Don't use Tags to Manage Permissions in AWS
The main problem is this: By using tags for authorisation, you have a multitude of completely new - per-service - actions that can be used to compromise your security posture....
Best Practices for AWS Step Functions
Recently I've been working with Step Functions in my day-to-day work, as well as in my personal projects, and I decided to write this post as a way of articulating the ins-and-outs of Step Functions I've learnt while using them. It helps that a few [https://aws.amazon.com/about-aws/whats-new/2019/05/aws-step-functions-support-callback-patterns/] new...
Serverless Cost Containment
Serverless soultions is can be incredibly cheap due to their event-based nature - if your system isn't working, you pay barely anything for it. But if you're not careful, serverless can still result in some nasty surprises when it comes to costs....
AWS Reserved Instances Cheatsheet
Reserved Instances (RIs) are a great way to save some money if you've got consistent AWS EC2 usage, without needing to make changes to your instances!...
Cleaning up Lambda Logs with CloudFormation
Is your CloudWatch Logs console full of old log groups? Got 50 pages of Lambda log groups? Don't worry, I have the solution for you! The issue here is not the cost; While there is a cost associated [https://aws.amazon.com/cloudwatch/pricing/] with keeping your log groups around, it's pretty small. The real...
Everything you need to know about CloudFormation Drift Detection
Announced this week, CloudFormation Drift Detection [https://aws.amazon.com/blogs/aws/new-cloudformation-drift-detection/] has been a long time coming! That being said, it's great when features like this are added to the platform and I get to use them everywhere without any effort on my part! Combined with the recent CloudFormation console update, it's been...