Writing on infrastructure,
DevOps & craft.
Technical articles on CI/CD automation, cloud infrastructure, Docker, security, and production engineering — written for practitioners who ship real systems.
15 Articles published
- 01Principles
Eight Principles That Shape the Way Systems Get Built
Convictions refined through real incidents, tight deadlines, and hard trade-offs — eight principles for building production systems that last.
Jun 11, 20262 min read - 02Security
When a .map File Leaks Your Entire Codebase
Lessons from the Claude Code source map incident — how default build settings can silently ship debug artifacts to production.
Apr 4, 20266 min read - 03Infrastructure
Troubleshooting Terraform: Patterns Worth Knowing
Apply failures, cycle errors, and state drift — the three categories of Terraform problems that surface in production, and how to fix them.
Apr 2, 20265 min read - 04AI
Using LLMs for Incident Response — What Works and What Doesn't
After integrating AI into an on-call workflow, here's what actually reduced MTTR and what turned out to be expensive noise.
Apr 1, 20265 min read - 05AI
Automating Code Review with AI — Architecture and Honest Results
AI-powered code review integrated into a PR workflow. Here's the architecture, the prompt engineering, and the metrics after 3 months.
Mar 30, 20266 min read - 06Kubernetes
Kubernetes Debugging Patterns for Production
CrashLoopBackOff, OOMKilled, stuck deployments, and networking mysteries — a field guide to debugging K8s when things go wrong.
Mar 25, 20266 min read - 07CI/CD
Feature Flags and the Case for Progressive Delivery
How feature flags decouple deployment from release, reduce blast radius, and why every team shipping to production should use them.
Mar 18, 20265 min read - 08GitOps
GitOps with ArgoCD: What Teams Wish They Knew Before Starting
Lessons from adopting GitOps in production — the wins, the gotchas, and the patterns that actually survive real-world complexity.
Mar 12, 20265 min read - 09Docker
Setting Up a Private Docker Registry You Can Actually Trust
Running your own registry with Nginx, TLS, and authentication — why relying solely on Docker Hub for production images falls short.
Mar 5, 20265 min read - 10CI/CD
GitHub Actions: Reusable Workflows That Actually Scale
How duplicated CI/CD configs across 30+ repos were eliminated with reusable workflows, composite actions, and a central workflow registry.
Feb 28, 20265 min read - 11Security
The Cloud Shared Responsibility Model Is Not Optional
What you own, what your cloud provider owns, and the gray areas in between — with real breach examples that prove why this matters.
Feb 20, 20266 min read - 12Platform Engineering
Platform Engineering: Building an Internal Developer Portal That Gets Used
Most internal platforms fail because they solve infrastructure problems, not developer problems. Here's how to build one that developers actually adopt.
Feb 10, 20265 min read - 13Observability
Structured Logging That Actually Scales
Why replacing text logs with structured JSON, shipping them to a central stack, and adopting consistent query patterns cuts incident response time in half.
Jan 28, 20265 min read - 14Security
Zero Trust Networking: A Practical Implementation Guide
Moving beyond perimeter security — a practical approach to implementing zero trust across services, users, and infrastructure without boiling the ocean.
Jan 12, 20265 min read - 15Cloud Native
Container Security Scanning in CI/CD — Beyond the Basics
Image scanning alone isn't enough. This post walks through a multi-layer container security pipeline that catches vulnerabilities before they reach production.
Jan 5, 20265 min read