Weekly update 14

You can become a serverless blackbelt. Enrol to my 4-week online workshop Production-Ready Serverless and gain hands-on experience building something from scratch using serverless technologies. At the end of the workshop, you should have a broader view of the challenges you will face as your serverless architecture matures and expands. You should also have a firm grasp on when serverless is a good fit for your system as well as common pitfalls you need to avoid. Sign up now and get 15% discount with the code yanprs15!

Hi, welcome to the first weekly update of November!

MEAP update for Production-Ready Serverless

There has been delays in publishing the rest of the VPC unit the last two weeks as my editor has been away. But worry not, I’m already working on the last unit on canary deployment and both units should be on their way to you soon.

Remember, whilst the course is still in the MEAP, you can get 40% off the face price using the code ytcui.

I have also turned this course into a classroom setting, so if you’re interested in having me run this as a workshop in your company, then drop me a line via the Contact page.

New Posts

AWS Lambda programming language comparison. I wrote a guest post for Epsagon where we compared several popular programming languages that are supported by Lambda – Node.js, Python, Go, C# and Java. We compared them on cold and warm start performance, cost impact, as well platform support.

More than functions – serverless observability webinar. To celebrate the launch of Epsagon I took part in their launch webinar along with Jeremy Daly and Corey Quinn. I had a great time hanging out with the guys and talking about serverless. You can check out the recording here.


It’s been a busy two weeks and I managed to pack in four conferences in that time. I spoke at VoxxedDays Bristol, Get.Net Gdansk, O’Reilly Software Architecture conference and finally O’Reilly Velocity. Interestingly, I spoke about something different at every single event (but always around serverless, of course!). You can find all the slides below, I’ll post the links to the videos as well once they’re up.

Upcoming Talks

November is going to be a busy month of travelling for me. Here are the conferences I will be speaking at, if you happen to be at one of these events please don’t hesitate to come and say hi :-)

  • CodeMesh (London) – I’m giving a workshop as well as a talk on serverless
  • Serverless Computing London
  • BuildStuff (Vilnius) – I’m giving a workshop as well as a talk on serverless
  • CodeMotion Berlin – get 20% off ticket price with the code AFFILIATE
  • re:invent (Las Vegas) – my first time speaking at re:invent, yay!
  • DevTernity (Riga) – I’m giving a full-day workshop on productionizing serverless apps

Good Reads

How we got to $1 million in annual recurring revenue with $0 in fundraising – time is your most scarce resource, not money.

Here’s a couple of posts that lets you take a peek behind the curtain to see how the big boys do it ;-)

Why Netflix rolled its own Node.js Function-as-a-Service for its API platform. This slidedeck gives some more insight into this platform they call NodeQuark. Given their scale and needs, as well as the skillsets they possess, it makes sense for them to roll their own. But, for almost everybody else, please don’t do this!

I discovered this cool project called PacBot from TMobile. Pac stands for policy-as-code, it’s a platform for doing continuous compliance monitoring and reporting.

Ten platform commandments. Another great post from Charity Majors.

Github showcased a bunch of demos for their new Github Actions feature. I don’t know about you, but I’m quite excited to finally be able to use Github to drive my CI/CD pipelines without having to run a separate tool. I’m surprised it took them this long to get into this game but better late than never!

Securing serverless: attacking an AWS account via a Lambda function. Excellent story of how Ory (CTO of Puresec) hacked lambshell.com.

Customized rate limiting for API Gateway by path parameter, query parameter, and more. Nice trick to let you specify the API Key (hence control rate limiting) via a query parameter instead of the x-api-key header. I’m not sure when I’d actually use it, maybe in the case where a customer can’t specify HTTP headers for some reason? (I know, it’s stretching a little, but I have seen some weird limitations when integrating with third parties)

And finally, some wisdom from the one and only Dan North:

Liked this article? Support me on Patreon and get direct help from me via a private Slack channel or 1-2-1 mentoring.
Subscribe to my newsletter

Hi, I’m Yan. I’m an AWS Serverless Hero and I help companies go faster for less by adopting serverless technologies successfully.

Are you struggling with serverless or need guidance on best practices? Do you want someone to review your architecture and help you avoid costly mistakes down the line? Whatever the case, I’m here to help.

Hire me.

Skill up your serverless game with this hands-on workshop.

My 4-week Production-Ready Serverless online workshop is back!

This course takes you through building a production-ready serverless web application from testing, deployment, security, all the way through to observability. The motivation for this course is to give you hands-on experience building something with serverless technologies while giving you a broader view of the challenges you will face as the architecture matures and expands.

We will start at the basics and give you a firm introduction to Lambda and all the relevant concepts and service features (including the latest announcements in 2020). And then gradually ramping up and cover a wide array of topics such as API security, testing strategies, CI/CD, secret management, and operational best practices for monitoring and troubleshooting.

If you enrol now you can also get 15% OFF with the promo code “yanprs15”.

Enrol now and SAVE 15%.

Check out my new podcast Real-World Serverless where I talk with engineers who are building amazing things with serverless technologies and discuss the real-world use cases and challenges they face. If you’re interested in what people are actually doing with serverless and what it’s really like to be working with serverless day-to-day, then this is the podcast for you.

Check out my new course, Learn you some Lambda best practice for great good! In this course, you will learn best practices for working with AWS Lambda in terms of performance, cost, security, scalability, resilience and observability. We will also cover latest features from re:Invent 2019 such as Provisioned Concurrency and Lambda Destinations. Enrol now and start learning!

Check out my video course, Complete Guide to AWS Step Functions. In this course, we’ll cover everything you need to know to use AWS Step Functions service effectively. There is something for everyone from beginners to more advanced users looking for design patterns and best practices. Enrol now and start learning!