md0
@mdfr.bsky.social
staff vibe coding engineer and mcp lover.
ex-SRE
ex-DevSecNetAIShitOps Engineer
ex-10x Engineer
ex-Adminsys
I am mostly wrong.
ex-SRE
ex-DevSecNetAIShitOps Engineer
ex-10x Engineer
ex-Adminsys
I am mostly wrong.
Reposted by md0
chromium 140.0.7339.80 on #debian tries to access sensitive folders :
~/.ssh/ ~/.gnupg/ ~/.dbus/ /boot/
bugs.debian.org/cgi-bin/bugr... #security
~/.ssh/ ~/.gnupg/ ~/.dbus/ /boot/
bugs.debian.org/cgi-bin/bugr... #security
#1108642 - chromium: potentially serious security bug - Debian Bug report logs
bugs.debian.org
September 10, 2025 at 12:06 PM
chromium 140.0.7339.80 on #debian tries to access sensitive folders :
~/.ssh/ ~/.gnupg/ ~/.dbus/ /boot/
bugs.debian.org/cgi-bin/bugr... #security
~/.ssh/ ~/.gnupg/ ~/.dbus/ /boot/
bugs.debian.org/cgi-bin/bugr... #security
Reposted by md0
UK government asks everybody to stop using VPNs.
"everybody who's out there thinking of using VPNs...verifying your age keeps a child safe...So let's just not try and find a way around. Just prove your age."
- UK government
"everybody who's out there thinking of using VPNs...verifying your age keeps a child safe...So let's just not try and find a way around. Just prove your age."
- UK government
August 21, 2025 at 2:44 PM
UK government asks everybody to stop using VPNs.
"everybody who's out there thinking of using VPNs...verifying your age keeps a child safe...So let's just not try and find a way around. Just prove your age."
- UK government
"everybody who's out there thinking of using VPNs...verifying your age keeps a child safe...So let's just not try and find a way around. Just prove your age."
- UK government
Reposted by md0
Just my opinion, but I think External Secrets Operator deserves to make @cncf.io incubation status github.com/cncf/toc/iss...
[Incubation] external-secrets-operator Incubation Application · Issue #1486 · cncf/toc
external-secrets-operator Incubation Application Project Repo(s): https://github.com/external-secrets/external-secrets Project Site: https://external-secrets.io/latest Sub-Projects: https://github....
github.com
August 14, 2025 at 9:31 AM
Just my opinion, but I think External Secrets Operator deserves to make @cncf.io incubation status github.com/cncf/toc/iss...
🚨 External Secrets Operator maintainers need help and they’ve paused SemVer releases for now.
This operator is a core security layer for many #Kubernetes stacks. If you use ESO, consider helping.
👉 www.reddit.com/r/kubernetes...
#opensource #k8s
This operator is a core security layer for many #Kubernetes stacks. If you use ESO, consider helping.
👉 www.reddit.com/r/kubernetes...
#opensource #k8s
🚨 ESO Maintainer Update: We need help. 🚨
www.reddit.com
August 13, 2025 at 4:52 PM
🚨 External Secrets Operator maintainers need help and they’ve paused SemVer releases for now.
This operator is a core security layer for many #Kubernetes stacks. If you use ESO, consider helping.
👉 www.reddit.com/r/kubernetes...
#opensource #k8s
This operator is a core security layer for many #Kubernetes stacks. If you use ESO, consider helping.
👉 www.reddit.com/r/kubernetes...
#opensource #k8s
Reposted by md0
If you understand what software engineering as a career actually entails (lots of people and organizational problems, understanding legacy code and tradeoffs) you are at a career advantage over those who understand the job as just producing code.
Those jobs could be replaced. But that ain’t the job
Those jobs could be replaced. But that ain’t the job
August 12, 2025 at 6:20 PM
If you understand what software engineering as a career actually entails (lots of people and organizational problems, understanding legacy code and tradeoffs) you are at a career advantage over those who understand the job as just producing code.
Those jobs could be replaced. But that ain’t the job
Those jobs could be replaced. But that ain’t the job
Reposted by md0
Trying a bit Claude Code. I feel like I am doing all the work and paying for that.
August 12, 2025 at 9:15 PM
Trying a bit Claude Code. I feel like I am doing all the work and paying for that.
Reposted by md0
building bsky comments natalie.sh/posts/bluesk...
Building Bluesky Comments for My Blog
I hate disqus too much.
natalie.sh
August 6, 2025 at 6:46 AM
building bsky comments natalie.sh/posts/bluesk...
