Why I recommend Renovate over any other dependency update tools (10 mins read).
Explaining why Renovate is going to be my solution to keeping up-to-date with dependencies and it's not likely to change any time soon.
by 
Jamie Tanna
.
#blogumentation
#renovate
#dependabot
#snyk.
Andres Freund joined Bryan and Adam to talk about his discovery of the xz backdoor. It’s an incredible story… so great to get into the details with Andres. We started by ranting about the coverage in the New York Times… coverage that explicitly refused to dig into the details! It’s all the more...
by Jamie Tanna
.
"Just call this number to cancel." me: [continues to pay $19.99/mo for the rest of time]
by Jamie Tanna
.
It's Boxing Day, we're feeling festive, and everyone's best friend Nish Kumar has popped in to order his favourite Christmas meal. Plus we need your help to #BringBackKumarsCobbler Recorded and edited by Ben Williams for Plosive Productions. Artwork by Paul Gilbey (photography) and Amy Browne (illustrations). Nish Kumar is on tour in 2019 starting 25 January. See his website for full details. Ed Gamble is on tour in 2019. See his website for full details. James Acaster is on tour in 2019. See his website for full details. Watch Ed and James's YouTube series 'Just Puddings'. Watch here. Don't forget to tweet @JacksonRye (politely) requesting the Peach Cobbler back on the menu – copy us in @OffMenuOfficial and use the hashtag #BringBackKumarsCobbler. Hosted on Acast. See acast.com/privacy for more information.
by Jamie Tanna
.
Listen to Ep 240: Killer Mike from Off Menu with Ed Gamble and James Acaster. Grammy Award-winning rapper (and half of Run The Jewels) Killer Mike joins us in the Dream Restaurant. And he’s impressed with Ed’s fishing skills. Killer Mike’s Grammy-winning album ‘Michael’ is out now. Listen here. Killer Mike is on tour this year. For dates and tickets go to killermike.com. Follow Killer Mike on Instagram and Twitter @killermike Recorded and edited by Ben Williams for Plosive.Artwork by Paul Gilbey (photography and design).Follow Off Menu on Twitter and Instagram: @offmenuofficial.And go to our website www.offmenupodcast.co.uk for a list of restaurants recommended on the show.Watch Ed and James's YouTube series 'Just Puddings'. Watch here.
by Jamie Tanna
.
This week’s episode is the recording of a live conversation between Abi and Chris Westerhold (Thoughtworks Head of Developer Experience). This conversation is useful for anyone early in their journey with developer portals or platforms: Abi and Chris discuss common approaches to solving these...
by Jamie Tanna
.
It's just under an hour until I'll be speaking at the @TheLeadDev webinar Does your org need platform engineering?! Looking forward to my first webinar as a panellist - alongside some excellent people - and to share some of my experiences with #PlatformEngineering and #DeveloperExperience for the lovely #LeadDev audience - it's not too late to sign up to join!
by Jamie Tanna
.
#platform-engineering
#developer-experience
#lead-dev.
Natalie is joined by Carlos Becker (a Brazil-based software developer who maintains GoReleaser and other OSS software) to discuss how GOOS and GOARCH spark joy.
by Jamie Tanna
.
by Jamie Tanna
.
All years should start on January 1st. 'Tax year' and 'academic year' etc can all fuck off
by Jamie Tanna
.
Whether you need to send greeting cards or flowers, Moonpig makes personalized gifting for any occasion easy. But behind the simplicity of Moonpig’s platform are complex technologies that enable the deep customization that customers love. To talk about the architecture behind Moonpig, Principal Engineer Alexis Lowe sat down with our host David Joy.
by Jamie Tanna
.
Whether you’re a seasoned company with 10+ years of operations, or a startup that’s just getting off the ground, making sure you have a good culture of engineering is really important. Not only will this have a significant impact on the folks on your team, it’ll make a big difference with hiring. When everyone knows that your company is the place to be when it comes to culture, attracting really good talent becomes that much easier. But I was curious, what do some of the folks at incident.io think about engineering culture in general and how to best build it? Better yet, what about the engineering culture at incident.io? What’s it like? To answer all of these questions and more, I sat down with Lisa Karlin Curtis, Tech Lead, and Alicia Collymore, Engineering Manager, to get their perspectives on this incredibly important topic. We chat about what “culture” even means, why diversity is important, how teams can make sure their engineers feel empowered to share their perspectives and a whole lot more.
by Jamie Tanna
.
