Reading Notes #611

Welcome to this week’s edition of Reading Notes! In this roundup, we explore a variety of topics across cloud, programming, databases, and AI. From understanding Docker’s USER instruction to styling Blazor components with CSS, I’ve got you covered. Let’s dive in!

Suggestion of the week

• Understanding the Docker USER Instruction (Jay Schmidt) - A great post to that explains really clearly the basic usage of user when building our container. After reading this post you should feel confident to follow this best practices.

Cloud

• Azure Static Web Apps–SWA CLI behind the scenes (Bart Wullems) - Cool post to that quickly explains how the CLIworks and a few different tools.

Programming

• Blazor Basics: Styling Blazor Components with CSS (Claudio Bernasconi) - That will solve an issue I was having... Blazor for the win!

• Is Your ASP.NET Core Application Running In A Container? (Adam Storr) - Very neat tip to know when the App is or not in a container.

• Setting up NGINX load balancer for .NET WebApi (Oskar Dudycz) - Very well done tutorial to set a reverse proxy.

Databases

• Automating SQL Deployments using GitHub Actions - Part 2 (Eduardo Pivaral) - That's pretty neat. Of course, there is a SQL option but I never thought about it. Excellent idea to keep everything in one place with versions.

AI

• Updated Documentation for Semantic Kernel (Sophia Lagerkrans-Pandey) - Nice update in the documentation, new content new look.

~frank

Reading Notes #610

Happy Canada Day!
It's reading notes time! It is a habit I started a long time ago, where I share a list of all the articles, blog posts, and books that catch my interest during the week.

You also read something you liked? Share it!

Cloud

• Is .NET Aspire NuGet for Cloud Service Dependencies? (Phil Haack) - I like the comparison with NuGet. Using .NET Aspire in a project does indeed simplify a lot things. I'll be waiting for that follow up post.

Programming

• Dev Home Preview v0.15 Release (Kayla Cinnamon) - Cools news updates in Dev home.

• Announcing TypeScript 5.5 - TypeScript (Daniel Rosenwasser) - Really good news for the JavaScript developers. This post shares all the new features like ECMAScript, Set Methods support, and the performance improvement included in this release candidate of Typescript.

• Refactor your code with default lambda parameters - .NET Blog (David Pine) - A really good post, last of a series of four about new features of C# 12. I really like that new way to declare defaults I think it's much clearer.

• Blazor Basics: Dealing with Complex State Scenarios (Claudio Bernasconi) - Interesting package Fluxor that help managing states. The post also explains different pros and cons of methods to maintain states.

Databases

• What is SQL Injection in Cybersecurity? How to Prevent SQLi Attacks (Jen Swisher) - This post explains what are SQL injections and how they could affect our website. When I shares how to prevent those attack the post focuses on CMS like WordPress.

AI

• Mistral Introduces AI Code Generation Model Codestral (Daniel Dominguez) - On nice! A new model that specializes into code, and many languages on top of that.

~frank

Reading Notes #607

It's reading notes time! It is a habit I started a long time ago, where I share a list of all the articles, blog posts, and books that catch my interest during the week. 

You also read something you liked? Share it!

Cloud

• Azure PostgreSQL, Entra ID Authentication and .NET | LINQ to Fail (Aaron Powell) - Great post! Of course using some identity provider is more complicated then a strait password, but it's way simpler that we may though.

• Bringing the Aspire dashboard to ACA (Mark Downie) - One of the great tool that was released with Aspire is its dashboard as it shows traces across services. This post shares how to enable this amazing tool in Azure.

• Microsoft Entra ID Tenant Starters Guide: Understanding Identity Management and Licensing (Gregor Wohlfarter) - Nice post to have an overview of this important piece of security.

Programming

• Refactor your code using alias any type - .NET Blog (David Pine) - Excellent series to learn more about recently to feature of C#.

• Blazor Basics: Child Routes & Optional Route Parameters (Claudio Bernasconi) - You know your route 101 and would like to learn more, this post is for you.

Databases

• A beginner's guide to mapping arrays in EF Core 8 - .NET Blog (Arthur Vickers) - An interesting post to that depending if your database supported features explains how EF Core could works and use arrays.

Podcasts

• The Definition of Success with author Neil Strauss (A Bit of Optimism) - For a conversation to be constructive and to learn from it not all participant needs to agree. Nice episode about success.

• 81. From APIs to natural language: The democratization of AI - with Henk Boelman (Betatalks the podcast) - Nice to listen to a colleague. Henk definitely knows the very well the topic and how to explains it clearly.

• Motivated by play (Friends) (The Changelog: Software Development, Open Source) - What a journey! Interesting episode, inspiring.

