Pod Security Policies (PSPs) are an important component of security in Kubernetes. Lets explore what happens without them.

Read More

Exploring GitLab’s new Directed Acyclic Graph feature to build monorepo CI/CD pipelines.

Read More

To revert the last n commits using git:

git revert HEAD~3..HEAD

Read More

Some real-world examples on how to smoke test infrastructure.

Read More

A few thoughts and photos on the Sydney AWS Summit 2019.

Read More

Google’s gVisor exists to provide a true sandbox for your Docker containers. It replaces runc, the default Docker runtime which recently had a serious vulnerability ¹.

In theory gVisor is a drop-in replacement for runc, but does it actually work with Amazon ECS?

Read More

SRE is what happens when you ask a software engineer to design an operations team.

I just finished reading through the (first) Google SRE book. While a lot of it is what we take for granted today, there were a few worthwhile takeaways for me.

Read More

Amazon Elastic Container Service (Amazon ECS) is a highly scalable, high-performance container orchestration service that supports Docker containers and allows you to easily run and scale containerized applications on AWS.

Autoscaling your container orchestration system introduces some complexity. Here are some tips for creating robust autoscaling for your ECS Cluster.

Read More

Ever needed to do CI on a centralised CloudFormation repository, and struggled to get template validation done quickly? Here’s how you can do it.

Read More

Some gripes on AWS Application Load balancers.

Read More