Marko Bevc
@marko.social
Principal Consultant at @scalefactory.com
@HashiCorp.com Ambassador | @openuk.bsky.social Ambassador | AWS Community Builder
Wanderer. Cloud, automation and Open Source geek. Public speaker.
he/him
@HashiCorp.com Ambassador | @openuk.bsky.social Ambassador | AWS Community Builder
Wanderer. Cloud, automation and Open Source geek. Public speaker.
he/him
Pinned
Marko Bevc
@marko.social
· Jan 2
Having too many options can also be a blocker and sometimes makes sense to narrow them down 🤪
Cool, you can now set global S3 policies on the #AWS Organizations level and enforce things like Block Public Access 🔒
Amazon S3 Block Public Access now supports organization-level enforcement
Amazon S3 Block Public Access now supports organization-level control via AWS Organizations, enabling centralized management of public access settings across all accounts through a single policy that propagates automatically.
Amazon S3 Block Public Access now supports organization-level control via AWS Organizations, enabling centralized management of public access settings across all accounts through a single policy that propagates automatically.
November 26, 2025 at 5:22 PM
Cool, you can now set global S3 policies on the #AWS Organizations level and enforce things like Block Public Access 🔒
Ahead of #Kubernetes 1.35 release aimed for mid-December🚀, a sneak peak of some new features:
* Node declared features
* In-place update of Pod resources
* Pod certificates
* User namespaces
* Support for mounting OCI images as volumes
* Numeric values for taints
More: kubernetes.io/blog/2025/11...
* Node declared features
* In-place update of Pod resources
* Pod certificates
* User namespaces
* Support for mounting OCI images as volumes
* Numeric values for taints
More: kubernetes.io/blog/2025/11...
Kubernetes v1.35 Sneak Peek
As the release of Kubernetes v1.35 approaches, the Kubernetes project continues to evolve. Features may be deprecated, removed, or replaced to improve the project's overall health. This blog post outl...
kubernetes.io
November 26, 2025 at 11:15 AM
Ahead of #Kubernetes 1.35 release aimed for mid-December🚀, a sneak peak of some new features:
* Node declared features
* In-place update of Pod resources
* Pod certificates
* User namespaces
* Support for mounting OCI images as volumes
* Numeric values for taints
More: kubernetes.io/blog/2025/11...
* Node declared features
* In-place update of Pod resources
* Pod certificates
* User namespaces
* Support for mounting OCI images as volumes
* Numeric values for taints
More: kubernetes.io/blog/2025/11...
Ha, I wish they'd realise it was a mistake to sunset it sooner 🙃
I mean it didn't get much love back then, so hopefully second time is a charm😜
aws.amazon.com/blogs/devops...
I mean it didn't get much love back then, so hopefully second time is a charm😜
aws.amazon.com/blogs/devops...
The Future of AWS CodeCommit | Amazon Web Services
Back in July 2024, we announced plans to de-emphasize AWS CodeCommit based on adoption patterns and our assessment of customer needs. We never stopped looking at the data or listening to you, and what...
aws.amazon.com
November 25, 2025 at 5:29 PM
Ha, I wish they'd realise it was a mistake to sunset it sooner 🙃
I mean it didn't get much love back then, so hopefully second time is a charm😜
aws.amazon.com/blogs/devops...
I mean it didn't get much love back then, so hopefully second time is a charm😜
aws.amazon.com/blogs/devops...
Oh, nice one and making ECS even easier to use. Indeed extra brownie points for IaC support! 🚀
Oh I LIKE this! ECS Express Mode - simple setup for ECS services, including scaling, task definitions, domain names, and an ALB! super nice for those (many) use cases you just want to spin up a simple container. Also, 100 bonus points for IaC support out of the box!
aws-news.com/article/2025...
aws-news.com/article/2025...
Build production-ready applications without infrastructure complexity using Amazon ECS Express Mode
Amazon ECS Express Mode simplifies deploying production-ready containerized applications by automating infrastructure setup including load balancing, auto scal...
aws-news.com
November 23, 2025 at 10:41 PM
Oh, nice one and making ECS even easier to use. Indeed extra brownie points for IaC support! 🚀
💯 nor any other IAM system 😜
We are all made of stars, but your RBAC shouldn’t be
November 22, 2025 at 10:01 PM
💯 nor any other IAM system 😜
Came across this updated image on state of Internet today 🤣😬
November 22, 2025 at 9:55 PM
Came across this updated image on state of Internet today 🤣😬
Another awesome episode and as usual great takes on #AI by Martin Fowler!
