Blog

Notes on data, cloud, DevOps, AI, security, and automation.

• June 1, 2026 · ~8 min read

  Apple's AI Pivot: Gemini-Powered Siri, Private Cloud Compute, and What's Next

  Apple's 2026 AI strategy — a multi-billion-dollar Gemini deal powering a rebuilt Siri, on-device models behind Private Cloud Compute, a multi-model iOS 27, and an AI hardware roadmap. What's confirmed and what's next.

  Read the post →

• May 31, 2026 · ~10 min read

  Terraform vs. OpenTofu in 2026: Where the Fork Stands

  Three years after the license change, the two have genuinely diverged. Licensing, current versions, the widening feature gap (state encryption, Stacks, ephemeral resources), migration, and how to choose.

  Read the post →

• May 30, 2026 · ~11 min read

  The Modern Data Stack, Demystified (2026)

  What the modern data stack actually is in 2026 — the layers and leading tools, ELT vs. ETL, the lakehouse and Apache Iceberg, the Fivetran + dbt Labs merger, DuckDB, and AI text-to-SQL.

  Read the post →

• May 29, 2026 · ~9 min read

  Hosting a Static Site on S3 + CloudFront: Architecture and Economics

  A practical guide to hosting a fast, secure, dirt-cheap static website on Amazon S3 and CloudFront — the reference architecture, caching and security headers, the real costs, and when not to.

  Read the post →

• May 28, 2026 · ~9 min read

  Shipping Faster with Agentic AI Workflows

  Agentic AI is moving from single chat turns to orchestrated multi-agent workflows. The patterns that work — fan-out, pipelines, adversarial verification — where they help, and the guardrails they need.

  Read the post →

• May 27, 2026 · ~9 min read

  Least Privilege for AI Agents: A Practical Playbook

  AI agents now hold credentials and run commands. A practical least-privilege playbook: scoped, short-lived credentials, read-only defaults, sandboxing, human gates, and audit.

  Read the post →

• May 26, 2026 · ~9 min read

  AWS Well-Architected in Practice: The Six Pillars, Minus the Buzzwords

  A jargon-free tour of the AWS Well-Architected Framework's six pillars — operational excellence, security, reliability, performance, cost, and sustainability — and how to actually run a review.

  Read the post →

• May 25, 2026 · ~14 min read

  Claude Code vs. OpenAI Codex CLI: A 2026 Field Guide

  A deep, balanced comparison of Anthropic's Claude Code and OpenAI's Codex CLI — models, context, sandboxing, MCP, agents and subagents — and which agentic terminal fits coding, writing, research, workflows, and CI.

  Read the post →

• May 24, 2026 · ~8 min read

  Google Antigravity CLI: Gemini CLI's Replacement, and How It Compares to Claude Code

  Google is retiring Gemini CLI for consumer/Pro/Ultra and replacing it with the Go-based, multi-agent Antigravity CLI. What's new, the June 18, 2026 cutoff, and how it stacks up against Claude Code.

  Read the post →

• May 23, 2026 · ~7 min read

  What's New in Claude Opus 4.8 and Claude Code

  Adaptive thinking and effort controls, a fast mode that's 2.5× faster and ~3× cheaper, a 1M-token context — plus Claude Code's dynamic workflows, agent teams, skills, and hooks. A practical rundown.

  Read the post →

• May 22, 2026 · ~9 min read

  Security in the Age of AI: The Year Agents Started Deleting Production

  AI agents now run commands, touch production, and call cloud APIs. Real 2025 incidents where AI wiped databases and infrastructure — and the security, audit, and monitoring controls that prevent it.

  Read the post →

• May 21, 2026 · ~7 min read

  Why Cloud, AI, Security & Terraform Certifications Still Matter in the Age of AI

  AI raises the floor, but expertise is still the ceiling. Why certified professionals aren't going anywhere — with concrete examples drawn from real AWS, Azure, GCP, Kubernetes, HashiCorp, and Anthropic certifications.

  Read the post →