Listened to
“In the short term, more chaos”: What’s next for API design - Stack Overflow
Post details
by 
Jamie Tanna
.
What's the difference between Renovate's depName and packageName? (3 mins read).
What the differences are, and where you may want to use one or the other.
Reposted
James (@43081j.com)
Post details
i had some really stressful interactions on github yesterday and today. lets just remember many of us are doing this OSS work for free and to do good, kindness is appreciated
by Jamie Tanna
.
#open-source.
Was very honoured to be featured as part of #MaintainerMonth for the Open Source Initiative's view into Open Source maintainers and their experiences, and being able to share my own experiences on opensource.org :purple_heart:
by Jamie Tanna
.
#maintainer-month.
My experience as a maintainer (8 mins read).
A guest post for opensource.org, about my experience as a maintainer, as part of 2025's Maintainer Month.
Listened to
Scaling DevTools
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.
by Jamie Tanna
.
Creating nested fenced code blocks with Hugo (1 mins read).
How to write a Markdown file with a fenced code block, which includes another code block inside it.
by Jamie Tanna
.
#blogumentation
#hugo.
Taking more control over your Cobra CLI documentation (2 mins read).
Releasing a library to manage the generation of Cobra CLI documentation using text/templates.
by Jamie Tanna
.
#blogumentation
#go.
Setting up SSH key signing with Git (1 mins read).
How to sign your Git commits, using SSH keys.
by Jamie Tanna
.
#blogumentation
#git.
Listened to
Open Source Security: Repository signing with Kairo De Araujo
Post details
I recently had a chat with Kairo about a project he maintains called Repository Service for TUF (RSTUF). We explain why TUF is tough (har har har), what RSTUF can do, and some of the challenges around securing repositories. The show notes and blog post for this episode can be found at
by Jamie Tanna
.
Listened to
Scaling DevTools
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.
by Jamie Tanna
.
Week Notes 25#20 (3 mins read).
What happened in the week of 2025-05-12?
by Jamie Tanna
.
#week-notes.
Listened to
Fork Around And Find Out | Motivated to Learn with Adriana Villela
Post details
After 25 years in tech it’s hard not to coast. Adriana has come from writing word docs for the ops team to deploy software, through Devops, and now has a focus on OTel and Kubernetes. How do we get more people from 100 to 400 levels and why is there no content in between? And why we need junior...
by Jamie Tanna
.
Improving the experience of browsing Renovate debug logs (4 mins read).
Creating a Terminal User Interface (TUI) application to improve the debugging experience with Renovate's debug logs.
Listened to
Marianne Bellotti & Greg Wilson on 10 quick tips for making your software outlive your job
by
Post details
Marianne, author of Kill It with Fire, and Greg join host Richard to dive into their new paper, “10 Quick Tips for Making Your Software Outlive Your Job.”
by Jamie Tanna
.
Listened to
Cup o' Go | Thanks, Ian. 🙏 Plus Kevin Hoffman talks about empathy and the joy of logging ⚡
Post details
Go Meetup in San Francisco - Sponsored by Elastic & Cup o' GoIan Lance Taylor leaves the Go teamBlog: wget to Wipeout: Malicious Go Modules Fetch Destructive PayloadBlog: Security: The Habits That Matter Most by Christoph Berger⚡ Interview with Kevin Hoffman of SparkLogsSparkLogs.comSparkLogs on...
by Jamie Tanna
.
Listened to
NATS and the CNCF kerfuffle with Derek Collison, CEO of Synadia (Changelog Interviews #641)
Post details
Derek Collison — creator of NATS and Co-founder & CEO of Synadia — joins the show to dive into the origins, design, and evolution of NATS, a high-performance, open-source messaging system built for modern cloud-native systems and part of the CNCF. Derek shares the story behind NATS, what makes it unique, and unpacks th...
by Jamie Tanna
.
Reposted
Sascha Stronach🏳️⚧️, The Sunforge out now (@understatesmen.bsky.social)
Post details
dipshits in 2019: you people are NPCs, you don't even think for yourselves dipshits in 2025: I have outsourced my thinking to Clippy
by Jamie Tanna
.
#ai.
Listened to
573: Mocking the Future: Tom Akehurst on WireMock and API Testing
by
Post details
Sami talks with Tom Akehurst, Co-Founder of WireMock, about the delay and disconnect between front and back end development and how WireMock set out to bridge the two together.
by Jamie Tanna
.
