Hidden CloudFront Invalidation Rate Limits
CloudFront has an undocumented burst limit on invalidation requests that can cause “Rate exceeded” errors even under normal usage.
Notes
Curated TIL (Today I Learned) notes from a DevOps Engineer on cloud infrastructure, automation, and anything I learn along the way.
Inspired by jbranchaud/til and simonw/til.
Using SSH Mounts in Docker Builds
Docker SSH mounts allow you to securely use your local SSH agent during docker build, for example to install private Git dependencies via SSH, without baking any keys into your image.Database Access with Docker
Quickly connect to PostgreSQL, MariaDB, MongoDB and Redis databases using Docker with simple, one-line commands, bypassing the need for local installations.Running commands in ECS Containers with ECS Exec
Amazon ECS Exec lets you securely interact with your running ECS containers (get a shell or run single commands) using SSM Session Manager.Preloading SSM Secrets in AWS Lambda with Crypteia
Crypteia is an AWS Lambda extension for any runtime to preload SSM Parameters as secure environment variables at function startup.Generating Least Privilege IAM Policies using iamlive
iamlive can automatically generate least privilege IAM policies based on the permissions used during Terraform execution.Parsing Legacy CloudFront Standard Logs to JSON
Legacy CloudFront Standard Logs (a.k.a access logs) are based on W3C Extended Log File format. These logs can be parsed into JSON format using a Python script.Understanding GitHub API Rate Limits
GitHub API limits unauthenticated requests to 60 per hour per IP. By using a personal access token, you can increase this limit to 5,000 requests per hour.Semantic Versioning Made Easy with svu
svu is a lightweight CLI tool that generates semantic versions based on your Git log and follows Conventional Commits. It is the perfect companion for GoReleaser.Rewriting Rust with Even More Rust
Rust’s compiler is written in Rust, thanks to a process called bootstrapping.