Personal Tech Blog | hidekazu-konishi.com

Here I plan to share my technical knowledge and experience, and my interests in the subject. Note: this tech blog is a space for sharing my personal views and ideas, and it does not represent the opinions of any company or organization I am affiliated with.
The main purpose of this blog is to deepen my own technical skills and knowledge, to create an archive where I can record and reflect on what I have learned and experienced, and to share information.
My interests span Amazon Web Services (AWS), AI-augmented development, AI agent engineering, cloud architecture, and related topics including DevOps, MLOps, AIOps, and Generative AI.
The articles are based on my personal learning and practical experience. Of course, I am not perfect, so there may be errors or inadequacies in the articles. I hope you will enjoy this technical blog with that in mind. Thank you in advance.

Personal Tech Blog Entries

First Published:
Last Updated:

  1. OpenAI GPT Model Release Timeline - Model Lineage, ChatGPT and Codex Milestones, and Platform Availability
  2. Hardening and Governance Guide for Claude Code and Claude Desktop - Containerized Containment and Why Code and Desktop Govern Differently
  3. Event-Driven Serverless Architecture on AWS - Building Resilient Workflows with API Gateway, Lambda, EventBridge, Step Functions, and DynamoDB
  4. Amazon ECS on Fargate Microservices Architecture Guide - Service Connect, Auto Scaling, Deployments, and Data-Tier Integration
  5. AWS Multi-Region Active-Active Architecture Guide - Global Data Replication, Routing, and Failover with Route 53, DynamoDB Global Tables, and Aurora Global Database
  6. AWS Real-Time Streaming Data Pipeline Architecture Guide - Ingestion, Processing, and Delivery with Kinesis, Managed Service for Apache Flink, and OpenSearch
  7. AWS Data Lakehouse Architecture Guide - Building a Governed Lakehouse with S3, Lake Formation, Glue, Athena, and Apache Iceberg
  8. Production RAG Architecture on Amazon Bedrock - Knowledge Bases, Vector Stores, Retrieval, Guardrails, and Evaluation
  9. AWS SaaS Multi-Tenant Architecture Guide - Tenant Isolation, Pool and Silo Models, Onboarding, and Metering
  10. AWS Zero-Trust Network Architecture Guide - Segmentation, Inspection, and Identity-Aware Access with VPC, Network Firewall, VPC Lattice, and Verified Access
  11. AWS Observability Architecture Guide - End-to-End Tracing, Metrics, and Logs with CloudWatch, X-Ray, Application Signals, and OpenTelemetry
  12. Real-Time and GraphQL API Architecture with AWS AppSync - Resolvers, Subscriptions, Authorization, and Conflict Resolution
  13. Secure Web Application Reference Architecture on AWS - Edge-to-Data Request Flow with CloudFront, WAF, ALB, Cognito, and RDS
  14. Centralized Logging and Audit Architecture on AWS - Multi-Account Log Aggregation, Detection, and Query with CloudTrail, Config, Security Hub, and OpenSearch
  15. AWS Elastic Load Balancing Decision Guide - Choosing and Operating Application, Network, and Gateway Load Balancers
  16. AWS Hybrid Connectivity Decision Guide - Direct Connect, Site-to-Site VPN, and Resilient On-Premises Integration
  17. Amazon Route 53 DNS Architecture Guide - Routing Policies, Resolver, Private Hosted Zones, and Hybrid DNS
  18. AWS Messaging and Event Routing Decision Guide - Choosing Between SQS, SNS, EventBridge, and Kinesis
  19. Amazon API Gateway Decision Guide - REST, HTTP, and WebSocket APIs and Integration Patterns
  20. AWS Lambda Concurrency and Scaling Guide - Reserved and Provisioned Concurrency, Throttling, and Event Source Scaling
  21. Amazon EKS Networking Deep Dive - VPC CNI, IP Address Management, Security Groups for Pods, and Pod Connectivity
  22. Amazon DynamoDB Capacity and Global Tables Guide - Capacity Modes, Auto Scaling, Warm Throughput, and Multi-Region Design
  23. Amazon RDS and Aurora High Availability Guide - Multi-AZ, Read Replicas, RDS Proxy, and Global Database Failover
  24. AWS Disaster Recovery Strategies Guide - Backup and Restore, Pilot Light, Warm Standby, and Multi-Site Active-Active
  25. Amazon S3 Security and Access Control Guide - Bucket Policies, IAM, Access Points, Block Public Access, and Encryption
