All Articles

1/26/2025 • EN

Why K8s deployments need `matchLabels` keyword

Explains the technical necessity of the `matchLabels` keyword in Kubernetes Deployments and why it cannot be automatically inferred.

deployment Kubernetes Matchlabels Pod Selector

Riccardo Padovani

1/26/2025 • EN

Managing Helm CRDs with Terraform

A guide to managing Helm Custom Resource Definitions (CRDs) using a custom Terraform module for GitOps workflows.

Custom Resource Definitions Gitops Helm Kubernetes Terraform

Riccardo Padovani

1/26/2025 • EN

Why you should contribute to GitLab

A developer shares personal experience and reasons for contributing to open-source projects like GitLab, highlighting non-coding contributions and benefits.

community contributing Gitlab open source software development

Riccardo Padovani

1/26/2025 • EN

Managing Rust crates in private Git repositories

Explains how to manage private Rust crates in Git repos, balancing SSH for developers and HTTPS for CI/CD using Git's url.insteadOf feature.

ci/cd Crates git Private Repositories rust

Riccardo Padovani

1/26/2025 • EN

The inconsistencies of AWS EKS IAM permissions

Explores challenges and inconsistencies when configuring IAM permissions for AWS EKS clusters following the principle of least privilege.

AWS Eks DevOps Iam Permissions Infrastructure As Code Kubernetes

Riccardo Padovani

1/26/2025 • EN

How to make Terraform waiting for cloud-init to finish on EC2 without SSH

A guide to using AWS SSM Run Command with Terraform to wait for cloud-init on EC2 instances without needing SSH keys.

aws Cloud Init ec2 Ssm Terraform

Riccardo Padovani

1/26/2025 • EN

Adding comments to the blog

A developer explains choosing and implementing the Hyvor Talk comment system for their static blog, focusing on privacy, performance, and managed hosting.

blogging Comments performance privacy static site

Riccardo Padovani

1/26/2025 • EN

Reading env variables from a Tauri App

A technical guide on how to read environment variables from the frontend of a Tauri desktop application using the Command API.

Command API Desktop Development environment variables Tauri TypeScript

Riccardo Padovani

1/26/2025 • EN

Integrating JetBrains Qodana with GitLab pipelines

A guide to integrating JetBrains Qodana, a code quality analysis tool, into GitLab CI/CD pipelines and publishing its reports via GitLab Pages.

code quality Gitlab CI Jetbrains Qodana static analysis

Riccardo Padovani

1/26/2025 • EN

Fail a Gitlab pipeline when code coverage decreases

A guide to configuring a Gitlab CI/CD pipeline job that fails when new code commits cause a decrease in overall test coverage.

code coverage DevOps Gitlab CI Pipeline Configuration test automation

Riccardo Padovani

1/26/2025 • EN

Create a PyTorch Docker image ready for production

A tutorial on creating a production-ready Docker image for PyTorch models using Torch Serve, including model archiving and dependency management.

docker Mlop Model Deployment Pytorch Torch Serve

Riccardo Padovani

1/26/2025 • EN

Introducing Daintree.app: an opensource alternative implementation of the AWS console.

Introduces Daintree.app, an open-source alternative to the AWS console with multi-region views, fast role switching, and a coherent interface.

AWS Console Cloud Management Multi Region open source UI Framework

Riccardo Padovani

1/26/2025 • EN

Leveraging AWS Lambda to notify users about their old access keys

A tutorial on automating AWS IAM access key age notifications using AWS Lambda and SES, with code examples and security best practices.

Access Keys AWS Lambda AWS Ses Iam serverless

Riccardo Padovani

1/26/2025 • EN

My year on HackerOne

A developer shares their experience finding and reporting 27 security vulnerabilities on Gitlab through HackerOne in 2019, including insights and motivations.

Bug Bounty Gitlab Hackerone Security Research Vulnerability Disclosure

Riccardo Padovani

1/26/2025 • EN

Exploring Gitlab Visual Reviews

A guide to implementing GitLab's Visual Reviews feature for easier feedback and bug reporting directly from staging environments within CI/CD pipelines.

ci/cd DevOps Gitlab Merge Requests Visual Reviews

Riccardo Padovani

1/26/2025 • EN

Using AWS Textract in an automatic fashion with AWS Lambda

A tutorial on automating AWS Textract document analysis using AWS Lambda, S3 triggers, and SNS notifications for serverless text extraction.

AWS Lambda aws s3 AWS Textract ocr serverless

Riccardo Padovani

1/26/2025 • EN

Responsible disclosure: improper access control in Gitlab private project.

A security researcher details a GitLab access control vulnerability, its disclosure timeline, and the communication issues with GitLab's security team.

Access Control Gitlab Private Projects Responsible Disclosure Security Vulnerability

Riccardo Padovani

1/26/2025 • EN

Glasnost: yet another Gitlab's client.

Introducing Glasnost, an open-source mobile client for GitLab designed for better UX on small screens, with multi-host support and themes.

Expo Gitlab Mobile Client React redux

Riccardo Padovani

1/26/2025 • EN

Responsible disclosure: retrieving a user's private Facebook friends.

A security researcher details a privacy flaw allowing retrieval of private Facebook friends via Instagram's signup process, and the responsible disclosure timeline.

Data Privacy Facebook API Instagram API Responsible Disclosure Security Vulnerability

Riccardo Padovani