general
114197,010
General Discussions
M
Mike Rowehl4 days ago
Hello all. I have a question that spans a few areas, so dropping it here. Please let me know if there's a channel that's better suited to the discussion. We have a project that uses Atmos to define the infrastructure and we have github actions applying the changes when merging into the main branch. Using the Cloud Posse actions to drive the process. Normally everything runs fantastic. But we do have issues with our rds components sometimes. They'll fail the plan diff check on latest_restorable_time. I know what the underlying issue is, that it's a computed value coming back on the terraform module. And I saw the recent skip plandiff change and I know that's an option. I was actually going to hack something together on my own to only skip plandiff in certain circumstances. It seems like a pretty general problem though, and I was surprised I didn't see people talking about it. Did I miss some obvious other way to deal with this?
E
erik6 days ago
Hrmmm these channel join notifications are new; not sure what changed. I think we should disable them.
J
JS6 days ago
hi
G
Gboyega Ofi14 days ago(edited)
Hey Everyone, i'm Gboyega (G is silent) just curious how your teams handle IaC drift when auto-remediation kicks in. For example, AWS Config or Security Hub fixes a non-compliant resource (like enabling S3 encryption), but now your Terraform state is out of sync with reality. How do you deal with that? Manual terraform import and state surgery? Just ignore it until the next plan? Something else? Trying to understand how common this is and how painful it actually gets at scale. Would love to hear war stories.
L
Luka14 days ago
Hi folks, I'm Luka, nice to e meet everyone. I work in the kubernetes field, especially on observability and management
G
Geronimo19 days ago
Hey, I'm Geronimo and trying to get some pointers as I want to get to where you guys are at, I saw a lot of people (in other forums) mention NET+, CCNA, AWS and Azure certs, how much pull do these certifications really have, I'm just starting my university studies as a network and software technician which gives me a degree for my country, and I'm looking at some side things to catapult myself into the DevOps field, I'd really appreciate it if you guys give me some pointers on this as you guys are where I wanna be in 2-3 years!
J
Jimmy Wei21 days ago
hi guys, curious how folks have used ai at work? i'm building a root cause analysis tool but i was wondering if there's other use cases people would fine useful if you had an ai hooked up to your telemetry + code data.
G
gespodevops28 days ago
I also use the modules alot would be nice to know where the chatter happens
G
gespodevops28 days ago(edited)
what channel do you guys discuss cloudposse terraform modules ? i have a few a modified slightly (like just vars) and im curious if the org would want the changes in master
J
James Johnsonabout 1 month ago
Hi everyone 👋
I’m fairly new to DevOps and starting to work more with CI/CD pipelines. I wanted to ask — what are some common mistakes beginners should avoid when setting up CI/CD for the first time?
I’m fairly new to DevOps and starting to work more with CI/CD pipelines. I wanted to ask — what are some common mistakes beginners should avoid when setting up CI/CD for the first time?
E
erikabout 1 month ago(edited)
Intros in general are fine, but let's keep promotions in #random or this becomes just one big billboard.
P
PrArySoftabout 1 month ago
Hey folks — I’m Satish from PrArySoft, building IncidentIQ, a Slack-native incident capture + summary tool.
It does
I’m recruiting 3–5 early beta teams (Slack-first incident response) and looking for honest feedback.
If anyone wants to test it during real incidents, DM me and I’ll share the install link + 1-page quick start.
It does
/incident start + /incident end, then posts a clean summary, key events, action items, and a markdown export.I’m recruiting 3–5 early beta teams (Slack-first incident response) and looking for honest feedback.
If anyone wants to test it during real incidents, DM me and I’ll share the install link + 1-page quick start.
B
Bharat Vabout 1 month ago
Hey everyone, I’m working on a tool to help freelancers and small agencies respond to RFPs quickly instead of manual copy pasting and coordinating with different SMEs for review.
The specific problem I’m trying to solve is, first, helping teams quickly decide if the RFP is worth pursuing before actually working on it. Second, to reduce users’ time on manually finding questions and copy-pasting answers from previous RFPs and then getting those reviewed by SMEs in multiple email threads.
