zoph - Network

Dreams are nice. But we want reality.And reality starts with a calendar.What’s your way of avoiding procrastination when building...

Dreams are nice. But we want reality.
And reality starts with a calendar.

What’s your way of avoiding procrastination when building something new?

We now put dates on everything:✅ Feature releases🐞 Bug fixes🚀 Major MilestonesIt’s not just about shipping fast — it’s about...

We now put dates on everything:

✅ Feature releases
🐞 Bug fixes
🚀 Major Milestones

It’s not just about shipping fast — it’s about building trust.
Trust in ourselves. Trust from our users. Trust that we’re serious.

Like many founders, we have big ideas. We dream of helping every AWS user clean up their cloud waste.But dreams without a date stay...

Like many founders, we have big ideas. We dream of helping every AWS user clean up their cloud waste.

But dreams without a date stay dreams.
No product. No value. No users. Just noise.

That’s why we changed how we work.

“The difference between a dream and reality? Just a date.”This quote has been stuck in my head lately.While building unusd with my...

“The difference between a dream and reality? Just a date.”

This quote has been stuck in my head lately.

While building unusd with my co-founder Dorian, we kept coming back to it.

Not because it sounds cool — but because it hurts a little.

💡 Takeaway: Review your handler structure, optimize init, and measure cold-start impact. Tools like Lambda Power Tuning and SnapStart are...

💡 Takeaway: Review your handler structure, optimize init, and measure cold-start impact. Tools like Lambda Power Tuning and SnapStart are no longer “nice to have” – they’re cost control.

How are you adapting your Lambda patterns to this change?

Cons - Cost can jump 25 – 50% for short-lived functions with heavy init (Python, Node) - Misusing init for caching, prefetching, or trick...

Cons
- Cost can jump 25 – 50% for short-lived functions with heavy init (Python, Node)
- Misusing init for caching, prefetching, or trick optimizations = no longer “free”
- Functions with 3rd-party tooling will see higher costs even before hitting the handler

AWS has standardized billing to include the init time, not just the handler.Pros - Brings transparency (execution time = billed time) -...

AWS has standardized billing to include the init time, not just the handler.

Pros
- Brings transparency (execution time = billed time)
- Better predictability with SnapStart, provisioned concurrency, or containers
- Encourages better lifecycle management & resource reuse

Lambda billing now includes the Init phase – cold starts are no longer “free”.That means: • ❄️ Cold starts now cost...

Lambda billing now includes the Init phase – cold starts are no longer “free”.

That means:
• ❄️ Cold starts now cost you.
• 🧠 Code outside your handler (init) will be billed too.
• 🧰 Frameworks, SDKs, and extensions (e.g. OTel) could add hidden costs.

Instead, rely on other boundaries, such as AWS account segregation. This ensures runners are dedicated to a single project and environment,...

Instead, rely on other boundaries, such as AWS account segregation. This ensures runners are dedicated to a single project and environment, limiting the blast radius to a single isolated container-like environment.

In CI/CD pipelines, it's common not to know what will be deployed next using Infrastructure as Code (IaC). Thus, adopting a least...

In CI/CD pipelines, it's common not to know what will be deployed next using Infrastructure as Code (IaC). Thus, adopting a least privilege approach for runner policies is impractical.

Using the AdministratorAccess IAM managed policy for CI/CD pipeline runners is acceptable.Please don’t listen to the warnings of security...

Using the AdministratorAccess IAM managed policy for CI/CD pipeline runners is acceptable.

Please don’t listen to the warnings of security ayatollahs; they often lack experience in managing production environments.

Add yours below ↓

Add yours below ↓

- Instagram was for me the go-to app for vintage-style photos- First computer: Apple Performa 5200 (also worked with Amstrad)- Compiled the...

- Instagram was for me the go-to app for vintage-style photos
- First computer: Apple Performa 5200 (also worked with Amstrad)
- Compiled the Linux kernel to get the sound working. Issue persists.

I guess I'm now defined as a "Tech Dad." 👴 Here's a self-introspection:- Winamp fanboy- Owned a Tamagotchi- Used a T9...

I guess I'm now defined as a "Tech Dad." 👴

Here's a self-introspection:

- Winamp fanboy
- Owned a Tamagotchi
- Used a T9 keyboard
- Had a Sony Minidisc
- Favorite game: Zelda
- Family's go-to for printing issues
- Watched "Back to the Future" 100 times

Many educational and security best practices still need to be shared, particularly regarding child protection and privacy for companies...

Many educational and security best practices still need to be shared, particularly regarding child protection and privacy for companies organizing trips for children.

I reached out to the company at that time, and they fixed the issue a few days later.

Using a straightforward bash script, I listed all valid paths and retrieved hundreds of photos, even those not related to my daughter's...

Using a straightforward bash script, I listed all valid paths and retrieved hundreds of photos, even those not related to my daughter's trip:

- No authentication required
- Five sequential digits to separate trips
- No rate limits
- Directory listing enabled
- HTTP only

In 2019, when my stepdaughter went on her first school trip, I received a link to view pictures of their activities. My attention, however,...

In 2019, when my stepdaughter went on her first school trip, I received a link to view pictures of their activities.

My attention, however, was caught by the URL pattern: (-.com/suivi/12345).

This is why I continue to check Reddit every day.Sorry for the Stevens.

This is why I continue to check Reddit every day.

Sorry for the Stevens.

https://github.com/zoph-io/kye

https://github.com/zoph-io/kye

New feature for KYE: Get the list of trusted accounts from AWS Organizations (ListAccounts) API directly.Thanks to Aidan's idea!Link...

New feature for KYE: Get the list of trusted accounts from AWS Organizations (ListAccounts) API directly.

Thanks to Aidan's idea!

Link Below ↓