On vibe coding: "good for explorations, throwaways and disposable stuff, but you don't want to be using it for anything
with long term capability" 😉
www.youtube.com/watch?v=CQmI...
On vibe coding: "good for explorations, throwaways and disposable stuff, but you don't want to be using it for anything
with long term capability" 😉
www.youtube.com/watch?v=CQmI...
November 22, 2025 at 9:26 PM
Another awesome episode and as usual great takes on #AI by Martin Fowler!
On vibe coding: "good for explorations, throwaways and disposable stuff, but you don't want to be using it for anything
with long term capability" 😉
www.youtube.com/watch?v=CQmI...
On vibe coding: "good for explorations, throwaways and disposable stuff, but you don't want to be using it for anything
with long term capability" 😉
www.youtube.com/watch?v=CQmI...
This was expected to land - Google started rolling out showing ads in #AI Mode:
www.bleepingcomputer.com/news/artific...
www.bleepingcomputer.com/news/artific...
Google begins showing ads in AI Mode (AI answers)
Google has started rolling out ads in AI mode, which is the company's "answer engine," not a search engine.
www.bleepingcomputer.com
November 21, 2025 at 5:29 PM
This was expected to land - Google started rolling out showing ads in #AI Mode:
www.bleepingcomputer.com/news/artific...
www.bleepingcomputer.com/news/artific...
Reposted by Marko Bevc
Ingress NGINX Retirement: What You Need to Know-
Ingress NGINX Retirement: What You Need to Know
To prioritize the safety and security of the ecosystem, Kubernetes SIG Network and the Security Response Committee are announcing the upcoming retirement of Ingress NGINX. Best-effort maintenance will...
kubernetes.io
November 13, 2025 at 4:06 PM
Ingress NGINX Retirement: What You Need to Know-
This was one of the biggest shortcomings of tagging policies - you can actually enforce Tags across your #AWS Organizations:
aws.amazon.com/about-aws/wh...
aws.amazon.com/about-aws/wh...
Validate and enforce required tags in CloudFormation, Terraform and Pulumi with Tag Policies - AWS
Discover more about what's new at AWS with Validate and enforce required tags in CloudFormation, Terraform and Pulumi with Tag Policies
aws.amazon.com
November 20, 2025 at 10:17 PM
This was one of the biggest shortcomings of tagging policies - you can actually enforce Tags across your #AWS Organizations:
aws.amazon.com/about-aws/wh...
aws.amazon.com/about-aws/wh...
Reposted by Marko Bevc
PSA: tips to protect yourself from scams on Signal.
Every major comms platform has to contend w phishing, impersonation, & scams. Sadly.
Signal is major, and as we've grown we've heard about more of these attacks--scammy people pretending to be something or someone to trick and abuse others. 1/
Every major comms platform has to contend w phishing, impersonation, & scams. Sadly.
Signal is major, and as we've grown we've heard about more of these attacks--scammy people pretending to be something or someone to trick and abuse others. 1/
November 11, 2025 at 6:13 PM
PSA: tips to protect yourself from scams on Signal.
Every major comms platform has to contend w phishing, impersonation, & scams. Sadly.
Signal is major, and as we've grown we've heard about more of these attacks--scammy people pretending to be something or someone to trick and abuse others. 1/
Every major comms platform has to contend w phishing, impersonation, & scams. Sadly.
Signal is major, and as we've grown we've heard about more of these attacks--scammy people pretending to be something or someone to trick and abuse others. 1/
Reposted by Marko Bevc
OpenAI Introduces 'ChatGPT for Teachers' to Further Destroy the Minds of Our Youth
OpenAI Introduces 'ChatGPT for Teachers' to Further Destroy the Minds of Our Youth
Soon we can have chatbots grade the work of chatbots.
gizmodo.com
November 19, 2025 at 9:56 PM
OpenAI Introduces 'ChatGPT for Teachers' to Further Destroy the Minds of Our Youth
Reposted by Marko Bevc
Elon Musk’s anti-woke version of Wikipedia, Grokipedia, cites neo-Nazi forums in multiple places as source.
