|
Learn about a recent Stranger Danger live hack where Simon Maple, Field CTO at Snyk, Eric Smalling, Senior Developer Advocate at Snyk, and Micah Silverman, Director of DevSecOps Acceleration discussed the Log4Shell vulnerability and demonstrated how an exploit could work.
|
|
In the previous posts, I discussed [[p2-quantile-estimator-intro]] (a sequential estimator which takes $O(1)$ memory and estimates a single predefined quantile), the moving P² quantile estimator ([[mp2-quantile-estimator]]) (a moving modification of P² which estimates quantiles within the moving window), and the extended P² quantile estimator (a sequential estimator which takes $O(m)$ memory and estimates $m$ predefined quantiles). Now ..
|
|
In the previous posts, I discussed [[p2-quantile-estimator-intro]] (a sequential estimator which takes $O(1)$ memory and estimates a single predefined quantile), the moving P² quantile estimator ([[mp2-quantile-estimator]]) (a moving modification of P² which estimates quantiles within the moving window), and the extended P² quantile estimator (a sequential estimator which takes $O(m)$ memory and estimates $m$ predefined quantiles). Now ..
|
|
The Apology is Plato's record of the speech given by Socrates in court as he tries to defend himself in 399BCE against the accusations of 'corrupting the young, and by not believing in the gods in whom the city believes'.
|
|
Welcoming Kathleen Murphy and Zach Nelson to the Snyk Board of Directors
-
snyk.io
-
4 years ago
-
eng
We’re excited to announce that both Kathleen Murphy and Zach Nelson have joined the Snyk Board of Directors effective as of January 1, 2022.
|
|
New year resolutions can be a useful & necessary first step
-
www.unsungnovelty.org
-
4 years ago
-
eng
I see a lot of dislike towards new year resolutions. There is a assumption that new year resolutions is bad and ineffective. Atleast some people think new year resolutions as a finalised plan. It is not. It is just a rough script for how you want your new year to go. You need to be working on it everyday. Trim it down or expand as necessary. You don’t have to hit it all. In fact, most people won’t hit it all. And that is fine. It is definit....
|
I've always been curious about the story of Bell Labs – how it was formed, why it was successful, its challenges and struggles, innovation engine, people, its organizational structure, operations, and its legacy. The Idea Factory by Jon Gertner is an excellent albeit slightly inaccurate summary of what,
|
|
Tomorrow we’re releasing a major project on which we’ve been working non-stop for two and a half years. No matter how many years in the trenches, release day always makes me a bit nervous. Experience does help. I know there will be problems, and we will solve them. Some customers will complain, and those will be the most vocal. The vast majority of them will appreciate the effort, enjoy the features, and stay silent. That’s how it works. We..
|
|
Obsidian is first and foremost a Markdown editor with first-class support for internal links between notes. But just because it wasn’t built as a to-do app, doesn’t mean it can’t become one. Community plugins and external tools have made Obsidian work just as well for me as any task management app I’ve used in the past. As an added bonus, because I’m keeping notes about my day and what I’m reading, it’s easy for me to keep tasks in the cont....
|
|
Obsidian is first and foremost a Markdown editor with first-class support for internal links between notes. But just because it wasn’t built as a to-do app, doesn’t mean it can’t become one. Community plugins and external tools have made Obsidian work just as well for me as any task management app I’ve used in the past. As an added bonus, because I’m keeping notes about my day and what I’m reading, it’s easy for me to keep tasks in the cont....
|
|
I spent a few days playing around with bootloaders for the first time. This post builds up to a text editor with a few keyboard shortcuts. I'll be giving a virtual talk based on this work at Hacker Nights on Jan 27 . There are a definitely bugs. But it's hard to find intermediate resources for bootloader programming so maybe parts of this will be useful. If you already know the basics and the intermediates and just want a fantastic int....
|
|
I have recently been thinking a lot about tagged unions in SystemVerilog, since I discovered them a few months ago. In this post I present some of the ideal use cases for tagged unions, and why I think no one actually uses them. Despite being initially proposed in 2003 , and officially part of the language since the SystemVerilog 1800-2005 standard was released, at this point tagged unions appear to be a forgotten language feature. I t..
|
|
I have recently been thinking a lot about tagged unions in SystemVerilog, since I discovered them a few months ago. In this post I present some of the ideal use cases for tagged unions, and why I think no one actually uses them. Despite being initially proposed in 2003 , and officially part of the language since the SystemVerilog 1800-2005 standard was released, at this point tagged unions appear to be a forgotten language feature. I t..
|
|
I have recently been thinking a lot about tagged unions in SystemVerilog, since I discovered them a few months ago. In this post I present some of the ideal use cases for tagged unions, and why I think no one actually uses them. Despite being initially proposed in 2003 , and officially part of the language since the SystemVerilog 1800-2005 standard was released, at this point tagged unions appear to be a forgotten language feature. I t....
