Stop Putting Secrets in process.env: Encrypt Env Vars with AWS KMS
After a CVSS 10.0 RCE (CVE-2025-66478), we stopped trusting process.env. Here’s what I built instead
Feb 21, 202610 min read10
Command Palette
Search for a command to run...
#devops
Articles tagged with #devops
PCI DSS 4.0: Client-Side Attack Vectors and What Developers Must Do
How script skimming slipped past backend-focused defenses and the new PCI DSS 4.0 directives (6.4.3 & 11.6.1) you must build into frontend flows.
Aug 27, 20252 min read22
Zero-Downtime Deployments in Node.js: Real Strategies, Real Examples
Zero-downtime deployments are not fluff. They’re essential!
Jul 29, 20253 min read25
Master Docker in Real Projects: Compose + CI/CD + Best Practices
Build, orchestrate, and ship multi-container apps like a pro
Jul 23, 20255 min read105
API Observability: Logs, Traces, Metrics with OpenTelemetry
Modern APIs demand more than logs. Here’s how to instrument observability the right way with OpenTelemetry.
Jul 15, 20253 min read48
A Practical Guide to AWS API Gateway
Build secure, scalable, and production-ready APIs using AWS API Gateway without getting lost in configuration hell.
Jul 2, 20254 min read37