Post details
If you use Travis or Heroku you might want to consider all your code in GitHub compromised and your packages in NPM compromised. Nasty nasty stuff. github.blog/2022-04-15-sec…Chris Johnson (@c_f_johnson)Sat, 16 Apr 2022 01:45 +0000
If you use Travis or Heroku you might want to consider all your code in GitHub compromised and your packages in NPM compromised. Nasty nasty stuff. github.blog/2022-04-15-sec…Chris Johnson (@c_f_johnson)Sat, 16 Apr 2022 01:45 +0000
Write code so good you don’t need documentation to go along with it. Achieving code quality that is measurable, efficient, and scalable across even the leanest development teams can feel like a stunt. Yet, the costs of growing tech debt make setting a standard a no-brainer. From defining code quality, how to measure it, and the best time to involve quality checks in the development process, join a comprehensive talk on the logic of high code quality. Coming straight from Sonatype in-house industry experts Product Manager Rohan Bhaumik, Developer Advocate Sal Kimmich, and VP of product innovation Stephen Magill.
Write code so good you don’t need documentation to go along with it. Achieving code quality that is measurable, efficient, and scalable across even the leanest development teams can feel like a stunt. Yet, the costs of growing tech debt make setting a standard a no-brainer. From defining code quality, how to measure it, and the best time to involve quality checks in the development process, join a comprehensive talk on the logic of high code quality. Coming straight from Sonatype in-house industry experts Product Manager Rohan Bhaumik, Developer Advocate Sal Kimmich, and VP of product innovation Stephen Magill.
Hot take: Anyone dunking on Atlassian about the fact that an outage like this could happen should not be trusted near production environments because they're either lying or don't have the experience to know what they're talking about.
Mark Imbriaco (@markimbriaco)Fri, 15 Apr 2022 13:00 +0000
We need to talk about Ubuntu. The future, the present, the staff departures, slow snaps, and so much more. Vultr High-performance cloud compute, bare metal, storage, and managed Kubernetes in 24 …
We need to talk about Ubuntu. The future, the present, the staff departures, slow snaps, and so much more. Vultr High-performance cloud compute, bare metal, storage, and managed Kubernetes in 24 …
Ben and Cassidy compare notes on Plex.tv, the rapid collapse of Fast.co, and why rigorous adherence to personal security protocols can make the FBI suspicious.
We often have code that’s similar between projects and we find ourselves copying that code around. In this episode we discuss what to do with this common code, how to organize it, and what code qualifies as this common code.
Wealth of Elon Musk 2012: $2,000,000,000 2022: $273,600,000,000 Wealth of Jeff Bezos 2012: $18,400,000,000 2022: $181,300,000,000 Wealth of Mark Zuckerberg 2012: $17,500,000,000 2022: $76,800,000,000 U.S. Minimum Wage 2012: $7.25 2022: $7.25 Three words: tax the rich.Andrea Junker (@Strandjunker)Thu, 14 Apr 2022 13:45 +0000
One of the most common questions we receive at Go Time is how to handle schema migrations in Go. In this episode Jon is joined by Mike Fridman and Vojtech Vitek, maintainers of the popular schema migration tool pressly/goose, to discuss techniques, tools, and tips for handling schema migrations.
Three industry experts with different ties to the world of software talk about the latest in software, from Log4j to today, and what remediation looks like for development teams. We discuss update behaviors in the development community and the risks associated with using old code. To round out our debut episode - we talk about the silent industrial revolution and who bears the burden of maintaining open source software.
This week we’re joined by Deepthi Sigireddi, Vitess Maintainer and engineer at PlanetScale — of course we’re talking about all things Vitess. We talk about its origin inside YouTube, how Vitess handles sharding, Deepthi’s journey to Vitess maintainer, when you should begin using it, and how it fits into cloud native in...