• Brady Gaster: .NET Cloud Native - Episode 295 (Azure DevOps Podcast) - Aspire, aspire, aspire, you will learn all about Aspire in this episode.

~frank

It turns out, it's not difficult to remove all passwords from our Docker Compose files

I used to hardcode my password in my demos and code samples. I know it's not a good practice, but it's just for demo purposes, it cannot be that dramatic, right? I know there are proper ways to manage sensitive information, but this is only temporary! And it must be complicated to remove all the passwords from a deployment... It turns out, IT IS NOT difficult at all, and that will prevent serious threats.

In this post, I will share how to remove all passwords from a docker-compose file using environment variables. It's quick to setup and easy to remember. For production deployment, it's better to use secrets, because environment variables will be visible in logs. That said, for demos and debugging and testing, it's nice to see those values. The code will be available on GitHub. This deployment was used for my talks during Azure Developers .NET Days: Auto-Generate and Host Data API Builder on Azure Static Web Apps and The most minimal API code of all... none

The Before Picture

For this deployment, I used a docker-compose file to deploy an SQL Server in a first container and Data API Builder (DAB) in a second one. When the database container starts, I run a script to create the database tables and populate them.

services:

  dab:
    image: "mcr.microsoft.com/azure-databases/data-api-builder:latest"
    container_name: trekapi
    restart: on-failure
    volumes:
      - "./startrek.json:/App/dab-config.json"
    ports:
      - "5000:5000"
    depends_on:
      - sqlDatabase

  sqlDatabase:
    image: mcr.microsoft.com/mssql/server
    container_name: trekdb
    hostname: sqltrek
    environment:
      ACCEPT_EULA: "Y"
      MSSQL_SA_PASSWORD: "1rootP@ssword"
    ports:
      - "1433:1433"
    volumes:
      - ./startrek.sql:/startrek.sql
    entrypoint:
      - /bin/bash
      - -c
      - |
        /opt/mssql/bin/sqlservr & sleep 30
        /opt/mssql-tools/bin/sqlcmd -U sa -P "1rootP@ssword" -d master -i /startrek.sql
        sleep infinity

As we can see, the password is in clear text twice, in the configuration of the database container and in the parameter for sqlcmd when populating the database. Same thing for the DAB configuration file. Here the data-source node where the password is in clear text in the connection string.

"data-source": {
 	"database-type": "mssql",
	"connection-string": "Server=localhost;Database=trek;User ID=sa;Password=myPassword!;",
	"options": {
		"set-session-context": false
	}
}

First Pass: Environment Variables

The easiest password instance to remove was in the sqlcmd command. When defining the container, an environment variable was used... Why not use it! To refer to an environment variable in a docker-compose file, you use the syntax $$VAR_NAME. I used the name of the environment variable MSSQL_SA_PASSWORD to replace the hardcoded password.

/opt/mssql-tools/bin/sqlcmd -U sa -P $$MSSQL_SA_PASSWORD -d master -i /startrek.sql

Second Pass: .env File

That's great but the value is still hardcoded when we assign the environment variable. Here comes the environment file. They are text files that holds the values in key-value paired style. The file is not committed to the repository, and it's used to store sensitive information. The file is read by the docker-compose and the values are injected. Here is the final docker-compose file:

services:

  dab:
    image: "mcr.microsoft.com/azure-databases/data-api-builder:latest"
    container_name: trekapi
    restart: on-failure
    env_file:
      - .env
    environment:
      MY_CONN_STRING: "Server=host.docker.internal;Initial Catalog=trek;User ID=sa;Password=${SA_PWD};TrustServerCertificate=True"
    volumes:
      - "./startrek.json:/App/dab-config.json"
    ports:
      - "5000:5000"
    depends_on:
      - sqlDatabase

  sqlDatabase:
    image: mcr.microsoft.com/mssql/server
    container_name: trekdb
    hostname: sqltrek
    environment:
      ACCEPT_EULA: "Y"
      MSSQL_SA_PASSWORD: ${SA_PWD}
    env_file:
      - .env
    ports:
      - "1433:1433"
    volumes:
      - ./startrek.sql:/startrek.sql
    entrypoint:
      - /bin/bash
      - -c
      - |
        /opt/mssql/bin/sqlservr & sleep 30
        /opt/mssql-tools/bin/sqlcmd -U sa -P $$MSSQL_SA_PASSWORD -d master -i /startrek.sql
        sleep infinity

Note the env_file directive in the services definition. The file .env is the name of the file used. The ${SA_PWD} tells docker compose to look for SA_PWD in the .env file. Here is what the file looks like:

SA_PWD=This!s@very$trongP@ssw0rd

Conclusion

Simple and quick. There are no reasons to still have the password in clear text in the docker compose files anymore. Even for a quick demo! Of course for a production deployment there are stronger ways to manage sensitive information, but for a demo it's perfect and it's secure.

