Wow, the vendor lock-in with such a setup is incredible. Should AWS decide to ban you for whatever reason, your entire business is shut. It's crazy how people don't see that as a huge risk/threat.
I know a company (don't ask) that only uses AWS, yet for unspecified "security" reasons (all theatre) and to avoid vendor lock-in, they've built their own terrible implementations of services provided by AWS. Don't get me wrong, if you've got some good infra/sec people who can deploy and properly manage Vault, an entire observability stack, KOPS Kubernetes etc, good luck to you. But these guys didn't really have the chops to do this properly, nor did they hire sufficient people support and maintain each ball of crap when they moved onto the hobby-build. And they lazily avoided documenting anything, pretending that this was intentional ("documentation is code", except their codebases are sprawling spaghetti with very few useful markdown downs or comments). There aren't even any strict naming conventions. So basically it's incredibly difficult, complex, manual and scary to deploy a new data center, or indeed, even modify the existing ones. There are maybe 3 people in the whole company who gatekeep security access and change. I genuinely wonder if they had a race with the guys at Plain, who'd get their stack off AWS the quickest? My guess: Plain would win.
Sorry, I needed to vent :( But my point is, sometimes it's easier to avoid building the things that your team doesn't know how to build. And maybe you can't hire the right people to build it for you. If they're all comfortable with their severless stack, they're far better off than the other company I'm talking about.
Haha you know what, I've worked on tech stacks like you described. They were terrible, and all the original developers left the dumpster fire. But when reading the code, sometimes I would just smile, I could tell they had a damn good time writing the code. And yeah, it costed us a year to fix, but still, I would just chuckle when reading their abstractions. Sometimes, its just fun :)
hmmm actually I think parent does have a point seeing that we are seeing more weaponization of platforms the past few years. Say you have a specific view of reality that differs politically or labelled to be reflecting "propaganda" of specific states, interest groups, political spectrum.
Then yeah AWS or any US stock exchange listed, centralized cloud host would be deemed a platform risk but for majority of us it is not an issue.
Nevertheless I am cognizant of the political risks translating into various platform/financial issues for such groups but it's always been this way when new mediums of information exchange are introduced. Perhaps a short time during the early days of the internet such idea was a reality but we've gone far past that, regulators and political interests have caught on and it would take a very robust , decentralized and scalable mesh network to pull it off successfully.
I mean it's a real threat, but I can count on one hand the number of accounts I've heard of aws locking out, but don't have enough appendages to count how many Google (gcp) accounts have been locked out.
Vendor lock-in is a real thing, but vendor lock out is usually a vendor issue.
An even bigger risk than being “banned” or losing your account would be mundane things like pricing changes that break your business model or the discontinuation of a service your product relies on at a deep level.
Sorry, I needed to vent :( But my point is, sometimes it's easier to avoid building the things that your team doesn't know how to build. And maybe you can't hire the right people to build it for you. If they're all comfortable with their severless stack, they're far better off than the other company I'm talking about.
Oh god is it Monday morning again?