Hello all. I have a question that spans a few areas, so dropping it here. Please let me know if there's a channel that's better suited to the discussion. We have a project that uses Atmos to define the infrastructure and we have github actions applying the changes when merging into the main branch. Using the Cloud Posse actions to drive the process. Normally everything runs fantastic. But we do have issues with our rds components sometimes. They'll fail the plan diff check on latest_restorable_time. I know what the underlying issue is, that it's a computed value coming back on the terraform module. And I saw the recent skip plandiff change and I know that's an option. I was actually going to hack something together on my own to only skip plandiff in certain circumstances. It seems like a pretty general problem though, and I was surprised I didn't see people talking about it. Did I miss some obvious other way to deal with this?

Hrmmm these channel join notifications are new; not sure what changed. I think we should disable them.

hi

Hey Everyone, i'm Gboyega (G is silent) just curious how your teams handle IaC drift when auto-remediation kicks in. For example, AWS Config or Security Hub fixes a non-compliant resource (like enabling S3 encryption), but now your Terraform state is out of sync with reality. How do you deal with that? Manual terraform import and state surgery? Just ignore it until the next plan? Something else? Trying to understand how common this is and how painful it actually gets at scale. Would love to hear war stories.

Hi folks, I'm Luka, nice to e meet everyone. I work in the kubernetes field, especially on observability and management

Hey, I'm Geronimo and trying to get some pointers as I want to get to where you guys are at, I saw a lot of people (in other forums) mention NET+, CCNA, AWS and Azure certs, how much pull do these certifications really have, I'm just starting my university studies as a network and software technician which gives me a degree for my country, and I'm looking at some side things to catapult myself into the DevOps field, I'd really appreciate it if you guys give me some pointers on this as you guys are where I wanna be in 2-3 years!

hi guys, curious how folks have used ai at work? i'm building a root cause analysis tool but i was wondering if there's other use cases people would fine useful if you had an ai hooked up to your telemetry + code data.

I also use the modules alot would be nice to know where the chatter happens

what channel do you guys discuss cloudposse terraform modules ? i have a few a modified slightly (like just vars) and im curious if the org would want the changes in master

Hi everyone 👋
I’m fairly new to DevOps and starting to work more with CI/CD pipelines. I wanted to ask — what are some common mistakes beginners should avoid when setting up CI/CD for the first time?

Intros in general are fine, but let's keep promotions in #random or this becomes just one big billboard.

Hey folks — I’m Satish from PrArySoft, building IncidentIQ, a Slack-native incident capture + summary tool.
It does /incident start + /incident end, then posts a clean summary, key events, action items, and a markdown export.
I’m recruiting 3–5 early beta teams (Slack-first incident response) and looking for honest feedback.
If anyone wants to test it during real incidents, DM me and I’ll share the install link + 1-page quick start.

Hey everyone, I’m working on a tool to help freelancers and small agencies respond to RFPs quickly instead of manual copy pasting and coordinating with different SMEs for review.

The specific problem I’m trying to solve is, first, helping teams quickly decide if the RFP is worth pursuing before actually working on it. Second, to reduce users’ time on manually finding questions and copy-pasting answers from previous RFPs and then getting those reviewed by SMEs in multiple email threads.

It’s still pretty early and I’m still figuring out what’s the best way possible to reduce time and effort.

If anyone has dealt with RFPs before, I’d really appreciate any inputs like what part of the RFP response process is most painful and consumes most time.
Thank you

Has anyone used "AI SRE" products like Resolve.ai or Traversal at work?
what was your experience like?

PSA: Lots of New Scam DMs — Stay Alert

We’ve had to block multiple accounts this week for running employment and investment scams.

👉️ If you get a DM from someone you don’t know, assume it’s a scam — unless you’ve already been talking with them openly in a channel.

Common scam patterns:

• Fake “professors” or “mentors” offering free courses
• Invitations to WhatsApp/Telegram groups
• Requests to apply for jobs on their behalf
• Offers to “split” a salary
• Asking for remote access tools (Anydesk, KVM, etc.)
If this happens:

➡️ Do not click links
➡️ Do not install anything
➡️ Do not share personal info
➡️ Report the account immediately

Yes — the AI compares your design creativity against the AWS Well-Architected Framework by scanning your entire buildout.