During Microsoft Build Keynote on day 2, Julia Liuson and John Lambert talked about how trade actors are not only looking for the big fishes, but also looking at simple demos and old pieces of code, looking for passwords, keys and sensitive information.

Reading Notes #603

It's reading notes time! It is a habit I started a long time ago, where I share a list of all the articles, blog posts, and books that catch my interest during the week.

Having interesting content? Share it!

Cloud

• Logic App Consumption: How to set an API connection to use Logic Apps Managed Identity inside Visual Studio 2019 (Sandro Pereira) - I love those true life story where the author shares how they solved a real life problem.

• Using keyless authentication with Azure OpenAI (Pamela Fox) - Great post to improve the security and best practices in our code.

Programming

• Refactor your code with C# collection expressions (David Pine) - Nice post about best practices but also to really understand how things works.

• Secure your container build and publish with .NET 8 (Richard Lander) - Nice post that shows that it's easier than you probably think to improve the security in your containers.

• 🚨 7 Most Common Mistakes in C# Programming 🙅‍♂️ (Konstantin Fedorov) - Good tips to keep our code efficient and stable.

Podcasts

• Glenn Condron: .NET Web Development - Episode 293 (Azure DevOps Podcast) - Nice episode about evolution of .NET, it's open source side today, Azure Developer CLI, the new Aspire and so much more.
• Think Faster, Talk Smarter with Matt Abrahams (Modern Mentor) - Interesting episode about how to become a better communicators in both formal and informal situations. Matt is the author a book on that topic.
• Portainer for Kubernetes, Docker, Swarm, Edge, and IoT (DevOps and Docker Talk: Cloud Native Interviews and Tooling) - Great episode about Portainer a tool that most (if not all) of us should use.

Miscellaneous

• DevOps Adoption for IT Managers (Chris Pietschmann) - Interesting post that shares the benefits of DevOps for your enterprise and how to approach it as a manager.

• Cascadia Code 2404.23 (Christopher Nguyen) - I used to do ASCII art back on my C=64... Now that all those new fonts and symbols are added should I start again? Nice to have all the options available to be able to display everything we need|the console.

~Frank

Reading Notes #600

It's reading notes time! It is a habit I started a long time ago, where I share a list of all the articles, blog posts, and books that catch my interest during the week.

Having interesting content? Share it! 

by: Microsoft Designer

Suggestion of the week

• Streamline your container build and publish with .NET 8 - .NET Blog (Richard Lander) - As containers takes more and more space in our development life, it's great to see the tools evolving too. This post is a must for all .Net developers.

Cloud

• Announcing a new login experience with Azure PowerShell and Azure CLI (Damien Caro) - This is a great news. Have a look before you update.

Programming

• Build & test resilient apps in .NET with Dev Proxy - .NET Blog (Waldek Mastykarz) - Every web developers needs that tool. Dev Proxy is just pure gold.

• C#: What is the difference between 'string' and System.String? (Chris Pietschmann) - Memory check passed .... Did you knew?

• Blazor Basics: Handling Images Dynamically (Claudio Bernasconi) - A nice simple tutorial playing with images within Blazor.

Miscellaneous

• What is an RDP Browser? (And How To Get One) (Peter) - A great alternative when you want to test on different browser or version of a browser, for gaming, And also for cyber security when investigating.

~Frank

Reading Notes #598

It's reading notes time! It is a habit I started a long time ago, close to 600 weeks ago in fact, where I share a list of all the articles, blog posts, and books that catch my interest during the week. 

If you think you may have interesting content, share it!

Cloud

• What is cloud native and how can it generate business value? (George Fitzmaurice) - Interesting thoughts about cloud native, how to see it, how to se it's value.

• Using Kudu in Azure to Debug an Azure Function (Paul Michaels) - Kudu is a fantastic tools that not enough people know about.

Programming

• Is Your Container Image Really Distroless? (Laurent Goderre) - Nice post that explains a new way to improve security and more while building our container by going distroless.

• Blazor Basics: Improved Performance with Component Virtualization (Claudio Bernasconi) - When applicable the lazy loading makes a huge difference. This simple tutorial explains how things works and has all the code to back it up.

• Azure PowerShell Tips and Tricks (Paul Harrison) - PowerShell is a very interesting and useful script language.All those tips are pure wisdom!

DevOps

• Beautiful .NET Test Reports Using GitHub Actions (Sean Killeen) - It's true that the unit test result in Azure DevOps looks amazing. Pretty nice adaptation in GitHub Action, could/ should it be native?

Open Source

• Linus Torvalds announces Linux 6.8 (Brian Fagioli) - Nice post.I feel we see more often distro new release making "the e news".

