BLOG POSTS

Move Fast, Break Stuff, Call InfosecAugust 22, 2025
AI-driven development and vibe coding are accelerating productivity but creating mounting security debt. As developers move faster with AI agents, the demand for infosec professionals will surge to address the security implications of rapid, AI-assisted development.
Trusting Git Tags in Github WorkflowsAugust 17, 2025
Git tags are mutable and can be manipulated, making them unreliable for GitHub Actions workflows. Using commit SHAs instead of tags ensures reproducible builds and protects against supply chain attacks like the recent tj-actions/changed-files compromise.
Cloudflare DNS Lock-InMay 27, 2025
Discovering the limitations of registering domains with Cloudflare when trying to move DNS management elsewhere. Once your domain is registered with Cloudflare, you cannot change nameservers to other providers like AWS, Azure, or Google Cloud.
Using Cloudflare R2 as a Terraform backendDecember 9, 2024
A practical guide to setting up Cloudflare R2 as a Terraform backend. Covering bucket creation, API token configuration, and leveraging R2s S3-compatible storage for remote state management.
Building a site with technology I dont useDecember 8, 2024
Building this website as an opportunity to learn new technologies outside my usual stack. Using TailwindCSS, NextJS, and Cloudflare infrastructure, with all blog posts written in Markdown for portability and converted to HTML using Remark.

BLOG POSTS

Move Fast, Break Stuff, Call InfosecAugust 22, 2025

AI-driven development and vibe coding are accelerating productivity but creating mounting security debt. As developers move faster with AI agents, the demand for infosec professionals will surge to address the security implications of rapid, AI-assisted development.

Trusting Git Tags in Github WorkflowsAugust 17, 2025

Git tags are mutable and can be manipulated, making them unreliable for GitHub Actions workflows. Using commit SHAs instead of tags ensures reproducible builds and protects against supply chain attacks like the recent tj-actions/changed-files compromise.

Cloudflare DNS Lock-InMay 27, 2025

Discovering the limitations of registering domains with Cloudflare when trying to move DNS management elsewhere. Once your domain is registered with Cloudflare, you cannot change nameservers to other providers like AWS, Azure, or Google Cloud.

Using Cloudflare R2 as a Terraform backendDecember 9, 2024

A practical guide to setting up Cloudflare R2 as a Terraform backend. Covering bucket creation, API token configuration, and leveraging R2s S3-compatible storage for remote state management.

Building a site with technology I dont useDecember 8, 2024

Building this website as an opportunity to learn new technologies outside my usual stack. Using TailwindCSS, NextJS, and Cloudflare infrastructure, with all blog posts written in Markdown for portability and converted to HTML using Remark.