Posts

TL;DR: I recently undertook a project that terrifies most engineers: rewriting a massive, critical infrastructure automation tool from scratch. I moved from legacy Bash to Python without writing a single line of manual code - relying entirely on AI agents. Here is how I managed the risk, the architecture, and the “memory loss” of LLMs to build a production-grade tool. The Stakes This wasn’t a simple CRUD app. This tool manages infrastructure for multiple teams. A logic error here doesn’t just throw a stack trace; it could wipe an entire environment or cause immediate customer impact. ...

⬅ Back to Intro | Next → Part 8 - JWT and End-User Authentication 💡 This post is part of my Istio Hands-on Series — a practical journey into Kubernetes Service Mesh. Each post builds on the previous one with hands-on labs, real command outputs, and clear explanations aimed at learning Istio by doing, not just reading. Objective In this post, we’ll: Enable and verify mutual TLS (mTLS) between services Apply AuthorizationPolicies to control access Test what happens when policies block or allow traffic By the end, your frontend–backend app will communicate securely - every request encrypted and identity-verified. ...

⬅ Back to Intro | Next → Part 7 - Security with mTLS and AuthorizationPolicies 💡 This post is part of my Istio Hands-on Series — a practical journey into Kubernetes Service Mesh. Each post builds on the previous one with hands-on labs, real command outputs, and clear explanations aimed at learning Istio by doing, not just reading. Objective: In this post, you’ll learn how to set up distributed tracing in Istio using Jaeger. ...

⬅ Back to Intro | Next → Part 6 - Security with mTLS and AuthorizationPolicies 💡 This post is part of my Istio Hands-on Series — a practical journey into Kubernetes Service Mesh. Each post builds on the previous one with hands-on labs, real command outputs, and clear explanations aimed at learning Istio by doing, not just reading. Objective In this post, you’ll set up and explore Istio’s observability stack — powered by: ...

⬅ Back to Intro | Next → Part 5 - Observability with Prometheus, Grafana, and Kiali 💡 This post is part of my Istio Hands-on Series — a practical journey into Kubernetes Service Mesh. Each post builds on the previous one with hands-on labs, real command outputs, and clear explanations aimed at learning Istio by doing, not just reading. Objective In this post, we’ll learn how to use Istio’s traffic management features — specifically: ...