Ruggero Tonelli
@ruggero.bsky.social
Performance, Security & Automation at scale - OpenSource - Linux | 改善 | Head of Platforms|SRE
@netquest
@netquest
Whisper Leak: a side-channel attack on Large Language Models arxiv.org/abs/2511.03675. #llm #ai #security
November 13, 2025 at 4:06 PM
Whisper Leak: a side-channel attack on Large Language Models arxiv.org/abs/2511.03675. #llm #ai #security
Trixter: A #Chaos Proxy for Simulating Network Faults biriukov.dev/posts/trixte...
November 12, 2025 at 8:12 AM
Trixter: A #Chaos Proxy for Simulating Network Faults biriukov.dev/posts/trixte...
Not an AWSome morning for the ones "living" in #AWS us-east-1 and the correlated regions.
#awsdown #awsoutage
#awsdown #awsoutage
October 20, 2025 at 8:00 AM
Not an AWSome morning for the ones "living" in #AWS us-east-1 and the correlated regions.
#awsdown #awsoutage
#awsdown #awsoutage
5 years since the last senior #SRE opening in our team. Lots of stuff have been archived since then but we still have some interesting challenges for #performance, #automation and #security motivated talents.
And we're #AI friendly
...Are you in?
buff.ly/h2IXb1i
And we're #AI friendly
...Are you in?
buff.ly/h2IXb1i
October 18, 2025 at 7:12 AM
5 years since the last senior #SRE opening in our team. Lots of stuff have been archived since then but we still have some interesting challenges for #performance, #automation and #security motivated talents.
And we're #AI friendly
...Are you in?
buff.ly/h2IXb1i
And we're #AI friendly
...Are you in?
buff.ly/h2IXb1i
Days ago @karpathy released #nanochat: "The best ChatGPT that $100 can buy."
github.com/karpathy/nan...
The real deal is not the price but the ~8000 lines of code: The entire pipeline from start to end with tokenization, pretraining, finetuning, evaluation, inference, and GUI. #ai
github.com/karpathy/nan...
The real deal is not the price but the ~8000 lines of code: The entire pipeline from start to end with tokenization, pretraining, finetuning, evaluation, inference, and GUI. #ai
October 17, 2025 at 11:54 AM
Days ago @karpathy released #nanochat: "The best ChatGPT that $100 can buy."
github.com/karpathy/nan...
The real deal is not the price but the ~8000 lines of code: The entire pipeline from start to end with tokenization, pretraining, finetuning, evaluation, inference, and GUI. #ai
github.com/karpathy/nan...
The real deal is not the price but the ~8000 lines of code: The entire pipeline from start to end with tokenization, pretraining, finetuning, evaluation, inference, and GUI. #ai
Apache Cloudberry (Incubating) [..] an advanced and mature #opensource Massively Parallel Processing (MPP) database, [..] built on [..] PostgreSQL kernel [..]. can serve as a #data warehouse and [..] large-scale analytics and AI/ML workloads. cloudberry.apache.org
Apache Cloudberry (Incubating) | Apache Cloudberry (Incubating)
Apache Cloudberry ships with PostgreSQL 14.4 as the kernel. It is 100% open source and helps you leverage the value of your data.
cloudberry.apache.org
October 14, 2025 at 11:54 AM
Apache Cloudberry (Incubating) [..] an advanced and mature #opensource Massively Parallel Processing (MPP) database, [..] built on [..] PostgreSQL kernel [..]. can serve as a #data warehouse and [..] large-scale analytics and AI/ML workloads. cloudberry.apache.org
Apache SeaTunnel: Multimodal, high-performance,
distributed, massive #data integration tool [...] for Transaction DB, Cloud DB, SaaS,
Binlog with SQL-like code or Drag & Drop. #performance #opensource
buff.ly/cfZGPNn
distributed, massive #data integration tool [...] for Transaction DB, Cloud DB, SaaS,
Binlog with SQL-like code or Drag & Drop. #performance #opensource
buff.ly/cfZGPNn
Apache SeaTunnel | Apache SeaTunnel
APache SeaTunnel Logo
seatunnel.apache.org
October 14, 2025 at 7:12 AM
Apache SeaTunnel: Multimodal, high-performance,
distributed, massive #data integration tool [...] for Transaction DB, Cloud DB, SaaS,
Binlog with SQL-like code or Drag & Drop. #performance #opensource
buff.ly/cfZGPNn
distributed, massive #data integration tool [...] for Transaction DB, Cloud DB, SaaS,
Binlog with SQL-like code or Drag & Drop. #performance #opensource
buff.ly/cfZGPNn
When Oracle Drops the Ball: Why #MariaDB is the Future of the #MySQL World.
