Starting with Terraform v1.11, we now have a cleaner and more secure way to handle sensitive values - write-only arguments. This post walks through a simple example of using that feature with Google Cloud Secret Manager.

Some time ago, I got a task from our security team: ensure that pods running in our EKS cluster couldn’t access the instance metadata endpoint. This was part of a broader effort to tighten security and prevent potential credential exposure. In this post, I’ll walk you through how I did this with a combination of two Kubernetes egress NetworkPolicies.

Hi everyone! If you, like me, work a lot with Terraform (and Infrastructure as Code in general) and GCP, you’ll probably find this collection of publicly available modules quite useful. I’m proud to say that I’ve contributed to many of them. In this post, you’ll find a collection of links to the modules developed at the University of Cambridge along with a brief description for each module.

Hi Internet! I recently built a small utility to scratch my own itch, and I thought it might be useful to others too.

Alright, we can’t avoid it anymore! LLMs are everywhere, and Python is the way I usually talk to them. Whether you’re building tools, bots, or just experimenting, that’s becoming impossible to ignore. In this short post I’ll show how to start working with OpenAI and Python.

If you want to limit your laptop’s CPU under Fedora Linux, just like me, this small how-to is what you need. What is it for? Well, there’s a number of reasons. After limiting CPU frequency I got:

• Better thermal mode
• Decreasing fan noise level
• Increasing time without charging

Hi! I’m about to introduce you a small step-by-step HowTo of Sonarqube + PostgerSQL installation on CentOS Minimal.