It’s still pretty early and I’m still figuring out what’s the best way possible to reduce time and effort.
If anyone has dealt with RFPs before, I’d really appreciate any inputs like what part of the RFP response process is most painful and consumes most time.
Thank you
The specific problem I’m trying to solve is, first, helping teams quickly decide if the RFP is worth pursuing before actually working on it. Second, to reduce users’ time on manually finding questions and copy-pasting answers from previous RFPs and then getting those reviewed by SMEs in multiple email threads.
It’s still pretty early and I’m still figuring out what’s the best way possible to reduce time and effort.
If anyone has dealt with RFPs before, I’d really appreciate any inputs like what part of the RFP response process is most painful and consumes most time.
Thank you
A
Ankesh2 months ago
Has anyone used "AI SRE" products like Resolve.ai or Traversal at work?
what was your experience like?
what was your experience like?
E
erik3 months ago(edited)
PSA: Lots of New Scam DMs — Stay AlertWe’ve had to block multiple accounts this week for running employment and investment scams.
👉️ If you get a DM from someone you don’t know, assume it’s a scam — unless you’ve already been talking with them openly in a channel.
Common scam patterns:
• Fake “professors” or “mentors” offering free courses
• Invitations to WhatsApp/Telegram groups
• Requests to apply for jobs on their behalf
• Offers to “split” a salary
• Asking for remote access tools (Anydesk, KVM, etc.)
If this happens:
➡️ Do not click links
➡️ Do not install anything
➡️ Do not share personal info
➡️ Report the account immediately
T
Tim Wolfe3 months ago
Yes — the AI compares your design creativity against the AWS Well-Architected Framework by scanning your entire buildout.
T
Tim Wolfe3 months ago
DevOps Automation
T
Tim Wolfe3 months ago
It beats reading the PDF
T
Tim Wolfe3 months ago
# AI-Powered AWS Well-Architected Framework Scanner
## TL;DR
Built an open-source tool that combines *Claude AI with AWS infrastructure scanning to provide natural language cloud architecture reviews. Ask questions like "What security issues need immediate attention?"* instead of parsing through endless
CLI output.
---
## The Problem
Every cloud architect knows the drill:
- Run 50+ AWS CLI commands
- Parse JSON output manually
- Cross-reference against Well-Architected best practices
- Repeat for every region, every account
*It's tedious. It's error-prone. It doesn't scale.*
---
## The Solution: LLM-Powered Infrastructure Analysis
I built a scanner that evaluates your AWS environment against all *6 Well-Architected Framework pillars*:
| Pillar | AI-Enhanced Analysis |
|--------|----------------------|
| *Security* | Intelligent threat prioritization, attack surface analysis |
| *Reliability* | Failure mode detection, resilience scoring |
| *Performance* | Bottleneck identification, optimization recommendations |
| *Cost* | Waste detection, right-sizing suggestions |
| *Operational Excellence* | Automation gap analysis, runbook recommendations |
| *Sustainability* | Carbon footprint estimation, Graviton migration paths |
## TL;DR
Built an open-source tool that combines *Claude AI with AWS infrastructure scanning to provide natural language cloud architecture reviews. Ask questions like "What security issues need immediate attention?"* instead of parsing through endless
CLI output.
---
## The Problem
Every cloud architect knows the drill:
- Run 50+ AWS CLI commands
- Parse JSON output manually
- Cross-reference against Well-Architected best practices
- Repeat for every region, every account
*It's tedious. It's error-prone. It doesn't scale.*
---
## The Solution: LLM-Powered Infrastructure Analysis
I built a scanner that evaluates your AWS environment against all *6 Well-Architected Framework pillars*:
| Pillar | AI-Enhanced Analysis |
|--------|----------------------|
| *Security* | Intelligent threat prioritization, attack surface analysis |
| *Reliability* | Failure mode detection, resilience scoring |
| *Performance* | Bottleneck identification, optimization recommendations |
| *Cost* | Waste detection, right-sizing suggestions |
| *Operational Excellence* | Automation gap analysis, runbook recommendations |
| *Sustainability* | Carbon footprint estimation, Graviton migration paths |
T
Tim Wolfe3 months ago
AWS Well Architected Framework detailed analysis
T
Tim Wolfe3 months ago
Hello everyone — I am a 22-year Technical Operations executive who pivoted into AI in 2023. I have completely automated the SDLC chain; built and designed extensive NLQ AI AWS tooling, including a Well-Architected Framework vs. actual-analysis engine; designed cost-center analysis and cost-anomaly detection with RCA; full DevOps automation; IaC automation; and MCP design. I am an expert in Claude Code, Codex, OpenAI, Gemini, prompt engineering, and QE automation. Ping me if you want to talk AI DevOps automation.
