Blog Posts

HashiCorp Vault Production Hardening Guide: Security Best Practices (2026)

HashiCorp Vault Production Hardening Guide: Security Best Practices (2026)

So, you’ve got Vault up and running, and you’re feeling pretty good about storing and managing secrets. But here’s the thing—running Vault in production is a whole different game. It’s not just about turning it on; it’s about hardening it to ensure that your Vault instance is secure, reliable, and resilient against attacks.

Read More
HashiCorp Vault Secrets Management: Best Practices, Rotation & Dynamic Secrets

HashiCorp Vault Secrets Management: Best Practices, Rotation & Dynamic Secrets

What is HashiCorp Vault? HashiCorp Vault is a secrets management platform that centralises how your organisation stores, accesses, and distributes sensitive data — API keys, database credentials, certificates, encryption keys, and more. Rather than scattering secrets across config files, environment variables, and shared spreadsheets, Vault gives you a single source of truth with fine-grained access control, automatic rotation, and a full audit trail.

Read More
Ensuring Seamless Connectivity - The Crucial Role of Failover testing in AWS Direct Connect

Ensuring Seamless Connectivity - The Crucial Role of Failover testing in AWS Direct Connect

👋 Hey there! Setting up the Direct Connect service is reserved for a select few. Typically, the network dudes handle this intricate task. However, understanding this service is crucial, especially when establishing hybrid cloud connectivity.

Read More
github Self-Hosted Runners on AWS CodeBuild

github Self-Hosted Runners on AWS CodeBuild

👋 Hey there! I’ve written before about establishing Self-Hosted Runners within github.com here. However, this involves deploying API endpoints and integrating with github via a WebHook. It’s not hard to establish, but it’s extra work to look after, update, and manage.

Read More
Creating shared github-actions

Creating shared github-actions

Table of contents Workflow Before Workflow After The Workflow Creating a shared (reusable) workflow Workflow Repository Adapt the workflow for reuse Calling the shared workflow Summary 👋 Hey there!

Read More
Do Not Default to PAT

Do Not Default to PAT

👋 Hey there! Scenario: You need to automate something in github, and after a couple of searches in Google, you see that you can create a PAT and use that.

Read More
Searching github Organisations

Searching github Organisations

👋 Hey there! As a DevOps 🧑‍💻 team grows, so does the number of repositories. If you use Infrastructure As Code and automation tools like Terraform or Ansible, you will likely have many repos that map to reusable modules. The modules are then combined to deliver full deployments. 🚀

Read More
AWS Windows SSM Port Forwarding, too easy

AWS Windows SSM Port Forwarding, too easy

👋 Hey there! Recently, I had to configure some Windows boxes for a project and was reminded of how simple it was to access them without needing a Bastion host by using SSM port forwarding. 🙌

Read More
AWS Lambda Powertools Metrics: Custom CloudWatch Metrics Made Simple

AWS Lambda Powertools Metrics: Custom CloudWatch Metrics Made Simple

In this post, I’ll show you how easy it is to publish custom metrics into AWS CloudWatch using AWS Lambda Powertools and the Cloudwatch EMU Specification

Read More
How to sync containers from github Container Registry to AWS ECS

How to sync containers from github Container Registry to AWS ECS

Back in June last year I wrote about syncing containers from DockerHub to AWS ECS.

Read More
Categories
Tags