• Debian’s Dedication to Security: A Robust Foundation for Docker Developers (David Dooling) - Happy to see such a fundamental distribution take seriously security as core idea.

AI

• Building a Video Analysis and Transcription Chatbot with the GenAI Stack (David Cardozo) - This post explains a very cool project with generative AI and docker in different technology, very inspiring!

~Frank

Reading Notes #583

It is time to share new reading notes. It is a habit I started a long time ago where I share a list of all the articles, blog posts, and books that catch my interest during the week. 

If you think you may have interesting content, share it!

Suggestion of the week

• Getting Started with Blazor’s New Render Modes in .NET 8 (Jon Hilton) - Amazing post that covers the four rendering mode for Blazor in .NET 8.There just enough code to understand the concept and see the trade-offs and advantages of each options.

  

  ai generated: melting snowman who love to read

  
  

Cloud

• A Decade of Have I Been Pwned (Troy Hunt) - Congrats for this anniversary and what a journey it was.I remember reading with passion your tech blog describing the tech decision taken for the site.

• Making Azure the Best Place to Observe Your Apps with OpenTelemetry (Matthew McCleary) - Looking back, tracking, monitoring, tracing are such important action when we think about application life cycle.I'm very happy to see Azure offers a great sets of tools to do it.

• Azure Arc Setup on Windows Server (Thomas Maurer) - Nice super easy wizard experience on our Windows servers.

• How to delete an Azure storage account with an unlocked Immutability policy (Stephane Lapointe) - It's great to have those security feature and to understand how they work.This post explains very clearly one of them the option we have to remove that security, and even have script snippets.

Programming

• Podman vs Docker: What are the differences? (Alex Gamela, Rute Figueiredo) - Nice post that help understanding the differences between these two tool.

• How to Switch Between .NET SDK Versions (Lennart Pries) - Quick tips for new .NET developers .

• 🤖 Does Functional Programming Matter To You? (Rob Conery) - Interesting and intriguing post about functional programming. Wanna share your thoughts? Rob is waiting for your comments...

Miscellaneous

• Terminal Chat in Windows Terminal Canary (Christopher Nguyen) - Wait, What?

• How to Become a T-Shaped Developer and Boost Your Career (sadukie) - The lesson here is embrace who you are. Very nice post about the type of people we are.

~ Frank

Reading Notes #577

It is time to share new reading notes. It is a habit I started a long time ago where I share a list of all the articles, blog posts, and books that catch my interest during the week. 

 If you think you may have interesting content, share it!

 

Cloud

• Enabling developer collaboration with Radius - Microsoft Open Source Blog (Will Tsai, Aaron Crawfis) - Oh wow! This new cloud native CNCF project looks amazing!

• Notary Project - the signing technology behind AKS Image Integrity (Toddy Mladenov) - Great oss project to help with security when working in CNCF solution.

Programming

• Markdown: How to Add Images to README.md on GitHub (Chris Pietschmann) - Where are you putting your images?

• A better debugger for PowerShell Universal by using VS Code and PowerShell Editor Services - Awesome! Debugging is soooo important happy to see the too long getting better.

• When a form is actually... oh it's a form (Jon Hilton) - Because simple is beautiful! Nice way to do the same in Blazor btw.

• Updates to Docker images in .NET 8: Exploring the .NET 8 preview - Part 10 (Andrew Lock) - Amazing light production containers for our .NET applications. This post share a few things to be careful of when building our final containers.

Low Code

• Quickly Add Multiple Rows to Excel Table In Power Automate (Matthew Devaney) - Its so fast! And on top of it its simple. These are the kind of solution we all like!

• Fastest Way To Read Large Excel Table In Power Automate (Matthew Devaney) - Now the read version of interacting lightening fast with Excel.Brilliant !

~Frank

Reading Notes #561

It is time to share new reading notes. It is a habit I started a long time ago where I share a list of all the articles, blog posts, and books that catch my interest during the week.

If you think you may have interesting content, share it!

The suggestion of the week

• How to use GitHub Copilot: Prompts, tips, and use cases (Rizel Scarlett, Michelle Mannering) - A very helpful post that helps thinking how to communicate efficiently with Copilot, by breaking down our instructions and being more specific.

Programming

• Step-by-Step Guide: Testing HTTP Endpoints in Visual Studio 2022 Using Endpoints Explorer (Andy) - So many new API related features these days in VS. This post shows you some of them.
• Learn how to mock your HttpClient in C# now with 2 simple methods (Henrique) - Nice post that explains how to Mock these HTtp calls... Because unit tests are important and APIs are everywhere it's a must!
• Docker Desktop and Windows – what’s the best option for you? (Vinicius Apolinario) - I didn't know there was such a difference between those two! I mean I get it but I'm still surprised by the differences. This is a very instructive post.
• Azure App Configuration and .NET API: a smart and secure way to manage configurations (Davide Bellone) - This is a nice tutorial that shares best security practices.
• Introducing the New T4 Command-Line Tool for .NET - .NET Blog (Mike Corsaro) - Feels like ages since I used T4... Happy to see that this powerful tool is still around and even more, updating.

