I love how much context Andor & R1 have added to that era. The Rebellion came so close to toppling so many times, surviving by pure luck & the skin of their teeth, just long enough for the Empire to fuck up in a major way.
One of my favorite developments from the Andor finale is that, by the time the series ends, every major Imperial Security Bureau character we've met and followed is either disgraced or dead.
https://www.youtube.com/watch?v=pp_Cn3nxu3s
And again: all this happens in the span of a single month.
I mean, even with the remainder of the Imperial war machine and the two Sith Lords at the wheel, it's kinda a miracle the Empire manages to hang on for another 4 years until Endor.
William Woodruff discussed his project, Zizmor, a security linter designed to help developers identify and fix vulnerabilities within their GitHub Actions workflows. This tool addresses inherent security risks in GitHub Actions, such as injection vulnerabilities, permission issues, and mutable tags, by providing static analysis and remediation guidance. Fresh off the heels of the tj-actions/changed-files backdoor, this is a great topic with some things everyone can do right away. The show notes and blog post for this episode can be found at
I think I have a lot of privilege to speak up and there are a lot of other people like me who should use their privilege to give voice to the people who canāt speak publicly.
I disagree with this point.
I leveraged my privilege to help other people know they werenāt alone in what they were going through.
I met more people from Amazon after publishing this article than in the 4 years I worked there.
I still get DMs about it
https://justingarrison.com/blog/2023-12-30-amazons-silent-sacking/
[contains quote post or other embedded content]
What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure open source ...
āšHappy Anniversary, Justin! š„³ You āļøstarredāļø the fish-shell/fish-shell repo five years ago today! š File a new Issue or PR today! Use CopilotāØ to get started!ā
Thanks for listening. Check out all the links to all the things at https://cupogo.dev/.GCC 15.1 Released With Support For COBOLos: Root permits access to parent directoryGOOS=noneThe "most ergonomic" config libraryGo Meetup in San Francisco - Sponsored by Elastic & Cup o' GoLinkedIn...
Kaizen 19 has arrived! Gerhard has been laser-focused on making Jerod's pipe dream a reality by putting all of his efforts into Pipely. Has it been a big waste of time or has this epic side quest morphed into a main quest?!
I've seen a lot of complaints about how MCP isn't ready for the enterprise.
I agree, although maybe not for the reasons you think. But don't worry, this isn't just a rant! I believe we can fix it!
The ā¦
Hi!! Whatās up!! Iāve been laid off from GitHub, so if I donāt respond to your emails, itās FINALLY not my fault š sorry in advance.
The past 5 years were an honor and a joy, because wow, OSS maintainers are a kind bunch. Grateful I got to run one last Maintainer Summit before leaving š
Kicking off our 2025 Maintainer Month series, Dirkjan joins Richard to talk Rust maintenance, open source funding, and sustaining projects without burning out.
This week on The Business of Open Source, I spoke with Julian Coccia, CTO of ScanOSS, about selling access to data while making open source software. Of course, we also talked about being an open source company that is also deep in the open source world, helping companies understand their...
Nathan Sobo is back talking about the next big thing for Zedāagentic editing! You now have a full-blown AI-native editor to play with. Collaborate with agents at 120fps in a natively multiplayer IDE.
Iām wearing overalls today, and my husband looked at me and said, āHave fun on your shift at the Mushroom Kingdom.ā š
https://media.tenor.com/vsPZuwYB5JYAAAAC/first-of-all-how-dare-you-rupaul.gif?hh=280&ww=498
Ever wished that Renovate increased that Chart version number in your Helm chart if the appVersion changes? Or maybe you wanted to bump the version number even though a dependency changed, which is not a direct dependency? Well, it can now!
How to use the new templated changelogUrl functionality to provide more actionable changelogs for digest updates to i.e. GitHub Actions and other digest-pinned dependencies (in this example, on GitHub.com).
Varun Mohan, CEO of Windsurf, shares how building an AI-native IDE is reshaping software developmentāfrom optimizing LLM latency to enabling non-engineers to ship code.
Jamie Tanna
.
