Tobiloba Ogundiyan

Current Focus & Innovation

Over the past 90 days, Tobiloba has concentrated on AWS security automation and cloud infrastructure, with 15 documented events demonstrating hands-on expertise in OIDC authentication, Terraform infrastructure-as-code, and secure CI/CD practices (view profile).

AWS OIDC Security Implementation

Technical Implementation:

• Created comprehensive GitHub Actions workflow with 26 lines implementing OIDC permissions, AWS credential configuration, and identity verification (view commit)
• Configured id-token write and contents read permissions for secure token generation (view implementation)
• Implemented IAM role assumption to arn:aws:iam::555066115752:role/aws-oidc-test in ca-central-1 region (view configuration)
• Added verification steps using aws sts get-caller-identity and aws s3 ls commands (view workflow)
• Developed comprehensive README with 57 additions and architecture diagram (view documentation)
• Published accompanying LinkedIn article for detailed setup guidance

Kubernetes Infrastructure with Terraform

The kthw-aws-terraform repository automates EC2 provisioning behind VPC NAT for Kelsey Hightower's Kubernetes The Hard Way, demonstrating production-grade infrastructure patterns.

Infrastructure Components:

• Network Architecture: Single-AZ VPC with public and private subnets, Internet Gateway, NAT Gateway with Elastic IP, route tables with associations (view architecture)
• Compute Resources: Ubuntu 24.04 bastion in public subnet with SSM agent, four Debian 12 instances in private subnet (view compute configuration)
• Security Configuration: Bastion security group allowing SSH from allowed CIDRs, private security group allowing SSH from bastion only, IAM role and instance profile for SSM (view security setup)
• Security Enhancement: Moved IAM role ARN from hardcoded value to GitHub Secrets on September 11, 2025 (view security improvement)

Technical Stack: HCL (11,391 bytes), 23 total files across 5 directories, modular structure with compute.tf, iam.tf, networks.tf, security.tf, variables.tf, and outputs.tf (view repository)

Passion Projects & Hidden Gems

Tobiloba's portfolio showcases 100% sole ownership across all 6 personal repositories, with 223 total commits demonstrating sustained personal investment in meaningful projects (view profile).

go-spf: RFC 7208 SPF Library

Advanced Implementation:

• DNS Resolution Abstraction: Refactored DNS operations into separate package with custom Resolver interface on July 30, 2025, enabling comprehensive testability (view refactoring)
• IPv6 Support: Implemented evaluateIP4 and evaluateIP6 functions with 32 additions, including proper CIDR validation and IPv4-mapped address detection on July 29, 2025 (view implementation)
• A Record Evaluation: Added 105 lines implementing RFC 7208 section 5.3 compliance with DNS lookup counting and void lookup tracking on August 24, 2025 (view mechanism)
• Comprehensive Documentation: Includes Go Reference badge, CI/CD badge, honest assessment of production-readiness, and clear usage examples (view documentation)

emailfutbol: Personal Automation CLI

Built to solve a genuine personal need: "I don't check sports apps or news often, but I check my email every morning. So I built this to send only the matches I actually care about, for the next day" (view repository).

Thoughtful Design:

• Modular Architecture: Refactored match collector to separate package with 167 line changes on April 23, 2025 (view refactoring)
• Four Separate Packages: apifutbol/ for HTTP client, config/ for TOML management, filter/ for business logic, mailer/ for email functionality (view structure)
• CLI Enhancement: Added command-line flags on April 11, 2025 for configurable config file paths (view enhancement)
• Comprehensive Documentation: 54-line README explaining motivation, design decisions, and setup instructions added April 13, 2025 (view documentation)

Open Source Contribution

Contributed to basecamp/omarchy (16,208 stars, 1,507 forks) on July 17, 2025, demonstrating ability to contribute to high-profile open source projects created by industry leaders (view contribution).

Technical Expertise

Tobiloba demonstrates advanced proficiency across cloud infrastructure automation, Go programming, and security-focused DevOps practices, with 226 total commits showcasing production-grade development (view activity).

Go Development Mastery

Advanced Architecture Patterns:

• Interface-Driven Design: Created custom TXTResolver and IPResolver interfaces in go-spf for dependency injection and comprehensive testability (view interfaces)
• RFC Compliance: Implemented RFC 7208 section 4.5 error classification with custom error types (ErrMultipleSPF, ErrNoDNSrecord, ErrTempfail, ErrPermfail) (view implementation)
• Comprehensive Testing: 16,600+ bytes of test code with table-driven tests, mock-based unit testing, HTTP mocking with httptest, and fuzz testing (view tests)
• Package Modularity: Separated DNS functionality into dedicated package with 37 line changes for better separation of concerns (view refactoring)

Infrastructure as Code Excellence

Terraform/HCL Mastery: 11,391 bytes of production-ready code implementing enterprise-grade AWS architecture (view repository)

• Modular Architecture: Separate files for compute resources (compute.tf), network architecture (networks.tf), security controls (security.tf), and IAM configuration (iam.tf) (view structure)
• Remote State Management: S3 backend with DynamoDB locking, versioning, server-side encryption (AES256), and lifecycle policies (view configuration)
• Security Best Practices: Least-privilege security groups, bastion host architecture, NAT Gateway for private subnet egress, IAM roles with SSM access (view security)

CI/CD & DevOps Automation

• GitHub Actions Expertise: Matrix testing across Go 1.23.x and 1.24.x with race detection enabled (view workflow)
• Infrastructure Automation: Manual workflow dispatch with action selection (plan/apply/destroy), concurrency controls, environment protection, and artifact uploads (view automation)
• Security-First CI/CD: OIDC token-based authentication eliminating static credentials from pipelines (view implementation)

Code Quality & Craftsmanship

Tobiloba demonstrates professional-grade engineering practices with exceptional attention to security, testing rigor, and infrastructure automation across 225+ commits (view profile).

