Blog Posts

Home /
Blog Posts

Your AWS Certificates Just Got Shorter: What the 198-Day Validity Change Actually Means

On 18 February 2026, AWS quietly updated ACM to reduce the default validity of public certificates from 395 days to 198 days. If you’re running anything on AWS that terminates TLS — CloudFront distributions, Application Load Balancers, API Gateway endpoints, Elastic Beanstalk — this affects you.

Is Infrastructure as Code the Next Abstraction to Fall?

I’ve been staring at a Terraform module for the last ten minutes, and I can’t stop thinking about a question that would have been absurd two years ago: why am I writing this?

AWS Finally Launches Nested Virtualisation on EC2: Better Late Than Never

If you’ve ever needed to run a hypervisor inside an EC2 instance, you know the pain. For years, the answer from AWS was simple: buy a bare metal instance. That meant paying for an i3.metal or m5.metal just to get access to hardware virtualisation extensions. Need to test a Firecracker microVM setup? Bare metal. Want to run KVM for a security sandbox? Bare metal. Running nested Hyper-V for a Windows lab? You guessed it.

Building Your Own AI Agent Stack. What I Learned From 10 Open Source Projects

I spent the last week falling down a rabbit hole. Not the productive kind where you emerge with a working solution and a sense of accomplishment. The kind where you save ten GitHub repos in a single week and then sit back and realise they’re all telling you the same thing.

Open-Weight Models Just Landed in Sydney: What This Means for Australian AI Sovereignty

If you’ve been building AI workloads in Australia, you’ve felt the frustration. The models you want to use are sitting in US regions. Your compliance team is asking where inference data is being processed. And every API call is adding 180-200ms of network latency before the model even starts thinking. Run a five-step agentic workflow and you’re adding a full second of pure network overhead before any model computation happens.

Build vs. Buy Just Flipped. Most Teams Haven't Noticed Yet.

The Decision You’ve Been Making on Autopilot Every AWS practitioner has a version of this conversation at least once a quarter. Someone on the team suggests building something custom. Someone else points out there’s a managed service or SaaS product that does it already. The room does the mental maths: engineering time, ongoing maintenance, opportunity cost. Nine times out of ten, you buy.

Your Inference Bill Is Going Up. Even as Costs Go Down.

The Number That Should Worry You AWS raised GPU Capacity Block prices by 15% on a Saturday in January. No blog post. No announcement. Just a quiet update to the pricing page that said prices were “scheduled to be updated” without mentioning which direction.

The Real Skill Isn't Coding Anymore. It's Describing What You Want.

You’ve Got the Tools. So Why Are You Still Slow? If you’re building on AWS right now, you have access to more managed services, more abstraction layers, and more AI-assisted tooling than at any point in computing history. CDK, SAM, Amplify, Bedrock, Kiro, Claude Code. The list keeps growing.

AWS STS Finally Lets You Write Trust Policies That Actually Mean Something

If you’ve ever written an IAM trust policy for GitHub Actions OIDC federation, you’ve probably done the thing we all did. You set the sub condition to repo:my-org/my-repo:*, told yourself “that’s scoped enough,” and moved on with your day.

The Friction Was the Point

My dad had a camera. Not a phone with a camera. A camera. A proper one with a roll of film that gave you 24 shots, maybe 36 if you were feeling extravagant.