When we received an abnormally high bill from Heroku several months ago, I immediately knew the root cause: Someone had exploited our architecture and hijacked our compute resources. I could guess what had happened in detail because we had known long before that such exploitation was possible.

The easiest way was to connect each repo to two Heroku apps, one for the frontend and one for the backend.

We got a database for free using Heroku’s free tier (https://thenewstack.io/where-can-heroku-free-tier-users-go/) and could pay only for the time users utilized the resources.

A big bill from Heroku, and users receiving an error when trying to create an app.

Related Articles