Category: DevOps

Solving Secret Sprawl in Multi-Account Kubernetes with External Secrets Operator

kubernetes

Infrastructure automation in Kubernetes is largely a solved problem-until secret management enters the picture. As environments scale, distributing and rotating secrets across multiple isolated clusters quickly becomes a major operational challenge. Our team recently faced this exact problem while designing a scalable Kubernetes platform for a client running on EKS. The core issue wasn’t specific […]

Deploying Self-Hosted GitHub Runners on Kubernetes (EKS) with a Custom Docker Image

github blog

Deploying self-hosted GitHub runners at the organization level can be more complex than expected – especially when you need full control over tooling, scalability, and execution speed. In our case, we needed a custom runner environment preloaded with DevOps tools such as Terraform, AWS CLI, kubectl, Helm, and Gitleaks. Installing these at runtime inside every […]

Fetching Secrets in Kubernetes with the AWS Secrets Manager Agent Sidecar

AWS

Managing secrets in Kubernetes can sound straightforward-until you actually implement it at scale. Common approaches include mounting Kubernetes secrets as environment variables, using an external secrets operator, or calling cloud SDKs directly from application code. Each option introduces trade-offs around caching, auditing, security boundaries, and application coupling. In this post, we walk through an alternative […]

Secure Dependency Updates During Bitbucket to GitHub Migration

technology devops

In a previous post, we described how repositories were migrated from Bitbucket Cloud to GitHub Cloud while preserving full Git history, including branches, tags, and submodule references. That migration established a solid foundation, but moving repositories alone is only part of a successful transition. This article continues the journey by focusing on securely updating project […]

Migrating Bitbucket Repositories and Pipelines to GitHub Actions

github

Migrating CI/CD pipelines is a common task for DevOps engineers, especially as teams move toward more unified and modern delivery platforms. In this real-world case study, we walk through the process of migrating multiple Bitbucket repositories and pipelines to GitHub, while modernizing CI workflows using GitHub Actions. The repositories in scope were responsible for firmware […]

GitOps Policy-as-Code: Securing Kubernetes with Argo CD and Kyverno

Kyverno and kubernetes

As Kubernetes environments develop, GitOps with Argo CD has become the standard for declarative, self-healing infrastructure. Yet without guardrails for your deployments, misconfigured, insecure, or non-compliant resources can easily make it to production. This blog walks through how to deploy Kyverno alongside Argo CD, using baseline policies from the official Kyverno Policies Helm chart and […]

Multi-Cloud Smart Modernization: How to Avoid Complexity in Cloud Deployments

tech innovation cloud

Introduction Cloud technology continues to reshape how businesses deliver value and scale globally. Yet as more organizations adopt multi-cloud architectures, the path to modernization often becomes more complex and costly. While multi-cloud promises flexibility, resilience, and freedom from vendor lock-in, many companies discover that integrating, managing, and optimizing several cloud environments simultaneously often leads to […]

Migrating from Terraform to OpenTofu: A Step-by-Step Guide with Key Benefits

OpenTofu guide

Introduction In the rapidly evolving world of Infrastructure as Code (IaC), OpenTofu has emerged as a powerful open-source alternative to Terraform, offering a more open, community-driven, and flexible future. Suppose you’re considering a switch or just want to stay current. In that case, this guide walks you through everything you need to know about migrating […]

Boost Kubernetes Workflows with Harbor: Solving DockerHub Rate-Limiting Challenges

cover Boost Kubernetes Workflows with Harbor: Solving DockerHub Rate-Limiting Challenges

DockerHub is a cornerstone of containerized development, but its rate-limiting policies often create bottlenecks in workflows. Teams frequently encounter issues pulling container images, especially in CI/CD pipelines, where frequent requests can exceed DockerHub’s pull limits. In this article, we’ll explore how to set up Harbor as a proxy cache in a Kubernetes environment to address […]

How to Manage Terraform Locals

Managing Terraform locals efficiently is crucial for creating clean, maintainable, and reusable configurations. This guide will cover what Terraform locals are, how to implement them, and best practices for their use. What are Terraform Locals? All programming languages have mechanisms to store values within the context of a code block. In Terraform configurations, this functionality […]