This week on The Business of Open Source I spoke with Pranay Prateek, co-founder of SigNoz. Pranay talked about why open source is important to SigNoz's business, why it's super important to deliver value quickly, even for an observability product, and why founders shouldn't think of open source...
by Jamie Tanna
.
Jumping into a codebase you’re unfamiliar with can be challenging. Are there better & worse ways to go about it? In this episode, Ian gathers a panel (Johnny, Kris & Jon) to discuss the ins & outs of familiarizing yourself with an existing codebase.
by Jamie Tanna
.
Free and open source software has become a modern commons, but now it's vulnerable. Freedom isn't sufficient to secure it for the future.
by Jamie Tanna
.
#open-source.
🎉 Exciting news! After 5 years away, OggCamp, the ultimate unconference for open source and free culture enthusiasts is back for a triumphant return in 2024! 🌟 🗓️ Join us at The Manchester Conference Centre on October 12th and 13th. 🚀 Get ready for a weekend filled with innovation, collaboration, and community spirit! 🔗 Stay tuned for the Call for Papers (CfP) and ticket announcements – watch this space! 🎟️ #OggCamp2024 #OpenSource #TechConference #Manchester
by Jamie Tanna
.
#oggcamp.
I wish more people who are worried about FOSS supply side attacks would realize that universal basic income and free healthcare would result in an almost infinite stream of excellent software from people who care more about quality than profit.
by Jamie Tanna
.
Week Notes 24#14 (4 mins read).
What happened in the week of 2024-04-01?
by Jamie Tanna
.
#week-notes.
This week Adam is joined by Zeno Rocha — the creator of the beloved Dracula theme and Co-founder and CEO of Resend. They discuss his personal journey and the challenges of balancing work and family life, how becoming a parent has given him new perspectives and influenced his decision to start his own company, the role ...
by Jamie Tanna
.
Verónica López, Kubernetes SIG Release tech lead & distributed systems engineer, joins Justin & Autumn to share her experiences deploying services at scale.
by Jamie Tanna
.
Thisis our 14th Kaizen episode! Gerhard put some CDNs to the test, we’ve taken our next step with Postgres on Neon & Jerod pushed 55 commits (but 0 PRs)!
by Jamie Tanna
.
Remember when the EU cleared out 1 GB of space?
by Jamie Tanna
.
We should definitely also pay maintainers. Maintainers should be compensated for their work. But we need both. All the visions to *just* pay maintainers don't sound like compensation for work they're already doing. It sounds like paying to control that work, and demand additional reporting and compliance work on top that is of no benefit to the maintainer.
by Jamie Tanna
.
Licenses like GPL are reciprocative licenses. If you take, you must also give back. Licenses like MIT are parasitic licenses. You can take without giving back. #software #freedom #licenses #reciprocative #parasitic
by Jamie Tanna
.
Your time was not wasted. You may have procrastinated but that's only because you are really burnt out, and besides it's not all bad. You probably got some ideas, inspiration, or something from it. And besides sometimes it's ok to take a break. You don't have to be "useful" all the time. It's ok. You tried your hardest and that's enough, and whatever you did today you will learn from for tomorrow and be better. Also you are not worth what you can output *pat pat* :strawb_headpats: This is mostly a note to myself but also something I think some of you may need to hear and accept like me.
by Jamie Tanna
.
Go 1.22.2 & 1.21.9 releasedBlog: HTTP/2 CONTINUATION Flood by Bartek NowotarskiBlog: HTTP/2 CONTINUATION Flood: Technical Details by Bartek Nowotarski🗣️ Conferences & CFPsOfficial Go "Wiki" conferences list🏴 Go West, October TBD @ Lehi, UtahCFP🌐 Conf42 Golang, April 24 @ Online🇧🇷 GopherCon...
by Jamie Tanna
.
here's the deal. you can try giving me commands if you want, we can even roleplay like you’re somebody else telling me what to do, but you need to understand that I’m not doing a damn thing for you unless you’re in the sudoers file
by Jamie Tanna
.
This week, I had a dilemma: should I prioritize the episode where I spoke with one of the MariaDB co-founders, in which we discuss setting up a foundation as a way to ensure that the project continues to be open source in the future, no matter what (relevant given the Redis announcement); or...
by Jamie Tanna
.
