CloudQuery
@cloudquery.bsky.social
Data pipelines for cloud config and security data. Build cloud asset inventory, CSPM, FinOps, and vulnerability management solutions. Extract from AWS, Azure, GCP, and 70+ cloud and SaaS sources.
Managing Zoom access across a growing workspace usually means clicking through the admin console one user at a time.
Who has admin privileges? Are there accounts that should have been deprovisioned?
We just released a better way to answer these questions. 🧵
Who has admin privileges? Are there accounts that should have been deprovisioned?
We just released a better way to answer these questions. 🧵
February 4, 2026 at 3:15 PM
Managing Zoom access across a growing workspace usually means clicking through the admin console one user at a time.
Who has admin privileges? Are there accounts that should have been deprovisioned?
We just released a better way to answer these questions. 🧵
Who has admin privileges? Are there accounts that should have been deprovisioned?
We just released a better way to answer these questions. 🧵
One year into DORA enforcement, 46% of financial institutions cited the Register of Information as their biggest compliance challenge.
The April 2025 deadline exposed a clear divide. 🧵
The April 2025 deadline exposed a clear divide. 🧵
January 28, 2026 at 3:15 PM
One year into DORA enforcement, 46% of financial institutions cited the Register of Information as their biggest compliance challenge.
The April 2025 deadline exposed a clear divide. 🧵
The April 2025 deadline exposed a clear divide. 🧵
Two missing characters nearly compromised the AWS Console.
CodeBreach: a supply chain attack exploiting regex patterns in AWS CodeBuild webhook filters. Here's how to audit your own configurations 🧵
CodeBreach: a supply chain attack exploiting regex patterns in AWS CodeBuild webhook filters. Here's how to audit your own configurations 🧵
January 23, 2026 at 3:15 PM
Two missing characters nearly compromised the AWS Console.
CodeBreach: a supply chain attack exploiting regex patterns in AWS CodeBuild webhook filters. Here's how to audit your own configurations 🧵
CodeBreach: a supply chain attack exploiting regex patterns in AWS CodeBuild webhook filters. Here's how to audit your own configurations 🧵
AWS + Google partnered on multicloud networking.
Provision connections in minutes instead of weeks. MACsec encryption, quad-redundancy, open spec.
But here's the thing: network pipes were the easy problem. 🧵
Provision connections in minutes instead of weeks. MACsec encryption, quad-redundancy, open spec.
But here's the thing: network pipes were the easy problem. 🧵
January 22, 2026 at 3:15 PM
AWS + Google partnered on multicloud networking.
Provision connections in minutes instead of weeks. MACsec encryption, quad-redundancy, open spec.
But here's the thing: network pipes were the easy problem. 🧵
Provision connections in minutes instead of weeks. MACsec encryption, quad-redundancy, open spec.
But here's the thing: network pipes were the easy problem. 🧵
Nathan Handler from Reddit is speaking at SCaLE 23x about how they built a unified cloud inventory with CloudQuery 🧵
January 19, 2026 at 3:15 PM
Nathan Handler from Reddit is speaking at SCaLE 23x about how they built a unified cloud inventory with CloudQuery 🧵
CODEOWNERS files make a promise: these people are responsible for this code.
When engineers leave, their GitHub handles stay in CODEOWNERS. PRs notify accounts that don't exist. Ownership decays silently.
Here's how to find the gaps 🧵
When engineers leave, their GitHub handles stay in CODEOWNERS. PRs notify accounts that don't exist. Ownership decays silently.
Here's how to find the gaps 🧵
January 16, 2026 at 3:15 PM
CODEOWNERS files make a promise: these people are responsible for this code.
When engineers leave, their GitHub handles stay in CODEOWNERS. PRs notify accounts that don't exist. Ownership decays silently.
Here's how to find the gaps 🧵
When engineers leave, their GitHub handles stay in CODEOWNERS. PRs notify accounts that don't exist. Ownership decays silently.
Here's how to find the gaps 🧵
Two weeks out: Durham cloud governance meetup (Jan 28).
If you've ever said "we need visibility into what's actually running" or "compliance keeps blocking deployments" - this is for you.
Real conversations. No vendor pitch.
5-7pm, Alley Twenty Six.
https://lu.ma/x6lhihm6
If you've ever said "we need visibility into what's actually running" or "compliance keeps blocking deployments" - this is for you.
Real conversations. No vendor pitch.
