Where It All Began: 2019 re:Invent AWS CDK had just gone GA that year with TypeScript and Python support. At re:Invent 2019, I saw AWS present how to contribute to CDK for the first time. There was no AI back then — everything was manual. Clone the entire monorepo, figure out the Lerna project structure, manually build dependent packages, write L2 constructs, write tests, submit a PR. Every step
Generate a CycloneDX SBOM and deterministic, audit-ready risk report from your package-lock.json. You run npm audit. It says “47 vulnerabilities.” Cool. Which ones actually matter? The one in your production bundle? You don’t know. So you either: Ignore everything → ship anyway Either way, you lose signal. The real problem isn’t vulnerabilities — it’s decision-making Most tools answer: “What is wr
The Challenge: Beyond the "Lift and Shift" Fatigue The real fear isn’t migration itself—it’s operational fragmentation: different tools, different processes, and different failure modes between the data center and the cloud. After deep-diving into the Nutanix ecosystem, I realized that the goal shouldn't be just moving VMs, but achieving operational symmetry. This is where Nutanix Cloud Clusters
Introducing Reachble — open-source VEX generation for npm projects, backed by I got tired of triaging the same CVE three times. The scanner flags it, someone That's what I built Reachble to fix. Run npm audit or drop your package-lock.json into Snyk. You get a list. Most of them cannot be exploited in your code. Research consistently shows 60–80% of CVEs flagged by dependency scanners live . T
Lo sviluppo software nel 2024 non riguarda più solo la scrittura di righe di codice sintatticamente corrette. È diventato un esercizio di gestione della complessità, orchestrazione di sistemi e, sempre più spesso, integrazione intelligente dell'AI. In questo articolo, esploreremo i pilastri che definiscono l'ingegneria del software moderna e come rimanere rilevanti in un ecosistema che cambia ogni
You've heard about Hermes Agent - the open-source, self-improving AI assistant that remembers what matters, builds reusable skills, and can live on your own infrastructure. It sounds brilliant. And it is. But then comes the practical question: where should you actually run it? You have two main paths. You can roll up your sleeves and set up a VPS yourself - install everything, configure the messag
macOS tar destroys files on Linux: I validated it in my real Railway pipeline and documented the 3 cases nobody mentions There's a Hacker News thread that resurfaced this week with 107 points about a 2024 article: tar on macOS creates archives that Linux can't extract cleanly. The community reacted the way it always does — "use GNU tar", "install gtar with Homebrew", "this has been known for yea
Tar en macOS destroza archivos en Linux: lo validé en mi pipeline real de Railway y documenté los 3 casos que nadie menciona Hay un hilo en Hacker News que resurfaceó esta semana con 107 puntos sobre un artículo de 2024: tar en macOS crea archivos que Linux no puede extraer limpiamente. La comunidad reaccionó como siempre: "usá GNU tar", "instalá gtar con homebrew", "esto es conocido desde hace