Low Code

• Exploring the Power of AI Builder: Empowering Students and Educators (Lee Stott) - Why should you be interested in AI Builder and where to find it. This is what that post is about.
• Integrating Microsoft Sentinel and Power Platform to better monitor and protect your low-code solutions (Simran Kaur) - Currently only available in preview this solution will definitely help enterprises to manage their Power Platform more securely.

Miscellaneous

• Introducing the Microsoft Store channel on Discord - #ifdef Windows (Sergio Pedri) - Nice news. There is now a place to talk about the store.
• 9 Steps to Master the Keyboard and Become an Ultra Efficient Software Developer (Michael Shpilt) - Short post that gives a few ideas on how to use more efficiently your keyboard and enjoy it.

~Frank

Reading Notes #560

It is time to share new reading notes. It is a habit I started a long time ago where I share a list of all the articles, blog posts, and books that catch my interest during the week. 

If you think you may have interesting content, share it!

The suggestion of the week

• GitHub Copilot Fundamentals Learning Path - Your New AI programming friend! (Bruno Capuano ) - A free series of lessons to get to know how to use Copilot ( an AI partner application).

Cloud

• Azure Communication Services June 2023 Feature Updates (Daysha Carter) - A series of pretty cool new features from Azure communication services.

Low Code

• Power Apps Dataverse Offline Mode For Canvas Apps (Matthew Devaney) - This is a nice step-by-step tutorial that guides us to make our Apps offline capable.

Programming

• Should We Use Records With EF Core as Model Classes? (Code Maze ) - Fantastic post that not only explains how Records could be used with EF but also explains why they aren't always the best choice.

• Best Practices for Building Secure Micro Frontends (Grgur Grisogono) - Nice short post about security best practices.Because it's important everywhere and its the job of everyone.

• How to Start an Open Source Project with VS Code (Bekah) - This is a nice and simple tutorial that overviews how to get started.

Miscellaneous

• Microsoft’s Satya Nadella Is Betting Everything on AI (Steven Levy) - A great interview with a focus on AI technology.

~Frank

Reading Notes #544

It is time to share new reading notes. It is a habit I started a long time ago where I share a list of all the articles, blog posts, podcast episodes, and books that catch my interest during the week.

If you think you may have interesting content, share it!

Programming

• Web3 DevOps: The Series (Donovan Brown) - I'm just getting started with web3 there are so many tools.

• 5 Developer Workstation Security Best Practices | Docker (Briana Swift) - This is an interesting post that shares guidance to secure our development as early as possible in the development chain.

• How to Compare Two Json Objects Using C# (Code Maze) - Data is the core of most if not all applications and a common way to define the data is JSON. This post helps to understand how to compare a piece of information. Very useful.

• Keys To An Accessibility Mindset — Smashing Magazine (Daniel Yuschick) - Accessibility is important and the POUR Principles make them clearer and easier to consider when developing a new project.

• Upgrading your .NET projects with Visual Studio - .NET Blog (Olia Gavrysh) - That's pretty cool! Often when people (and I'm part of them) need to upgrade their projects they don't know exactly where to start and what exactly changes.

Podcasts

• Taking Comfortable Risks with Scott Galloway (A Bit of Optimism) - One thing he said that will stick with me I think, and that I need to now transform into my words: "There is nothing that will happen to you if you don't take some uncomfortable risks and talk to some people".
• Colin Bowern: Deployments and Ops using Octopus Deploy - Episode 231 (Azure DevOps Podcast) - Never had the chance to play much with Octopus, but it always seems very interesting, now more than ever.
• How to manage through a season of layoffs (Modern Mentor) - A season like those required more effort from everyone. It's hard and we all need to say nice and as much human as possible.

~Frank

Reading Notes #538

Good Monday, 

Already time to share new reading notes. Here is a list of all the articles, and blog posts that catch my interest during the week. 

If you think you may have interesting content, share it!

Cloud

• Azure Developer CLI (azd) - January 2023 Release (Savannah Ostrowski) - Easier to install and more secure. A nice update.

• Develop Your Cloud App Locally with the LocalStack Extension (Ajeet Singh Raina, Harsh Mishra) - Interesting tools that can emulate your AWS environment locally, perfect to develop and not stress about the cloud cost busting your budget.