R
Radu Camelia3 months ago
Hey everyone
I was brown too.
I was brown too.
M
Mike3 months ago
is there an Q&A section?
W
Waqas Yousaf3 months ago
Hello everyone,
I have a quick question. Our team is currently evaluating Terraform VS OpenTofu. At present, our entire infrastructure is managed using Terraform, but we are exploring whether OpenTofu may be a suitable option for the future.
In this context, I would like to understand Cloud Posse’s long-term roadmap. Specifically, will CloudPosse continue to support both Terraform and OpenTofu particularly with respect to module compatibility over the long term?
Thank you in advance for any insight you can provide.
I have a quick question. Our team is currently evaluating Terraform VS OpenTofu. At present, our entire infrastructure is managed using Terraform, but we are exploring whether OpenTofu may be a suitable option for the future.
In this context, I would like to understand Cloud Posse’s long-term roadmap. Specifically, will CloudPosse continue to support both Terraform and OpenTofu particularly with respect to module compatibility over the long term?
Thank you in advance for any insight you can provide.
ion3 months ago
What opinion do you have about having all public facing ingress components in a separate aws account?
Awantika Nigam3 months ago
hey 👋
I’m Awantika, working with a team building self-improving AI agents.
Also co-hosting a solo builders community focused on startup marketing and revenue strategies.
really excited to be here to learn, share, and meet other folks building cool stuff
https://discord.gg/mAGZAQwSxR
I’m Awantika, working with a team building self-improving AI agents.
Also co-hosting a solo builders community focused on startup marketing and revenue strategies.
really excited to be here to learn, share, and meet other folks building cool stuff
https://discord.gg/mAGZAQwSxR
James D. Bohrman3 months ago
Anyone here interested in having their infrastructure and SaaS dependencies mapped out in OSCAL? I've recently found myself working with multiple clients doing GRC automation work and I have a feeling there are definitely orgs here that have a sprawling mess of third party dependencies that would (or do) make their CISO have nightmares.
I've actually built my own special tooling stack for this, but if you want me to help you manage your third-party dependencies and map your infra, shoot me a DM and let's talk.
I've actually built my own special tooling stack for this, but if you want me to help you manage your third-party dependencies and map your infra, shoot me a DM and let's talk.
James Johnson4 months ago
Hi everyone! should we start a "Dev Talk" or a knowledge-sharing session within the team? We can share interests, trending, a failure or a cool concept.
Buddy4 months ago(edited)
if you’re working on a new project or idea, let’s connect!
full stack web3 builder in EST timezone building defi and nft contracts, wallet-ready dapps, high performance apis, and solid infra across evm, sui, and solana. skilled in rust, solidity, python, react, and next.js.
full stack web3 builder in EST timezone building defi and nft contracts, wallet-ready dapps, high performance apis, and solid infra across evm, sui, and solana. skilled in rust, solidity, python, react, and next.js.
Leo4 months ago
👋 Hi everyone, I'm Leo Li from Shanghai .
I'm an AWS DevOps engineer focusing on EKS GitOps automation (ArgoCD + Helm), Terraform IaC, and cost optimization (Spot, NAT Gateway, Kubecost).
Currently preparing for the AWS DevOps Professional certification and building a public EKS + GitOps blueprint project.
