All posts
Modern Python FastAPI #1 Getting Started and Setup
Why FastAPI, first project setup with uv, Hello FastAPI, automatic OpenAPI/Swagger UI generation — all in one place.
RHEL Advanced #6: Subscription, Satellite, Insights — Operations Infrastructure
Three Red Hat operations tools you meet not when running one machine, but when running tens or hundreds. subscription-manager ties a machine to a Red Hat subscription, Satellite is the on-prem unified ops platform for lifecycle, content views, and patch automation, and Insights is the SaaS analytics service for vulnerability, stability, and performance recommendations — all in one cycle.
Testing #1 — Why Test? The Place of Unit, Integration, and E2E
The first post of the testing track. The meaning of the test pyramid, what unit/integration/E2E each catch and miss, and how the question "where to use which test" ultimately becomes a question of how to allocate your time — this post sets up the picture you need to design that allocation.
TypeScript Advanced #4: Template literal types
Tools that compose strings at the type level — the `${...}` pattern, Capitalize/Uppercase built-ins, and real-world patterns for modeling route/event names as types.
Why They Tell You to "Clear Your Cache" — Caching and CDNs
This post explains, without any code, what developers mean when they suggest "clearing the cache" or "a hard refresh." It unpacks how a cache, which keeps frequently used things close by, and a CDN, which scatters copies around the world, speed up the web.
Angular Advanced #5 Intro to NgRx — Store, Action, Reducer, Effect
NgRx — the tool for making state flow explicit in large apps. Maps out the roles of Store/Action/Reducer/Effect in a single diagram, and compares side by side with modern Angular's SignalStore and Component Store.
AWS Advanced #6: Secrets Manager / Parameter Store
How Secrets Manager and SSM Parameter Store differ, automatic rotation, fetching from code (boto3 / caching / Powertools), ECS and Lambda integration, IaC wiring, cost comparison — AWS secret / configuration management.
Django Advanced #5: Signals in depth and post-transaction work
transaction.on_commit, savepoints, custom signals, mute_signals, Celery integration — every tool you need to use signals safely.
Docker in Practice #6 Cloud Deployment — Fly.io / Railway / ECS — Wrapping the Track
The final step — taking the images you built and pushed and putting them on real production. Three options (Fly.io , Railway , ECS Fargate), the fork between them, deployment flows, secret management, healthchecks and zero-downtime, and a recap of all 24 posts in the track.
K8s Advanced #2: RBAC / ServiceAccount in Depth — Aggregated ClusterRole / Impersonation / IRSA / Workload Identity
[Intermediate #7](/en/posts/k8s-intermediate-7) covered the four RBAC objects and the ServiceAccount model. On top of that, there's more depth encountered in operational clusters. Aggregated ClusterRole that makes ClusterRoles extensible by composing them via labels, Impersonation that temporarily acts as another user's permission, the flow where ServiceAccount tokens shifted from legacy secrets to projected tokens, and EKS's IRSA and GKE's Workload Identity that tie K8s ServiceAccounts to cloud IAM — one more layer of the permission model in depth.
Modern Python Advanced #7 Performance — cProfile, py-spy, Memory Profiling
A toolbox for finding and fixing slow Python code — timeit, cProfile, py-spy, line_profiler, memray, and common optimization patterns.
RHEL Advanced #5: Security Hardening — auditd, OpenSCAP, FIPS
The three pillars of operational security stacked on top of SELinux. auditd for recording every change to the system with ausearch/aureport, OpenSCAP for automated checking and remediation against CIS, STIG, PCI-DSS, and FIPS mode required by government and financial certifications — all in one cycle.