Welcome to sjramblings.io

AWS STS Finally Lets You Write Trust Policies That Actually Mean Something

If you’ve ever written an IAM trust policy for GitHub Actions OIDC federation, you’ve probably done the thing we all did. You set the sub condition to repo:my-org/my-repo:*, told yourself “that’s scoped enough,” and moved on with your day.

Marketing skills for AI agents:Why builders should care

Builders are living in a weird new era. An agent can scaffold a project, wire up an API, generate tests, refactor the mess, and ship a feature before you finish your second coffee.

From Network Plumbing to Application Intent: What AWS Networking Reveals About Infrastructure's New Role

• Stephen Jones
• Aws

Rob Kennedy, AWS Vice President of Network Services, opened his re:Invent 2025 keynote with a simple metaphor: atoms bond into molecules, molecules combine into structures, and those structures become complex organisms. The implication was clear, networking is no longer about connectivity. It’s about intent.

The AI Agent Governance Gap: Why Policy and Evaluations Matter More Than the Model

• Stephen Jones
• Ai , Aws

Many organisations are rushing into deploying AI agents with the same enthusiasm they had for serverless in 2016, great technology, terrible operational discipline. The pattern is predictable: build a proof-of-concept that works brilliantly in a demo, deploy it cautiously to production, then discover you have no idea how to govern what it’s actually doing once users interact with it at scale.