Looking forward to learning from you all and sharing experience with Terraform & AWS users here! 🚀
I'm an AWS DevOps engineer focusing on EKS GitOps automation (ArgoCD + Helm), Terraform IaC, and cost optimization (Spot, NAT Gateway, Kubecost).
Currently preparing for the AWS DevOps Professional certification and building a public EKS + GitOps blueprint project.
Looking forward to learning from you all and sharing experience with Terraform & AWS users here! 🚀
Drew S4 months ago(edited)
Hey everyone I am Drew and looking to make some connections/help out if anyone needs help with cloud especially AWS. I would post my portfolio website but I don't know if that counts as advertisement so earing on the side of safety.
Emmanuel Ibok4 months ago
Please can some one help with DevOps job
Atropos4 months ago
I'm an app developer
William4 months ago
Hi devs is there anyone in need of a job bidder who will assist him/her applying job applications and get interviews weekly, kindly dm me
Maxim Veksler4 months ago
Hi guys,
I'm not sure about CloudPosse pricing, are we expected to pay a recurring subscription if using the terraform modules under Atmos or is it a one time payment for getting the reference architecture spec?
Can you please share an explainer or a link to such.
Thank you
I'm not sure about CloudPosse pricing, are we expected to pay a recurring subscription if using the terraform modules under Atmos or is it a one time payment for getting the reference architecture spec?
Can you please share an explainer or a link to such.
Thank you
Brandon Heiss4 months ago
Hey everyone I am Brandon, I am a Devops Engineer with Full Stack experience. I know how to build from scratch as well as utilize Cursor and Windsurf etc
I have just over 6 years of experience, however, I am seeking a junior/entry level role. Does anyone have tips on getting a hiring manager to give me a chance on a role they feel I may be overqualified for? Any advice is appreciated.
I have just over 6 years of experience, however, I am seeking a junior/entry level role. Does anyone have tips on getting a hiring manager to give me a chance on a role they feel I may be overqualified for? Any advice is appreciated.
Emmanuel Ibok4 months ago
Have you fixed this @will
will4 months ago
Hi, I'm using the ECR aws module (https://registry.terraform.io/modules/cloudposse/ecr/aws/latest). I would like some clarification on the
1. Does the
2. Is the
We've had some issues with deployed tags being cleaned up and I want to make sure I fully understand these 2 settings. Thanks.
max_image_count and protected_tags_keep_count parameters.1. Does the
max_image_count exclude the images with protected tags?2. Is the
protected_tags_keep_count per unique tag?We've had some issues with deployed tags being cleaned up and I want to make sure I fully understand these 2 settings. Thanks.
Emmanuel Ibok4 months ago
Hi all — I am Emmanuel, a DevOps and SRE engineer in Nigeria.
I built Drone-Data: an AWS production-style pipeline for ingesting and serving drone telemetry.
Repo
GitHub: https://github.com/Emmylong1/Drone-Data
I am open to gigs full time or part time. If this aligns with your stack, let’s talk.
I built Drone-Data: an AWS production-style pipeline for ingesting and serving drone telemetry.
Repo
GitHub: https://github.com/Emmylong1/Drone-Data
I am open to gigs full time or part time. If this aligns with your stack, let’s talk.
James D. Bohrman5 months ago
Does anyone here have a need for FedRamp/CMMC/FIPS evidence generation? I built something super neat as a solo founder and I would be remiss if I didn't try to shill it a bit.
Slackbot5 months ago
This message was deleted.
akhan4u5 months ago
Hello, Any Airflow users here?
I've a question about stress/load testing airflow on EKS. I'd like to know what approaches one would take to determine what changes on airflow/DAGs will help one understand the load EKS Cluster can support? I use following backends for airflow on EKS.
• RDS DB instance -
• REDIS cluster -
The airflow is setup in a namespace and has toleration to run on EKS node-pool of
Please let me know if you need any more details.
I've a question about stress/load testing airflow on EKS. I'd like to know what approaches one would take to determine what changes on airflow/DAGs will help one understand the load EKS Cluster can support? I use following backends for airflow on EKS.