Programming

• 6 Command Line (PowerShell & CLI) Tips & Tricks for Microsoft Azure you should know about! (Thomas Maurer) - Great tips that really enable us to be more productive and efficient.

• Get Started with GitHub Actions (Mandy Hubbard) - This is a great post to get started with CICD. GitHub is free and accessible, give it a try and then automate some tests or a deployment.

• Introduction to DevSecOps on Azure (Daniel Krzyczkowski) - New Pluralsight course announcement.

• The Problem With Dependency Injection Frameworks (James Shore) - A very interesting post that continues to explain why DI frameworks are bad even though they help us.

• Public Preview: Azure Automation Visual Studio Code Extension - Nice I like Azure automation. An extension to manage those cloud cron jobs, I say yes.

• Release notes for Microsoft Q&A - Love that new look!

• Why tuples in C# are not always a code smell (Dennis Frühauff) - I didn't use Turple yet but it's not hard to see the potential and how it could become ugly. This post shows and explains a few simple rules to stay clear.

Miscellaneous

• Announcing Cosmos DB to Azure Data Explorer Synapse Link (public preview) (Vincent-Philippe Lauzon) - Two worlds touched. This new connection looks super cool.

• Lazy and once-only C# async initialization (Ian Griffiths) - An amazing post that explains so much and that has all the code snippets to be clear about it. I will have to copy-paste those into some test applications to really try them, but it is clear what I should expect.

~frank

Reading Notes #533

Good Monday!

It's time to share my reading notes. Those are a curated list of all the articles and blog posts, that caught my interest during the week and that I found interesting. It's a mix of the actuality and what I consumed.

If you think you may have interesting content, share it!

Cloud

• Azure SQL Trigger for Azure Functions in Public Preview (Renato Losio) - This is interesting this way you could beneficiate the trigger and keep the code outside of the database.

Programming

• Install Terminal App Themes in Windows 11 (Sofia Sondh) - Simple and we have the choice, great!

• My Top 10 Visual Studio Code Extensions for 2022 (John Kilmister) - Oh wow, there were a few gems I didn't know in this post. Great list.

• Ref vs Out C#: Which is the Better Choice when? (Byte Hide) - A simple post that lists the differences between those two keywords.

• Web Security 101 - Part 1: Secrets (Abbey Perini) - This is a nice post that lists places or methods to save our secrets and explains the pro and cons of each.

• Fluent Insights EP4: Slots (Paul Gildea) - The new episode of Fluent UI Insights is out. This one talks about slots, JSX children, and triggers.

Miscellaneous

• 10 SEO Tips For Technical Writers And Software Developers (Mahesh Chand) - A great post about SEO and why we should care.

~Enjoy!

Reading Notes #522

Yep! It's Monday again :) 

 Already time to share new reading notes. Here is a list of all the articles, and blog posts that catch my interest during the week. 

If you think you may have interesting content, share it!

Cloud

• Introduction to DevSecOps on Azure (Daniel Krzyczkowski) - DevSecOps is a real thing and it's accessible for all. This post explains what it is and provides examples of how it could be implemented at a high level.

• Using Azure CLI Authentication within Local Containers (James Dawson) - This post provides two very useful workarounds with WSL and docker to a difficulty we might encounter while using a different platform.

Programming

• #RaspberryPi – Install raspi-config on Ubuntu 22.04.1 LTS (Bruno Capuano) - A short post that shows how to get Unbuntu 22.02 on your Pi.

• Adding color to bracket pairs (Mads Kristensen) - A call for feedback on an up common feature of Visual Studio. Rainbow Brackets yes it will colorize the brackets but what should be the options?

• Browser Extension with Blazor WASM - Cross-Browser Compatibility (Justin Yoo) - Nice post in a series that really shows in the details and explains how to use the extension.

• DevOps monitoring: The Why, What, and How of DevOps monitoring (Hiren Dhaduk) - This is an excellent post to get us to think about our first step. It explains the reason why we should care and briefly lists a few tools available today on the market to help.

• Get started with NDepend: Uncle Bob and the Zone of Pain (Dennis) - A nice article that explains how to get started with NDepends.

• Rewrite your git history in 4 friendly commands (Salma Alam-Naylor) - The git trick of the week for when you want to do a major cleaning.

• Working with System.Random and threads safely in .NET Core and .NET Framework (Andrew Lock) - Interesting post about Random numbers in .NET.

Podcasts

• 38. Open source framework MVVM Light, Azure Static Web Apps & timekeeper.cloud with Laurent Bugnion (Betatalks the podcast) - Cool episode about, well my friend! :)
• How to be a great (new!) leader (Modern Mentor) - Really interesting episode for new leaders/ influencers.

~frank

Reading Notes #514

Another Monday, another ReadingNotes post. 

