Terraform Stacks: Multi-Environment State Management
Terraform workspaces seemed like the solution to multi-environment management — one configuration, many states. Then teams discovered the problems: workspace sprawl, no...
Latest Publications
SQS + Lambda Event Source Mapping: Error Handling That Actually Works
Every serverless architecture eventually runs into the same problem: you have messages in SQS and you need Lambda to process them reliably....
Prometheus and Grafana on EKS: Kubernetes Monitoring from Scratch
The kube-prometheus-stack Helm chart installs Prometheus, Alertmanager, Grafana, and a collection of default Kubernetes dashboards in about five minutes. That’s the fastest...
MiniStack: LocalStack Went Paid, Here Is the Free Replacement
LocalStack built something genuinely useful. A local emulator for AWS services that let you test Lambdas, S3 buckets, SQS queues, and DynamoDB...
Lambda Container Images: Build on GitLab CI, Deploy to ECR
Container images solved my biggest Lambda frustration: the 250MB zip limit.
Kyverno Policy-as-Code on EKS: Validate, Mutate, Generate
Kubernetes RBAC controls who can do what, but it doesn’t control whether the things they do are safe. A developer with namespace-level...
Kubernetes v1.36: What's New
Kubernetes v1.36 shipped April 22, 2026, with 64 enhancements across the release: 17 graduating to stable, 18 moving to beta, and 24...
Kubernetes Gateway API: Migrating Away from ingress-nginx
ingress-nginx is End of Life. CVE-2026-4342 — a configuration injection vulnerability enabling potential code execution — was disclosed in April 2026 against...
Kiro: AWS's Agentic AI IDE Built Around Spec-Driven Development
AWS launched Kiro on July 14, 2025. It’s an agentic IDE built on Code OSS (the open-source foundation of VS Code) and...
Is It Still Worth Building a SaaS Business in 2026? Market Data, Trade-Offs & Reality
The hype is gone. The easy money has dried up. But the real opportunity is just beginning.
IAM Permission Boundaries: Delegating Safely Without Losing Control
The problem: your application team needs to create IAM roles for their Lambda functions and ECS tasks. You can give them iam:CreateRole...
IAM Cross-Account Roles: Secure Multi-Account Access on AWS
The standard AWS multi-account setup has a tools account for CI/CD, separate accounts for dev/staging/prod, a security audit account, and maybe a...