|
Uncharted territory - discovering vulnerabilities in public Helm Charts
-
snyk.io
-
6 years ago
-
eng
Similar to our report on Docker image security, we wanted to take a look at the state of vulnerabilities in the public Helm Charts repository.
|
|
Goroutines are a unusual and powerful programming language feature, so they are a tempting toy to play with, and they get a bit overused. There is some indication that the following Go principle holds true: Strive to provide synchronous APIs, let the caller start goroutines. To put this advice into a more concrete code example: Do this: func (t *type) Run(ctx context.Context) { // Implementation of background task } Instea....
|
|
Goroutines are a unusual and powerful programming language feature, so they are a tempting toy to play with, and they get a bit overused. There is some indication that the following Go principle holds true: Strive to provide synchronous APIs, let the caller start goroutines. To put this advice into a more concrete code example: Do this: func (t *type) Run(ctx context.Context) { // Implementation of background task } Instea....
|
|
Goroutines are a unusual and powerful programming language feature, so they are a tempting toy to play with, and they get a bit overused. There is some indication that the following Go principle holds true: Strive to provide synchronous APIs, let the caller start goroutines. To put this advice into a more concrete code example: Do this: func (t *type) Run(ctx context.Context) { // Implementation of background task } Instea....
|
|
At home, I can send a link from any device to a local web server that saves it for later. Then, when I have time to read, I can see all my saved articles, move them into folders, and refer back to them as needed. At work, though, those links go into a text file. When I get home, I find the text file, open it, copy the list, clear the file, close it, and then send the list to the server. pbcopy makes that process just a little easier. Now, c..
|
|
A close friend recently said to me: I'm Copying You Since You're So Effective with respect to how much I tend to get done and I thought I'd elaborate on this a bit since I suspect that why I'm effective isn't always apparent. These aren't really in any order other than the order that I chose to finish them. I suspect they are all pretty important. Ten Reasons Why I Think I'm Effective Get Rid Of Anything That Pisses You Off . ....
|
|
Like so many other things this falls into the category of "I'll do it 100 more times before I die and I can never remember it so may as well blog it". A migration adds a column to a table in a database managed by Rails. In this case I had a table which needed to manage multiple types of data all front ended by an amount method that dynamically figures out why field to fetch back the data from. This gave me a column structure like this: ....
|
|
Adding an Includes Clause to ActiveRecord and Watching the Joy Flow
-
fuzzyblog.io
-
6 years ago
-
eng
I've written in the past about watching your SQL queries stream by in the Rails console and how seeing, well, stupidity / things that look wrong can help guide you to things you need to find. Here's an example I witnessed recently: habit = Habit.find(2) habit.total_this_month Metric Load (2.5ms) SELECT metrics.date_created_at, metrics.int_val, metrics.float_val, metrics.metric_type_id FROM metrics WHERE metrics.habit_id = 2 AND (date_cr....
|
|
Turning a faded 50+ year old manuscript into a shiny new printed book
-
michael-lewis.com
-
6 years ago
-
eng
Introduction Link to heading I found a manuscript earlier this year (2019), written by my dad about his time in Antarctica between 1958 and 1965. Although he passed away in 1996, I thought it would be nice to publish it, primarily for the benefit of surviving family members. It had been typewritten rather than written longhand, so I didn’t think it would be too difficult.
|
|
Turning a faded 50+ year old manuscript into a shiny new printed book
-
michael-lewis.com
-
6 years ago
-
eng
Introduction Link to heading I found a manuscript earlier this year (2019), written by my dad about his time in Antarctica between 1958 and 1965. Although he passed away in 1996, I thought it would be nice to publish it, primarily for the benefit of surviving family members. It had been typewritten rather than written longhand, so I didn’t think it would be too difficult.
|
|
So I recently moved to running my Ruby code thru RuboCop prior to each submission courtesy of the magic that is Lefthook . I don't always fix everything that RuboCop detects but I tend to read thru the reports. I'm using the "Boy Scout" approach to campsites, i.e. leave your campsite (code base) better than you found it, to at least make some of the changes each time. Note: To avoid the massive amount of errors that Rubocop detects v....
|
|
Getting Local Development Data for Rails from Your Production Site using Heroku
-
fuzzyblog.io
-
6 years ago
-
eng
One of the worst aspects of doing Rails development, although this is not limited to Rails in any way, is getting data to use for development work once your site starts getting users. Yes I know that you should always have full test coverage and that local data shouldn't be necessary – but it absolutely is . There is always a class of errors that you simply can't diagnose with a set of data with which to work. The happy truth though is....
|
|
Flutter and Fuchsia. In 2019 you will see these two words everywhere, and now is your chance to get ahead of the curve.” - Todd Fabacher, writing for Forbes Forbes saw it coming back in July of 2018. If you didn’t, then here’s your chance to find out why they did. From lower lead times to increased productivity, the number of platforms you’ll be able to reach to the simplicity of maintenance, Flutter is now leading the way in just about ..
|
|
I was trying to convert bank-issued CSV files that have a weird data layout, for automatic processing by the excellent ledger . This made me learn a new thing about awk. Follow me down the UNIXy goodness! The data I was getting looks like this: Transaction Date,Transaction Description,Debit Amount,Credit Amount,Balance 29/02/2018,Restaurant,14.5,,1234.2 12/03/2018,ATM withdrawal,50,,1184.2 23/04/2018,Deposited check,,100,..
