Hello, I'm Luke

Latest Posts

• Your Dependencies Are Someone Else's Keys to Your Server

  security dependencies consulting javascript

  The Axios supply chain attack reminded me of a dependency audit I ran at a client last year. What I found was worse than any vulnerability scanner could flag.

  Published On

  April 6, 2026

  Read more →

• The Canary That Didn't Sing — What Our Deployment Strategy Missed

  devops deployment observability consulting

  We built a canary deployment pipeline with automated rollbacks. It still let a bad release through to 100% of users. Here's what went wrong.

  Published On

  April 5, 2026

  Read more →

• We Let AI Review Every Pull Request for Three Months. Here's What It Actually Caught.

  ai code-review developer-experience consulting code-quality

  AI code review tools are everywhere now. After rolling one out on a real project, I learned more about our team than about the tool itself.

  Published On

  April 4, 2026

  Read more →

• The E2E Test Suite That Cried Wolf

  testing developer-experience consulting ci-cd

  How a 45-minute end-to-end test suite trained an entire team to ignore test failures — and what we did about it.

  Published On

  April 3, 2026

  Read more →

• The Feature Flag Graveyard We Built Over Two Years

  technical-debt feature-flags code-quality consulting

  How 340 feature flags turned a codebase into a minefield — and the boring process that dug us out.

  Published On

  April 2, 2026

  Read more →