Team Erosion

This is not a geography post. However, software architecture and code also suffer from erosion. People come and go, teams get created and destroyed by the project mindset. The result is an ownership problem. Ownership problem is just another form of a Governance issue; Governance is a bad world and often associated with bureaucracy and old ideas, and bad stuff. Ownership issues exist because teams touch a higher number of resources such as Code, Database Schemas, Dashboards, Alerts, Wiki pages, S3 Buckets, Kubernetes clusters, Ec2 instances, and much more assets. So why AWS TAGS are not enough? 

The issues with Tags 

The tags are awesome don't get me wrong. However, tags will work only for AWS resources, and the reality is we have much more resources, and several of those easily are outside of AWS, such as Dashboards, Alerts, Traces, Logs, Source Code, Jenkins Jobs, and much more. You should be doing TAGS, dont get me wrong, but thats not enough. We need more. 

So people think that could be solved with a monorepo. Monorepos can make sense within a single domain and for sure they reduce the software proliferation aspect but this is also not enough for fix the team erosion problem. 

The need for a lifecycle

New engineers are joining your organization.  What software should they use? what software should they avoid at all costs? Which software they need to maintain? It could be very tricky and noisy to answer that question. People coming and going(The erosion effect) could easily create orphans; which team should inherit the assets? A lifecycle is about effective comunication. 


This is a very sample lifecycle example; for sure, you can have a more complicated one. But having these 3 states, we can provide a strong and effective comunication pattern meaning:
  ACTIVE: Live and Well - Feel free to keep growing and doing PRs here. 
  DEPRECATED: We want to decommission this; we are in maintenance mode, do PRs if you must.
  DEAD: We archive it, close to be burned :-) So dont do PR's here. This is not in production anymore. 

Git/Github has commit hooks, which we could check the metadata of the assets before allowing a commit co trought, that could also be an effective way to communicate to teams. 

The need for metadata

Lifecycle is cool but is that enough? No. We need more. We also need to have metadata. Metadata will help us to increase the understanding of the systems. Metadata can be either a single file on each github repository and/or tags on resources. What other forms of metadata might be useful:
 * Kind: It's a Service, Shared Lib or Lambda? 
 * Owner: Could be a Team, An Architect, and EM. Ideally, email and Slack Handlers here as well.
 * Lifecycle State: (Active|Deprecated|Dead) so we know what the state of affairs is. 
 * Links: Links to other resources owned by that team: Dashboards, Alerts, etc. 

Netflix has an OSSMETADATA file to tell the community the state of affairs.  You can do a similar thing in your github, or you can also build a more complex system like YELP did it

Automation and Accountability

Once you have the data in place. Automation can be created to show a unified Dashboard or page. Alerts also can be creating remembering the team to update their assets for instance.  Having this metadata in place also allows us to have a BOT that can POKE people to remind them they do update their important assets such as libraries versions, broken dashboards, un-used instances in AWS, etc. 

Accountability can be the next step. Either by committee or open forun, you will need to decide who inherit orphans this is important because otherwise, the system would lose his purpose. Having healthy software could also be part of coaching/management evaluation criteria. 

By the end, it's all about having a product mentality with long-term thinking and understand that projects and people can come and go but the code and other assets might be there forever so we need a different way to think and approach the Governance of these resources. 

Cheers,
Diego Pacheco

Popular posts from this blog

Kafka Streams with Java 15

Image
Kafka Streams is a Streaming library similar to Spark and Flink which works with Apache Kafka. Kafka stream can be useful to process historical and near-real-time big data workloads but also for non-realtime analytical computations at scale for the online world as well. Kafka-Streams is elastic, highly scalable, fault-tolerant, and fully integrated with Kafka. You can use Kafka Stream with Java, Scala, Kotlin JVM applications and also have exactly-once processing semantics. Kafka-Streams is being used by the New York Times, Pinterest, Line, Trivago, Zalando, and many other companies. Today I want to share a video of Kafka-Streams running with Kafka 2.6 and Java JDK 15. So Let's get started. 
read more »

Rust and Java Interoperability

Image
Rust does not stop for one second to amaze me. It looks like Rust was designed to talk to every other language so easily. No kidding, it's clear way Web Assembly and rust have lots in common. Java is never an easy lang to interop with. Today I will show how easily we can interop Java & Rust. In order to do so, we will need to use the Java and Rust compilers. For Java, we will not require any other lib than the standard JDK. For Rust, we will need to create a lib project in cargo and we will need to use the crate JNI. I love this feature because java does not allow low-level code on the main language. So if we need to do something low level, efficiently Rust is my first choice, not only for safety reasons but because is really fast.  Let's get started.
read more »

HMAC in Java

Image
In 2018 AWS CTO(Vogels) said : "Security is everyone's job". For the last 2 years, there was so many famous and big data leaks and breaks that made that statement be very true more than ever. Security often could mean worst performance and worst user experience so in order to get it right you really need to think about the designs before jumping into to code and consider performance and user experience has main requirements.  I was thinking about writing about how to do HMAC in Java for a while and recently Redis 6.0.0 come out and to my surprise, there was a refactoring on the password part in order to use HMAC.  Security easily could scare engineers often because it is not something well spread yet but I believe this will change soon. It does not matter if you have to deal with PII Data or not, security is super relevant because everybody is running their workloads at the cloud or with IoT and Edge devices which means more distribution, more code, more points of fail
read more »