  26. AWS Secrets Manager and Parameter Store Decision Guide - Storing, Rotating, and Accessing Secrets and Configuration
  27. Claude Code Skills Complete Guide - Creating, Testing, and Distributing Agent Skills
  28. Agent Skills Security Vetting Guide - Static Inspection of SKILL.md and Malicious Skill Patterns
  29. Claude Code Plugins Complete Guide - Bundling Skills, Hooks, Agents, and MCP Servers for Team Distribution
  30. Claude Code Compaction and Long-Session Operations Guide - Managing Context Across Long and Multi-Session Work
  31. Anthropic Claude Model Migration Guide - Upgrading Prompts and Workloads Across Model Generations
  32. MCP Server Testing and Debugging Guide - Inspector, Integration Tests, Transports, and CI Regression
  33. AWS VPC Connectivity Decision Guide - VPC Peering, Transit Gateway, PrivateLink, VPC Lattice, and Cloud WAN
  34. AWS Step Functions JSONata and Variables Practical Guide - Modern Workflow Authoring Beyond JSONPath
  35. AWS VPC Network Troubleshooting Guide - Decision Trees for Security Groups, NACLs, Route Tables, and Flow Logs
  36. Amazon CloudFront Origin Architecture Guide - Origin Access Control, Origin Shield, Failover, and VPC Origins
  37. Amazon Bedrock AgentCore Policy Implementation Guide - Cedar-Based Agent Authorization and Default-Deny Design
  38. Amazon Bedrock AgentCore Evaluations Practical Guide - Built-In Evaluators and CI/CD Regression Testing for AI Agents
  39. Claude Code Extension Layer Decision Guide - Choosing Among Skills, Subagents, Hooks, and Plugins
  40. Strands Agents Multi-Agent Pattern Selection Guide - Agents-as-Tools, Swarm, Graph, and Workflow
  41. AI Agent Memory Design Guide - Working, Long-Term, and Procedural Memory with Forgetting and Staleness Management
  42. MCP Tool Poisoning Defense Guide - Client-Side Defense in Depth for AI Agents
  43. Amazon S3 Vectors Design Decision Guide - When to Use It, When Not to, and Tiered Designs with Amazon OpenSearch Service
  44. AWS Lambda Durable Functions Practical Guide - Checkpoint and Replay Determinism and When to Use Step Functions Instead
  45. Amazon Aurora DSQL Design Decision Guide - Distributed SQL Between Amazon DynamoDB and Aurora PostgreSQL
  46. Cost-Optimization Guide to Rolling Out Claude Code and Claude Desktop Across Your Organization - Choosing Delivery Models and Finding Break-Even
  47. Practical Guide to Deploying Claude Code and Claude Desktop Behind a Corporate Proxy - Domains, MSIX, NTLM/Kerberos, and VPN Coexistence
  48. Claude Code on Pay-As-You-Go API Billing - Anthropic API, Amazon Bedrock, and Google Cloud Vertex AI
  49. Claude Code Subagents and Multi-Agent Orchestration Guide - Delegation, Parallel Fan-Out, and Custom Agent Definitions
  50. Claude Code Hooks Complete Guide - Deterministic Enforcement Across the Tool Lifecycle
  51. Claude Agent SDK Complete Guide - Building Custom Agents Beyond the CLI
  52. Anthropic Claude API Prompt Caching and Token Efficiency Guide - Cache Breakpoints, Batch Processing, and Context Engineering
  53. Claude Code in CI/CD and Headless Automation - Running the Agent Unattended in Pipelines
  54. AWS History and Timeline regarding Amazon VPC - Overview, Functions, Features, Summary of Updates, and Introduction
  55. AWS History and Timeline regarding Amazon CloudWatch - Overview, Functions, Features, Summary of Updates, and Introduction
  56. AWS History and Timeline regarding Elastic Load Balancing - Overview, Load Balancer Types, Features, Summary of Updates, and Introduction to ELB
  57. AWS History and Timeline regarding Amazon Aurora - Overview, Engines, Features, Summary of Updates, and Introduction
  58. AWS History and Timeline regarding Amazon SNS - Overview, Functions, Features, Summary of Updates, and Introduction to Amazon Simple Notification Service
  59. AWS History and Timeline regarding AWS CloudTrail - Overview, Functions, Features, Summary of Updates, and Introduction
  60. AWS History and Timeline regarding Amazon SageMaker - Overview, Functions, Features, Summary of Updates, and Introduction
  61. AWS History and Timeline regarding AWS Organizations - Overview, Functions, Features, Summary of Updates, and Introduction
  62. Claude Code Operator's Handbook
