Posts on Terraforming the Cloud

Posts on Terraforming the Cloudhttps://blog.tazlab.net/posts/Recent content in Posts on Terraforming the CloudHugo -- gohugo.ioen© 2026 Roberto TazzoliSun, 12 Apr 2026 09:50:30 +0000Terraforming the Cloud: Provisioning and Configuring Vault on Hetzner via Terraform and Ansiblehttps://blog.tazlab.net/posts/terraforming-the-cloud-provisioning-configuring-vault-hetzner-terraform-ansible/Sun, 12 Apr 2026 09:50:30 +0000https://blog.tazlab.net/posts/terraforming-the-cloud-provisioning-configuring-vault-hetzner-terraform-ansible/Recursive memory, compact context: the missing piece for working well with AI agentshttps://blog.tazlab.net/posts/recursive-memory-compact-context-ai-agents/Fri, 10 Apr 2026 08:00:00 +0000https://blog.tazlab.net/posts/recursive-memory-compact-context-ai-agents/A quieter infrastructure session than usual: when design reduces chaoshttps://blog.tazlab.net/posts/infrastructure-session-when-design-reduces-chaos/Thu, 09 Apr 2026 06:00:00 +0000https://blog.tazlab.net/posts/infrastructure-session-when-design-reduces-chaos/Golden image runtime on Hetzner: the path to the final versionhttps://blog.tazlab.net/posts/hetzner-runtime-golden-image-final-path/Tue, 07 Apr 2026 12:38:03 +0000https://blog.tazlab.net/posts/hetzner-runtime-golden-image-final-path/LushyCorp Vault on Hetzner: security-driven architectural choiceshttps://blog.tazlab.net/posts/lushycorp-vault-hetzner-security-architecture/Sat, 04 Apr 2026 14:00:00 +0000https://blog.tazlab.net/posts/lushycorp-vault-hetzner-security-architecture/Cloud Free and the Harsh Reality: Lushy Corp's Pivot to Hetznerhttps://blog.tazlab.net/posts/cloud-free-reality-lushy-corp-hetzner-pivot/Mon, 30 Mar 2026 18:00:00 +0100https://blog.tazlab.net/posts/cloud-free-reality-lushy-corp-hetzner-pivot/Tailscale: The Secure Backbone of TazLab's Rebirthhttps://blog.tazlab.net/posts/tailscale-secure-backbone-tazlab-rebirth/Tue, 24 Mar 2026 14:35:00 +0000https://blog.tazlab.net/posts/tailscale-secure-backbone-tazlab-rebirth/Zero Credentials on Disk: Rewriting TazPod with AWS IAM Identity Centerhttps://blog.tazlab.net/posts/tazpod-zero-credentials-aws-sso/Sun, 22 Mar 2026 19:43:22 +0000https://blog.tazlab.net/posts/tazpod-zero-credentials-aws-sso/Bootstrap from Zero: Rebuilding Everything from a Single S3 Buckethttps://blog.tazlab.net/posts/bootstrap-from-zero-vault-s3-rebirth/Fri, 20 Mar 2026 11:00:00 +0000https://blog.tazlab.net/posts/bootstrap-from-zero-vault-s3-rebirth/Terraforming the Cloud: My First IaC on OCIhttps://blog.tazlab.net/posts/terraforming-the-cloud-iac-oci/Fri, 20 Mar 2026 08:00:00 +0000https://blog.tazlab.net/posts/terraforming-the-cloud-iac-oci/Man in the Loop: Reflections on Using AI Agents to Build Infrastructurehttps://blog.tazlab.net/posts/man-in-the-loop-ai-agents-infrastructure/Wed, 18 Mar 2026 08:00:00 +0000https://blog.tazlab.net/posts/man-in-the-loop-ai-agents-infrastructure/TazLab Roadmap: HashiCorp Vault and Oracle Cloudhttps://blog.tazlab.net/posts/tazlab-roadmap-hashicorp-vault-oracle-cloud/Tue, 17 Mar 2026 08:00:00 +0000https://blog.tazlab.net/posts/tazlab-roadmap-hashicorp-vault-oracle-cloud/SDD in half a day: a context with rules, and the cluster DAG fixed on the first attempthttps://blog.tazlab.net/posts/sdd-context-dag-fix-first-shot/Sun, 15 Mar 2026 14:00:00 +0100https://blog.tazlab.net/posts/sdd-context-dag-fix-first-shot/A mature cluster: automated deploys, agent