A great validation of the notion that when people say they’re anti-woke, they just mean they’re hyper racist.
A great validation of the notion that when people say they’re anti-woke, they just mean they’re hyper racist.
Elon Musk’s Grokipedia cites Stormfront — a neo-Nazi forum — dozens of times, study finds
An analysis by researchers at Cornell University is the first comprehensive look at Grokipedia since Musk launched his project last month.
www.nbcnews.com
November 20, 2025 at 1:16 PM
Elon Musk’s anti-woke version of Wikipedia, Grokipedia, cites neo-Nazi forums in multiple places as source.
A great validation of the notion that when people say they’re anti-woke, they just mean they’re hyper racist.
A great validation of the notion that when people say they’re anti-woke, they just mean they’re hyper racist.
Seems it's ramping up to re:Invent with many announcements, but this one caught my eye and fall in the bucket of those where I wish we'd had ages ago 😜
#AWS CLI streamlines short lived in-place credentials not stored unsecured:
aws.amazon.com/blogs/securi...
#AWS CLI streamlines short lived in-place credentials not stored unsecured:
aws.amazon.com/blogs/securi...
Simplified developer access to AWS with ‘aws login’ | Amazon Web Services
Getting credentials for local development with AWS is now simpler and more secure. A new AWS Command Line Interface (AWS CLI) command, aws login, lets you start building immediately after signing up f...
aws.amazon.com
November 20, 2025 at 12:51 PM
Seems it's ramping up to re:Invent with many announcements, but this one caught my eye and fall in the bucket of those where I wish we'd had ages ago 😜
#AWS CLI streamlines short lived in-place credentials not stored unsecured:
aws.amazon.com/blogs/securi...
#AWS CLI streamlines short lived in-place credentials not stored unsecured:
aws.amazon.com/blogs/securi...
Quite excited about couple of new features that landed with #Terraform v1.14:
- List Resources - allows querying and filtering existing infrastructure using *.tfquery.hcl
- Top-level Actions block - extend CRUD model, e.g. aws_cloudfront_create_invalidation and run Lambda
github.com/hashicorp/te...
- List Resources - allows querying and filtering existing infrastructure using *.tfquery.hcl
- Top-level Actions block - extend CRUD model, e.g. aws_cloudfront_create_invalidation and run Lambda
github.com/hashicorp/te...
Release v1.14.0 · hashicorp/terraform
1.14.0 (November 19, 2025)
NEW FEATURES:
List Resources: List resources can be defined in *.tfquery.hcl files and allow querying and filterting existing infrastructure.
A new Terraform command ...
github.com
November 20, 2025 at 12:43 PM
Quite excited about couple of new features that landed with #Terraform v1.14:
- List Resources - allows querying and filtering existing infrastructure using *.tfquery.hcl
- Top-level Actions block - extend CRUD model, e.g. aws_cloudfront_create_invalidation and run Lambda
github.com/hashicorp/te...
- List Resources - allows querying and filtering existing infrastructure using *.tfquery.hcl
- Top-level Actions block - extend CRUD model, e.g. aws_cloudfront_create_invalidation and run Lambda
github.com/hashicorp/te...
This is super useful to consolidate Billing across multiple #AWS Orgs or improve reselling process - you can delegate your Billing over to another Billing account (Org mgmt or standalone):
aws.amazon.com/about-aws/wh...
aws.amazon.com/about-aws/wh...
AWS Channel Partners can now resell using Billing Transfer - AWS
Discover more about what's new at AWS with AWS Channel Partners can now resell using Billing Transfer
aws.amazon.com
November 20, 2025 at 12:17 PM
This is super useful to consolidate Billing across multiple #AWS Orgs or improve reselling process - you can delegate your Billing over to another Billing account (Org mgmt or standalone):
aws.amazon.com/about-aws/wh...
aws.amazon.com/about-aws/wh...
Reposted by Marko Bevc
oh hell yeah man this is awesome
![pop-up report selection screen, edited.
header text: “why should this post be reviewed?”