  63. AWS History and Timeline regarding Amazon Bedrock - Overview, Functions, Features, Summary of Updates, and Introduction
  64. Amazon Bedrock Glossary - A Reference for AI Engineers and Architects
  65. AWS History and Timeline regarding AWS Identity and Access Management - Overview, Functions, Features, Summary of Updates, and Introduction to IAM
  66. AI Agent Engineering Glossary - Memory, Tools, Orchestration, and Protocols Explained
  67. AWS History and Timeline regarding Amazon EC2 - Overview, Functions, Features, Summary of Updates, and Introduction
  68. AWS IAM Glossary - Principal, Permission Boundary, SCP, RCP, ABAC, and Cedar Explained
  69. Amazon Bedrock AgentCore Master Index - A Hub for AgentCore Articles and Decision Patterns
  70. AWS History and Timeline regarding Amazon DynamoDB - Overview, Functions, Features, Summary of Updates, and Introduction
  71. AWS History and Timeline regarding Amazon CloudFront - Overview, Functions, Features, Summary of Updates, and Introduction
  72. AWS Networking Glossary - VPC, Transit Gateway, PrivateLink, and VPC Lattice Explained
  73. AWS History and Timeline regarding Amazon EKS - Overview, Functions, Features, Summary of Updates, and Introduction
  74. AWS Lambda Master Index - A Hub for Lambda Articles
  75. AWS History and Timeline regarding Amazon API Gateway - Overview, Functions, Features, Summary of Updates, and Introduction
  76. AWS Database Glossary - RDS, Aurora, DynamoDB, DocumentDB, and Neptune Explained
  77. AWS Observability Glossary - CloudWatch, X-Ray, Application Signals, and OpenTelemetry Explained
  78. MCP Server Implementation Reference - Anthropic, OpenAI, Google, Cloudflare, and AWS
  79. IAM Policy Evaluation Logic Step-by-Step - Explicit Deny, RCP, SCP, Resource Policy, Identity Policy, Permission Boundary, and Session Policy
  80. HTTP Security Headers Complete Reference - CSP, HSTS, COOP, COEP, Permissions Policy
  81. AWS Generative AI History and Timeline - From SageMaker JumpStart to Bedrock AgentCore
  82. Anthropic Claude Model Release Timeline - Model Family Tree, Capability Evolution, and Platform Availability
  83. Cryptography Glossary for Engineers - AES, RSA, ECDSA, HKDF, Envelope Encryption, and TLS Explained
  84. AWS History and Timeline regarding AWS CloudFormation - Overview, Functions, Features, Summary of Updates, and Introduction
  85. Amazon DynamoDB Master Index - A Hub for DynamoDB Design, Key Modeling, and Capacity Planning Articles
  86. AWS History and Timeline regarding Amazon RDS - Overview, Engines, Features, Summary of Updates, and Introduction
  87. AI Agent Defense in Depth Model (AIDDM) - WAF, Guardrails, Reasoning Sandbox, and Output Filter
  88. IAM Anti-Patterns - Real-World Mistakes and Their Root Causes
  89. Amazon Bedrock Model Catalog 2026
  90. Claude Code Features and Settings Reference 2026
  91. AWS History and Timeline regarding Amazon ECS - Overview, Functions, Features, Summary of Updates, and Introduction
  92. AWS Service Quotas - A Practical Cheat Sheet for Major AWS Services
  93. AWS Verified Permissions and Cedar Policy Language Complete Guide
  94. MCP Server Ecosystem Reference 2026
  95. AWS VPC Lattice Complete Guide - Service-to-Service Networking Across VPCs and Accounts
  96. AWS Postmortem Case Studies - Design Lessons from AWS Public RCAs
  97. Regex Master Course - Interactive Recipes by Job Function
  98. Practical Git Techniques - Rebase, Worktree, Hooks, and Partial Clone for Mid-Level Engineers
  99. DynamoDB Key Design Dictionary: PK/SK, GSI/LSI Selection, Hot Partition Avoidance, and Re-Keying Patterns
  100. Code Review Checklist and Anti-Pattern Catalog: A Reviewer's Reference for Modern and AI-Augmented Codebases
  101. Indie Dev Guide: From Domain Acquisition to Live Site with AWS Route 53, S3, CloudFront, and ACM
  102. AWS Well-Architected - Practical Self-Audit Checklist by Pillar
  103. Route 53 Health Check and Failover - Common Pitfalls and Designs
  104. AWS Lambda Cold Start Mitigation Guide - Provisioned Concurrency, SnapStart, and Code-Level Techniques
  105. VSCode Extensions and Keybindings - Complete Guide by Use Case
  106. AWS Multi-Account Operational Patterns - Control Tower, Organizations, SCPs