#GitHub (and thus its owner, Microsoft) is calling for a new #EU tech fund to ensure critical open source software can be maintained.
www.omgubuntu.co.uk/2025/07/gith...
#opensource #oss #europe
www.omgubuntu.co.uk/2025/07/gith...
#opensource #oss #europe
GitHub Wants the EU to Fund Open Source, But Who Should Really Pay?
GitHub is urging the EU to create a €350m fund for open source maintenance. But as Big Tech profits, should taxpayers be the ones to pay the tab?
www.omgubuntu.co.uk
July 31, 2025 at 6:39 AM
#GitHub (and thus its owner, Microsoft) is calling for a new #EU tech fund to ensure critical open source software can be maintained.
www.omgubuntu.co.uk/2025/07/gith...
#opensource #oss #europe
www.omgubuntu.co.uk/2025/07/gith...
#opensource #oss #europe
Reposted by md0
The most common reasons I hear people switching to Cilium. The only one missing is transparent encryption 🔐
CNI Migration Post-mortem: Flannel to Cilium on Talos
While migrating from Flannel to Cilium on my Talos cluster, a configuration oversight caused 76 pods to fail during startup. This post documents the root cause and lessons learned about CNI behavior…
blog.joshdow.ca
July 25, 2025 at 8:30 AM
The most common reasons I hear people switching to Cilium. The only one missing is transparent encryption 🔐
Reposted by md0
🚨 #Bitnami is moving ALL versioned Docker images behind a paywall on Aug 28 2025—only the single "latest" tag stays free. 🐳
Time to plan your migration or subscribe for production‑grade images!
👉 github.com/bitnami/cont...
#Docker #OpenSource
Time to plan your migration or subscribe for production‑grade images!
👉 github.com/bitnami/cont...
#Docker #OpenSource
Upcoming changes to the Bitnami catalog (effective August 28th, 2025) · Issue #83267 · bitnami/containers
📢 Overview As of August 28th, 2025, the Bitnami public catalog will undergo the following changes: Community catalog Disable images generation for Debian-based images and gradually move existing on...
github.com
July 20, 2025 at 9:04 AM
🚨 #Bitnami is moving ALL versioned Docker images behind a paywall on Aug 28 2025—only the single "latest" tag stays free. 🐳
Time to plan your migration or subscribe for production‑grade images!
👉 github.com/bitnami/cont...
#Docker #OpenSource
Time to plan your migration or subscribe for production‑grade images!
👉 github.com/bitnami/cont...
#Docker #OpenSource
🚨 #Bitnami is moving ALL versioned Docker images behind a paywall on Aug 28 2025—only the single "latest" tag stays free. 🐳
Time to plan your migration or subscribe for production‑grade images!
👉 github.com/bitnami/cont...
#Docker #OpenSource
Time to plan your migration or subscribe for production‑grade images!
👉 github.com/bitnami/cont...
#Docker #OpenSource
Upcoming changes to the Bitnami catalog (effective August 28th, 2025) · Issue #83267 · bitnami/containers
📢 Overview As of August 28th, 2025, the Bitnami public catalog will undergo the following changes: Community catalog Disable images generation for Debian-based images and gradually move existing on...
github.com
July 20, 2025 at 9:04 AM
🚨 #Bitnami is moving ALL versioned Docker images behind a paywall on Aug 28 2025—only the single "latest" tag stays free. 🐳
Time to plan your migration or subscribe for production‑grade images!
👉 github.com/bitnami/cont...
#Docker #OpenSource
Time to plan your migration or subscribe for production‑grade images!
👉 github.com/bitnami/cont...
#Docker #OpenSource
0.1x engineer [Office Edition]
YouTube video by Programmers are also human
www.youtube.com
July 18, 2025 at 11:20 AM
🐳 #Kubernetes 1.33 just sandboxes your pods by default with user namespace isolation—mapping container root to an unprivileged host ID.
Could this be the single biggest security upgrade your clusters have seen? 🔥
👉 www.cncf.io/blog/2025/07...
#k8s #homelab #devops #CloudNative
Could this be the single biggest security upgrade your clusters have seen? 🔥
👉 www.cncf.io/blog/2025/07...