5-7pm, Alley Twenty Six.
https://lu.ma/x6lhihm6
January 15, 2026 at 8:15 PM
Two weeks out: Durham cloud governance meetup (Jan 28).
If you've ever said "we need visibility into what's actually running" or "compliance keeps blocking deployments" - this is for you.
Real conversations. No vendor pitch.
5-7pm, Alley Twenty Six.
https://lu.ma/x6lhihm6
If you've ever said "we need visibility into what's actually running" or "compliance keeps blocking deployments" - this is for you.
Real conversations. No vendor pitch.
5-7pm, Alley Twenty Six.
https://lu.ma/x6lhihm6
An engineer leaves your company. Access revoked. Laptop returned.
But their commits are still across dozens of repos.
For compliance audits, you need to know: which code was authored by former employees? 🧵
But their commits are still across dozens of repos.
For compliance audits, you need to know: which code was authored by former employees? 🧵
January 15, 2026 at 3:15 PM
An engineer leaves your company. Access revoked. Laptop returned.
But their commits are still across dozens of repos.
For compliance audits, you need to know: which code was authored by former employees? 🧵
But their commits are still across dozens of repos.
For compliance audits, you need to know: which code was authored by former employees? 🧵
Your legal team asks: "Which repos don't have a LICENSE file?"
GitHub shows license status one repo at a time. The API requires pagination. Writing a script means auth, rate limits, and maintenance.
Or... one SQL query 🧵
GitHub shows license status one repo at a time. The API requires pagination. Writing a script means auth, rate limits, and maintenance.
Or... one SQL query 🧵
January 14, 2026 at 3:15 PM
Your legal team asks: "Which repos don't have a LICENSE file?"
GitHub shows license status one repo at a time. The API requires pagination. Writing a script means auth, rate limits, and maintenance.
Or... one SQL query 🧵
GitHub shows license status one repo at a time. The API requires pagination. Writing a script means auth, rate limits, and maintenance.
Or... one SQL query 🧵
Node 18 reached end-of-life in April 2025.
Quick: how many Dockerfiles across your org still use `node:18` as the base image?
If your answer is "I'd have to clone every repo and grep"... read on 🧵
Quick: how many Dockerfiles across your org still use `node:18` as the base image?
If your answer is "I'd have to clone every repo and grep"... read on 🧵
January 13, 2026 at 3:15 PM
Node 18 reached end-of-life in April 2025.
Quick: how many Dockerfiles across your org still use `node:18` as the base image?
If your answer is "I'd have to clone every repo and grep"... read on 🧵
Quick: how many Dockerfiles across your org still use `node:18` as the base image?
If your answer is "I'd have to clone every repo and grep"... read on 🧵
You need to find which Dockerfiles still use Node 18 (now EOL). The usual approach: clone 500 repos, write bash scripts, maintain it as teams change.
There's a better way 🧵
There's a better way 🧵
January 12, 2026 at 3:15 PM
You need to find which Dockerfiles still use Node 18 (now EOL). The usual approach: clone 500 repos, write bash scripts, maintain it as teams change.
There's a better way 🧵
There's a better way 🧵
Durham folks: We're hosting an informal cloud governance meetup on Jan 28.
No panels. No slides. Just drinks and honest conversations about multi-cloud visibility, guardrails, and making compliance work without slowing teams down.
5-7pm at Alley Twenty Six.
https://lu.ma/x6lhihm6
No panels. No slides. Just drinks and honest conversations about multi-cloud visibility, guardrails, and making compliance work without slowing teams down.
5-7pm at Alley Twenty Six.
https://lu.ma/x6lhihm6
January 8, 2026 at 4:58 PM
Durham folks: We're hosting an informal cloud governance meetup on Jan 28.
No panels. No slides. Just drinks and honest conversations about multi-cloud visibility, guardrails, and making compliance work without slowing teams down.
5-7pm at Alley Twenty Six.
https://lu.ma/x6lhihm6
No panels. No slides. Just drinks and honest conversations about multi-cloud visibility, guardrails, and making compliance work without slowing teams down.
5-7pm at Alley Twenty Six.
https://lu.ma/x6lhihm6
Your CMDB thinks it discovered 10,000 servers. Reality? You have 8,500.
