Is It a Best/Recommended Practice to Use AWS VPC Peering Connections?

Problem scenario
You have heard about AWS VPC Peering Connections. Should you use them?

Solution
The short answer is “yes.”

Some “best practices” for VPCs are merely step-by-step directions for setting it up while describing options that you may or may not want to take. This posting, on a technical blog of a large reputable company,

In Azure DevOps Pipeline Test Results, Why Do You See a Release That Was Not Run in a While?

Problem scenario
You look at some previous pipelines’ test results. The tests show failing tests. There is a temporal field for “Failing since” and another field called “Failing release.” You have not run the release that is listed as failing in a while. Why isn’t it showing the most recent release?

Possible Solution
The root cause is consecutive failures and possibly a poorly named column heading.

A Day That Will Live in Infamy!

FDR proclaimed that December 7th would be a day that would live in infamy. Pearl Harbor was attacked in 1941. 80 years later to the day AWS had a major outage (for the us-east-1 region): https://www.theverge.com/2021/12/7/22822332/amazon-server-aws-down-disney-plus-ring-outage

It is an interesting coincidence.

Many people think that the us-east-1 region is the least reliable of Amazon’s regional offerings. Amazon said their “Support Contact Center also relies on the internal AWS network,

How Do You Configure Snyk’s Threshold Level in Azure DevOps Pipelines?

Problem scenario
You are troubleshooting a pipeline in Azure DevOps. You look at the task’s log output. You see a security-threshold flag in a CLI with the value of “low”, “medium”, “high” or “critical” that you think is incorrect or discrepant with another setting. How do you get the flag to be set to the security threshold level of your choice?

Background
The ultimate Snyk command that is run (or commands that are run) is (or are) created from various underlying settings,

How Do You Run Snyk Scans as Part of Azure DevOps Pipelines?

Problem scenario
You know that many sources recommend you scan IaC code as part of modern security recommended practices. (Page 293 of Terraform: Up & Running, 2nd Edition by Yevgeniy Brikman (O’Reilly), Copyright 2019, 978-1-492-04690-5 recommends using Snyk.) You tried to create a new pipeline in Azure DevOps. You tried to add a Snyk task. But you were not able to. Why in Azure DevOps do you not see a Snyk option for a task to add to a pipeline?

Is There a Difference between an IAM Role and an IAM Access Key?

Question
Is there a difference between an IAM role and an IAM access key?

Answer
Yes. To summarize this article, IAM users are for humans and IAM roles are for AWS components (such as S3 buckets and EC-2 instances). As a less significant difference, you do not rotate IAM roles (according to this medium.com post).