1. Misleading; spam or otherwise inauthentic behavior or deception.
2. Adult content; unlabeled, abusive, or non-consensual adult content.
3. Transgender; positive depictions of or speech about trans people.
4. Violence; violent or threatening content.
5. Child safety; [image cuts off here]](https://cdn.bsky.app/img/feed_thumbnail/plain/did:web:sarasoci.al/bafkreievusclhv4kol2aa3slhjjgurf24f7wwckamshcnwi73g2eyqehl4@jpeg)
November 19, 2025 at 5:39 PM
oh hell yeah man this is awesome
Lovely 🫠
Totally safe they say. End to end encryption they say. Right. True enough unless the software has a bug - and the platform provides no rate limiting... Only 3.5 billion of you have had your data swiped....
www.theregister.com/2025/11/19/w...
www.theregister.com/2025/11/19/w...
3.5B WhatsApp users' info scooped through enumeration flaw
: Two-day exploit opened up 3.5 billion users to myriad potential harms
www.theregister.com
November 19, 2025 at 5:22 PM
Lovely 🫠
Not DNS this time 😜. Great to see this level of transparency and such detailed post mortem already available from @cloudflare.social on yesterday's outage 👍
blog.cloudflare.com/18-november-...
blog.cloudflare.com/18-november-...
Cloudflare outage on November 18, 2025
Cloudflare suffered a service outage on November 18, 2025. The outage was triggered by a bug in generation logic for a Bot Management feature file causing many Cloudflare services to be affected.
blog.cloudflare.com
November 19, 2025 at 10:07 AM
Not DNS this time 😜. Great to see this level of transparency and such detailed post mortem already available from @cloudflare.social on yesterday's outage 👍
blog.cloudflare.com/18-november-...
blog.cloudflare.com/18-november-...
Reposted by Marko Bevc
"Microsoft warns that Windows 11's agentic AI could install malware on your PC: 'Only enable this feature if you understand the security implications.'"
bro what--
what are we doing here, exactly, how can you--anyone be okay with this?
bro what--
what are we doing here, exactly, how can you--anyone be okay with this?
November 18, 2025 at 3:42 PM
"Microsoft warns that Windows 11's agentic AI could install malware on your PC: 'Only enable this feature if you understand the security implications.'"
bro what--
what are we doing here, exactly, how can you--anyone be okay with this?
bro what--
what are we doing here, exactly, how can you--anyone be okay with this?
@martinfowler.com really sums it up nicely what DX is - it's about finding what gets in the way of: feedback loops, flow state, and cognitive load! Improving DevEx is about finding what gets in the way of these three elements. Improving developer experience leads to better outcomes for the business.
Today, @nicolefv.bsky.social and Abi Noda's new book "Frictionless" is officially published. I liked it enough to write a foreword for it:
martinfowler.com/articles/fri...
martinfowler.com/articles/fri...
My Foreword to "Frictionless"
A book that describes how to best improve productivity by identifying and removing friction.
martinfowler.com
November 18, 2025 at 9:18 PM
@martinfowler.com really sums it up nicely what DX is - it's about finding what gets in the way of: feedback loops, flow state, and cognitive load! Improving DevEx is about finding what gets in the way of these three elements. Improving developer experience leads to better outcomes for the business.
Quite an outage and still ongoing with @cloudflare.social actively working on it:
"We've deployed a change which has restored dashboard services. We are still working to remediate broad application services impact"
www.cloudflarestatus.com
Post mortem should make an interesting read👀
#HugOps
"We've deployed a change which has restored dashboard services. We are still working to remediate broad application services impact"
www.cloudflarestatus.com
Post mortem should make an interesting read👀
#HugOps
Cloudflare Status
Welcome to Cloudflare's home for real-time and historical data on system performance.
www.cloudflarestatus.com
November 18, 2025 at 2:46 PM
Quite an outage and still ongoing with @cloudflare.social actively working on it:
"We've deployed a change which has restored dashboard services. We are still working to remediate broad application services impact"
www.cloudflarestatus.com
Post mortem should make an interesting read👀
#HugOps
"We've deployed a change which has restored dashboard services. We are still working to remediate broad application services impact"
www.cloudflarestatus.com
Post mortem should make an interesting read👀
#HugOps