Those are a curated list of all the articles, blog posts, podcast episodes, and books that catch my interest during the week and that I found interesting. It's a mix of the actuality and what I consumed. 

If you think you may have interesting content, share it!

Suggestion of the week

• Web development is like assembling IKEA furniture (Christian Heilmann ) - A wonderful lesson here. Everyone should read it.

Cloud

• Deploying Applications with Azure Static Web Apps (Lee Stott) - Azure static web app is such a great tool to know. This post will get you started on a fantastic journey.

• Using Azure Service Bus in the wild (Paul Michaels) - This excellent post introduces the Service Bus as a crucial piece when working in a bigger system.

Programming

• Do I need Kubernetes? | Cloud Native Computing Foundation (Dave Blakey) - A nice little tour of kubernetes.

• Improved doc management personalization - Visual Studio Blog (microsoft.com) - This post list a few new features and customization, like a bigger dirty file notification.

• The VS Code Server (Grace Taylor) - I personally heard about it for the first time Friday on Clarkio live stream. This project is a fantastic idea! To get access, fill out the short form at the end of the post.

• Writing .NET Application Services for Kubernetes (Mike Hadlow) - I never used Kubernetes, but always found it interesting. This post is a gold mine of advice and best practices about how to plan your multi-container app.

Miscellaneous

• DevOps Release Management Best Practices (Stephen Watts ) - Nice post that shares a lot of great ideas and practices.

• Understanding Have I Been Pwned's Use of SHA-1 and k-Anonymity (Troy Hunt) - A very interesting post that explains some security limitations and the reason behind some technological choices.

~frank

Reading Notes #505

Good Monday, Already time to share new reading notes. Here is a list of all the articles, blog posts, and podcast episodes that catch my interest during the week.

If you think you may have interesting content, share it!

Cloud

• Application Insights telemetry in Azure Functions (Orestis Meikopoulos) - Application Insights is so powerful and just one click away! Learn more about it in this post.

• Azure Function with PowerShell and the Power BI REST API – SQLServerCentral (Koen Verbeeck) - This is a nice step-by-step tutorial to write an azure function. All important points to do and avoid are present just like the code.

• Just Give Me an Access Token (Phil Jirsa) - Nice video tutorial and code snippet to get all the access your API needs.

• Update Your Azure Functions Table Storage Bindings (Mark Heath) - Nice post. Upgrading can be frightening sometimes, even more, when you know there are breaking changes.

Programming

• Auto publish your data using Travis (Montana Mendy) - A super quick example of ci-cd with Travis.

• Build configuration for Azure Static Web Apps (craigshoemaker, anthonychu, Reshmi-Sriram, changeworld) - Continuous deployment is so powerful it is very useful to understand the options and how you can set your things together.

• Introduction to Testing Blazor WebAssembly With bUnit (Code Maze) - Wow! An incredibly complete tutorial about bUnit. It is the best lace to get started.

• Multiple Directories for Static Files in ASP.NET Core (Shawn Wildermuth) - Nice journey of an issue that in the end wasn't one. It's time to learn.

• Why isn't my ASP.NET Core app in Docker working? (Andrew Lock) - A very interesting post that describes the learning process while building and fixing a container.

Miscellaneous

• This Is The Most Fun Way To Make Your Life Awesome - Barking Up The Wrong Tree (Eric) - Nice excerpt from a book about communication, this part is couple focus.

~frank

Reading Notes #504

Good Monday, Already time to share new reading notes. Here is a list of all the articles, blog posts, and podcast episodes that catch my interest during the week. 

If you think you may have interesting content, share it!

Cloud

• Azure Automation Run Books – Setup (Paul Michaels) - Automation is so powerful... Think about it as a Cron job in the cloud...

Programming

• 4 ways we use GitHub Actions to build GitHub (Brian Douglas) - I love it. Dog fooding your products or services will always improve them. Nice post.

• ASP.NET Core CRUD with NoSQL: Part 2 (Matthew Groves) - In this second post of the series, we learn how to set an index and how to prepare our select to read our data.

• An Introduction to JSON (Jack Wallen) - I thought it was a bit older than that. Nice post th o learn more about something we all use.

• Building a WebAssembly-powered serverless platform (Colin Eberhardt) - Very interesting post about different web assembly possibilities and a cool tutorial in Rush.

• How to prevent Email HTML injection in C# and .NET (Niels Swimberghe) - An accessible solution to a very important and frequent problems in web development. Very instructive post.

• 10 Things I (Still) Love About Programming (Al Tenhundfeld) - I love it. All those things are so true!

Miscellaneous

• MySQL Query Optimization + Forgetting To Run EXPLAIN = Full Table Scan (Ben Nadel) - Optimization is one of the most satisfying tasks to do, particularly when it's a query. Great post that explains how to search and see what needs to be changed.