The missing 1,500 are containers that lived for 2 minutes and Lambda functions that executed 5,000 times. 🧵
The missing 1,500 are containers that lived for 2 minutes and Lambda functions that executed 5,000 times. 🧵
December 8, 2025 at 3:15 PM
Your CMDB thinks it discovered 10,000 servers. Reality? You have 8,500.
The missing 1,500 are containers that lived for 2 minutes and Lambda functions that executed 5,000 times. 🧵
The missing 1,500 are containers that lived for 2 minutes and Lambda functions that executed 5,000 times. 🧵
We analyzed 50 traditional CMDB implementations at enterprise companies.
Average time spent per month on CMDB maintenance: 40 hours.
Average data staleness: 12-24 hours.
Success rate delivering business value: 20-30%.
Here's what breaks and why 🧵
Average time spent per month on CMDB maintenance: 40 hours.
Average data staleness: 12-24 hours.
Success rate delivering business value: 20-30%.
Here's what breaks and why 🧵
December 8, 2025 at 2:15 PM
We analyzed 50 traditional CMDB implementations at enterprise companies.
Average time spent per month on CMDB maintenance: 40 hours.
Average data staleness: 12-24 hours.
Success rate delivering business value: 20-30%.
Here's what breaks and why 🧵
Average time spent per month on CMDB maintenance: 40 hours.
Average data staleness: 12-24 hours.
Success rate delivering business value: 20-30%.
Here's what breaks and why 🧵
Most cloud asset inventory projects fail not because of technical complexity.
They fail because teams optimize for data collection instead of decision velocity.
Here's how organizations evolve from ad-hoc scripts to systems that answer questions in seconds 🧵
They fail because teams optimize for data collection instead of decision velocity.
Here's how organizations evolve from ad-hoc scripts to systems that answer questions in seconds 🧵
December 1, 2025 at 2:15 PM
Most cloud asset inventory projects fail not because of technical complexity.
They fail because teams optimize for data collection instead of decision velocity.
Here's how organizations evolve from ad-hoc scripts to systems that answer questions in seconds 🧵
They fail because teams optimize for data collection instead of decision velocity.
Here's how organizations evolve from ad-hoc scripts to systems that answer questions in seconds 🧵
Free swag. Zero hassle. 🎁
Run one CloudQuery sync. That's the whole contest.
Complete your first sync, share results, get swag. Plus learn how API-driven cloud discovery actually works.
Details: https://www.cloudquery.io/blog/death-of-agent-based-discovery
Run one CloudQuery sync. That's the whole contest.
Complete your first sync, share results, get swag. Plus learn how API-driven cloud discovery actually works.
Details: https://www.cloudquery.io/blog/death-of-agent-based-discovery
November 12, 2025 at 3:15 PM
Free swag. Zero hassle. 🎁
Run one CloudQuery sync. That's the whole contest.
Complete your first sync, share results, get swag. Plus learn how API-driven cloud discovery actually works.
Details: https://www.cloudquery.io/blog/death-of-agent-based-discovery
Run one CloudQuery sync. That's the whole contest.
Complete your first sync, share results, get swag. Plus learn how API-driven cloud discovery actually works.
Details: https://www.cloudquery.io/blog/death-of-agent-based-discovery
Want CloudQuery swag? 🎁
Run a sync. That's it.
Complete a sync, share your results, win swag. Learn API-driven cloud discovery while you're at it.
Enter here: https://www.cloudquery.io/blog/death-of-agent-based-discovery
Run a sync. That's it.
Complete a sync, share your results, win swag. Learn API-driven cloud discovery while you're at it.
Enter here: https://www.cloudquery.io/blog/death-of-agent-based-discovery
November 11, 2025 at 3:15 PM
Want CloudQuery swag? 🎁
Run a sync. That's it.
Complete a sync, share your results, win swag. Learn API-driven cloud discovery while you're at it.
Enter here: https://www.cloudquery.io/blog/death-of-agent-based-discovery
Run a sync. That's it.
Complete a sync, share your results, win swag. Learn API-driven cloud discovery while you're at it.
Enter here: https://www.cloudquery.io/blog/death-of-agent-based-discovery
We spent 20 years installing agents on servers. Then AWS gave us APIs.
Why are we still installing agents like it's 2005? 🧵
Why are we still installing agents like it's 2005? 🧵
November 10, 2025 at 3:15 PM
We spent 20 years installing agents on servers. Then AWS gave us APIs.
