Episode 91 - Microsoft Azure's Aeva Black an Open Source Dragon

Once described as "an ancient and powerful open source dragon," Aeva Black is a dot-com veteran, an open source hacker, and a queer and non-binary geek. They work in the Azure Office of the CTO to improve the state of open source software supply chain security, and to support teams working on cloud security and digital privacy. Back in 2012, they launched OpenStack's Bare Metal Cloud program, enabling performance-sensitive cloud native workloads to run without a hypervisor.

Aeva currently serves on the Board of the Open Source Initiative, the non-profit which stewards the definition of "open source", and works within several other foundations including the Confidential Computing Consortium and the Cloud Native Computing Foundation.

Aeva is a lifelong student of the buddha dharma and an advocate for LGBTQIA+ rights. They served for several years on the Board of the Consent Academy, a Seattle-area educational non-profit, and were recently published in Transcending, an anthology of trans buddhist authors.

In this episode we tackle their journey, their open source roots in various projects,  software supply chain and so much more!  

Timeline Topics

00:00 -  Opener/Sponsors

00:14 -  Intro to an ancient and powerful open source dragon Aeva Black

00:34 - Aeva's Journey  

03:34 - HPE Helion Openstack  

06:00 - Ethics and the Code of Conduct

07:36 - Consent as a Tool

09:12 - Burnout and the next phase of Aeva's journey and more importantly their life

16:20 - Securing Open source in the Office of the CTO at Microsoft Azure

17:25 - Software Supply Chain Security from the Open Source dragon (gitbomb)

20:26 - Open Source Initiative  

23:13 - Confidential Computing Consortium

25:59 - What is Aeva most proud of?

Episode Links

https://aeva.online/

https://supplychainsecurityconna21.sched.com/

https://github.com/git-bom

https://confidentialcomputing.io/

Support the show by checking out our sponsors below!  

***Teleport***

Teleport allows engineers and security professionals to unify access for SSH servers, Kubernetes clusters, web applications, and databases across all environments. You can download Teleport at https://goteleport.com/popcast  

***Container Solutions***  

Check out WTF is Cloud Native- Hybrid Cloud Native conference on November 4th  

Registration is live -https://www.cloud-native-conf.wtf

***Gitlab***

Happy Ten Years to GitLab, the open source project. GitLab is inviting you to celebrate alongside them throughout the year. Learn about GitLab's free community programs and how to contribute at https://about.gitlab.com/community/

***Stormforge***  

StormForge’s Kubernetes Performance Testing and Optimization platform is the easiest way to ensure your applications behave the way you want them to, while cutting out unnecessary resources and time spent manually tuning.  .

Visit https://stormforge.io/popcast for more details

***COCKROACH LABS***

What if you could build like Big Tech? Use the same powerful infrastructure that they spent engineering centuries building...It’s actually possible now with CockroachDB.  

The founders have spent the last eight years creating a cloud-native, distributed SQL database that provides the consistency, ultra-resilience, data locality, and massive scale for modern cloud applications - tech that was once only available to the likes of Google, Facebook and Netflix.  

Check them out and get started for free at https://cockroachlabs.com/popcast

***SUSE Rancher Government Services***

SUSE Rancher Government Solutions (RGS) is a leader in Linux and Kubernetes management for federal and U.S. government entities. RGS leverages SUSE’s Linux expertise and Rancher’s Kubernetes excellence to provide secure open source solutions that adhere to federal compliance regulations supporting SAP HANA, HPC, cloud, edge computing and container management

https://susergs.com/

***Cisco***

Check out Cisco's super informative blog https://ciscotechblog.com/

***CIVO***

Civo is an alternative to the big hyperscale cloud providers.  

They've launched world's first managed Kubernetes service powered by K3s. With sub 90 second cluster launch times, a simplified Kubernetes experience,and predictable billing, Civo is on a mission to create a better developer experience.

Get $250 free credit to get started. Sign up today at https://civo.com/popcast

***Styra***

Learn how to operationalize Open Policy Agent at scale with Styra: https://hubs.ly/H0Pnkm20

POPCAST SHOW DETAILS (SUBSCRIBE!)  

YouTube:  https://bit.ly/3xgmmCj

Audio Podcast (Apple, Spotify, and others):  http://bit.ly/35MXfte

Follow us on (Twitter):  https://twitter.com/PopcastPop  

Follow us on (Linkedin): https://www.linkedin.com/company/the-popcast-with-danpop