  107. Software Design Principles in Practice - SOLID, DDD, Clean Architecture
  108. Web Performance Checklist for Core Web Vitals - LCP, INP, and CLS
  109. Architecture Decision Records: Templates and Operational Patterns for Teams That Actually Maintain Them
  110. AWS Tagging Strategy: Complete Guide for Operations, Automation, and Security
  111. VPC Design Review Checklist - CIDR, Subnets, Transit Gateway
  112. Amazon S3 Object Key Design Best Practices - Performance and Partitioning
  113. PWA Advanced Implementation Guide - Service Worker Cache Strategies, Push, and Background Sync
  114. Diagram Notation Selection — C4 vs PlantUML vs Mermaid
  115. Comparing Terraform, AWS CDK, AWS SAM, and CloudFormation - A Practitioner's Guide to Mental Models, State Management, and Migration
  116. Incident Triage Flowcharts - Network, DB, and Application Layer
  117. Self-Hosted Static Site Analytics - A Privacy-First Implementation Guide
  118. Claude Code Harness and Environment Engineering: Designing the Frontline Where Local AI Agents Actually Live
  119. Claude Code Getting Started - Why Knowing About Local AI Agents Changes Everything
  120. CloudWatch Logs Insights Query Cookbook: Practical Recipes for Incident Investigation, Cost Analysis, and Security Audits
  121. Amazon DynamoDB Single Table Design Complete Guide - Access-Pattern-Driven Data Modeling Patterns
  122. AWS IAM Identity Center Complete Setup Guide - Multi-Account SSO Design Patterns from Organization Structure to ABAC
  123. MCP Server on AWS Lambda Complete Guide - Building Model Context Protocol Servers with Streamable HTTP and OAuth 2.1
  124. Amazon Bedrock AgentCore Production Operations Guide - Observability, Cost Optimization, and Disaster Recovery
  125. Amazon Cognito Federation Complete Implementation Guide - Google, Apple, Microsoft, OIDC, and SAML
  126. AWS PrivateLink and VPC Endpoints Complete Guide - Interface, Gateway, and Resource Endpoint
  127. AWS WAF for Generative AI - Prompt Injection Defense Implementation Patterns
  128. CloudFront KeyValueStore and Edge Functions Cookbook: A/B Testing, Geo Routing, Feature Flags, and Token Validation
  129. EventBridge Pipes Event-Driven Architecture Implementation Patterns
  130. AWS Step Functions Distributed Map - Practical Patterns and Pitfalls for Large-Scale Parallel Workloads
  131. Enterprise AI Agent Environment Design Notes Part 3: Cloud Selection, Cost, and Operations
  132. Enterprise AI Agent Environment Design Notes Part 2: Implementing SharePoint ACL and Permission Controls
  133. Enterprise AI Agent Environment Design Notes Part 1: Comparing the Three Major Clouds and Designing Your Architecture
  134. Amazon Bedrock AgentCore Implementation Guide Part 4: Multi-Agent Orchestration
  135. Amazon Bedrock AgentCore Implementation Guide Part 3: Building a 4-Stack CDK Architecture with an Observability Pipeline
  136. Amazon Bedrock AgentCore Implementation Guide Part 2: Multi-Layer Security with Identity, Gateway, and Policy
  137. Amazon Bedrock AgentCore Implementation Guide Part 1: Runtime, Memory, and Code Interpreter Patterns
  138. Beyond Self-Disruption: The Paradigm Shift Software Engineers Need in the AI Era
  139. Amazon Bedrock AgentCore Beginner's Guide - AI Agent Development from Basics with Detailed Term Explanations
  140. Japan AWS Top Engineer and Japan All AWS Certifications Engineer: Special Award for 6 Consecutive Years and The 6 Growth Principles
  141. Using Claude 3.7 Sonnet Vision Capabilities on Amazon Bedrock to Verify, Regenerate, and Automate Image Generation with Stable Diffusion 3.5 Large
  142. Using Amazon Bedrock for titling, commenting, and OCR (Optical Character Recognition) with Claude 3.7 Sonnet
  143. Validating and Regenerating Videos Using Amazon Nova Pro Vision Model on Amazon Bedrock (Amazon Nova Reel Edition)
  144. Amazon Bedrock Models as of 2024 - An Analysis of the Comprehensive Model Catalog
  145. Using Amazon Bedrock for titling, commenting, and OCR (Optical Character Recognition) with Amazon Nova Pro
  146. Using Amazon Nova Pro Vision Capabilities on Amazon Bedrock to Verify, Regenerate, and Automate Image Generation with Amazon Nova Canvas
