Yep!
If two goroutines are blocked by sleeping the same amount of time, then synctest picks which to unblock at random:
go.dev/play/p/J7XMk...
@ericchiang.bsky.social
@oblique.security. Ex Google Security, CoreOS. ericchiang.github.io
Yep!
If two goroutines are blocked by sleeping the same amount of time, then synctest picks which to unblock at random:
go.dev/play/p/J7XMk...
GCP managed certs work by pointing Cloudflare DNS records at your load balancer. Manage both through Terraform and that's hopefully not too terrible when you're spinning up services on new subdomains.
16.12.2025 02:32 β π 0 π 0 π¬ 0 π 0Bad news everyone
10.12.2025 05:47 β π 0 π 0 π¬ 0 π 0I've heard of tougher noogler projects
24.09.2025 01:28 β π 4 π 0 π¬ 1 π 0Surely someone there is smart enough to just implement 802.1x for corp devices?
24.09.2025 01:24 β π 5 π 0 π¬ 1 π 0π¨ Tap and Ride is LIVE! π¨
Starting today, you can pay for BART right at the fare gates with a π³ contactless-enabled debit or credit card or use π€³ mobile payment, like Apple Pay and Google Pay.
There is zero registration or setup process required.
Wrote about a fun @golang.org type trick where APIs can force clients to pass string constants as arguments. Happens to be _extremely_ useful for SQL builders!
oblique.security/blog/injecti...
How can you use a Terraform Provider to automate your Permission System?
Well, that's what @veronicalg.bsky.social is going to tell us in this livestream later today.
It's Office Hours format so bring any questions you may have.
www.youtube.com/live/OlQ70bq...
It turns out workload identity isn't a complete mess in 2025 (only a little one)? Wrote a bit about authenticating GitHub Actions identity directly using OpenID Connect.
31.07.2025 23:22 β π 3 π 0 π¬ 0 π 0Oh hey, what's this fancy new IAM company?
23.06.2025 20:27 β π 3 π 0 π¬ 0 π 0A friend needs a Workday test instance to build something interesting. Anyone know how to get one?
(A Workday instance; I kinda already know how to get a friend.)
We're doing new container runtimes in 2025? Hell yeah
09.06.2025 21:02 β π 5 π 0 π¬ 1 π 0So if I'm reading this right
Step 1 - generate a private key with no forward secrecy
Step 2 - upload private key to twitter (but don't worry it's protected by a low entropy PIN)
Ummmmmmmmm
So that's effectively the AWS story, which is terrible but at least it's possible to cobble together something that works and you can audit. Google looked at this and said "what if we could express how much we hate Infrastructure teams as a service?" Expensive coffee robots were engaged, colorful furniture was sat on and the brightest minds of our generation came up with a system so punishing you'd think you did something to offend them personally.
Every day I'm glad my job isn't staring into the IAM abyss of a large Cloud org.
matduggan.com/iam-is-the-w...
What a sicko
07.05.2025 20:34 β π 2 π 0 π¬ 1 π 0Every time you feel useless, remember that GitHub as a notifications tab
07.05.2025 20:02 β π 2 π 0 π¬ 1 π 0who needs coherent cyber policy when we excel so much at corporate ligation?
www.nytimes.com/2025/05/06/t...
New experimental garbage collector for Go programs! github.com/golang/go/is...
02.05.2025 18:54 β π 123 π 41 π¬ 2 π 2@mayakaczorowski.com's been using it a ton and had great things to say.
05.04.2025 18:31 β π 1 π 0 π¬ 1 π 0π£Today, weβre super excited to announce our latest product addition: Continuous Profiling for GPUs! Check out the use cases and sign up for early access on the announcement post! π₯π
www.polarsignals.com/blog/posts/2...
You're not even using nix packages? What kind of tech hipster are you?
27.03.2025 16:06 β π 1 π 0 π¬ 1 π 0Scraping Kubernetes codebases for os/exec continues to pay dividends
www.wiz.io/blog/ingress...
"middleware:middleware:middleware:middleware:middleware" is the new bloody mary
zhero-web-sec.github.io/research-and...
I really wish progressive web apps took off so every app didn't come with a chrome fork
24.03.2025 01:25 β π 2 π 0 π¬ 1 π 0Awesome to see Landlock making unprivileged isolation so easy. As someone who maintained bubblewrap jails, I'm hoping that this takes over user namespaces. Things like network controls are always mess there.
github.com/Zouuup/landrun
Quick reminder:
14.03.2025 21:48 β π 3 π 1 π¬ 1 π 0Was it petty? Yes. Was it necessary? Also yes.
14.03.2025 22:45 β π 2 π 0 π¬ 0 π 0Quick reminder:
14.03.2025 21:48 β π 3 π 1 π¬ 1 π 0"No way to see this coming" says only auth protocol with regular auth bypasses
github.blog/security/sig...
A Python code comment that says "Welcome to the spaghetti factory"
"Vibe coding will ruin the quality of our codebase!"
The codebase:
github.com/pandas-dev/p...