• The Importance of Scheduling Nothing (Jeff Weiner) - So simple and powerful, I do the same but often fail at defending those zones.

~Frank

Reading Notes #490

Good Monday, time to share my reading notes. 

It's a habit I started a long time ago where I share a list of all the articles, blog posts, podcast episodes, and books that catch my interest during the week and that I found interesting. It's a mix of the actuality and what I consumed.

You think you may have interesting content, share it!

Cloud

• Azure SDK Release (January 2022) (Azure SDK team) - I'm always so impressed by all the changes happening each month... Are you?

• How to Create an Azure Function App Using C# (Claudio Bernasconi) - This is a nice tutorial paired with a video. In fact, there is an entire channel of tutorials about Azure, .NET, and Visual Studio.

• Secure messages to Teams with Azure Logic App (Tobias Almen ) - This is a good tutorial to secure communication done by Logic Apps.

Programming

• Postman Announces Support for gRPC in Beta (Wendell Santos) - Great news to see that the toolings follow the tech.

• Announcing .NET MAUI Preview 12 (David Ortinau) - Things are getting pretty... Nice update.

• Dependency Injection in .NET 6 - Adding and Injecting Dependencies (Matthew Jones) - We all agree that testing is important dependency injection is part of a great test strategy. This is the second post of a series.

• Model Binding in ASP.NET Core using Razor Pages (Elisenda Gascon) - A clear tutorial about the binding to simplify and improve our code.

• What Is Single Project in .NET MAUI? (Leomaris Reyes ) - I'm just getting started with MAUI and it's very impressive. I really like this post as it explains why and how the structure of the project is set.

Podcast

• 561: How to Reduce Burnout, with Jennifer Moss (Coaching for Leaders) - As I was listening that episode, I realized that the team I'm in we already did a lot of those things. The past months were hard for all of us but I think we did well. Very interesting episode, and it could be a good idea to share to your teammates.
• 288: Turning Hacks into Reality (Merge Conflict) - Super interesting to listen Frank and James as they share their progress about there App development and how a simple "wind speed" question became a thing!
• No More Lonely Friends with Marissa Meizz (A Bit of Optimism) - Wow! It's always very impressive what can happends when you mix social media and good intention.
• 562: How to Make Progress When Starting Something New, with Michael Bungay Stanier (Coaching for Leaders) - Very nice episode with Michael Bungay Stanier, author of the book also poart of this Reading Notes (but not the book they talk in the episode), about how to get started. Love it, very honest, and real.

Miscellaneous

• Windows 11 is getting a new Task Manager design (Tom Warren) - Oh yes! Things evolved, get better, faster, and takes fewer resources...

Books

The Advice Trap: Be Humble, Stay Curious & Change the Way You Lead Forever 

(Michael Bungay Stanier) 

- I really liked this book. Yes, I read The Coaching Habit, that's a nice one too, but in The Advice Trap has something that feels more adapted for when we get started. The book shares many gems and important points to get us started on a better path (or to change our habits). It's may not necessarily be easy, but it's clear what needs to be done, well in this case not done.

~frank

Reading Notes #486

It's Monday (the cyber one), time to share my reading notes. Those are a curated list of all the articles, blog posts, podcast episodes, and books that catch my interest during the week and that I found interesting. It's a mix of the actuality and what I consumed. 

You think you may have interesting content, share it!

 

Cloud

• A Simpler Way to Azure (Rob Conery) - A very cool and interesting project. Even though I have never tried Heroku I think it's always good to push forward and make the user experience easier.

• Azure CLI migration from ADAL to MSAL ( Chase Wilson) - That a good news and now with Graph... So manny will be happy about that.

• What’s New in the New Version of Az.Tools.Installer (Lei Jin) - Interesting tool. I love how so many changes are implemented based on the users' feedback... And it's on GitHub.

Programming

• Let's upgrade my main site and podcast to .NET 6 LTS (Scott Hanselman) - Nice! I need to do the same for so many projects...Any one like that too?

• ASP.NET Core Integration Tests With TestServer - How Did I Not Know About This? (Scott Hannen) - The perfect introduction post to get started with tests in .Net.

• How to parse JSON Lines (JSONL) with C# (Davide Bellone) - Interesting post about how to parse uncommon JSON files.

• Theme an ASP.NET MVC website with custom views (Steve Fenton) - Pretty cool solution to manage themes. Definitely inspiring.

• The newest Docker VS Code extension feature you’re not using (null) - That a very exciting new for dedv like me who are occasional visitors! I don't code every day so an intelisens is a must to help me.

• Upgrading a 20 year old University Project to .NET 6 with dotnet-upgrade-assistant (Uche Nkadi) - Great story of an upgrade.

~Frank