Arnaud Lefebvre
@blackyoup.bsky.social
Developer and infrastructure @clever_cloud
Reposted by Arnaud Lefebvre
🚨check your YAML for references to ghrc dot io (misspelling of GitHub Container Registry). Someone is running a container registry on it, apparently 🚨
www.linkedin.com/posts/activi...
www.linkedin.com/posts/activi...
Sign Up | LinkedIn
500 million+ members | Manage your professional identity. Build and engage with your professional network. Access knowledge, insights and opportunities.
www.linkedin.com
August 21, 2025 at 6:16 PM
🚨check your YAML for references to ghrc dot io (misspelling of GitHub Container Registry). Someone is running a container registry on it, apparently 🚨
www.linkedin.com/posts/activi...
www.linkedin.com/posts/activi...
Reposted by Arnaud Lefebvre
[𝗕𝗟𝗢𝗚] New Paris HDS region, London zone, updated runtimes (FrankenPHP, Static, V…), new images pipeline, CLI & Console upgrades… A lot happened at Clever Cloud in Q2 2025.
👉 Read the recap: www.clever-cloud.com/blog/company...
👉 Read the recap: www.clever-cloud.com/blog/company...
What's new on Clever Cloud, Q2 2025 | Clever Cloud
Find out what's new at Clever Cloud this semester: HDS hosting, new runtimes, API tokens, OAuth... and much more.
www.clever-cloud.com
July 17, 2025 at 12:23 PM
[𝗕𝗟𝗢𝗚] New Paris HDS region, London zone, updated runtimes (FrankenPHP, Static, V…), new images pipeline, CLI & Console upgrades… A lot happened at Clever Cloud in Q2 2025.
👉 Read the recap: www.clever-cloud.com/blog/company...
👉 Read the recap: www.clever-cloud.com/blog/company...
Reposted by Arnaud Lefebvre
Discover 3 new @clever-cloud.com runtimes:
- Linux (supercharged by
@jdx.dev Mise): clever-cloud.com/developers/d...
- Static with Autobuild: clever-cloud.com/developers/d...
- V: clever-cloud.com/developers/d...
A great achievement for teams, thanks for the long run work that made this possible !
- Linux (supercharged by
@jdx.dev Mise): clever-cloud.com/developers/d...
- Static with Autobuild: clever-cloud.com/developers/d...
- V: clever-cloud.com/developers/d...
A great achievement for teams, thanks for the long run work that made this possible !
a man in a suit and tie is sitting at a desk .
ALT: a man in a suit and tie is sitting at a desk .
media.tenor.com
July 4, 2025 at 12:09 PM
Discover 3 new @clever-cloud.com runtimes:
- Linux (supercharged by
@jdx.dev Mise): clever-cloud.com/developers/d...
- Static with Autobuild: clever-cloud.com/developers/d...
- V: clever-cloud.com/developers/d...
A great achievement for teams, thanks for the long run work that made this possible !
- Linux (supercharged by
@jdx.dev Mise): clever-cloud.com/developers/d...
- Static with Autobuild: clever-cloud.com/developers/d...
- V: clever-cloud.com/developers/d...
A great achievement for teams, thanks for the long run work that made this possible !
Reposted by Arnaud Lefebvre
🚀 We work on 3 new runtimes on @clever-cloud.com
: Linux, Static and... V. Want to test? Let me know!
Want to know more ? ▶️ github.com/CleverCloud/...
😍 Thanks to the teams across Clever Cloud for the mutual efforts to ease how we provide new runtimes to customers!
: Linux, Static and... V. Want to test? Let me know!
Want to know more ? ▶️ github.com/CleverCloud/...
😍 Thanks to the teams across Clever Cloud for the mutual efforts to ease how we provide new runtimes to customers!
Test new Clever Cloud runtimes: Linux, Static & V · CleverCloud Community · Discussion #66
After releasing FrankenPHP, we worked on new runtimes to cover frequent needs of our customers and tests new ideas: linux, static and v. They're currently in private testing phase: you can be a par...
github.com
June 4, 2025 at 11:55 AM
🚀 We work on 3 new runtimes on @clever-cloud.com
: Linux, Static and... V. Want to test? Let me know!
