How to reduce costs for GitHub Actions?

Discover cost-saving strategies for GitHub Actions with our guide on utilizing Octolense for expenditure insights and HyperEnv for deploying economical self-hosted runners on AWS. | Continue reading


@cloudonaut.io | 1 month ago

KMS Key Policy Privilege Escalation

How can IAM identities escalate privileges to access customer-managed KMS keys protected by a key policy? | Continue reading


@cloudonaut.io | 1 month ago

Connect GitHub Actions with AWS VPC

How to access RDS, ElasticSearch, OpenSearch, ElastiCache, or internal ALB from GitHub Actions? | Continue reading


@cloudonaut.io | 2 months ago

Protect Amazon Connect from viruses and malware by scanning attachments

Four years ago, we stumbled into Amazon Connect. In essence, Amazon Connect allows your users to reach your organization repr... | Continue reading


@cloudonaut.io | 4 months ago

Worldwide availability of EC2 instance types

The promise sounds tempting, with AWS you can roll out your infrastructure in 28 regions around the world. And indeed, it is an eye-openi | Continue reading


@cloudonaut.io | 4 months ago

How to monitor container workloads running on ECS and Fargate?

How do you monitor a container workload running on ECS (Elastic Container Service) and Fargate with on-board resources? Here are the prio | Continue reading


@cloudonaut.io | 5 months ago

Using DynamoDB Entity Store for cleaner TypeScript code

DynamoDB is a cloud-hosted NoSQL database from Amazon Web Services (AWS). DynamoDB is popular for two main reasons: It scale... | Continue reading


@cloudonaut.io | 5 months ago

The Lambda monitoring blind spot

After a customer complained that a feature of marbot, our monitoring solution for AWS was not working as expected, I started ... | Continue reading


@cloudonaut.io | 5 months ago

A future-proof Terraform provider definition

When defining the version of a Terraform provider, do not use > or => conditions. You will run into troubles caused by ... | Continue reading


@cloudonaut.io | 6 months ago

Migrating to AWS JavaScript SDK v3: Lessons Learned

Learn about the stumbling blocks when migrating from v2 to v3 of the AWS JavaScript SDK. | Continue reading


@cloudonaut.io | 6 months ago

Self-hosted GitHub runners on AWS

Three approaches to deploy self-hosted GitHub Runners on AWS: EC2 instance, Auto Scaling Group, Event-driven EC2 instances. | Continue reading


@cloudonaut.io | 6 months ago

AWS Security Monitoring in 2023: Untangle the chaos

Discover Effective AWS Security Monitoring Strategies. Combining the right AWS services is key when setting up AWS Security Monitoring. | Continue reading


@cloudonaut.io | 7 months ago

Show Me Your Architecture Vol. 2: Platform Engineering on AWS

Through the AWS documentation, books like AWS in Action or AWS training, you can gain theoretical knowledge. But beyond that, it is very | Continue reading


@cloudonaut.io | 8 months ago

Detecting connectivity anomalies with CloudWatch Internet Monitor

Imagine customer support informs you that some customers can no longer access your web application. Immediately you check the monitoring, | Continue reading


@cloudonaut.io | 9 months ago

Now available: Book Amazon Web Services in Action 3rd Edition

We are happy to announce the official launch of our new book Amazon Web Services in Action 3rd Edition. The final version of the book is | Continue reading


@cloudonaut.io | 11 months ago

How we built bucketAV powered by Sophos

This is the behind-the-scenes story of our latest product launch bucketAV | Continue reading


@cloudonaut.io | 11 months ago

Fallback to on-demand EC2 instances if spot capacity is unavailable

In recent months, I was again reminded that EC2 spot capacity is not always available. For years, I was looking for a safety net for my s | Continue reading


@cloudonaut.io | 1 year ago

AWS Monitoring with EventBridge

When it comes to AWS monitoring, you probably think of Amazon CloudWatch first. That’s right, but there is another source of information | Continue reading


@cloudonaut.io | 1 year ago

Builder's Diary Vol. 6: Serverless and DevOps - a match made in heaven

Get insights into the day-to-day challenges of builders. In this issue, Vilius Kukanauskas from our partner DEMICON explains why Serverle | Continue reading


@cloudonaut.io | 1 year ago

How to filter S3 events by object size

While answering a support request for bucketAV, I stumbled upon the following question: Is there a way to only scan S3 objec... | Continue reading


@cloudonaut.io | 1 year ago

Builder's Diary Vol. 5: ECS Anywhere

Get insights into the day-to-day challenges of builders. In this issue, Samia Rabah from our partner DEMICON talks about ECS Anywhere to | Continue reading


@cloudonaut.io | 1 year ago

Builder's Diary Vol. 4: Serverless Software Engineering

Get insights into the day-to-day challenges of builders. In this issue, Florian Dröge and Lars Hüper from our partner tecRacer share insi | Continue reading


@cloudonaut.io | 1 year ago

Hot off the Cloud #007: AppSync JavaScript Resolvers + IAM MFA + CloudFront CD

Here are our toughts about the latest AWS announcements as well as our lessons learned. Unbelievable, re:Invent starts in 5 ... | Continue reading


@cloudonaut.io | 1 year ago

Mastodon on AWS: Host your own instance

While Twitter seems to be in chaos, the free and decentralized alternative, Mastodon, is rising. At first glance, Twitter and Mastodon ar | Continue reading