contexts, and the Mnemosyne MCP migrationhttps://blog.tazlab.net/posts/mature-cluster-gitops-agent-contexts-mnemosyne/Sat, 14 Mar 2026 06:00:00 +0100https://blog.tazlab.net/posts/mature-cluster-gitops-agent-contexts-mnemosyne/AGENTS.ctx: Context Management for AI Agents Without Re-Explaining Everythinghttps://blog.tazlab.net/posts/ai-context-management-agents-ctx/Fri, 13 Mar 2026 21:00:00 +0100https://blog.tazlab.net/posts/ai-context-management-agents-ctx/Pi.Dev: Minimal Agent Architecture for the Cloud-Native Ecosystemhttps://blog.tazlab.net/posts/pi-dev-agent-architecture-comparative/Mon, 09 Mar 2026 13:16:51 +0100https://blog.tazlab.net/posts/pi-dev-agent-architecture-comparative/Enterprise Monitoring in a Home Lab: The (Uphill) Road to Stateless Grafana and Prometheushttps://blog.tazlab.net/posts/enterprise-monitoring-grafana-prometheus-stateless/Wed, 04 Mar 2026 12:40:00 +0000https://blog.tazlab.net/posts/enterprise-monitoring-grafana-prometheus-stateless/From Zero to OIDC: A Journey Through Zero Trust Authentication in Our Kubernetes Clusterhttps://blog.tazlab.net/posts/dex-oauth2-kubernetes-oidc-journey/Sat, 28 Feb 2026 15:00:00 +0100https://blog.tazlab.net/posts/dex-oauth2-kubernetes-oidc-journey/Phoenix Protocol V2: Enterprise Security, Parallelism, and the 8-Minute Milestonehttps://blog.tazlab.net/posts/phoenix-protocol-v2-turbo-rebirth/Wed, 25 Feb 2026 17:50:00 +0100https://blog.tazlab.net/posts/phoenix-protocol-v2-turbo-rebirth/Mnemosyne Rebirth: Chronicle of a Sovereign Memory (and how I collided with the MCP protocol)https://blog.tazlab.net/posts/mnemosyne-mcp-integration/Sun, 22 Feb 2026 18:05:00 +0100https://blog.tazlab.net/posts/mnemosyne-mcp-integration/Phoenix Protocol: Validating Zero-Touch Rebirth and the S3 PITR Hellhttps://blog.tazlab.net/posts/phoenix-protocol-s3-pitr-validation/Tue, 10 Feb 2026 18:30:00 +0100https://blog.tazlab.net/posts/phoenix-protocol-s3-pitr-validation/TazPod v2.0: Surrendering to Root and the RAM Revolutionhttps://blog.tazlab.net/posts/tazpod-v2-ram-vault-evolution/Fri, 06 Feb 2026 22:43:00 +0100https://blog.tazlab.net/posts/tazpod-v2-ram-vault-evolution/Nomadic Rebirth: Towards the Cloud Horizon and the Castle's Evolutionhttps://blog.tazlab.net/posts/tazlab-nomadic-rebirth-cloud-horizon/Thu, 05 Feb 2026 19:00:00 +0100https://blog.tazlab.net/posts/tazlab-nomadic-rebirth-cloud-horizon/Mnemosyne: Local Rebirth, the Recursive Loop, and the SNR Challengehttps://blog.tazlab.net/posts/mnemosyne-local-rebirth-snr/Mon, 02 Feb 2026 18:00:00 +0100https://blog.tazlab.net/posts/mnemosyne-local-rebirth-snr/The Castle's Orchestra: The Pivot to Terragrunt and the War on Race Conditionshttps://blog.tazlab.net/posts/orchestrating-ephemeral-castle-terragrunt-pivot/Mon, 02 Feb 2026 05:00:00 +0100https://blog.tazlab.net/posts/orchestrating-ephemeral-castle-terragrunt-pivot/The Immutable Handover: Terraform, Flux, and the Birth of the Castle Factoryhttps://blog.tazlab.net/posts/the-immutable-handover-factory-automation/Sun, 01 Feb 2026 07:00:00 +0100https://blog.tazlab.net/posts/the-immutable-handover-factory-automation/Mnemosyne: Agent's Long-Term Memory and AlloyDB Integrationhttps://blog.tazlab.net/posts/mnemosyne-long-term-memory/Sat, 31 Jan 2026 08:00:00 +0100https://blog.tazlab.net/posts/mnemosyne-long-term-memory/Rise of the Fortress: High Availability, Immutability, and the Birth of a Serious Clusterhttps://blog.tazlab.net/posts/scaling-ephemeral-castle-ha-stateless-blog/Sat, 