Post details
I can't find the right words for how disgusting this is [contains quote post or other embedded content]
Post details
🛡️ Security pre-release announcements, update on Monday, Feb 24golang.org/x/oauth2golang.org/x/cryptoBlog: State of the startup and scaleup hiring markets by Gergely Orosz – as seen by recruiters (Partial paywall)Blog: Testing concurrent code with testing/synctest by Damien NeilProposals🤝 Likely...

I will be attending
Week Notes 25#07 (3 mins read).
What happened in the week of 2025-02-17?
Post details
In this episode, Open Source Security chats with Aaron Frost, CEO of Hero Devs about the world of maintaining end-of-life open source software. Aaron explains how EOL versions of open source work and how backporting security fixes can help maintaining compliance. In the discussion we cover the "just upgrade" mentality, how backporting works, why it's hard, and why it matters. We also cover some oddities the world of CVE brings to the discussion. The blog post for this episode can be found at
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.

Product requirements for a "fund your dependency tree" service (12 mins read).
Thinking about what functionality I would want as a funder, or a fundee, for a "fund your dependency tree" service.
Post details
They should invent a job that doesn’t burn you out
Post details
TV Reviews Podcast · 11 Seasons · Weekly Series

Post details
A recent Ars Technica article outlined a backdoor in the Go Module Mirror. Even though it's framed as a backdoor, and potentially a vulnerability, it's actually an exploit of a design choice designers of the module mirror made. Kris is joined by Matthew, Dylan, and guest host Jamie Tanna, to...

I'm on Fallthrough: Patching Problems with Persnickety Proxies Purveyed by Paternalistic Princes (2 mins read).

Announcing my appearance as a guest host on Fallthrough, discussing the Go module proxy, pondering 'is Go dead?' and whether the Go team at Google have our best interests at heart.
Post details
I hope the nuance that we all intended came across in this episode. It’s really tough to be critical of the things you love, but if you don’t speak up at some point, I think things just wind up getting worse and worse. [contains quote post or other embedded content]
Post details
Jerod & Adam discuss Nvidia's recently announced personal AI supercomputer, Waymo's latest infinite loop, what's involved in getting a "modern" terminal setup, and whether or not AI has gone mainstream... warts & all!
Week Notes 25#06 (2 mins read).
What happened in the week of 2025-02-10?
Post details
Overworked, under pressure, and subjected to abuse – is it really worth it?

Post details
This was fun to fill out. changelog.fm/feud https://changelog.fm/feud
Post details
Arun Gupta is back, this time with his latest book in hand titled "Fostering Open Source Culture" to share his wisdom and experiences of fostering open source culture. BTW you can use the code `OSCULTURE20` to get 20% off (both print and e-book). Use this link and enjoy.
Post details
This episode was LIVE! Even if you usually listen to this show, if you want you can check out the video on YouTube :)Visit https://cupogo.dev/ for store links, past episodes including transcripts, and more!GopherCon IsraelAccepted proposal: Clone a HashWe Replaced Our React Frontend with Go and...

I'm interested in attending
Having been at the ahem epicentre of this incident, this will be a very interesting talk for those of you in Athens!
Also looking forward to internal conversations around being able to get a blog post on Elastic's blog about this 👀
Post details
This week on The Business of Open Source, I spoke with Ivan Burazin, the CEO and co-founder of Daytona. First of all, Daytona was one of the sponsors of the first edition of Open Source Founders Summit, and I had a chance to meet Ivan in person at the event. So a big thank you to him for taking a...
