Blog on Humayun Manzer

Chaos Engineering in Small Teams: Worth It or Overkill?

Sun, 24 Aug 2025 23:05:00 +0800

Photo credit

Netflix made Chaos Engineering famous with Chaos Monkey, but what about small teams with only a few engineers? Is it practical, or just a distraction when you’ve already got your hands full with CI/CD, monitoring, and on-call? Here’s a grounded look at when it makes sense and how to keep it lightweight.

Chaos Engineering is about introducing controlled failures to expose weaknesses before they show up in production. Examples: killing pods, injecting latency, simulating node crashes. For tech giants with hundreds of services, it’s a must. For smaller teams, the question is whether the effort pays off.

Terraform count vs for_each: A Friendly Guide (+ Cheatsheet)

Wed, 23 Jul 2025 18:00:00 +0800

Photo credit

Choosing between count and for_each in Terraform looks simple at first, but it can change how predictable your infrastructure is over time. I’ve been bitten by both approaches in the past, so here’s a practical guide to when each one makes sense, with examples and a quick cheatsheet.

Secure SDLC

Mon, 23 Jun 2025 18:00:00 +0800

Photo credit

In today’s fast-paced software development landscape, security can no longer be an afterthought. The traditional Software Development Life Cycle (SDLC) often treated security as a final step, a gate that developers had to pass through before deployment. This approach led to vulnerabilities slipping through the cracks, resulting in costly breaches and reputational damages. Instead, we need to embrace a Secure SDLC (SSDLC) that integrates security into every phase of development. This is where DevSecOps comes in.

Secure Secret Management in Kubernetes

Sun, 22 Jun 2025 17:28:00 +0800

Photo credit

Effectively managing sensitive information such as API keys, passwords, and certificates within a Kubernetes environment and ensuring that this data remains inaccessible to cluster administrators or system operators is a critical requirement for organizations that prioritize strong security and compliance.

To achieve this level of protection, especially in multi-tenant or regulated environments, several robust strategies and tools can be employed to minimize the risk of unauthorized access to secrets.

Following are some of the best practices and methods to secure secrets in Kubernetes, ensuring that they are not visible to administrators or operators:

Karpenter in AWS

Sat, 14 Jun 2025 19:58:00 +0800

Karpenter is an open-source Kubernetes node autoscaler developed by AWS. It automatically launches the right compute resources (EC2 instances) when your cluster needs them and shuts them down when they’re no longer needed.

Traditional autoscalers (like the Cluster Autoscaler) work well but can be slow and limited in flexibility. Karpenter is designed to be:

Faster: It reacts quickly to unschedulable pods. Smarter: It chooses the best instance types based on your workload needs. Cost-efficient: It can use spot instances and right-size nodes to save money. Flexible: It doesn’t require pre-defined node groups.

Bash to Powershell Cheatsheet

Tue, 10 Jun 2025 16:00:00 +0800

Photo credit

Bash to PowerShell Cheatsheet: A quick reference guide to help you translate common Bash commands into their PowerShell equivalents—and vice versa.

Ideal for developers, sysadmins, or anyone transitioning between Linux and Windows environments.

Common Issues Faced in DevOps

Thu, 05 Jun 2025 18:50:06 +0800

I recently had a few hiccups while dealing with our DevOps Pipeline.

This blog post will hopefully help you understand, the common issues that we deal with DevOps pipeline.