  147. AI and Machine Learning Glossary for AWS - Knowledge Gained While Studying for AWS Certified AI Practitioner and AWS Certified Machine Learning Engineer - Associate
  148. Evaluating OCR Accuracy of Claude on Amazon Bedrock and Amazon Textract Using Similarity Metrics
  149. How to Add an Approval Flow to AWS Step Functions Workflow (AWS CodePipeline and Amazon EventBridge Edition)
  150. How to Add an Approval Flow to AWS Step Functions Workflow (AWS Systems Manager Automation and Amazon EventBridge Edition)
  151. How to Add an Approval Flow to AWS Step Functions Workflow (AWS Systems Manager Automation Edition)
  152. Using Claude 3.5 Sonnet Vision Capabilities on Amazon Bedrock to Verify, Regenerate, and Automate Image Generation with Amazon Titan Image Generator G1
  153. Using Amazon Bedrock to repeatedly generate images with Stable Diffusion XL via Claude 3.5 Sonnet until requirements are met
  154. Using Amazon Bedrock for titling, commenting, and OCR (Optical Character Recognition) with Claude 3.5 Sonnet
  155. AWS History and Timeline regarding Amazon Cognito - Overview, Functions, Features, Summary of Updates, and Introduction
  156. AWS History and Timeline regarding AWS Lambda - Overview, Functions, Features, Summary of Updates, and Introduction
  157. AWS CloudFormation Templates and AWS Lambda Custom Resources for Associating AWS Certificate Manager, Lambda@Edge, and AWS WAF with a Website on Amazon S3 and Amazon CloudFront Cross-Region
  158. Deploy AWS Cloudformation Stack Cross-Region with AWS Lambda Custom Resources
  159. Using Amazon Textract for OCR(Optical Character Recognition)
  160. AWS History and Timeline regarding Amazon Simple Queue Service - Overview, Functions, Features, Summary of Updates, and Introduction to SQS
  161. Using Amazon Bedrock for titling, commenting, and OCR (Optical Character Recognition) with Claude 3 Haiku
  162. Using Amazon Bedrock for titling, commenting, and OCR (Optical Character Recognition) with Claude 3 Opus
  163. Using Amazon Bedrock for titling, commenting, and OCR (Optical Character Recognition) with Claude 3 Sonnet
  164. Setting up DKIM, SPF, DMARC with Amazon SES and Amazon Route 53 - An Overview of DMARC Parameters and Configuration Examples
  165. Summary of AWS Application Migration Service (AWS MGN) Architecture and Lifecycle Relationships, Usage Notes - Including Differences from AWS Server Migration Service (AWS SMS)
  166. Basic Information about Amazon Bedrock with API Examples - Model Features, Pricing, How to Use, Explanation of Tokens and Inference Parameters
  167. Summary of Differences and Commonalities in AWS Database Services using the Quorum Model - Comparison Charts of Amazon Aurora, Amazon DocumentDB, and Amazon Neptune
  168. AWS Amplify Features Focusing on Static Website Hosting - Relationship and Differences between AWS Amplify Hosting and AWS Amplify CLI
  169. Host a Static Website configured with Amazon S3 and Amazon CloudFront using AWS Amplify CLI
  170. Host a Static Website using AWS Amplify Hosting in the AWS Amplify Console
  171. Reasons for Continually Obtaining All AWS Certifications, Study Methods, and Levels of Difficulty
  172. Summary of AWS CloudFormation StackSets Focusing on the Relationship between the Management Console and API, Account Filter, and the Role of Parameters
  173. AWS History and Timeline regarding AWS Key Management Service - Overview, Functions, Features, Summary of Updates, and Introduction to KMS
  174. AWS History and Timeline regarding Amazon EventBridge - Overview, Functions, Features, Summary of Updates, and Introduction
  175. AWS History and Timeline regarding Amazon Route 53 - Overview, Functions, Features, Summary of Updates, and Introduction
  176. AWS History and Timeline regarding AWS Systems Manager - Overview, Functions, Features, Summary of Updates, and Introduction to SSM
  177. AWS History and Timeline regarding Amazon S3 - Focusing on the evolution of features, roles, and prices beyond mere storage
  178. How to create a PWA(Progressive Web Apps) compatible website on AWS and use Lighthouse Report Viewer
  179. AWS History and Timeline - Almost All AWS Services List, Announcements, General Availability(GA)

Written by Hidekazu Konishi