Devops on Terraforming the Cloud

Devops on Terraforming the Cloudhttps://blog.tazlab.net/tags/devops/Recent content in Devops on Terraforming the CloudHugo -- gohugo.ioen© 2026 Roberto TazzoliSun, 12 Apr 2026 09:50:30 +0000Terraforming the Cloud: Provisioning and Configuring Vault on Hetzner via Terraform and Ansiblehttps://blog.tazlab.net/posts/terraforming-the-cloud-provisioning-configuring-vault-hetzner-terraform-ansible/Sun, 12 Apr 2026 09:50:30 +0000https://blog.tazlab.net/posts/terraforming-the-cloud-provisioning-configuring-vault-hetzner-terraform-ansible/Recursive memory, compact context: the missing piece for working well with AI agentshttps://blog.tazlab.net/posts/recursive-memory-compact-context-ai-agents/Fri, 10 Apr 2026 08:00:00 +0000https://blog.tazlab.net/posts/recursive-memory-compact-context-ai-agents/A quieter infrastructure session than usual: when design reduces chaoshttps://blog.tazlab.net/posts/infrastructure-session-when-design-reduces-chaos/Thu, 09 Apr 2026 06:00:00 +0000https://blog.tazlab.net/posts/infrastructure-session-when-design-reduces-chaos/Golden image runtime on Hetzner: the path to the final versionhttps://blog.tazlab.net/posts/hetzner-runtime-golden-image-final-path/Tue, 07 Apr 2026 12:38:03 +0000https://blog.tazlab.net/posts/hetzner-runtime-golden-image-final-path/LushyCorp Vault on Hetzner: security-driven architectural choiceshttps://blog.tazlab.net/posts/lushycorp-vault-hetzner-security-architecture/Sat, 04 Apr 2026 14:00:00 +0000https://blog.tazlab.net/posts/lushycorp-vault-hetzner-security-architecture/Cloud Free and the Harsh Reality: Lushy Corp's Pivot to Hetznerhttps://blog.tazlab.net/posts/cloud-free-reality-lushy-corp-hetzner-pivot/Mon, 30 Mar 2026 18:00:00 +0100https://blog.tazlab.net/posts/cloud-free-reality-lushy-corp-hetzner-pivot/Tailscale: The Secure Backbone of TazLab's Rebirthhttps://blog.tazlab.net/posts/tailscale-secure-backbone-tazlab-rebirth/Tue, 24 Mar 2026 14:35:00 +0000https://blog.tazlab.net/posts/tailscale-secure-backbone-tazlab-rebirth/Zero Credentials on Disk: Rewriting TazPod with AWS IAM Identity Centerhttps://blog.tazlab.net/posts/tazpod-zero-credentials-aws-sso/Sun, 22 Mar 2026 19:43:22 +0000https://blog.tazlab.net/posts/tazpod-zero-credentials-aws-sso/Terraforming the Cloud: My First IaC on OCIhttps://blog.tazlab.net/posts/terraforming-the-cloud-iac-oci/Fri, 20 Mar 2026 08:00:00 +0000https://blog.tazlab.net/posts/terraforming-the-cloud-iac-oci/Man in the Loop: Reflections on Using AI Agents to Build Infrastructurehttps://blog.tazlab.net/posts/man-in-the-loop-ai-agents-infrastructure/Wed, 18 Mar 2026 08:00:00 +0000https://blog.tazlab.net/posts/man-in-the-loop-ai-agents-infrastructure/SDD in half a day: a context with rules, and the cluster DAG fixed on the first attempthttps://blog.tazlab.net/posts/sdd-context-dag-fix-first-shot/Sun, 15 Mar 2026 14:00:00 +0100https://blog.tazlab.net/posts/sdd-context-dag-fix-first-shot/AGENTS.ctx: Context Management for AI Agents Without Re-Explaining Everythinghttps://blog.tazlab.net/posts/ai-context-management-agents-ctx/Fri, 13 Mar 2026 21:00:00 +0100https://blog.tazlab.net/posts/ai-context-management-agents-ctx/Pi.Dev: Minimal Agent Architecture for the Cloud-Native Ecosystemhttps://blog.tazlab.net/posts/pi-dev-agent-architecture-comparative/Mon, 09 Mar 2026 13:16:51 +0100https://blog.tazlab.net/posts/pi-dev-agent-architecture-comparative/Enterprise Monitoring in a Home Lab: The (Uphill) Road to Stateless Grafana and Prometheushttps://blog.tazlab.net/posts/enterprise-monitoring-grafana-prometheus-stateless/Wed, 