GitHub Actions Deploy to AWS: OIDC, IAM Roles, and Real Workflows
In 2021, GitHub released OIDC support for Actions — and quietly made static AWS access keys in CI/CD pipelines obsolete. The old...
Latest Publications
Flux CD + OpenTofu: GitOps for Kubernetes and Infrastructure
HashiCorp switched Terraform to the Business Source License in August 2023. Within weeks, the OpenTofu fork was announced under the Linux Foundation,...
EKS RBAC and Security: Access Entries, Pod Identity, and Pod Security Standards
The aws-auth ConfigMap was never a good idea. It’s a plain Kubernetes ConfigMap in the kube-system namespace — editable by anyone with...
EKS Networking Deep Dive: VPC CNI, IP Exhaustion, and Pod Networking
Running out of IP addresses in production at 2 AM is a specific kind of bad. It happens in EKS clusters when...
EKS Karpenter Autoscaling: Faster Nodes, Smarter Scheduling
Karpenter hit v1.0 in late 2024, and for most EKS clusters it’s now the better choice over Cluster Autoscaler. The performance difference...
Amazon EKS Getting Started: Running Kubernetes on AWS in 2026
AWS re:Invent 2023 had a stat that keeps coming up in job postings: EKS adoption grew 88% year-over-year among enterprise AWS customers....
EKS Fargate Deep Dive: When to Use It and When to Stay on Managed Nodes
A batch job that runs for eight minutes, three times a day. A CI pipeline that spins up test pods on every...
EKS Cluster Upgrade: Zero-Downtime Playbook
AWS EKS standard support ends 14 months after a Kubernetes version’s upstream release. Extended support adds another 12 months but costs $0.60...
EC2 Auto Scaling Groups: Complete Guide to Scaling Policies and Launch Templates
EC2 Auto Scaling has been around since 2009, but teams still misconfigure it in ways that cost them money or reliability. The...
DynamoDB Streams and Global Tables: Event-Driven Patterns and Multi-Region Replication
DynamoDB Streams is the feature that turns DynamoDB from a storage layer into an event source. Every write to a table —...
DynamoDB Single-Table Design: Practical Patterns for AWS
Rick Houlihan built the methodology for DynamoDB at Amazon before turning it into what the community calls single-table design. The idea is...