Blocking pod access to metadata in EKS

Some time ago, I got a task from our security team: ensure that pods running in our EKS cluster couldn’t access the instance metadata endpoint. This was part of a broader effort to tighten security and prevent potential credential exposure. In this post, I’ll walk you through how I did this with a combination of two Kubernetes egress NetworkPolicies.

Read full post >

Collection of useful Terraform modules for GCP

Hi everyone! If you, like me, work a lot with Terraform (and Infrastructure as Code in general) and GCP, you’ll probably find this collection of publicly available modules quite useful. I’m proud to say that I’ve contributed to many of them. In this post, you’ll find a collection of links to the modules developed at the University of Cambridge along with a brief description for each module.

Read full post >

How to start working with OpenAI in Python

Alright, we can’t avoid it anymore! LLMs are everywhere, and Python is the way I usually talk to them. Whether you’re building tools, bots, or just experimenting, that’s becoming impossible to ignore. In this short post I’ll show how to start working with OpenAI and Python.

Read full post >

How to Limit CPU Frequency on Fedora 28

If you want to limit your laptop’s CPU under Fedora Linux, just like me, this small how-to is what you need. What is it for? Well, there’s a number of reasons. After limiting CPU frequency I got:

  • Better thermal mode
  • Decreasing fan noise level
  • Increasing time without charging
Read full post >