|
|
I have recently been thinking a lot about tagged unions in SystemVerilog, since I discovered them a few months ago. In this post I present some of the ideal use cases for tagged unions, and why I think no one actually uses them. Despite being initially proposed in 2003 , and officially part of the language since the SystemVerilog 1800-2005 standard was released, at this point tagged unions appear to be a forgotten language feature. I t..
|
|
Arrived just after 7am to catch the sunrise. We were perhaps the fifth car, and got a space right next to the Gold Creek Snowshoe Trailhead. The road from the I-90 (NF-4832) was in a fairly good condition, with several snow free stretches, but also some stretches of hardened snow and ice. The iciest sections were at the corner by Gold Creek Sno-Park where you first enter the road, and by the Gold Creek Snowshoe Trailhead, but with our AWD i..
|
|
Arrived just after 7am to catch the sunrise. We were perhaps the fifth car, and got a space right next to the Gold Creek Snowshoe Trailhead. The road from the I-90 (NF-4832) was in a fairly good condition, with several snow free stretches, but also some stretches of hardened snow and ice. The iciest sections were at the corner by Gold Creek Sno-Park where you first enter the road, and by the Gold Creek Snowshoe Trailhead, but with our AWD i..
|
|
This is the second part in a 2-part series on the "Fibonacci" interview problem. We are building off of a previous post, so take a look at Part I if you haven't seen it. Previously, we examined the problem and constructed a logarithmic-time solution based on computing the power of a matrix. Now we will derive a constant time solution using some more linear algebra. If you had trouble with the linear algebra in part I, it may help to re..
|
|
Are you looking for a project to practice your Django skills? Designing the fundamental interactions of a social network is an instructive way to explore models and relationships while learning advanced Django skills. This week on the show, we talk with previous guest Martin Breuss about his new four-part series, "Build a Social Network With Django".
|
|
This is the first part of an in-progress series on the Obsidian knowledge base . You can find all the articles with the obsidian tag . I’m not an organized person by nature. I tend to try to just commit important things to memory rather than write them down in any systematized way, which means I end up forgetting things about 20-30% of the time, and just hoping I remembered the most important things in some kind of implicit neural prio....
|
|
This is the first part of an in-progress series on the Obsidian knowledge base . You can find all the articles with the obsidian tag . I’m not an organized person by nature. I tend to try to just commit important things to memory rather than write them down in any systematized way, which means I end up forgetting things about 20-30% of the time, and just hoping I remembered the most important things in some kind of implicit neural prio....
|
|
Satellite and high-resolution aerial imagery of the USA, Europe, and Japan is now available for self-hosting from on-prem environments or offline laptops.
|
|
Inclusive Language Overview The Sustaining Engineering team at Remind recently implemented changes that focus on using inclusive language within our codebases. We encourage other engineering teams to do the same, and hope these updates create a more inclusive space for everyone at Remind. Terms like master and slave have no place in a modern codebase. They don’t belong inside of our repositories, and they certainly do not belong on a repos....
|
|
In this post, we’ll recap Kasper Nissen’s SnykCon 2021 talk about how his security team at Lunar was able to shift security left while building a cloud native bank.
|
This week’s DEF CON movie night will feature the very weird ‘Tank Girl’ from 1995. Join us Saturday, 8pm PST in the movie-night-text channel of the DEF CON discord for a glimpse at what the apocalypse looked like from the more innocent viewpoint of the mid 90s. Bring your own water.
|
|
I had a hunch that old songs were taking over music streaming platforms—but even I was shocked when I saw the most recent numbers. According to MRC Data, old songs now represent 70% of the US music market. Those who make a living from new music—especially that endangered species known as the working musician—have to look at these figures with fear and trembling. But the news gets worse. I can’t say I can relate as my kids of ages 21, 18,..
|
|
The original article used to be at https://simonsarris.com/be-positive/ . I searched through Wayback machine and just reposting here. Be positive. Listen for 90% of a conversation and people will find you interesting. Learn to ask engaging questions and let others do the answering. Don’t just ask people about facts, ask for their opinions too. Don’t be an interrogator. Be curious. Where were you before you were here? Never criti..
|
|
The original article used to be at https://simonsarris.com/be-positive/ . I searched through Wayback machine and just reposting here. Be positive. Listen for 90% of a conversation and people will find you interesting. Learn to ask engaging questions and let others do the answering. Don’t just ask people about facts, ask for their opinions too. Don’t be an interrogator. Be curious. Where were you before you were here? Never criti..
|
|
Reframe Technical Debt as Software Debt. Treat it like a AAA-rated CDO.
-
www.evalapply.org
-
4 years ago
-
eng
I've long struggled with the *Technical* Debt metaphor. It was immediately useful when I first heard it. I still think it is useful, albeit as a starting point. The more I worked with software, the more infuriatingly incomplete it started to feel. So I've reframed it as *Software* Debt, for myself. Here's what I'm thinking.
|
|
How To Not Die By A Thousand Cuts. Or, How To Think About Software Quality.
-
www.evalapply.org
-
4 years ago
-
eng
Not a weighty meandering 300 page Zen dialogue on Motorcycle Maintenance. Merely a meandering blog post in which one contemplates /Quality/ of software products.
|