• RDS DB instance -
db.m5.large• REDIS cluster -
cache.t2.medium (3 nodes cluster)The airflow is setup in a namespace and has toleration to run on EKS node-pool of
m4.4xlarge instancesPlease let me know if you need any more details.
Nirav6 months ago
Hello All , I want to ask that should I learn Devops? I have 4 years of experience in magento 2 and laravel but in this job I have more workload so I feel stressed, I am not getting free time during job so I want future proof and less work load from my job .
bradym6 months ago
What is LeApp Cloud? How are you using it? If you provide details like that you might have a better chance of getting recommendations.
Prajeesh Chandran6 months ago
Hi, Currently we are using LeApp cloud to access aws cloud accounts but it is officially shutting down. CloudPosse recommend any alternative cloud access tool ?
sơn Trần Văn6 months ago(edited)
I had spent hours to fix bug nothing work for me. so stressful, if you know I wrong something here please kick for my mind wake up 😄
S
sơn Trần Văn6 months ago
Hi there, I’m facing the issues ENV for railway, actually it’s work as well in local (docker build, railway run … “build test in local”),
but with the command “railway up” (link service and login before do that) it’s not work? I can’t see ENVs “default and modify nothing stay here”
default: https://docs.railway.com/reference/variables#railway-provided-variables
but with the command “railway up” (link service and login before do that) it’s not work? I can’t see ENVs “default and modify nothing stay here”
default: https://docs.railway.com/reference/variables#railway-provided-variables
Dan Hansen6 months ago
🗣️ There have been follow-up attacks that used the leaked Github tokens from the
You can check if you've been affected by searching for Github for
nx compromise. The attackers are making private organization repositories public.You can check if you've been affected by searching for Github for
is:name s1ngularity-repository org:your-orgPradyut Ghosh6 months ago
Hey everyone 👋
I’ve been thinking of giving my old Dell Vostro series laptop a second life by configuring it as a homelab. Instead of letting it gather dust, I want to use it to learn DevOps hands-on and avoid unnecessary cloud bills.
Here’s what I want to achieve:
1️⃣ Run Kubernetes locally – spin up nodes, run containers, add GitOps with Flux or ArgoCD, and set up proper monitoring, observability & security.
2️⃣ Self-hosting projects – experiment with services, automation, and infrastructure right from home.
💡 My goal: to build real-world experience with Kubernetes, GitOps, CI/CD, self-hosting, monitoring tools, and infrastructure automation—all without the cloud costs.
👉️ Now I need your valuable suggestions/feedback/inputs/advice on how to get started:
Which OS/distribution should I use?
Should I go with bare-metal installs, VMs, or Dockerized environments?
How do I optimize an older laptop for stability & performance?
Must-have tools, tips, or “watch-outs” you wish you knew when you started?
I’d love to hear from those of you who have already built your own homelabs. Your insights could help me (and many others here) get up and running faster!
📚️ Also feel free to tag any resources you have in mind.
I’ve been thinking of giving my old Dell Vostro series laptop a second life by configuring it as a homelab. Instead of letting it gather dust, I want to use it to learn DevOps hands-on and avoid unnecessary cloud bills.
Here’s what I want to achieve:
1️⃣ Run Kubernetes locally – spin up nodes, run containers, add GitOps with Flux or ArgoCD, and set up proper monitoring, observability & security.
2️⃣ Self-hosting projects – experiment with services, automation, and infrastructure right from home.
💡 My goal: to build real-world experience with Kubernetes, GitOps, CI/CD, self-hosting, monitoring tools, and infrastructure automation—all without the cloud costs.
👉️ Now I need your valuable suggestions/feedback/inputs/advice on how to get started:
Which OS/distribution should I use?
Should I go with bare-metal installs, VMs, or Dockerized environments?
How do I optimize an older laptop for stability & performance?
Must-have tools, tips, or “watch-outs” you wish you knew when you started?
I’d love to hear from those of you who have already built your own homelabs. Your insights could help me (and many others here) get up and running faster!
📚️ Also feel free to tag any resources you have in mind.
Kris Musard6 months ago
Hi All! Been here for a couple of years and rejoining on a new email 🚀