Here is the latest issue
Better Dev Link
Issue 288 - Jun 22, 2026
Hi everyone,
We’re back for another issue. We’re become more regular now. If you enjoy BetterDev, please spread the word by sharing it with your friends. And if you’d like to support my work, buying me a coffee would be much appreciated.
Every new API key means tracking down which services need it, then updating each one by hand. At OpenRouter, that happened one to two times a week.
OpenRouter runs the largest AI gateway for developers, with infrastructure spanning Vercel, GCP, and Cloudflare and 70+ model providers. Each one ships its own keys, propagated manually with custom scripts, and no audit trail. A leaked production credential meant downtime and an SLA breach.
The team adopted Cursor, Claude Code, Devin, and Codex, and each needed scoped access to run services end to end without reaching credentials it shouldn't.
OpenRouter centralized everything on Infisical:
→ Dynamic folder sync replaced the scripts: one folder for all provider keys, imported into the services that need them
→ Role-based access separates dev, admin, and break-glass production: A dedicated agent tier issues session-scoped credentials, so tools like Cursor and Claude Code pull dev secrets directly and run read-only cron jobs against production, scoped to exactly what they need.
→ Audit logging: It closed the visibility gap on when and why a secret changed.
The payoff: spinning up a new service dropped from a multi-service manual chore to about 10 minutes. 21 services now sync through Infisical and 50+ engineering hours are saved per month.
As founding engineer Shashank Goyal put it: "With Infisical, you get the security benefit along with improved developer experience, it becomes a no-brainer.".
Pair it with this video to learn how fast we can read a file? are we limited by disk or cpu?
Fraud detection in transaction data is mostly SQL. Not machine learning, not graph databases, not whatever Gartner is hyping this year. SQL, run against the right tables, with the right joins, looking for the right shapes.
Shopify needs no introduction of their scale. They have an oversell protection to track inventory buld on Redis, using DECR and INCR. But data now is lived on 2 system, and this cannot be done in an atomic manner because state is persisted outside of MySQL. Operating and scaling Redis in region awareness also not easy. So they moved this to MySQL with SKIP LOCKED.
The American Express core payments ecosystem is a global platform relied on by Card Members and partners around the world. Every day, it processes live payment transactions that require high availability, low latency, and predictable performance. To achieve this, the platform is built around a cell-based architecture that isolates failures, maintains low-latency processing, and scales capacity without expanding the failure domain
DataDog regularly run a variety of gamedays to intentionally stress our platforms and learn how our systems and teams respond under real-world conditions. During that they discover when network latency increase, replica lag, primary failed and failover is no longer safe.
On Xmas 2024, Aura Frames API had problems under peak load, being unavailable for three hours. They implement multiple strategy to help improve Postgres performance significantly. We will learn all of that here: high cpu during vacum, increase latency, lag replica, index bloat due to high write. One of interested thing is they split heavy write tables to its own dedicated db, we cannot always do this, but if we can it reduce and isolated high load to that db only.
I’ve been using Git for so long and I just realized you can ignore files at three different levels and not just with .gitignore. The three files you can use to ignore files are: .gitignore, .git/info/exclude, ~/.config/git/ignore
How hard it’s to build a home made CPU? hard if you had to do the hardware component yourself. But assume if you can get the part. TD4 is a little 4bit CPU: 2 registers, 16 bytes ROM.Quite limited but still very cool and teaches a lot of principles of computer architecture.
Code to read
Modern concurrency primitives and building blocks for high performance applications, all in C99+
CYour website, but inhabited. Very hard to explain, like convert visitor into real character can interact in a widget on your site. very fund interestint to check
JavaScriptCssA high-performance, concurrent bytecode virtual machine and language written in Go. Tiny combines the development speed of dynamic coding with a robust, multi-threaded runtime engine
GoA high-performance Ractor web server for Ruby 4.0+: Rack 3-based, with a Rust Tokio/Hyper front-end and Ractor-parallel Ruby workers and threaded fallback mode.
RubyTools
Makes PDFs look scanned (CLI or in the browser via WASM)
is a Postgres-native durable workflow system. It moves the complexity of durable execution into the database layer via stored procedures, keeping SDKs lightweight and language-agnostic. The core principle is to handle tasks that may run for minutes, days, or years without losing state.
A multithreaded PostgreSQL connection pooler in Rust (MSRV 1.87). Alternative to PgBouncer, Odyssey, and PgCat. In production at Ozon for over three years across Go (pgx), .NET (Npgsql), Python (asyncpg, SQLAlchemy), and Node.js workloads.
Self Hosted
Self-contained PXE and HTTP boot server. One binary. Zero config. Built-in proxyDHCP so you never touch your router. 50+ distros detected automatically.
is a friendly PXE server that lets you boot up Linux installers without a USB drive. It runs on macOS, Linux, and Windows.
The Open-Source Email Platform. Transactional emails, marketing campaigns, and workflow automation — in one platform. Self-hostable, $0.001 per email, no contact limits.
Fully transparent SSH, HTTPS, Kubernetes, MySQL and Postgres bastion/PAM that doesn’t need additional client-side software
Open Source Outbound Webhooks and Event Destinations Infrastructure
modern full-featured open source secure mail server for low-maintenance self-hosted email