TRIGGER WARNING, this episode contains sensitive stories of abuse. This week Chloe helps Cherry with her cum fear that’s affecting her romantic relationships using an NLP technique, as well as discuss why consent is sexy and how it helps create an environment of trust, which makes sex great!WOW, what an Episode we have this week! Consent being the main topic and our personal stories around this: Dana’s regrettable sex Chloe helps Dana with her cum fear that’s affecting her romantic relationships using NLP Burping as a form as energetic cleansing Facials COFConsent is sexy Check in to create an environment of trust to be vulnerableThreesomes When to ask consent “He f**ked a fart out of me” Bedroom communication Foot worship Chloe’s webbed toes Client stories Foot face fucking d*ck pic logistics Chloe on the ongbays
Converting a Byte Array to String from a Node.JS Buffer
, in Go (1 mins read).
How to convert an array of bytes to a string using Go.
Prefactoring: Preparatory Refactoring (2 mins read).
Why I use prefactoring as a means to perform up-front refactoring for codebases, splitting these into separate PRs/MRs where possible.
Star Trek Minus Context (@NoContextTrek)Tue, 12 Apr 2022 17:59 +0000
This week we’re joined by Annie Sexton, UX Engineer at Render, to talk about her blog post titled Git Organized: A Better Git Flow that made the internet explode when she suggested using reset instead of rebase for a better git flow. On this show we talk about the git flow she suggests and why, how this flow works for ...
Just wanna say that grown adults who are obsessed with whether or not a kids genitals match the gender assigned to the child is a really big gross red flag. Protect trans kids. Keep these creeps away from them, and away from legislationKatelyn Bowden (@medus4_cdc)Sun, 10 Apr 2022 22:23 +0000
The home team discusses pay equity at New Relic, Okta’s security SNAFU, and the AI creating “wildly good” generative art.
Today's story is an insider view of Debian. One of the oldest Linux distributions and probably one of the longest-running volunteer-based open-source projects. Joey Hess is my guest, and he dedicated significant parts of his adult life to working on Debian. He's going to share what that was like. The good and the bad, and it's almost all good. It's... […]
Lightspin obtains credentials to an internal AWS service by exploiting a local file read vulnerability on the RDS EC2 instance using the log_fdw extension.
Carlos Alexandro Becker joins Mat, Natalie, & Johnny to discuss the ins and outs of releasing your Go code. Carlos created and maintains GoReleaser, a popular tool that helps you deliver your Go binaries as fast and easily as possible.
Here’s a little bonus episode before we get back to your regularly scheduled Go Time. We’re calling it the funny bits. It’s a compilation of times we cracked up making the show for y’all. If you dig it, holler at Jerod. If you don’t, email Mat Ryer.
This week we have the pleasure of Rich Burroughs, Senior Developer Advocate at Loft Labs and host of the Kube Cuddle podcast. We talk about multitenancy in Kubernetes and how to run Kubernetes in Kubernetes with vcluster. If you are using KiND, you will find this episode interesting, and maybe even helpful. We also tal...
Protecting an Architect Framework Application with OAuth2 or OpenID Connect Authentication (4 mins read).
How to set up OAuth2/OpenID Connect authentication with an Architect Framework application.
I will be attending
Week Notes 22#14 (5 mins read).
What happened in the week of 2022-04-04?
If you utilize Java or any other JVM, there’s a good chance you know the Maven Central repository. Today’s episode brings long-time maintainers and contributors of Maven Central, Brian Fox, Jason Swank, and Joel Orlina to the mic to rehash the early days of Maven Central, lessons learned from managing open source ecosystems, and bring insight into the platform’s practical software supply chain management capabilities of the past, present, and future.
In case you're wondering how things are going, I just sat down to eat my breakfast like this
Did Spring4Shell set the internet on fire again? Not so fast. In a special episode of Wicked Good Development we dissect the zero-day RCE vulnerability in the Spring Framework dubbed Spring4Shell or Springshell. From comparisons to Log4j to how to remediate it and what versions on vulnerable, the experts on today's show break down what we know so far about this new vulnerability. And most importantly, how to determine if you're affected.