Testing Excellence

• Table-Driven Tests: 8,156 bytes of parser tests with extensive test cases covering RFC compliance scenarios (view tests)
• Mock-Based Testing: 2,946 bytes implementing fake resolvers for DNS error handling validation (view mocks)
• Integration Tests: 5,498 bytes testing complete CheckHost flow with result code verification (view integration tests)
• HTTP Mocking: httptest server implementation for API client testing (view HTTP tests)
• Fuzz Testing: Comprehensive fuzzing for API client robustness (view fuzz tests)

Security Engineering

• Zero-Trust Authentication: OIDC implementation eliminating AWS access keys with repository-scoped access control (view implementation)
• Defense-in-Depth Networking: VPC with 65,536 IPs, public/private subnet isolation, NAT Gateway for private egress (view architecture)
• Least-Privilege IAM: Security group references instead of CIDR blocks, explicit port restrictions, bastion-only SSH access to private instances (view security)
• State Management Security: S3 bucket with complete public access blocking, versioning, server-side encryption, and DynamoDB locking (view state security)

Professional Development Workflow

• Pull Request Discipline: 36 successfully merged PRs in go-spf alone, demonstrating structured development even in solo projects (view PRs)
• Issue Tracking: Systematic use of issues for planning with 4 tracked issues systematically resolved on July 28, 2025 (view issues)
• Documentation Excellence: Comprehensive READMEs ranging from 1,006 to 2,218 bytes with architecture diagrams, usage examples, and security posture tables (view repositories)
• Consistent Licensing: MIT license across all 5 major projects encouraging community adoption and collaboration (view projects)

Evolution & Growth Journey

Since joining GitHub on October 1, 2022, Tobiloba has demonstrated exceptional growth over 8.5 months of active development, progressing from Go application developer to comprehensive Cloud & DevSecOps engineer (view profile).

Skill Development Metrics

Technology Adoption Timeline:

• Feb-April 2025: Go development, CLI tools, email protocols (IMAP, SPF), API integration, SMTP, DNS
• April-August 2025: Library design, software architecture, RFC compliance, testing patterns, package design, interface patterns
• August-October 2025: Terraform, AWS (EC2, VPC, NAT, ECS, IAM, S3), Kubernetes, GitHub Actions, OIDC, FastAPI, containers

Learning Velocity: 10+ distinct technology domains adopted over 8.5 months = 1.2 domains per month

Impact & Innovation

Tobiloba has built meaningful community presence with 18 followers and contributions spanning infrastructure automation, security tooling, and Go development (view profile).

Created Projects & Tools

• go-spf: Comprehensive SPF record evaluation library with 98 commits, 28 merged PRs, and 5 closed issues implementing RFC 7208 compliance (view library)
• kthw-aws-terraform: Educational Kubernetes infrastructure earning 1 star and 1 watcher, with 52 commits modernizing influential learning resource (view project)
• emailfutbol: Personal automation CLI with 1 star, 1 watcher, and 34 commits demonstrating practical problem-solving (view tool)
• aws-oidc: Security best practices documentation with 8 commits and accompanying LinkedIn article for broader knowledge sharing (view guide)
• fastapi-aws-ecs: Microservice deployment guide for AWS ECS with MIT licensing (view project)

External Project Contributions

• High-Impact Contribution: Merged PR #210 to basecamp/omarchy (16,209 stars, 1,507 forks) fixing wireless networking check, merged within 7 hours
• Community Support: Created issue #669 on emersion/go-imap (2,252 stars) requesting documentation, resolved within 1 day
• UX Enhancement: Reported issue #9 on rusty-typewriter (36 stars) about Twitter preview cards, labeled as bug and enhancement, resolved within 24 hours

Community Recognition

Collaboration & Community

Tobiloba demonstrates exceptional collaborative development through strategic contributions to high-profile projects and disciplined pull request workflows (view profile).

Pull Request Excellence

Notable Contributions:

• Basecamp Omarchy: PR #210 fixing iwd detection merged within 1 hour, demonstrating rapid community acceptance
• Feature Development: PR #36 refactoring DNS to separate package, labeled as enhancement
• IPv6 Implementation: PR #33 adding ip6 evaluation with 32 additions
• RFC Compliance: PR #30 implementing ip4 evaluation with 81 additions and self-review comments
• Security Improvements: PR #13 fixing code scanning alert for workflow permissions

Issue Management

• Strategic Planning: Created issue #15 for RFC compliance integration, resolved same day
• Architecture Proposals: Issue #203 proposing code quality improvements with detailed analysis, received 2 comments and resolved same day
• Comprehensive Design: Issue #11 refactoring CheckHost with introduction, proposal, benefits, and acceptance criteria
• RFC Analysis: Issue #9 detailing domain validation requirements from RFC 7208 Section 4.3 with 8 specific rules

Professional Network

Following Strategic Developers:

• dhh (David Heinemeier Hansson) - Ruby on Rails creator, 37signals (23,327 followers) (view profile)
• dghubble (Dalton Hubble) - OpenAI, Typhoon Kubernetes creator (960 followers) (view profile)
• bmicklea (Brad Micklea) - CEO of Jozu, KitOps maintainer, ex-AWS/Red Hat (view profile)