Kevin Boutin
@kevinboutin.bsky.social
Principal Architect and serverless professional in AWS, Azure and Google Cloud. Advocate for terraform, MongoDB, Node.js, Elixir and authentication/authorization standards. Creator of azure-middy and you may find more here: https://github.com/kevboutin/
I’ve been yelling about MCP security for weeks now on some socials. MCP is too immature for prime time and security standards need to be applied. It’s far too easy even for amateurs to exploit.
My advice is to play with it but don’t expose customer data or proprietary information to any MCP server.
My advice is to play with it but don’t expose customer data or proprietary information to any MCP server.
Great writeup of how the official GitHub MCP server can be exploited to reveal information about private GitHub repositories:
invariantlabs.ai/blog/mcp-git...
Their proposed solutions:
* Least principle: Only allow access to oen repo at a time
* Continuous security scanning
invariantlabs.ai/blog/mcp-git...
Their proposed solutions:
* Least principle: Only allow access to oen repo at a time
* Continuous security scanning
GitHub MCP Exploited: Accessing private repositories via MCP
We showcase a critical vulnerability with the official GitHub MCP server, allowing attackers to access private repository data. The vulnerability is among the first discovered by Invariant's security ...
invariantlabs.ai
May 30, 2025 at 2:29 PM
I’ve been yelling about MCP security for weeks now on some socials. MCP is too immature for prime time and security standards need to be applied. It’s far too easy even for amateurs to exploit.
My advice is to play with it but don’t expose customer data or proprietary information to any MCP server.
My advice is to play with it but don’t expose customer data or proprietary information to any MCP server.
This legal angle needs to be shutdown. Hard working small business e-commerce sites cannot mitigate this situation. Web accessibility should not be used by law firms to extort money from small businesses. www.youtube.com/watch?v=09Cv... @t3.gg you may want to see this.
i'm being extorted for $40,000 (imo)
YouTube video by alpha m.
www.youtube.com
May 16, 2025 at 6:06 AM
This legal angle needs to be shutdown. Hard working small business e-commerce sites cannot mitigate this situation. Web accessibility should not be used by law firms to extort money from small businesses. www.youtube.com/watch?v=09Cv... @t3.gg you may want to see this.
Azure function output bindings for ADX are still in preview mode since 2023. Why hasn’t this moved to GA @microsoft ?
March 11, 2025 at 12:06 AM
Azure function output bindings for ADX are still in preview mode since 2023. Why hasn’t this moved to GA @microsoft ?
Reposted by Kevin Boutin
A few weeks ago, I've learned about the Okta Bcrypt incident from the @gergely.pragmaticengineer.com newsletter, and it made me wonder about the API choices by crypto libraries that allowed this incident to be unnoticed for years. My new post explores the topic. Enjoy! =)
n0rdy.foo/posts/202501...
n0rdy.foo/posts/202501...
n0rdy - What Okta Bcrypt incident can teach us about designing better APIs
n0rdy.foo
January 22, 2025 at 5:50 PM
A few weeks ago, I've learned about the Okta Bcrypt incident from the @gergely.pragmaticengineer.com newsletter, and it made me wonder about the API choices by crypto libraries that allowed this incident to be unnoticed for years. My new post explores the topic. Enjoy! =)
n0rdy.foo/posts/202501...
n0rdy.foo/posts/202501...
#2024
[3/3]
node-boilerplate: Hono is pretty awesome and more performant than Express.js so I am writing this boilerplate for handling my Node.js APIs. github.com/kevboutin/no...
[3/3]
node-boilerplate: Hono is pretty awesome and more performant than Express.js so I am writing this boilerplate for handling my Node.js APIs. github.com/kevboutin/no...
GitHub - kevboutin/node-boilerplate: Node.js boilerplate for API services
Node.js boilerplate for API services. Contribute to kevboutin/node-boilerplate development by creating an account on GitHub.
github.com
January 2, 2025 at 3:17 PM
#2024
[3/3]
node-boilerplate: Hono is pretty awesome and more performant than Express.js so I am writing this boilerplate for handling my Node.js APIs. github.com/kevboutin/no...
[3/3]
node-boilerplate: Hono is pretty awesome and more performant than Express.js so I am writing this boilerplate for handling my Node.js APIs. github.com/kevboutin/no...
#2024
[2/3]
azure-middy: Many serverless devs have heard of the middy project for coding lambdas in AWS. This is the Azure version of that using v4 (latest) azure functions. github.com/kevboutin/az...
[2/3]
azure-middy: Many serverless devs have heard of the middy project for coding lambdas in AWS. This is the Azure version of that using v4 (latest) azure functions. github.com/kevboutin/az...
GitHub - kevboutin/azure-middy: A Node.js middleware engine for Azure functions
A Node.js middleware engine for Azure functions. Contribute to kevboutin/azure-middy development by creating an account on GitHub.
github.com
January 2, 2025 at 3:14 PM
#2024
[2/3]
azure-middy: Many serverless devs have heard of the middy project for coding lambdas in AWS. This is the Azure version of that using v4 (latest) azure functions. github.com/kevboutin/az...
[2/3]
azure-middy: Many serverless devs have heard of the middy project for coding lambdas in AWS. This is the Azure version of that using v4 (latest) azure functions. github.com/kevboutin/az...
#2024
[1/3]
I have been extremely busy throughout 2024. Not only did I produce some of my best work for my full-time employer, but I also added 3 useful GitHub repos that may be of use to others:
Need a workflow for Node.js? This is my approach. github.com/kevboutin/wo...
[1/3]
I have been extremely busy throughout 2024. Not only did I produce some of my best work for my full-time employer, but I also added 3 useful GitHub repos that may be of use to others:
Need a workflow for Node.js? This is my approach. github.com/kevboutin/wo...