It beats reading the PDF

# AI-Powered AWS Well-Architected Framework Scanner

## TL;DR
Built an open-source tool that combines *Claude AI with AWS infrastructure scanning to provide natural language cloud architecture reviews. Ask questions like "What security issues need immediate attention?"* instead of parsing through endless
CLI output.

---

## The Problem

Every cloud architect knows the drill:
- Run 50+ AWS CLI commands
- Parse JSON output manually
- Cross-reference against Well-Architected best practices
- Repeat for every region, every account

*It's tedious. It's error-prone. It doesn't scale.*

---

## The Solution: LLM-Powered Infrastructure Analysis

I built a scanner that evaluates your AWS environment against all *6 Well-Architected Framework pillars*:

| Pillar | AI-Enhanced Analysis |
|--------|----------------------|
| *Security* | Intelligent threat prioritization, attack surface analysis |
| *Reliability* | Failure mode detection, resilience scoring |
| *Performance* | Bottleneck identification, optimization recommendations |
| *Cost* | Waste detection, right-sizing suggestions |
| *Operational Excellence* | Automation gap analysis, runbook recommendations |
| *Sustainability* | Carbon footprint estimation, Graviton migration paths |

AWS Well Architected Framework detailed analysis

Hello everyone — I am a 22-year Technical Operations executive who pivoted into AI in 2023. I have completely automated the SDLC chain; built and designed extensive NLQ AI AWS tooling, including a Well-Architected Framework vs. actual-analysis engine; designed cost-center analysis and cost-anomaly detection with RCA; full DevOps automation; IaC automation; and MCP design. I am an expert in Claude Code, Codex, OpenAI, Gemini, prompt engineering, and QE automation. Ping me if you want to talk AI DevOps automation.

Hey everyone
I was brown too.

is there an Q&A section?

Hello everyone,
I have a quick question. Our team is currently evaluating Terraform VS OpenTofu. At present, our entire infrastructure is managed using Terraform, but we are exploring whether OpenTofu may be a suitable option for the future.
In this context, I would like to understand Cloud Posse’s long-term roadmap. Specifically, will CloudPosse continue to support both Terraform and OpenTofu particularly with respect to module compatibility over the long term?
Thank you in advance for any insight you can provide.

What opinion do you have about having all public facing ingress components in a separate aws account?

hey 👋
I’m Awantika, working with a team building self-improving AI agents.

Also co-hosting a solo builders community focused on startup marketing and revenue strategies.

really excited to be here to learn, share, and meet other folks building cool stuff
https://discord.gg/mAGZAQwSxR

Anyone here interested in having their infrastructure and SaaS dependencies mapped out in OSCAL? I've recently found myself working with multiple clients doing GRC automation work and I have a feeling there are definitely orgs here that have a sprawling mess of third party dependencies that would (or do) make their CISO have nightmares.

I've actually built my own special tooling stack for this, but if you want me to help you manage your third-party dependencies and map your infra, shoot me a DM and let's talk.

Hi everyone! should we start a "Dev Talk" or a knowledge-sharing session within the team? We can share interests, trending, a failure or a cool concept.

if you’re working on a new project or idea, let’s connect!
full stack web3 builder in EST timezone building defi and nft contracts, wallet-ready dapps, high performance apis, and solid infra across evm, sui, and solana. skilled in rust, solidity, python, react, and next.js.

👋 Hi everyone, I'm Leo Li from Shanghai .

I'm an AWS DevOps engineer focusing on EKS GitOps automation (ArgoCD + Helm), Terraform IaC, and cost optimization (Spot, NAT Gateway, Kubecost).
Currently preparing for the AWS DevOps Professional certification and building a public EKS + GitOps blueprint project.

Looking forward to learning from you all and sharing experience with Terraform & AWS users here! 🚀

Hey everyone I am Drew and looking to make some connections/help out if anyone needs help with cloud especially AWS. I would post my portfolio website but I don't know if that counts as advertisement so earing on the side of safety.

Please can some one help with DevOps job

I'm an app developer

Hi devs is there anyone in need of a job bidder who will assist him/her applying job applications and get interviews weekly, kindly dm me

Hi guys,

I'm not sure about CloudPosse pricing, are we expected to pay a recurring subscription if using the terraform modules under Atmos or is it a one time payment for getting the reference architecture spec?