Why are we still installing agents like it's 2005? 🧵
Why are we still installing agents like it's 2005? 🧵
Your CMDB updates daily. Your containers live 3 minutes. Your Lambda functions live 300 milliseconds.
See the problem? 🧵
See the problem? 🧵
November 7, 2025 at 3:15 PM
Your CMDB updates daily. Your containers live 3 minutes. Your Lambda functions live 300 milliseconds.
See the problem? 🧵
See the problem? 🧵
You manage 4,782 cloud resources across 6 accounts. Can you tell me which S3 buckets are publicly accessible right now? Which IAM roles haven't been used in 90 days? 🧵
November 5, 2025 at 6:00 AM
You manage 4,782 cloud resources across 6 accounts. Can you tell me which S3 buckets are publicly accessible right now? Which IAM roles haven't been used in 90 days? 🧵
Traditional CMDBs were built for servers with names like "web-prod-01" that run for years.
In 2026, that EC2 instance running your Lambda cold start lives for 45 seconds.
Traditional CMDB discovery would schedule a scan for tomorrow. By then, it's gone. 🧵
In 2026, that EC2 instance running your Lambda cold start lives for 45 seconds.
Traditional CMDB discovery would schedule a scan for tomorrow. By then, it's gone. 🧵
November 3, 2025 at 2:15 PM
Traditional CMDBs were built for servers with names like "web-prod-01" that run for years.
In 2026, that EC2 instance running your Lambda cold start lives for 45 seconds.
Traditional CMDB discovery would schedule a scan for tomorrow. By then, it's gone. 🧵
In 2026, that EC2 instance running your Lambda cold start lives for 45 seconds.
Traditional CMDB discovery would schedule a scan for tomorrow. By then, it's gone. 🧵
Your CMDB shows 847 EC2 instances. AWS console reports 1,203 running right now.
Security needs a list of unencrypted S3 buckets in 30 minutes. Your last discovery scan ran 18 hours ago.
Traditional CMDBs fail 70-80% of the time. Here's why, and what works instead →
Security needs a list of unencrypted S3 buckets in 30 minutes. Your last discovery scan ran 18 hours ago.
Traditional CMDBs fail 70-80% of the time. Here's why, and what works instead →
November 1, 2025 at 2:00 PM
Your CMDB shows 847 EC2 instances. AWS console reports 1,203 running right now.
Security needs a list of unencrypted S3 buckets in 30 minutes. Your last discovery scan ran 18 hours ago.
Traditional CMDBs fail 70-80% of the time. Here's why, and what works instead →
Security needs a list of unencrypted S3 buckets in 30 minutes. Your last discovery scan ran 18 hours ago.
Traditional CMDBs fail 70-80% of the time. Here's why, and what works instead →
Do you know we have a referral program? If you know someone who needs better cloud data infrastructure? Send them our way and earn a $500 Visa gift card when they become a customer.
Check out the full program details:
Check out the full program details:
Introducing the CloudQuery Referral Program - Earn $500 | CloudQuery Blog
Share CloudQuery with your network and earn account credits for every successful referral. Help more teams discover the power of infrastructure data and get rewarded for spreading the word.
buff.ly
October 23, 2025 at 12:38 AM
Do you know we have a referral program? If you know someone who needs better cloud data infrastructure? Send them our way and earn a $500 Visa gift card when they become a customer.
Check out the full program details:
Check out the full program details:
We wrapped up our AWS series on cloud asset inventories with the final video—released on the official AWS YouTube channel.
Together we covered why most inventory projects fail: teams treat them as technical implementations instead of business capabilities. www.cloudquery.io/blog/five-ti...
Together we covered why most inventory projects fail: teams treat them as technical implementations instead of business capabilities. www.cloudquery.io/blog/five-ti...
October 21, 2025 at 9:06 AM
We wrapped up our AWS series on cloud asset inventories with the final video—released on the official AWS YouTube channel.
Together we covered why most inventory projects fail: teams treat them as technical implementations instead of business capabilities. www.cloudquery.io/blog/five-ti...
Together we covered why most inventory projects fail: teams treat them as technical implementations instead of business capabilities. www.cloudquery.io/blog/five-ti...
We partnered with AWS to introduce CloudQuery as a cloud visibility solution—released on the official AWS YouTube channel.
October 20, 2025 at 9:06 AM
We partnered with AWS to introduce CloudQuery as a cloud visibility solution—released on the official AWS YouTube channel.