HashiCorp Vault for Dummies: K8s Auth setup in an External Vault (WSL)

Intro This is part three of our Vault for Dummies series. After Part 2 where we set up Vault with Transit Auto-unseal, it’s time to tackle Kubernetes authentication, from outside the cluster. In this post, we’ll walk through setting up Kubernetes auth with an external Vault, so your K8s workloads can securely authenticate and pull …

How to pass the GitHub Actions certification (cheat-sheet)

Intro The GitHub Actions Certification is a go-to credential for developers and DevOps engineers looking to validate their CI/CD skills with GitHub. Launched in 2024, the GitHub Certification program was a welcome move—especially after they slashed their prices from $200 to $99. This exam focuses on practical knowledge—building, consuming, and securing workflows at scale. In …

Zero to Civo: Deploy Talos Kubernetes with Terraform (incl Grafana & Prometheus)

Intro If you’re looking to spin up a modern, secure Kubernetes cluster in Civo Cloud with full observability—this guide is for you. We’ll walk through deploying a Civo Talos K8s cluster using Terraform, and layer in Letsncrypt TLS certs, Prometheus and Grafana for monitoring. Whether you’re building a quick lab, testing a workload, or setting …

HashiCorp Vault for Dummies: Transit Auto-Unseal Across 2 WSL Nodes

Intro This is part two of our Vault for Dummies series. After setting up a Vault server with Raft and TLS in part1, we’ll now configure it to auto-unseal at startup using another Vault server as a Transit engine. Perfect if you want to simulate a cluster across nodes in WSL. This guide walks you …

Terraform Pipelines for Dummies Part3: GitHub Actions Azure Deploy with OIDC

Intro Did you know that over 23 millions secrets were publicly exposed in GitHub in 2024 alone? and even 70% of the secrets leaked in 2022 are still valid? This is additional evidence that leaked secrets are still the number one biggest threat to your business. The worst thing to do is make it easy …