04 Mar 2026 12:40:00 +0000https://blog.tazlab.net/posts/enterprise-monitoring-grafana-prometheus-stateless/Phoenix Protocol V2: Enterprise Security, Parallelism, and the 8-Minute Milestonehttps://blog.tazlab.net/posts/phoenix-protocol-v2-turbo-rebirth/Wed, 25 Feb 2026 17:50:00 +0100https://blog.tazlab.net/posts/phoenix-protocol-v2-turbo-rebirth/Phoenix Protocol: Validating Zero-Touch Rebirth and the S3 PITR Hellhttps://blog.tazlab.net/posts/phoenix-protocol-s3-pitr-validation/Tue, 10 Feb 2026 18:30:00 +0100https://blog.tazlab.net/posts/phoenix-protocol-s3-pitr-validation/TazPod v2.0: Surrendering to Root and the RAM Revolutionhttps://blog.tazlab.net/posts/tazpod-v2-ram-vault-evolution/Fri, 06 Feb 2026 22:43:00 +0100https://blog.tazlab.net/posts/tazpod-v2-ram-vault-evolution/The Castle's Orchestra: The Pivot to Terragrunt and the War on Race Conditionshttps://blog.tazlab.net/posts/orchestrating-ephemeral-castle-terragrunt-pivot/Mon, 02 Feb 2026 05:00:00 +0100https://blog.tazlab.net/posts/orchestrating-ephemeral-castle-terragrunt-pivot/The Immutable Handover: Terraform, Flux, and the Birth of the Castle Factoryhttps://blog.tazlab.net/posts/the-immutable-handover-factory-automation/Sun, 01 Feb 2026 07:00:00 +0100https://blog.tazlab.net/posts/the-immutable-handover-factory-automation/Rise of the Fortress: High Availability, Immutability, and the Birth of a Serious Clusterhttps://blog.tazlab.net/posts/scaling-ephemeral-castle-ha-stateless-blog/Sat, 31 Jan 2026 07:00:00 +0100https://blog.tazlab.net/posts/scaling-ephemeral-castle-ha-stateless-blog/The Foundations of Accessibility: Traefik, Cert-Manager, and the Castle's Philosophical Pivothttps://blog.tazlab.net/posts/extending-ephemeral-castle-ingress-automation/Fri, 30 Jan 2026 06:42:00 +0100https://blog.tazlab.net/posts/extending-ephemeral-castle-ingress-automation/The Fortress Walls: Implementing Zero-Trust Security and Secret Managementhttps://blog.tazlab.net/posts/fortifying-the-ephemeral-castle-security/Thu, 29 Jan 2026 10:00:00 +0100https://blog.tazlab.net/posts/fortifying-the-ephemeral-castle-security/From Vision to Silicon: Implementing the Ephemeral Castle on Proxmoxhttps://blog.tazlab.net/posts/implementing-the-ephemeral-castle-proxmox/Wed, 28 Jan 2026 22:08:55 +0100https://blog.tazlab.net/posts/implementing-the-ephemeral-castle-proxmox/Baptism by Fire: Resilience, Deadlock, and Disaster Recovery in the TazLab Clusterhttps://blog.tazlab.net/posts/tazlab-resilience-stress-test/Mon, 26 Jan 2026 21:30:00 +0000https://blog.tazlab.net/posts/tazlab-resilience-stress-test/TazPod Rising: From DevPod Ashes to a Go-Powered Zero Trust CLIhttps://blog.tazlab.net/posts/tazpod-rising-go-cli-zero-trust/Tue, 20 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/tazpod-rising-go-cli-zero-trust/DevPod's Swan Song: The Clash Between Automation and Zero Trust Securityhttps://blog.tazlab.net/posts/devpod-zero-trust-struggle/Wed, 14 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/devpod-zero-trust-struggle/The Immutable Workshop: Architecture of a 'Golden Image' DevPod Environment for Kubernetes Orchestrationhttps://blog.tazlab.net/posts/devpod-architecture-deep-dive/Mon, 12 Jan 2026 10:00:00 +0000https://blog.tazlab.net/posts/devpod-architecture-deep-dive/Advanced Secret Management Strategies: HashiCorp Vault, SOPS, and the Kubernetes Ecosystemhttps://blog.tazlab.net/guides/hashicorp-vault-sops-kubernetes-guide/Sat, 10 Jan 2026 23:59:00 +0000https://blog.tazlab.net/guides/hashicorp-vault-sops-kubernetes-guide/