The home team chats with Jon Chan, Stack Overflow’s Director of Engineering, Public Platform, about his path from self-taught developer to director of engineering, why his management mantra is “Delegate and elevate,” the profound value of a diverse and inclusive workplace, and the Neopets-to-frontend-development pipeline. Plus, Jon gives excellent advice to all the self-taught developers out there.
“I’ll block, you run.” In this encouraging talk from four women in tech at Sonatype, hear how their career paths have shaped how they support mitigating and interrupting bias at work and ways to create environments that empower women to be their authentic selves every day. Join Senior Security Researcher Ankita Lamba, Product Manager Grace Lee, Customer Success Engineer Santi Mulukutla, and Director of Agile Coaching Sue Jasmin as they create space to discuss: -The importance of active sponsorship and mentorship -How to eliminate bias in the hiring process -Cultural limitations that affect bias in company cultures -Why cancel culture doesn’t work when it comes to inclusion -And so much more As we promised, here’s the article that inspired today’s discussion: https://hbr.org/2019/11/how-the-best-bosses-interrupt-bias-on-their-teams
Terminals are a gateway to building and running software, but they have not been reimagined since their initial creation. Warp is a new kind of terminal with visual aids, autocomplete, documentation, customization, and other features. It includes GPU acceleration, its own UI framework, and other engineering systems to increase speed and performance. Zach Lloyd joins
LOL! They banned Will Smith for 10 years! Even after he resigned from the Academy! That's 2 years for each finger!🤚🏿 Meanwhile, Roman Polanski is still being nominated for new Oscars. 🤡 The national pastime of the US is punishing Black men disproportionately.Mekka 💉💉💉🎉 *My Mask Protects You* Okereke (@mekkaokereke)Sat, 09 Apr 2022 00:52 +0000
Has Go caught your interest, but you just haven’t had the time/opportunity to really dig into it? Are you relatively productive in your current language/ecosystem but wonder if the grass truly is greener on Go’s side of the fence? If so, this episode’s for you!
Listen to How to Dungeons and Dragons with Owen Donovan from Nobody Panic. Ever thought Dungeons and Dragons might be for you but can’t grasp the concept? No interest whatsoever but keen to hear Stevie and Tessa get completely over-excited at the idea of being a wizard? Top drawer Dungeon Master Owen Donovan presents a beginners guide, and THEN we play a game over on the Patreon. And honestly it’s worth signing up just for that.You can find Owen's character sheet recommendations here and visit the official D&D website starter set here.And you can check out Stevie's Druid character sheet here.Subscribe to the Nobody Panic Patreon at patreon.com/nobodypanicWant to support Nobody Panic? You can make a one-off donation at https://supporter.acast.com/nobodypanicRecorded and edited by Naomi Parnell for Plosive.Photos by Marco Vittur, jingle by David Dobson.Follow Nobody Panic on Twitter @NobodyPanicPod
In Episode 3 we talked all about how Cherry would be joining Chloe with one of her clients in her Dominatrix sessions over the weekend and what Cherry had to look forward to (let's just say Cherry popped a lot of her own Cherry's that weekend). In this episode we talk about her experience, procedures during the experience, safety and aftercare. Some topics we cover in the episode are: How to get started in butt playCherrys first voyeur experienceConsent - Cherry being slapped in the face during sexSafety procedures during a client sessionSafe wordsAftercareDating apps and much much more!
I will not be attending
.Getting node-canvas to run on AWS Lambda (3 mins read).
Some common issues that occur when using node-canvas on AWS Lambda, and how to solve them.
Our final installment from GopherCon 2021 is an awesome panel conversation led by Natalie & Angelica with guests Linus Lee, Daniela Patruzalek, and Sebastian Spank. All three of these gophers are using Go in cool and interesting ways outside of traditional work projects.