I recently created a CDK library provisioning a CI/CD pipeline for serverless apps on AWS. Having finished the “regular” JS library, it took me a day to convert it to a “proper” CDK Construct library. Not long, and I learned a lot. Here are my thoughts and tips.
Read more »AWS
Understanding Logical IDs in CDK and CloudFormation
CDK generates Logical IDs used by the CloudFormation to track and identify resources. In this post, I’ll explain what Logical IDs are, how they’re generated, and why they’re important. Understanding this will help you avoid unexpected resource deletions and baffling “resource already exists” errors during deployment.
Read more »AWS
Running Serverless ML on AWS Lambda
Yes, you can run Machine Learning models on serverless, directly with AWS Lambda. I know because I built and productionized such solutions. It’s not complicated, but there are a few things to be aware of. I explain them in this in-depth tutorial, where we build a serverless ML pipeline.
Read more »AWS
Least deployment privilege with CDK Bootstrap
Security is not convenient. That’s probably why the CDK, by default, uses AdministratorAccess
Policy to deploy resources. But we can easily change it and increase the security of our AWS account, following the least privilege principle with a minimal additional burden.
AWS
The AWS CDK, Or Why I Stopped Being a CDK Skeptic
Until recently, I was skeptical about the AWS CDK. I believe in Infrastructure as Code (IaC), but with the “code” being YAML. But after using CDK in real projects, the amount of heavy lifting it does and the vast reduction of a boilerplate code changed my view.
Read more »