GitHub - kevboutin/azure-middy: A Node.js middleware engine for Azure functions
A Node.js middleware engine for Azure functions. Contribute to kevboutin/azure-middy development by creating an account on GitHub.
github.com
January 2, 2025 at 3:14 PM
#2024
[1/3]
I have been extremely busy throughout 2024. Not only did I produce some of my best work for my full-time employer, but I also added 3 useful GitHub repos that may be of use to others:
Need a workflow for Node.js? This is my approach. github.com/kevboutin/wo...
[1/3]
I have been extremely busy throughout 2024. Not only did I produce some of my best work for my full-time employer, but I also added 3 useful GitHub repos that may be of use to others:
Need a workflow for Node.js? This is my approach. github.com/kevboutin/wo...
This looks quite brittle.
The more I learn about Next.js the more uncomfortable I get with it. It feels like it's so full of hacks.
For `use client` it seems it rewrites any `process.env.NEXT_PUBLIC_`. So of course I was confused how this could work in Workers...
For `use client` it seems it rewrites any `process.env.NEXT_PUBLIC_`. So of course I was confused how this could work in Workers...
December 26, 2024 at 3:23 AM
This looks quite brittle.
Reposted by Kevin Boutin
In this video, let's understand how AWS Lambda works under the hood and how it handles synchronous vs. asynchronous invocations differently.
youtu.be/Rjq7SKudjpo
youtu.be/Rjq7SKudjpo
Here's how AWS Lambda works under the hood
YouTube video by Yan Cui
youtu.be
November 30, 2024 at 6:25 PM
In this video, let's understand how AWS Lambda works under the hood and how it handles synchronous vs. asynchronous invocations differently.
youtu.be/Rjq7SKudjpo
youtu.be/Rjq7SKudjpo
Reposted by Kevin Boutin
Join me today for Azure Serverless Conf!!!
My session will be coming up soon. Be sure to watch it as well as the other live and on-demand sessions.
https://aka.ms/AzureServerlessConf
#Azure #Serverless @AzureSQL @AzureFunctions @logicappsio @AzureCosmosDB
My session will be coming up soon. Be sure to watch it as well as the other live and on-demand sessions.
https://aka.ms/AzureServerlessConf
#Azure #Serverless @AzureSQL @AzureFunctions @logicappsio @AzureCosmosDB
November 23, 2024 at 11:06 AM
Join me today for Azure Serverless Conf!!!
My session will be coming up soon. Be sure to watch it as well as the other live and on-demand sessions.
https://aka.ms/AzureServerlessConf
#Azure #Serverless @AzureSQL @AzureFunctions @logicappsio @AzureCosmosDB
My session will be coming up soon. Be sure to watch it as well as the other live and on-demand sessions.
https://aka.ms/AzureServerlessConf
#Azure #Serverless @AzureSQL @AzureFunctions @logicappsio @AzureCosmosDB
Reposted by Kevin Boutin
🔥 The ADX coworkers DELIVER! "#Azure Data Explorer (ADX) outperformed Google BigQuery and Snowflake on all 19 test queries with a single user and 18 of 19 with 50 concurrent users." https://research.gigaom.com/report/log-data-analytics-testing/
November 18, 2024 at 3:19 PM
🔥 The ADX coworkers DELIVER! "#Azure Data Explorer (ADX) outperformed Google BigQuery and Snowflake on all 19 test queries with a single user and 18 of 19 with 50 concurrent users." https://research.gigaom.com/report/log-data-analytics-testing/
Reposted by Kevin Boutin
Really cool case study showing how Toyota is using Azure Durable Functions and Cosmos DB to build multi-agent AI systems to enhance vehicle development productivity!
devblogs.microsoft.com/cosmosdb/toy...
devblogs.microsoft.com/cosmosdb/toy...
November 20, 2024 at 9:22 PM
Really cool case study showing how Toyota is using Azure Durable Functions and Cosmos DB to build multi-agent AI systems to enhance vehicle development productivity!
devblogs.microsoft.com/cosmosdb/toy...
devblogs.microsoft.com/cosmosdb/toy...
Looking for a serverless middleware engine in Node.js for Microsoft Azure? I have the solution: github.com/kevboutin/az...
This was inspired by the popular middleware engine in Node.js for AWS Lambda (middy).
#cloud #serverless #azure #functions #faas #nodejs #javascript
This was inspired by the popular middleware engine in Node.js for AWS Lambda (middy).
#cloud #serverless #azure #functions #faas #nodejs #javascript
GitHub - kevboutin/azure-middy: A Node.js middleware engine for Azure functions
A Node.js middleware engine for Azure functions. Contribute to kevboutin/azure-middy development by creating an account on GitHub.
github.com
November 24, 2024 at 9:15 PM
Looking for a serverless middleware engine in Node.js for Microsoft Azure? I have the solution: github.com/kevboutin/az...
This was inspired by the popular middleware engine in Node.js for AWS Lambda (middy).
#cloud #serverless #azure #functions #faas #nodejs #javascript
This was inspired by the popular middleware engine in Node.js for AWS Lambda (middy).
#cloud #serverless #azure #functions #faas #nodejs #javascript
Reposted by Kevin Boutin
The fastest growing app on the App Store is fully open source. You may have heard of it. But do you know how it works? I do now! Huge thanks to everyone who helped me make this one happen 🙏
youtu.be/cIoYUQhKJUo
youtu.be/cIoYUQhKJUo
November 24, 2024 at 7:40 AM
The fastest growing app on the App Store is fully open source. You may have heard of it. But do you know how it works? I do now! Huge thanks to everyone who helped me make this one happen 🙏
youtu.be/cIoYUQhKJUo
youtu.be/cIoYUQhKJUo