Work

Email Handler

A small AWS service that receives contact emails, enriches them with context, and forwards them to the right inboxes using SES and Lambda. Zero-maintenance contact management at pennies per month.

The Problem

A public contact address for job searching needs to handle spam, acknowledge first contact, route replies without exposing a private mailbox, and maintain a searchable record of every conversation. Without automation, this is manual triage on every inbound message.

The Approach

AWS SES receives inbound email. A Lambda-based pipeline applies three-stage spam filtering (SES verdict flags, recipient validation, PCRE2 pattern matching), auto-acknowledges first contact from each unique sender, and forwards legitimate mail to a private mailbox with thread-aware reply routing via a subdomain. Conversation metadata — sender, company, title, status — is stored in DynamoDB with 8 GSIs for structured querying.

The Outcome

A public address (stephen.abbot@denverbytes.com) that handles spam automatically, acknowledges every first contact, and maintains a searchable record of every job-search conversation without manual tracking. Replies route back to senders via the thread subdomain, keeping the private mailbox address internal.

Stack

TechnologyPurpose
AWS SESEmail receipt, DKIM signing, delivery
AWS Lambda (Python 3.12)Inbound handler, reply router, attachment extractor
AWS S3Email archive, attachments, extracted text
AWS DynamoDBConversation tracking (8 GSIs)
AWS CloudWatch / SNSStructured logging, error alarms
AWS Route53MX, SPF, DKIM, DMARC, thread subdomain
OpenTofu / TerraformFull infrastructure as code

Repository: service-email-handler

AWS Well-Architected Alignment
  • Operational Excellence: Full IaC; automated spam management; structured conversation records
  • Security: DKIM/SPF/DMARC on all outbound mail; S3 AES256 encryption; least-privilege Lambda roles; private mailbox never exposed to senders
  • Reliability: SES managed availability; DynamoDB PAY_PER_REQUEST scales to any volume; S3 11-nine durability for archive
  • Performance Efficiency: Event-driven Lambda; no polling or idle compute
  • Cost Optimization: Serverless pay-per-use; near-zero cost at job-search email volumes
  • Sustainability: No idle servers; Lambda invokes only on received mail

Related Projects

Technical Debt Tool

Enterprise account analysis platform: programmatic discovery of resources, costs, security findings, and compliance drift across 40+ AWS accounts in an 800+ account organization.

mypylogger

A zero-dependency Python logging library with sensible defaults, clean JSON output, and 96% test coverage for reliable structured logging.

Foundation Terraform Bootstrap

A minimal bootstrap tool that creates the S3 and DynamoDB backends needed for Terraform state, with sensible defaults and guardrails. Teams can adopt Terraform with a secure, versioned backend in hours instead of days.