Can you please share an explainer or a link to such.

Thank you

Hey everyone I am Brandon, I am a Devops Engineer with Full Stack experience. I know how to build from scratch as well as utilize Cursor and Windsurf etc

I have just over 6 years of experience, however, I am seeking a junior/entry level role. Does anyone have tips on getting a hiring manager to give me a chance on a role they feel I may be overqualified for? Any advice is appreciated.

Have you fixed this @will

Hi, I'm using the ECR aws module (https://registry.terraform.io/modules/cloudposse/ecr/aws/latest). I would like some clarification on the max_image_count and protected_tags_keep_count parameters.
1. Does the max_image_count exclude the images with protected tags?
2. Is the protected_tags_keep_count per unique tag?
We've had some issues with deployed tags being cleaned up and I want to make sure I fully understand these 2 settings. Thanks.

Hi all — I am Emmanuel, a DevOps and SRE engineer in Nigeria.
I built Drone-Data: an AWS production-style pipeline for ingesting and serving drone telemetry.
Repo
GitHub: https://github.com/Emmylong1/Drone-Data
I am open to gigs full time or part time. If this aligns with your stack, let’s talk.

Does anyone here have a need for FedRamp/CMMC/FIPS evidence generation? I built something super neat as a solo founder and I would be remiss if I didn't try to shill it a bit.

This message was deleted.

Hello, Any Airflow users here?
I've a question about stress/load testing airflow on EKS. I'd like to know what approaches one would take to determine what changes on airflow/DAGs will help one understand the load EKS Cluster can support? I use following backends for airflow on EKS.
• RDS DB instance - db.m5.large
• REDIS cluster - cache.t2.medium (3 nodes cluster)
The airflow is setup in a namespace and has toleration to run on EKS node-pool of m4.4xlarge instances

Please let me know if you need any more details.

Hello All , I want to ask that should I learn Devops? I have 4 years of experience in magento 2 and laravel but in this job I have more workload so I feel stressed, I am not getting free time during job so I want future proof and less work load from my job .

What is LeApp Cloud? How are you using it? If you provide details like that you might have a better chance of getting recommendations.

Hi, Currently we are using LeApp cloud to access aws cloud accounts but it is officially shutting down. CloudPosse recommend any alternative cloud access tool ?

I had spent hours to fix bug nothing work for me. so stressful, if you know I wrong something here please kick for my mind wake up 😄

Hi there, I’m facing the issues ENV for railway, actually it’s work as well in local (docker build, railway run … “build test in local”),
but with the command “railway up” (link service and login before do that) it’s not work? I can’t see ENVs “default and modify nothing stay here”

default: https://docs.railway.com/reference/variables#railway-provided-variables

🗣️ There have been follow-up attacks that used the leaked Github tokens from the nx compromise. The attackers are making private organization repositories public.
You can check if you've been affected by searching for Github for is:name s1ngularity-repository org:your-org

Hey everyone 👋
I’ve been thinking of giving my old Dell Vostro series laptop a second life by configuring it as a homelab. Instead of letting it gather dust, I want to use it to learn DevOps hands-on and avoid unnecessary cloud bills.
Here’s what I want to achieve:
1️⃣ Run Kubernetes locally – spin up nodes, run containers, add GitOps with Flux or ArgoCD, and set up proper monitoring, observability & security.
2️⃣ Self-hosting projects – experiment with services, automation, and infrastructure right from home.
💡 My goal: to build real-world experience with Kubernetes, GitOps, CI/CD, self-hosting, monitoring tools, and infrastructure automation—all without the cloud costs.
👉️ Now I need your valuable suggestions/feedback/inputs/advice on how to get started:
Which OS/distribution should I use?
Should I go with bare-metal installs, VMs, or Dockerized environments?
How do I optimize an older laptop for stability & performance?
Must-have tools, tips, or “watch-outs” you wish you knew when you started?
I’d love to hear from those of you who have already built your own homelabs. Your insights could help me (and many others here) get up and running faster!
📚️ Also feel free to tag any resources you have in mind.

Hi All! Been here for a couple of years and rejoining on a new email 🚀