# ✅ Lecture 4: Best Practices for Secure and Scalable Deployments

In this lecture, we cover the security and scalability essentials to run AI agents reliably in production across AWS, Azure, or GCP.

## 🔐 Step 1: Secure Environment Variables

In [None]:
# In real deployments, use secret managers like:
# - AWS Secrets Manager
# - Azure Key Vault
# - GCP Secret Manager

# Example (local .env loading still valid for dev)
from dotenv import load_dotenv
import os

load_dotenv()
openai_key = os.getenv("OPENAI_API_KEY")


## 🔁 Step 2: Use API Gateways to Trigger Agents Securely

In [None]:
# For cloud access:
# - AWS API Gateway for Lambda
# - Azure API Management for Functions
# - GCP API Gateway for Cloud Functions

# These ensure HTTPS access + authentication policies.
# Actual setup will depend on the cloud provider.

## 📊 Step 3: Add Logging, Monitoring, and Timeouts

In [None]:
# Example logging setup (simple local)
import logging

logging.basicConfig(level=logging.INFO)
logger = logging.getLogger(__name__)
logger.info("Agent started")

# In production, use:
# - AWS CloudWatch Logs
# - Azure Monitor
# - Google Cloud Logging


## 📦 Step 4: Optional - Containerize Your Agent

In [None]:
# Use Docker if you want to:
# - Deploy across multiple platforms
# - Use Kubernetes
# - Run locally and in CI/CD pipelines

# Example Dockerfile:
dockerfile = """FROM python:3.11-slim
WORKDIR /app
COPY . /app
RUN pip install -r requirements.txt
CMD ["python3", "langgraph_agent/main.py"]
"""
print(dockerfile)