An interesting take by @kajarno
#opensource
MariaDB.org
An interesting take by @kajarno
#opensource
MariaDB.org
When Oracle Drops the Ball: Why MariaDB is the Future of the MySQL World - MariaDB.org
The news has circulated quietly in industry corners, but the implications are far too significant to brush aside: Oracle seems to have ended the Open Source era of MySQL. … Continue reading "When…
mariadb.org
October 12, 2025 at 3:06 PM
When Oracle Drops the Ball: Why #MariaDB is the Future of the #MySQL World.
An interesting take by @kajarno
#opensource
MariaDB.org
An interesting take by @kajarno
#opensource
MariaDB.org
The EU’s €2T budget overlooks a key tech pillar: #Opensource thenextweb.com/news/eu-budg...
September 24, 2025 at 12:27 PM
The EU’s €2T budget overlooks a key tech pillar: #Opensource thenextweb.com/news/eu-budg...
OpenSSF warns that #opensource infrastructure doesn't run on thoughts and prayers.
Foundations say billions of downloads rely on registries running on fumes – and someone's gotta pay the bills
Foundations say billions of downloads rely on registries running on fumes – and someone's gotta pay the bills
OpenSSF to freeloaders: Open source infra isn't free
: Foundations say billions of downloads rely on registries running on fumes – and someone's gotta pay the bills
www.theregister.com
September 24, 2025 at 7:12 AM
OpenSSF warns that #opensource infrastructure doesn't run on thoughts and prayers.
Foundations say billions of downloads rely on registries running on fumes – and someone's gotta pay the bills
Foundations say billions of downloads rely on registries running on fumes – and someone's gotta pay the bills
phoronix : PostgreSQL Turns To AVX-512 For CRC32 Computations: Up To 3x Faster (where supported) buff.ly/fSlCOAG
[...] In addition to the recent optional IO_uring support for the #PostgreSQL database server on Linux and async I/O batch mode[...]
#performance #opensource
[...] In addition to the recent optional IO_uring support for the #PostgreSQL database server on Linux and async I/O batch mode[...]
#performance #opensource
April 8, 2025 at 7:12 AM
phoronix : PostgreSQL Turns To AVX-512 For CRC32 Computations: Up To 3x Faster (where supported) buff.ly/fSlCOAG
[...] In addition to the recent optional IO_uring support for the #PostgreSQL database server on Linux and async I/O batch mode[...]
#performance #opensource
[...] In addition to the recent optional IO_uring support for the #PostgreSQL database server on Linux and async I/O batch mode[...]
#performance #opensource
GitHub - doxx/darkflare: DarkFlare Firewall Piercing (TCP over CDN) buff.ly/3DphmCR
"A stealthy command line tool to create TCP-over-CDN(http) tunnels that keep your connections cozy and comfortable"
"A stealthy command line tool to create TCP-over-CDN(http) tunnels that keep your connections cozy and comfortable"
GitHub - doxx/darkflare: DarkFlare Firewall Piercing (TCP over CDN)
DarkFlare Firewall Piercing (TCP over CDN). Contribute to doxx/darkflare development by creating an account on GitHub.
buff.ly
April 7, 2025 at 3:06 PM
GitHub - doxx/darkflare: DarkFlare Firewall Piercing (TCP over CDN) buff.ly/3DphmCR
"A stealthy command line tool to create TCP-over-CDN(http) tunnels that keep your connections cozy and comfortable"
"A stealthy command line tool to create TCP-over-CDN(http) tunnels that keep your connections cozy and comfortable"
CISA, FBI, nations warn of fast flux DNS threat • The Register buff.ly/y4JdM1s
"Malicious cyber actors use #fastflux to obfuscate the locations of malicious servers "
#cybersec
"Malicious cyber actors use #fastflux to obfuscate the locations of malicious servers "
#cybersec
April 7, 2025 at 11:54 AM
CISA, FBI, nations warn of fast flux DNS threat • The Register buff.ly/y4JdM1s
"Malicious cyber actors use #fastflux to obfuscate the locations of malicious servers "
#cybersec
"Malicious cyber actors use #fastflux to obfuscate the locations of malicious servers "
#cybersec
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
Five critical flaws in Ingress NGINX Controller expose 6,500+ clusters; update now to prevent unauthorized remote code execution.
buff.ly
March 24, 2025 at 10:12 PM
Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication
The Biggest #SupplyChain Hack Of 2025: 6M Records For Sale Exfiltrated from #Oracle Cloud Affecting over 140k Tenants | CloudSEK cloudsek.com/blog/the-big...