|
|
I was trying to convert bank-issued CSV files that have a weird data layout, for automatic processing by the excellent ledger . This made me learn a new thing about awk. Follow me down the UNIXy goodness! The data I was getting looks like this: Transaction Date,Transaction Description,Debit Amount,Credit Amount,Balance 29/02/2018,Restaurant,14.5,,1234.2 12/03/2018,ATM withdrawal,50,,1184.2 23/04/2018,Deposited check,,100,..
|
|
License: Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 _International Public License (CC BY-NC-ND _4.0) Hosting a website is not expensive or complicated as it was once before. It is easier than ever to build a website. You have platforms and technologies like GitHub Pages , GitLab Pages , Netlify , Let’s encrypt and many more to make it really easy and cheap. All you have to do is to take action and buy a domain f....
|
|
Introduction tl;dr I was asked to audit 200k lines of code in a month. I turned them down because I would want to be more thorough than they expected. I was recently approached by a founder (who I will call TF for “The Founder”) of a startup (which I will call TS for “The Startup”) to audit their software in my spare time (for pay, of course). I was contacted on November 14 and told that the deadline was December 10.
|
|
Introduction tl;dr I was asked to audit 200k lines of code in a month. I turned them down because I would want to be more thorough than they expected. I was recently approached by a founder (who I will call TF for “The Founder”) of a startup (which I will call TS for “The Startup”) to audit their software in my spare time (for pay, of course). I was contacted on November 14 and told that the deadline was December 10.
|
|
Introduction tl;dr I was asked to audit 200k lines of code in a month. I turned them down because I would want to be more thorough than they expected. I was recently approached by a founder (who I will call TF for “The Founder”) of a startup (which I will call TS for “The Startup”) to audit their software in my spare time (for pay, of course). I was contacted on November 14 and told that the deadline was December 10.
|
|
Introduction tl;dr I was asked to audit 200k lines of code in a month. I turned them down because I would want to be more thorough than they expected. I was recently approached by a founder (who I will call TF for “The Founder”) of a startup (which I will call TS for “The Startup”) to audit their software in my spare time (for pay, of course). I was contacted on November 14 and told that the deadline was December 10.
|
|
Introduction tl;dr I was asked to audit 200k lines of code in a month. I turned them down because I would want to be more thorough than they expected. I was recently approached by a founder (who I will call TF for “The Founder”) of a startup (which I will call TS for “The Startup”) to audit their software in my spare time (for pay, of course). I was contacted on November 14 and told that the deadline was December 10.
|
|
Me, personally, I became a professional writer so I could be a professional reader.” I love that line. The rest of Austin Kleon’s post is good, but that line is great. Permalink.
|
|
One of the tricky bits about Ansible is that new features in the "language" always require the latest version of Ansible itself. And, while logical, this can easily bite you. Here's an example: TASK [deploy_hate-language-modeling_systemd_start : just force systemd to re-execute itself (2.8 and above)] *** fatal : [ aws_master2 ]: FAILED! => {"changed" : false , "msg" : " Unsupported parameters for (....
|
|
A colleague just IM'd me and asked if I have a Hello World for redis and my thought was "No but I can damn well blog one together quick as all get out" so … Note : If the word Redis means nothing to you then may I direct you to the quick start ? The thing to understand about Redis is that you can use it in two ways: As a simple key value store, a nosql database if you like. As a data structure server. I don't do this much but I am ....
|
|
James Kaplan is a partner at McKinsey & Company and co-leader of its cybersecurity practice. He’s been with the company for 20 years and is one of the lead partners in what they call “McKinsey Technology.” His specific expertise as a leader in the company’s IT infrastructure and cybersecurity service lines informed the topics discussed during a recent episode with the Secure Developer podcast.
|
|
Kind is a Docker-based tool for running local Kubernetes clusters that conform to the Kubernetes API. It fit Snyk's needs perfectly, as it combines the advantages of having a clean environment for every test, with the advantage of a very fast setup.
|
|
A Warning About Git LFS and Large Machine Learning Models and Automated Deployments
-
fuzzyblog.io
-
6 years ago
-
eng
Github has a maximum size of 50 mb per file under management. And that normally works just fine – until the age of machine learning. Machine learning models are big , staggeringly big . I'm currently working on a project where the underlying model is like 830 + mb. Now when you have large files, git has a facility called "Git LFS" (large file support) and they purport that it is the solution but, well, it really, really isn't. Her....
|
|
An interview on what makes Postgres unique (extensions)
-
www.craigkerstiens.com
-
6 years ago
-
eng
I’ve been at dinners before with developers that admitted developers, themselves included, can be a bit opinionated. In one case one said for example, “I love Postgres, but I have no idea why.” They were sitting at the wrong table to use Postgres as an example… But it is quite often that I am asked Why Postgres . In fact a little over a year ago good friend Dimitri Fontaine asked if he could interview me for a book he’s working on for P....
|
|
An interview on what makes Postgres unique (extensions)
-
www.craigkerstiens.com
-
6 years ago
-
eng
I’ve been at dinners before with developers that admitted developers, themselves included, can be a bit opinionated. In one case one said for example, “I love Postgres, but I have no idea why.” They were sitting at the wrong table to use Postgres as an example… But it is quite often that I am asked Why Postgres . In fact a little over a year ago good friend Dimitri Fontaine asked if he could interview me for a book he’s working on for P....
|