SShortSingh.
TopTechnologyAI & MLStartupsProgrammingScienceBusinessFinanceCrypto & Web3World
Back to feed
Programming

Developer builds tamper-evident audit log on DynamoDB that enforces immutability via IAM

0
·1 views

A developer built LedgerLock, an open-source audit logging API, for a Vercel and AWS hackathon using Amazon DynamoDB. The system addresses a widespread compliance gap where regulated companies claim immutable audit logs but store them in standard databases that can be quietly altered by administrators. LedgerLock enforces true immutability not through policy but through IAM permissions that simply never grant UpdateItem or DeleteItem rights to the application. Each logged event stores a SHA-256 hash chained to the previous entry, meaning any tampering cascades visibly through all subsequent records. The project also solved a concurrency bug where simultaneous writes could fork the hash chain, resolving it with optimistic concurrency control using DynamoDB's conditional writes.

Read the full story at DEV Community

This is an AI-generated summary. ShortSingh links to the original source for the complete article.

Discussion (0)

Log in to join the discussion and vote.

Log in

Related stories

0
ProgrammingDEV Community ·

Developer uses DynamoDB sparse GSI to power real-time post scheduler for indie devs

A developer built SlothPost, a social media scheduling tool for indie developers, as part of the H0 Hackathon combining Vercel and AWS databases. The app connects to GitHub, Vercel, and the App Store to capture user activity and auto-draft posts for X and Threads. To handle per-product posting schedules without server-side cron support in DynamoDB, the developer implemented a sparse Global Secondary Index (GSI) that only indexes actively scheduled products. This approach keeps queries efficient by avoiding full table scans, since only items with a scheduleStatus attribute appear in the index. The full application runs on Next.js hosted on Vercel, uses DynamoDB as its primary database, and relies on Cloudflare Workers to trigger the scheduling logic.

0 comments Read more at DEV Community
0
ProgrammingDEV Community ·

How to Break Down Large Instructions into Manageable Datasets for Big Projects

Handling large instruction sets in big projects requires a structured approach to data segmentation. Developers often face challenges when working with extensive datasets that need to be divided into smaller, more manageable chunks. Breaking down instructions into smaller datasets improves processing efficiency and reduces system overhead. This practice is commonly applied in machine learning, data pipelines, and large-scale software development workflows. Adopting modular data handling strategies helps teams maintain clarity, scalability, and better control over complex projects.

0 comments Read more at DEV Community
0
ProgrammingDEV Community ·

How to fix broken Meta ad attribution when conversions happen inside a Telegram bot

When Meta ads drive users to a Telegram bot via a landing page, conversion attribution often breaks silently because the fbclid parameter cannot be passed through Telegram's deep link start payload, which is capped at 64 characters and excludes most special characters. A real fbclid typically exceeds 170 characters, making direct transfer impossible and causing Meta's Conversions API to receive events without the match data needed to tie conversions back to ad clicks. The recommended fix involves generating a short random token on the landing page, storing the full fbclid and click timestamp server-side against that token, and passing only the token through the Telegram deep link. Inside the bot, the token is used to retrieve the original click data and reconstruct a valid fbc value before sending the CAPI event. Developers are also advised to use the original click timestamp rather than the bot-open time, set action_source to 'chat' for accuracy, and apply a short TTL to unused tokens.

0 comments Read more at DEV Community
0
ProgrammingDEV Community ·

Developer Builds Neighborhood Package Hub Platform Using PostGIS and DynamoDB Streams

A developer built Hold·My·Package, a B2B SaaS platform designed to reduce failed last-mile deliveries, as part of the H0: Hack the Zero Stack hackathon with Vercel and AWS. The platform routes undeliverable packages to nearby local businesses — such as dry cleaners or convenience stores — which act as neighborhood hubs and redeliver on the homeowner's schedule. The system uses Aurora PostgreSQL with PostGIS for spatial queries, including finding the nearest hub with available capacity and clustering nearby deliveries into optimized dispatch batches. DynamoDB handles the high-throughput event stream, tracking every package status change and triggering real-time notifications via AWS Lambda and Pusher. The platform serves four user types — hub operators, homeowners, carriers, and network admins — each with dedicated portals built on a Next.js frontend hosted on Vercel.

0 comments Read more at DEV Community
Developer builds tamper-evident audit log on DynamoDB that enforces immutability via IAM · ShortSingh