|
VPNs are not zero trust. Stop calling them that. I can’t count how many times I’ve sat in architecture reviews where someone points at a Site-to-Site VPN or a Client VPN endpoint and says “we’re zero trust.” No. You’ve built a tunnel. A tunnel that, once you’re inside, gives you access to everything on the network. That’s the opposite of zero trust. That’s a castle with a drawbridge and nothing inside but open hallways.
|
|
At times, even purchased music excludes album covers in track metadata. For those instances, ready-player-mode offers M-x ready-player-download-album-artwork, which does as it says on the tin. The interactive command offers a couple of fetching providers (iTunes vs Internet Archive / MusicBrainz) to grab the album cover. The thing is, I often found myself trying one or the other provider, sometimes without luck. Today, I finally decided t....
|
|
How a Learning Project Became Our Modern Mobile Test Framework
-
tech.trivago.com
-
3 months ago
-
eng
|
|
How a Learning Project Became Our Modern Mobile Test Framework
-
tech.trivago.com
-
3 months ago
-
eng
|
If you’re reading this after Matrix’s blog post, make sure you read the addendum to this one. Two years ago, I glanced at Matrix’s Olm library and immediately found several side-channel vulnerabilities. After dragging their feet for 90 days, they ended up not bothering to fix any of it. The Matrix.org security team also failed […]
|
|
Large language models are good at writing code. Data from Anthropic shows that allowing Claude to execute scripts, rather than relying on sequential tool calls, reduces token consumption by an average of 37%, with some use cases seeing reductions as high as 98%. Untrusted code needs a secure and isolated place to execute. We solved […] The post Code Execution Sandbox for Agents on Heroku appeared first on Heroku .
|
|
Sorry if this belongs on /hum/; please move it if so. I came up with this the other day: If you are okay with almost anyone viewing whatever stuff you have, imagine the most hysterical mom looking through all your files. Imagine someone who emotionally, chemically CANNOT take a joke and refuses to acknowledge them if they don't suit her tastes. What about an overly-conservative dad? What about anyone who isn't literally you or the people y....
|
|
E così quei geni di WPP, non contenti di aver cambiato la firma di David Ogilvy con un logo rosso qualunque, hanno deciso di far fuori, dopo Grey qualche anno fa, anche Ogilvy, e di riunire il tutto sotto una… Continue reading →
|
|
We asked 2 questions: >1. How do we stop spam without JavaScript and adding friction to the anonymous posting process >2. How do we stop CP spam without relying on an external dependency (like a big corporation's API)? I am the operator of Cy-X.net and I believe I have conquered the top problems that plague anonymous discussion boards in current year. I solved the (Child) porn problem by deploying a lightweight vision model that....
|
|
On the surface, everyone knows the difference between hashing, encoding, and encrypting. We all know the tradeoffs between them and… The post Hashing vs Encoding vs Encrypting vs Signing appeared first on Caseysoftware .
|
|
The Almanack of Naval Ravikant is structured with the thoughts of a “successful” investor and entreprenur. I write successful in…
|
Somewhere in your company's Google Drive, there's a design doc from six months ago. It describes a system that doesn't exist. It was outdated by the second sprint and abandoned by the third. Fourteen...
|
|
Somewhere in your company's Google Drive, there's a design doc from six months ago. It describes a system that doesn't exist. It was outdated by the second sprint and abandoned by the third. Fourteen...
|
|
Comment on Implementing “Tennis for Two” using op amps by Anonymous
-
blog.qiqitori.com
-
3 months ago
-
eng
This is a fascinating project. I really want to build it myself, but your circuit in Fritzing is really confusing and has a lot of errors. That is why I would need days or weeks to build it, so can you please send me a circuit diagram or a working circuit in Fritzing. I want to add a net, a score counter and audio feedback. I have already made a visual net in Falstad (Note: It might look a little bit off, but it is mostly the fault of the t....
|
|
This blog has seen a recent up-tick in views and that would normally be a good thing. However this up-tick has been a bit unusual.
|
|
This blog has seen a recent up-tick in views and that would normally be a good thing. However this up-tick has been a bit unusual.
|
|
Weaving Security into the Flow: New Snyk Studio Capabilities Power the AI Security Fabric
-
snyk.io
-
3 months ago
-
eng
Snyk Studio is redefining AI development security with new integrations for Gemini CLI and Claude Code, enabling developers to build fast without sacrificing safety. Bridge the gap between developer velocity and governance to ensure your code is secure at inception.
|
|
Securing the Agent Skill Ecosystem: How Snyk and Vercel Are Locking Down the New Software Supply Chain
-
snyk.io
-
3 months ago
-
eng
Snyk has partnered with Vercel to secure the skills.sh ecosystem, integrating real-time security scanning to detect malicious payloads and prompt injections before they reach your machine. Discover how this partnership is locking down the future of agentic AI.
|
|
OpenTofu modules for Oracle Cloud's Always Free tier. One `apply` gives you a 4-core ARM box with 24 GB RAM, 200 GB storage, and optional MySQL, S3, monitoring, and budget alerts.
|
|
OpenTofu modules for Oracle Cloud's Always Free tier. One `apply` gives you a 4-core ARM box with 24 GB RAM, 200 GB storage, and optional MySQL, S3, monitoring, and budget alerts.
|
|
I recently built a little package to flash Emacs windows as you switch through them, so I might as well showcase it in a new Bending Emacs episode, so here it goes: Bending Emacs Episode 11: winpulse In addition to showcasing winpulse , we showed some of the built-in window-managing commands like: C-x 3 split-window-right C-x 2 split-window-below C-x 0 delete-window C-x ^ enlarge-window C-x } enlarge-window-horiz....
|
|
Using Command Groups to Sort Multiple Commands in a Shell Script
-
nickjanetakis.com
-
3 months ago
-
eng
You may want to combine the output of multiple commands and then sort all of them together. You can use command groups.
|
|
I Built Local Memory for Coding Agents Because They Keep Forgetting Everything
-
muhammadraza.me
-
3 months ago
-
eng
Here’s something that frustrates me about coding agents. They forget everything. Every single session starts from scratch. The agent that spent 45 minutes yesterday figuring out your authentication flow? Gone. The decision to use JWT over sessions? Gone. The bug it found in your ORM’s lazy loading? Gone. You start a new session and it re-discovers the same patterns. Repeats the same mistakes. Asks the same questions. It’s like working wit....
|
|
How GoReleaser strengthened security through GitHub's Secure Open Source Fund
-
carlosbecker.com
-
3 months ago
-
eng
GoReleaser builds and ships release artifacts for thousands of projects, making it a high-value supply-chain target. That’s why we were thrilled to be selected for the third session of the GitHub Secure Open Source Fund .
|
|
This is the story of how a RocksDB unit test I added four years ago, a mini-stress test you might call it, revealed a novel hardware bug in a newer CPU . It was scary enough to be assigned a “high severity” CVE. Background: Unique Identifiers About four years ago, we added unique identifiers to SST files to give them stable identifiers across different filesystems for caching purposes. Part of the motivation here was to eliminate our d....
|
|
I Built Local Memory for Coding Agents Because They Keep Forgetting Everything
-
muhammadraza.me
-
3 months ago
-
eng
Here’s something that frustrates me about coding agents. They forget everything. Every single session starts from scratch. The agent that spent 45 minutes yesterday figuring out your authentication flow? Gone. The decision to use JWT over sessions? Gone. The bug it found in your ORM’s lazy loading? Gone. You start a new session and it re-discovers the same patterns. Repeats the same mistakes. Asks the same questions. It’s like working wit....
|