31 Jan 2026 07:00:00 +0100https://blog.tazlab.net/posts/scaling-ephemeral-castle-ha-stateless-blog/The Foundations of Accessibility: Traefik, Cert-Manager, and the Castle's Philosophical Pivothttps://blog.tazlab.net/posts/extending-ephemeral-castle-ingress-automation/Fri, 30 Jan 2026 06:42:00 +0100https://blog.tazlab.net/posts/extending-ephemeral-castle-ingress-automation/The Fortress Walls: Implementing Zero-Trust Security and Secret Managementhttps://blog.tazlab.net/posts/fortifying-the-ephemeral-castle-security/Thu, 29 Jan 2026 10:00:00 +0100https://blog.tazlab.net/posts/fortifying-the-ephemeral-castle-security/From Vision to Silicon: Implementing the Ephemeral Castle on Proxmoxhttps://blog.tazlab.net/posts/implementing-the-ephemeral-castle-proxmox/Wed, 28 Jan 2026 22:08:55 +0100https://blog.tazlab.net/posts/implementing-the-ephemeral-castle-proxmox/Baptism by Fire: Resilience, Deadlock, and Disaster Recovery in the TazLab Clusterhttps://blog.tazlab.net/posts/tazlab-resilience-stress-test/Mon, 26 Jan 2026 21:30:00 +0000https://blog.tazlab.net/posts/tazlab-resilience-stress-test/The Ephemeral Castle: Towards a Nomadic and Zero Trust Infrastructurehttps://blog.tazlab.net/posts/the-ephemeral-castle-vision/Sun, 25 Jan 2026 21:45:00 +0000https://blog.tazlab.net/posts/the-ephemeral-castle-vision/From Craftsmanship to Infrastructure: Chronicle of the Introduction of Terraform in Tazlabhttps://blog.tazlab.net/posts/tazlab-iac-chronicle/Sat, 24 Jan 2026 01:29:21 +0100https://blog.tazlab.net/posts/tazlab-iac-chronicle/TazPod Rising: From DevPod Ashes to a Go-Powered Zero Trust CLIhttps://blog.tazlab.net/posts/tazpod-rising-go-cli-zero-trust/Tue, 20 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/tazpod-rising-go-cli-zero-trust/DevPod's Swan Song: The Clash Between Automation and Zero Trust Securityhttps://blog.tazlab.net/posts/devpod-zero-trust-struggle/Wed, 14 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/devpod-zero-trust-struggle/The Immutable Workshop: Architecture of a 'Golden Image' DevPod Environment for Kubernetes Orchestrationhttps://blog.tazlab.net/posts/devpod-architecture-deep-dive/Mon, 12 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/devpod-architecture-deep-dive/From Persistence to Resilience: Orchestrating Longhorn Backups on AWS S3 in a Talos Linux Environmenthttps://blog.tazlab.net/posts/longhorn-s3-backup-talos/Wed, 07 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/longhorn-s3-backup-talos/Migrating a Hugo Blog to Kuberneteshttps://blog.tazlab.net/posts/hugo-blog-kubernetes-migration/Tue, 06 Jan 2026 00:42:51 +0000https://blog.tazlab.net/posts/hugo-blog-kubernetes-migration/From HostNetwork Chaos to MetalLB Elegancehttps://blog.tazlab.net/posts/metallb-traefik-config/Sun, 04 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/metallb-traefik-config/Lab Chronicles: Building Persistence with Longhorn and Taloshttps://blog.tazlab.net/posts/longhorn-kubernetes-storage/Fri, 02 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/longhorn-kubernetes-storage/Lab Chronicles: Native VIP on Talos and Traefik Ingresshttps://blog.tazlab.net/posts/talos-vip-traefik-setup/Tue, 30 Dec 2025 10:00:00 +0000https://blog.tazlab.net/posts/talos-vip-traefik-setup/Hugo Installation Detailshttps://blog.tazlab.net/posts/hugo-installation/Sun, 21 Dec 2025 23:07:21 +0000https://blog.tazlab.net/posts/hugo-installation/