#ransomware
#ransomware
The Biggest Supply Chain Hack Of 2025: 6M Records For Sale Exfiltrated from Oracle Cloud Affecting over 140k Tenants | CloudSEK
CloudSEK uncovers a major breach targeting Oracle Cloud, with 6 million records exfiltrated via a suspected undisclosed vulnerability. Over 140,000 tenants are impacted, as the attacker demands ransom...
cloudsek.com
March 22, 2025 at 8:44 AM
The Biggest #SupplyChain Hack Of 2025: 6M Records For Sale Exfiltrated from #Oracle Cloud Affecting over 140k Tenants | CloudSEK cloudsek.com/blog/the-big...
#ransomware
#ransomware
fosrl/pangolin: Tunneled Mesh Reverse Proxy Server with Identity and Access Control and Dashboard UI
GitHub - fosrl/pangolin: Tunneled Mesh Reverse Proxy Server with Identity and Access Control and Dashboard UI
Tunneled Mesh Reverse Proxy Server with Identity and Access Control and Dashboard UI - fosrl/pangolin
buff.ly
March 3, 2025 at 8:12 AM
fosrl/pangolin: Tunneled Mesh Reverse Proxy Server with Identity and Access Control and Dashboard UI
Valkey · Reducing application latency and lowering Cloud bill by setting up your client library
Valkey · Reducing application latency and lowering Cloud bill by setting up your client library
By implementing AZ affinity routing in Valkey and using GLIDE, you can achieve lower latency and cost savings by routing requests to replicas in the same AZ as the client.
buff.ly
February 24, 2025 at 12:54 PM
Valkey · Reducing application latency and lowering Cloud bill by setting up your client library
Reposted by Ruggero Tonelli
Breaking news for the crab people 🚨
🦀 Ring, a widely used Rust cryptography library, is now unmaintained.
🔐 Security advisory: rustsec.org/advisories/R...
➡️ Details: github.com/briansmith/r...
#rustlang #opensource #library #security #cryptography
🦀 Ring, a widely used Rust cryptography library, is now unmaintained.
🔐 Security advisory: rustsec.org/advisories/R...
➡️ Details: github.com/briansmith/r...
#rustlang #opensource #library #security #cryptography
RUSTSEC-2025-0007: ring: *ring* is unmaintained › RustSec Advisory Database
Security advisory database for Rust crates published through https://crates.io
rustsec.org
February 22, 2025 at 8:59 AM
Breaking news for the crab people 🚨
🦀 Ring, a widely used Rust cryptography library, is now unmaintained.
🔐 Security advisory: rustsec.org/advisories/R...
➡️ Details: github.com/briansmith/r...
#rustlang #opensource #library #security #cryptography
🦀 Ring, a widely used Rust cryptography library, is now unmaintained.
🔐 Security advisory: rustsec.org/advisories/R...
➡️ Details: github.com/briansmith/r...
#rustlang #opensource #library #security #cryptography
Amazon Web Services plugin | Steampipe Hub
Steampipe Hub
Query AWS with SQL! Open source CLI. No DB required.
buff.ly
January 17, 2025 at 4:06 PM
Amazon Web Services plugin | Steampipe Hub
spegel-org/spegel: Stateless cluster local OCI registry mirror.
GitHub - spegel-org/spegel: Stateless cluster local OCI registry mirror.
Stateless cluster local OCI registry mirror. Contribute to spegel-org/spegel development by creating an account on GitHub.
buff.ly
December 20, 2024 at 4:06 PM
spegel-org/spegel: Stateless cluster local OCI registry mirror.
fn main() {
println!("Hello World!");
}
println!("Hello World!");
}
December 20, 2024 at 12:47 PM
fn main() {
println!("Hello World!");
}
println!("Hello World!");
}