#k8s #homelab #devops #CloudNative
Securing Kubernetes 1.33 Pods: The Impact of User Namespace Isolation
Kubernetes 1.33 was released on April 23, 2025, and, as usual, introduces a host of fixes and new features. Be sure to check out the release notes; I assure you, you won’t be disappointed!
www.cncf.io
July 16, 2025 at 6:16 PM
🐳 #Kubernetes 1.33 just sandboxes your pods by default with user namespace isolation—mapping container root to an unprivileged host ID.
Could this be the single biggest security upgrade your clusters have seen? 🔥
👉 www.cncf.io/blog/2025/07...
#k8s #homelab #devops #CloudNative
Could this be the single biggest security upgrade your clusters have seen? 🔥
👉 www.cncf.io/blog/2025/07...
#k8s #homelab #devops #CloudNative
A fake extension for the #Cursor #AI IDE code editor infected devices with remote access tools and infostealers, which, in one case, led to the theft of $500,000 in crypto.
www.bleepingcomputer.com/news/securit...
#devops #vscode
www.bleepingcomputer.com/news/securit...
#devops #vscode
Malicious VSCode extension in Cursor IDE led to $500K crypto theft
A fake extension for the Cursor AI IDE code editor infected devices with remote access tools and infostealers, which, in one case, led to the theft of $500,000 in cryptocurrency from a Russian crypto ...
www.bleepingcomputer.com
July 15, 2025 at 11:59 AM
A fake extension for the #Cursor #AI IDE code editor infected devices with remote access tools and infostealers, which, in one case, led to the theft of $500,000 in crypto.
www.bleepingcomputer.com/news/securit...
#devops #vscode
www.bleepingcomputer.com/news/securit...
#devops #vscode
Most people think #Kubernetes is just for big companies.
But it’s perfect for small teams, small companies – and even your #homelab. Fewer mistakes, standardized deployments, and less manual pain.
👉 ergaster.org/posts/2025/0...
#devops #cloud #k8s
But it’s perfect for small teams, small companies – and even your #homelab. Fewer mistakes, standardized deployments, and less manual pain.
👉 ergaster.org/posts/2025/0...
#devops #cloud #k8s
Kubernetes is not just for Black Friday
I self-host services mostly for myself. My threat model is particular: the highest threats I face are my own incompetence and hardware failures. To mitigate those risks used to rely on podman containe...
ergaster.org
July 9, 2025 at 11:41 AM
Most people think #Kubernetes is just for big companies.
But it’s perfect for small teams, small companies – and even your #homelab. Fewer mistakes, standardized deployments, and less manual pain.
👉 ergaster.org/posts/2025/0...
#devops #cloud #k8s
But it’s perfect for small teams, small companies – and even your #homelab. Fewer mistakes, standardized deployments, and less manual pain.
👉 ergaster.org/posts/2025/0...
#devops #cloud #k8s
#Slack ended its free Enterprise offer for large #opensource groups downgrading them to the limited free plan.
After a decade of generous Slack support, these 200k+ member communities are now scrambling to save chat history and considering a move to #Discord or #Matrix.
www.cncf.io/blog/2025/06...
After a decade of generous Slack support, these 200k+ member communities are now scrambling to save chat history and considering a move to #Discord or #Matrix.
www.cncf.io/blog/2025/06...
CNCF Slack Workspace Changes Coming on Friday, June 20
We’ve received notice from Salesforce that our Slack workspace WILL NOT BE DOWNGRADED on June 20th. Stand by for more details, but for now, there is no urgency to back up private channels or direct…
www.cncf.io
July 9, 2025 at 11:26 AM
#Slack ended its free Enterprise offer for large #opensource groups downgrading them to the limited free plan.
After a decade of generous Slack support, these 200k+ member communities are now scrambling to save chat history and considering a move to #Discord or #Matrix.
www.cncf.io/blog/2025/06...
After a decade of generous Slack support, these 200k+ member communities are now scrambling to save chat history and considering a move to #Discord or #Matrix.
www.cncf.io/blog/2025/06...
[Linux-Drama S6 E12 1080p] Linus Torvalds has warned he may remove the new #Bcachefs filesystem in #kernel 6.17.
Maintainer Kent Overstreet pushed unauthorized code changes during the bug-fix phase, causing friction in the community.
www.theregister.com/2025/07/01/b...
#Linux #OpenSource
Maintainer Kent Overstreet pushed unauthorized code changes during the bug-fix phase, causing friction in the community.
www.theregister.com/2025/07/01/b...
#Linux #OpenSource
July 8, 2025 at 6:26 AM
[Linux-Drama S6 E12 1080p] Linus Torvalds has warned he may remove the new #Bcachefs filesystem in #kernel 6.17.