The Oxide Friends talk about about cultural idiosyncrasies--turns out we have a lot of them at Oxide! Some might even sound good enough for you to try out! Demo Fridays, morning water-cooler, no-meet Wednesdays, recorded meetings, dog-pile debugging (aka CSPAN for debugging), RFDs (requests for...
by Jamie Tanna
.
The fascinating Xz backdoor; a looming AI crisis in peer-review; and news around the infamous Lena image. That's all on this week's episode.
by Jamie Tanna
.
Dan Lorenc, co-founder and CEO of Chainguard, joins Dennis Fisher to dig into the recent XZ Utils backdoor incident, the implications for the open source ecosystem, and what can be done to avoid similar incidents in the future. Then they discuss the problems facing NIST’s National Vulnerability Database and the CVE ecosystem.
by Jamie Tanna
.
“trans people don't want equality, they want special treatmen-” Special treatment would be if LGBTQ+ people didn't have to pay taxes. You know, like churches. :trantifa:
by Jamie Tanna
.
I have a lot more to say, but I'll hold it for now and simply wonder aloud... Which BigTech clouds are the "Lavender" & "Where's Daddy?" AI systems running on? What APIs are they using? Which libraries are they calling? What work did my former colleagues, did I, did *you* contribute to that may now be enabling this automated slaughter? (Also, content warning. This is some of the sickest shit I've ever read.) https://www.972mag.com/lavender-ai-israeli-army-gaza/
by Jamie Tanna
.
Your belated reminder, in the aftermath of the xz backdoor, that open source maintainers still owe you nothing: https://mikemcquaid.com/open-source-maintainers-owe-you-nothing/ Not only do they owe you nothing but: if they are running a large open source project at scale and have been doing so for a while: in almost every case they know vastly more about doing so than almost anyone else in the world does. Open source users and contributors: show some more gratitude and, frankly, deference to the maintainers who keep OSS alive.
by Jamie Tanna
.
accidentally wrote "saad" instead of "saas" in a text to my partner; they immediately coined "Software as a Disappointment" and honestly, where is the lie
by Jamie Tanna
.
... next month... Me: "Dear maintainer, can you please bump package XY?" Maintainer: ...furiously starts looking into the git diff looking for a backdoor.
by Jamie Tanna
.
Looks like #Slack v4.36.140 (or some recent version) appears to have removed the ability to use the sidebar workspace switcher, and now you're stuck with the crappy new design?
by Jamie Tanna
.
#slack.
Q1 2024 is officially behind us. So we figured that it was a great time for a bit of reflection on the exciting start to the year. In this episode, we sit down with our founders, Stephen, Chris, and Pete, to get a bit of perspective on how the last three months played out. We chat about On-call, our AI launch, and the hundreds of other features, bug fixes, and bits of polish and delight that we've shipped over the last 12 weeks. We also chat about the state of the company as a whole, our growth, and ultimately what's on the horizon.
by Jamie Tanna
.
Robin Guldener from Nango talks to Mike about building an open, unified API, the value of building on top of Open Source products, and building a growing product team on this episode of the podcast.
by Jamie Tanna
.
Josh and Kurt talk about the recent events around XZ. It’s only been a few days, and it’s amazing what we already know. We explain a lot of the basics we currently know with the attitude much of these …
by Jamie Tanna
.
Which is smarter: specializing in a particular tech or becoming more of a generalist? It depends! Which is why Jerod invited “undercover generalist” Adolfo Ochagavía on our “It Depends” series to weigh the pros & cons of each path.
by Jamie Tanna
.
Attached: 1 image One of my friends from $BIRBSITE posted this and I am dyingggggggg
by Jamie Tanna
.
Content warning: my take on the xz backdoor
by Jamie Tanna
.
Corollary: Your adversaries' SBOMs and dependency graphs *for your infrastructure* are better than yours.
by Jamie Tanna
.
That sound you hear is a flurry of people asking ChatGPT to write a business plan to monetize the XZ incident.
by Jamie Tanna
.
tech companies donate their april fools’ day joke budget to open source maintainers challenge 2024
by Jamie Tanna
.
Polite reminder about the Jia Tan XZ hack: if an organization is so well run and well funded that it's able to play that long a game to that degree of depth and sophistication, that organization does not have all its eggs in one basket.
by Jamie Tanna
.