@cloudonaut.io | 1 year ago

Builder's Diary Vol. 3: Infrastructure Pipeline with GitLab and Terraform Cloud

Get insights into the day-to-day challenges of builders. In this issue, Rico Nuguid from our partner DEMICON talks about automating deplo | Continue reading


@cloudonaut.io | 1 year ago

Hot off the Cloud: October 2022

What happened at AWS in October 2022? This is our summary and analysis of the announcements that interested us. In November, re:In | Continue reading


@cloudonaut.io | 1 year ago

Migrating CodePipeline to GitHub Actions to improve performance

Recently, we have become increasingly dissatisfied with the time our AWS CodePipeline pipeline takes to deploy a change to production. Th | Continue reading


@cloudonaut.io | 1 year ago

Builder's Diary Vol. 2: Serverless ETL with Airflow and Athena

Get insights into the day-to-day challenges of builders. In this issue, Peter Reitz from our partner tecRacer talks about how to build Se | Continue reading


@cloudonaut.io | 1 year ago

AWS-to-go: Podcast series to get started with AWS

Listen to the AWS-to-go podcast series to get started with AWS. | Continue reading


@cloudonaut.io | 1 year ago

Show Me Your Architecture Vol. 1: Scanning S3 buckets for malware

Through the AWS documentation, books like AWS in Action or AWS trainings you can gain theoretical knowledge. But beyond that, it is very | Continue reading


@cloudonaut.io | 1 year ago

Enhance EFS file system protection with TLS and IAM

Two significant aspects of data security are access restriction as well as confidentiality. In the following, you will learn two techniqu | Continue reading


@cloudonaut.io | 1 year ago

Step Functions pitfall: The execution reached the maximum number of history events (25000)

Learn to deal with Step Function's "The execution reached the maximum number of history events (25000)." error | Continue reading


@cloudonaut.io | 1 year ago

Monitor VPC NAT gateways with CloudWatch metrics and alarms

Many VPC designs make use of public and private subnets. A NAT gateway is needed to communicate from a private subnet with the Internet. | Continue reading


@cloudonaut.io | 1 year ago

CloudFormation cfn-init pitfall: Auto scaling and throttling error rate exceeded

cfn-init is a little helper to install and configure EC2 instances managed with CloudFormation. Lately, I was running into is... | Continue reading


@cloudonaut.io | 1 year ago

Selling an AMI and a CloudFormation template as an alternative to SaaS

We have been selling software through AWS Marketplace since 2019. Selling SaaS is very popular nowadays, and most software vendors are mo | Continue reading


@cloudonaut.io | 1 year ago

Fargate vs. App Runner

What’s the simplest way to run containers on AWS? My first relevant container workload was running on a fleet of EC2 instances managed by | Continue reading


@cloudonaut.io | 1 year ago

Authentication at the edge with Lambda@Edge and Cognito

For many years, we used a hosting partner for serving the [apid Docker on AWS Video Course. When someone bought the video course, we crea | Continue reading


@cloudonaut.io | 1 year ago

Builder's Diary Vol. 1: Successful Cloud Migrations

Get insights into the day-to-day challenges of builders. In this issue, Monika Oblonczek from our partner tecRacer talks about how cloud | Continue reading


@cloudonaut.io | 1 year ago

ALB vs. NLB: Which AWS load balancer fits your needs?

Which load balancer fits my workload best? As is often the case, AWS offers more than one solution. Read on to learn whether to use the A | Continue reading


@cloudonaut.io | 1 year ago

Review: App Runner - Simply containers on AWS!

How many options are there for deploying containers on AWS? ECS, EKS, Elastic Beanstalk, EC2, and Fargate, to name a few. And there’s ano | Continue reading


@cloudonaut.io | 1 year ago

Building multi-architecture container images for AWS Graviton

What do my MacBook Pro and my container workload running on ECS and Fargate have in common? They both run amazingly well on the ARM proce | Continue reading


@cloudonaut.io | 1 year ago

Deprecated Terraform provider template causes `Incompatible provider version` error

Did you recently switch to a Mac with Apple Silicon (ARM processor architecture)? The chances are high that you will see an Error: | Continue reading


@cloudonaut.io | 1 year ago

Security Iceberg: AWS Security Hub the right way

This is a warning about AWS Security Hub. Organizations that use AWS Security Hub to monitor and mitigate risks pay too much attention to | Continue reading


@cloudonaut.io | 1 year ago

Automate CloudFormation StackSets with CloudFormation

CloudFormation StackSets rollout CloudFormation stacks to all or some of your AWS accounts. Also, stack sets allow you to dep... | Continue reading


@cloudonaut.io | 1 year ago

Review: Aurora Serverless v2

I was excited when AWS announced Aurora Serverless at re:Invent 2017. Disappointment followed shortly after. Even after Aurora Serverless | Continue reading


@cloudonaut.io | 1 year ago

Launching cloudonaut talent

We launched our blog cloudonaut in 2015, and published more than 340 articles and started to record and publish a podcast episodes and vi | Continue reading


@cloudonaut.io | 1 year ago

Amazon Web Services in Action 3rd Edition: Early Access

About seven years ago, Michael and I started to write a book about Amazon Web Services. We were beginning our consulting business, and wr | Continue reading


@cloudonaut.io | 1 year ago

Application Authentication and Authorization on AWS

In this blog post, you will learn to implement authentication and authorization for your own HTTP(S)-based applications on AWS. Mo | Continue reading


@cloudonaut.io | 2 years ago