UPDATE: AWS announced over the weekend that they're enhancing protections against this kind of scenario. A few weeks ago a security researcher shared it was possible to hijack domains that were misconfigured in Amazon CloudFront, Amazon's CDN-as-a-service. Being able to
"exec format error" from SAM Local with Golang on Mac
I was getting my hands dirty with AWS SAM Local and Golang based functions the other day (since golang function support was added in 0.2.7), and ran it to a basic - but cryptic - error that took
Federated CodeCommit Access
CodeCommit access via federated credentials is the way to go. You're not using long-lived Access Keys are you? Bad engineer! Stop that! For better or worse, federated IAM access requires you to use the HTTPS endpoint with a git credential
Serverless Operations Presentation
Last week I presented to the Sydney AWS Lambda User Group about serverless operations aka. LessOps. Here are the slides I used to talk about the good - and less good - things about operating a serverless application: Serverless Operations
Top 10 AWS Serverless Resources
With so much buzz around serverless at re:Invent 2017, I thought it would be a good time to highlight the best places and resources to find AWS-specific serverless information: AWS re:Invent 2017 Serverless Breakout Sessions on YouTube This
Edge Bundling Security Groups Redux
You can now visualise your own EC2 security groups using edge bundling - No scripts, no downloads! This small web application takes an AWS access key id and secret access key to make requests against your AWS account. The application
A last minute guide to re:Invent
I'm fortunate enough to be heading back to AWS re:Invent this year. If tickets aren't sold out by the time you read this, they will be soon. Here's a few things I learnt from last year that would've helped:
Getting Started with AWS SAM Local
The AWS blog gave me a very pleasant surprise the other day: AWS SAM Local is in public beta. It's a golang CLI project that's distributed via NPM. SAM Local leverages Docker to run you code in local containers, and