Migrate Terraform to OpenTofu in 2026: Encrypt Your State
June 23, 2026
Migrate Terraform to OpenTofu with a clean tofu init -upgrade, then encrypt your existing state using PBKDF2 and AES-GCM. A step-by-step, runnable 2026 guide.
#terraform
GitHub Actions Multi-Account AWS OIDC Role Chaining (2026)
May 30, 2026
Hands-on tutorial: deploy to multiple AWS accounts from GitHub Actions with one OIDC hub role, sts:TagSession, role-chaining: true, and the 1-hour cap (2026).
GitHub Actions OIDC to AWS: Keyless Terraform (2026)
May 27, 2026
Deploy Terraform to AWS from GitHub Actions with no long-lived secrets — configure-aws-credentials v6, IAM role trust policy, sub-claim hardening (2026).
Terraform S3 State Locking Without DynamoDB (2026)
May 25, 2026
Enable Terraform S3 native state locking with use_lockfile - no DynamoDB table required. Set up the backend, migrate an existing project, lock down IAM.
Infrastructure as Code (IaC) Fundamentals: A Complete 2026 Guide
May 5, 2026
Infrastructure as Code fundamentals for 2026: Terraform, OpenTofu, Pulumi, Crossplane. State management, modules, and the patterns teams actually ship with.