Listened to
Open Source Security: Securing GitHub Actions with William Woodruff
Post details
William Woodruff discussed his project, Zizmor, a security linter designed to help developers identify and fix vulnerabilities within their GitHub Actions workflows. This tool addresses inherent security risks in GitHub Actions, such as injection vulnerabilities, permission issues, and mutable tags, by providing static analysis and remediation guidance. Fresh off the heels of the tj-actions/changed-files backdoor, this is a great topic with some things everyone can do right away. The show notes and blog post for this episode can be found at
by Jamie Tanna
.
Looking back at oapi-codegen's last year (6 mins read).
A recap of oapi-codegen's last year, in light of it being Maintainer Month, and continuing to ask for sponsorship.
Listened to
What's in the SOSS? An OpenSSF Podcast
Post details
What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure open source ...
by Jamie Tanna
.
Listened to
Cup o' Go | Metal! 🤘 Bare metal go, config libs, building response writers
Post details
Thanks for listening. Check out all the links to all the things at https://cupogo.dev/.GCC 15.1 Released With Support For COBOLos: Root permits access to parent directoryGOOS=noneThe "most ergonomic" config libraryGo Meetup in San Francisco - Sponsored by Elastic & Cup o' GoLinkedIn...
by Jamie Tanna
.
Listened to
Kaizen! Tip of the Pipely with Gerhard Lazu (Changelog & Friends #92)
Post details
Kaizen 19 has arrived! Gerhard has been laser-focused on making Jerod's pipe dream a reality by putting all of his efforts into Pipely. Has it been a big waste of time or has this epic side quest morphed into a main quest?!
by Jamie Tanna
.
Bookmarked
XKCD's "Is It Worth the Time?" Considered Harmful
Post details
Automating things, even when it doesn't save time, is how you learn the skills to automate the things that will.
by Jamie Tanna
.
#automation
#learning.
Overriding a Gradle project property which has . and _ characters, without modifying the buildscript (4 mins read).
How to use GRADLE_OPTS to safely override a Gradle property (with special characters in its name) without modifying the buildscript.
How to set up the 'Follow' button on LinkedIn (1 mins read).
How to allow others to follow you on LinkedIn.
Migrating secrets between two Vault instances (1 mins read).
How to copy secrets from one Vault instance to another, reducing the risk of the secrets being stored on disk for too long.
by Jamie Tanna
.
#blogumentation
#vault.
Week Notes 25#19 (2 mins read).
What happened in the week of 2025-05-05?
by Jamie Tanna
.
#week-notes.
Listened to
Maintainer Month 2025 with Dirkjan Ochtman on Sustaining Critical Rust Libraries
by
Post details
Kicking off our 2025 Maintainer Month series, Dirkjan joins Richard to talk Rust maintenance, open source funding, and sustaining projects without burning out.
by Jamie Tanna
.
Listened to
The Business of Open Source | AI-generated Code Copied from Open Source with Julian Coccia
Post details
This week on The Business of Open Source, I spoke with Julian Coccia, CTO of ScanOSS, about selling access to data while making open source software. Of course, we also talked about being an open source company that is also deep in the open source world, helping companies understand their...
by Jamie Tanna
.
Using type assertions in Go with concrete types (2 mins read).
How to perform a type assertion on a type in Go that isn't an interface.
by Jamie Tanna
.
#blogumentation
#go.
Listened to
Building Zed's agentic editing with Nathan Sobo (Changelog Interviews #640)
Post details
Nathan Sobo is back talking about the next big thing for Zed—agentic editing! You now have a full-blown AI-native editor to play with. Collaborate with agents at 120fps in a natively multiplayer IDE.
by Jamie Tanna
.
Listened to
Scaling DevTools
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.
by Jamie Tanna
.
Listened to
Scaling DevTools
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.
by Jamie Tanna
.
Listened to
Scaling DevTools
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.
by Jamie Tanna
.
Listened to
Scaling DevTools
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.
by Jamie Tanna
.
Getting Renovate to provide a changelog for digest updates to packages (on GitHub.com) (2 mins read).
How to use the new templated changelogUrl functionality to provide more actionable changelogs for digest updates to i.e. GitHub Actions and other digest-pinned dependencies (in this example, on GitHub.com).
Listened to
Scaling DevTools
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.
by Jamie Tanna
.
Listened to
Scaling DevTools
Post details
Lessons from 100+ DevTool founders - DevTools successes, failures and stories in a free weekly email and podcast.
by Jamie Tanna
.
Listened to
Building Windsurf with Varun Mohan
by
Post details
Varun Mohan, CEO of Windsurf, shares how building an AI-native IDE is reshaping software development—from optimizing LLM latency to enabling non-engineers to ship code.
by Jamie Tanna
.