Maintainer Kent Overstreet pushed unauthorized code changes during the bug-fix phase, causing friction in the community.
www.theregister.com/2025/07/01/b...
#Linux #OpenSource
Maintainer Kent Overstreet pushed unauthorized code changes during the bug-fix phase, causing friction in the community.
www.theregister.com/2025/07/01/b...
#Linux #OpenSource
GitHub Copilot just delivered a surprise: "unlimited AI" now has limits. 🙃
Heavy Copilot users are hitting paywalls unless they upgrade their plans; bill shock incoming.
#GitHub #AI
github.com/orgs/communi...
Heavy Copilot users are hitting paywalls unless they upgrade their plans; bill shock incoming.
#GitHub #AI
github.com/orgs/communi...
Update to GitHub Copilot Consumptive Billing Experience · community · Discussion #163114
Hello Copilot Community, As of June 18th, monthly premium request allowances are now in effect for all paid Copilot plans. What’s changed? The monthly allowance of premium requests per user is now ...
github.com
July 8, 2025 at 6:17 AM
GitHub Copilot just delivered a surprise: "unlimited AI" now has limits. 🙃
Heavy Copilot users are hitting paywalls unless they upgrade their plans; bill shock incoming.
#GitHub #AI
github.com/orgs/communi...
Heavy Copilot users are hitting paywalls unless they upgrade their plans; bill shock incoming.
#GitHub #AI
github.com/orgs/communi...
🇪🇺 Europe calls itself sovereign by integrating open-source software (often US-founded) into EU frameworks.
Is it really sovereignty if Europe has no hardware control, no opensource upstream influence, and no strategic funding?
👉 berthub.eu/articles/pos...
#opensource #europe #cloud
Is it really sovereignty if Europe has no hardware control, no opensource upstream influence, and no strategic funding?
👉 berthub.eu/articles/pos...
#opensource #europe #cloud
European Cloud Modules - Bert Hubert
Advanced cloud services are based on good hardware, decent software, and surrounding infrastructure that combines these both into solid solutions that can be provided as a business activity.
Europe is...
berthub.eu
July 6, 2025 at 5:21 AM
🇪🇺 Europe calls itself sovereign by integrating open-source software (often US-founded) into EU frameworks.
Is it really sovereignty if Europe has no hardware control, no opensource upstream influence, and no strategic funding?
👉 berthub.eu/articles/pos...
#opensource #europe #cloud
Is it really sovereignty if Europe has no hardware control, no opensource upstream influence, and no strategic funding?
👉 berthub.eu/articles/pos...
#opensource #europe #cloud
Applied my Terraform plan and out popped a hot, cheesy Domino’s pizza 🍕🤌
Who knew infra as code could taste this good?
github.com/MNThomson/te...
#devops #dominos #PizzaAsCode
Who knew infra as code could taste this good?
github.com/MNThomson/te...
#devops #dominos #PizzaAsCode
GitHub - MNThomson/terraform-provider-dominos: 🎲🍕 The Terraform plugin for the Dominos Pizza provider
🎲🍕 The Terraform plugin for the Dominos Pizza provider - MNThomson/terraform-provider-dominos
github.com
July 5, 2025 at 3:34 PM
Applied my Terraform plan and out popped a hot, cheesy Domino’s pizza 🍕🤌
Who knew infra as code could taste this good?
github.com/MNThomson/te...
#devops #dominos #PizzaAsCode
Who knew infra as code could taste this good?
github.com/MNThomson/te...
#devops #dominos #PizzaAsCode
Reposted by md0
Bottlerocket is a free and open-source Linux-based operating system meant for hosting containers
It is specifically designed to work with your container orchestrator (like Kubernetes) to automate the containers' lifecycle in your cluster
➤ https://github.com/bottlerocket-os/bottlerocket
It is specifically designed to work with your container orchestrator (like Kubernetes) to automate the containers' lifecycle in your cluster
➤ https://github.com/bottlerocket-os/bottlerocket
May 14, 2025 at 7:11 PM
Bottlerocket is a free and open-source Linux-based operating system meant for hosting containers
It is specifically designed to work with your container orchestrator (like Kubernetes) to automate the containers' lifecycle in your cluster
➤ https://github.com/bottlerocket-os/bottlerocket
It is specifically designed to work with your container orchestrator (like Kubernetes) to automate the containers' lifecycle in your cluster
➤ https://github.com/bottlerocket-os/bottlerocket
