Servers that have the "controller" role. The Metadata Quorum stores information such as "what topics exist in my cluster?" and "which Broker is the leader for which Partition?" and "which follower replicas live on which Broker?". This information is CRITICAL for the availability and consistency of a Kafka cluster. In order to ensure consistency of the Metadata Quorum, one specific Controller is chosen as the leader. All write requests go through that leader. In order to ensure availability of the Metadata Quorum, there can be "follower" Controllers in the Metadata Quorum which also store the metadata updates (synchronous replication). In case of failure of the leader, one of the followers can become the leader. In this specific case, it DOES make sense to scale the Brokers and Controllers independently. Why? First, the Controllers don't actually scale. One can be a leader at a time, so the others are just providing backup (note: for reasons beyond the scope of this post, it's best to have an odd number). Additionally, before KIP-853 is implemented, it's actually really hard to add or remove Controllers to/from the Metadata Quorum without downtime. Secondly, it's possible for a misbehaving client to take down a Broker, for example by sending way too much data to a specific partition. If it's just a single Broker that's lost, most of the cluster will continue on and live to fight another day. However, losing a Controller is a Very Bad Thing. Thus, by separating the Controllers from the Brokers, we can improve the availability of the cluster. It is indeed possible to run Kafka with some servers that share the responsibility of Controller and Broker. This is great for development (especially local dev) and also in *SOME* highly resource-constrained production environments. However, I would suggest as a rule of thumb that you should probably: - Separate out your Controllers on their own isolated machines - Start with a Metadata Quorum of size 3, which allows losing one Controller and continuing on alive - Put your Brokers on another set of nodes. Now, there's another good example of how Kafka scales X and Y independently: Compute and Storage. Watch out for the next "Colt Rant" about this, coming later this week! </rant> PS—here's the link to the previous post: https://lnkd.in/gXU77rKW

12

6 Comments

Super pumped that Cribl Lake is finally available! It gives you a place to store IT and security data with no pre-defined schema, and stores the data in open formats, making it easier to manage, and easier to search and find answers across Lake and other data lakes, object stores, or APIs quickly to accelerate MTTR. One Search to rule them all! https://lnkd.in/g_UrCstt

24

1 Comment

Here's how to export a ARRL Field Day Cabrillo log from WSJT-X: https://lnkd.in/gE5HEyVE

1

"Your main job is to make your product win." I think this should apply to any product that your company makes. I also like what he says following this statement about what is NOT your main job. I will summarize here: "Your main job is not to make your manager happy, it is not to make execs happy." Also, note, this main job doesn't only apply to PMs, but also to senior Engineering Managers, Tech Leads, and Designers. #makeyourproductwin #leadership

5

1 Comment

Honeycomb's storage engine, Retriever, is the key differentiator behind so much of our product. I sometimes get questions from other engineering leaders about why we didn't use x or y off-the-shelf technology or product instead. There are a number of reasons I could share, but one of the most important ones is that it's usually hard to evolve someone else's offering (even if OSS) as the constraints of your business change over time. This post from Hazel Edmands is such a fantastic deep dive into our most recent round of doing just that. https://lnkd.in/g9mvvHWW

119

3 Comments