Want to know more ? ▶️ github.com/CleverCloud/...
😍 Thanks to the teams across Clever Cloud for the mutual efforts to ease how we provide new runtimes to customers!
: Linux, Static and... V. Want to test? Let me know!
Want to know more ? ▶️ github.com/CleverCloud/...
😍 Thanks to the teams across Clever Cloud for the mutual efforts to ease how we provide new runtimes to customers!
Reposted by Arnaud Lefebvre
[𝗣𝗥𝗘𝗦𝗦] Clever Cloud joins forces with QazCloud to create Kazakhstan's 1st sovereign PaaS 🇰🇿
An ambitious project: building a local AI ecosystem with R&D and training excellence, signed in Astana at the France-Kazakhstan Investment Forum.
👉 www.clever-cloud.com/blog/press/2...
An ambitious project: building a local AI ecosystem with R&D and training excellence, signed in Astana at the France-Kazakhstan Investment Forum.
👉 www.clever-cloud.com/blog/press/2...
May 28, 2025 at 2:26 PM
[𝗣𝗥𝗘𝗦𝗦] Clever Cloud joins forces with QazCloud to create Kazakhstan's 1st sovereign PaaS 🇰🇿
An ambitious project: building a local AI ecosystem with R&D and training excellence, signed in Astana at the France-Kazakhstan Investment Forum.
👉 www.clever-cloud.com/blog/press/2...
An ambitious project: building a local AI ecosystem with R&D and training excellence, signed in Astana at the France-Kazakhstan Investment Forum.
👉 www.clever-cloud.com/blog/press/2...
Reposted by Arnaud Lefebvre
[𝗥𝗘𝗣𝗟𝗔𝗬] Due to the success of our webinar on Keycloak as a Service with Florent Perreux and Mathieu Passenaud from Please Open It, the replay is now available!
👉 The replay is available here: app.livestorm.co/clevercloud/...
👉 The replay is available here: app.livestorm.co/clevercloud/...
May 5, 2025 at 2:47 PM
[𝗥𝗘𝗣𝗟𝗔𝗬] Due to the success of our webinar on Keycloak as a Service with Florent Perreux and Mathieu Passenaud from Please Open It, the replay is now available!
👉 The replay is available here: app.livestorm.co/clevercloud/...
👉 The replay is available here: app.livestorm.co/clevercloud/...
Reposted by Arnaud Lefebvre
Redis is open source again: antirez.com/news/151
May 1, 2025 at 3:57 PM
Redis is open source again: antirez.com/news/151
Reposted by Arnaud Lefebvre
😍MACI 129 is out!
🔍On the program: Warp 10, Windsurf, GIMP, Brinjel, etc.
🐾An episode with Mathias Herberts, @waxzce.org, @erougeux.bsky.social and @lostinbrittany.bsky.social
🎧https://clever-cloud.com/podcast/gimp-prend-les-arm-de-warp-pour-coder-des-app-de-maraichage-open-source-avec-lia/
🔍On the program: Warp 10, Windsurf, GIMP, Brinjel, etc.
🐾An episode with Mathias Herberts, @waxzce.org, @erougeux.bsky.social and @lostinbrittany.bsky.social
🎧https://clever-cloud.com/podcast/gimp-prend-les-arm-de-warp-pour-coder-des-app-de-maraichage-open-source-avec-lia/
April 18, 2025 at 2:38 PM
😍MACI 129 is out!
🔍On the program: Warp 10, Windsurf, GIMP, Brinjel, etc.
🐾An episode with Mathias Herberts, @waxzce.org, @erougeux.bsky.social and @lostinbrittany.bsky.social
🎧https://clever-cloud.com/podcast/gimp-prend-les-arm-de-warp-pour-coder-des-app-de-maraichage-open-source-avec-lia/
🔍On the program: Warp 10, Windsurf, GIMP, Brinjel, etc.
🐾An episode with Mathias Herberts, @waxzce.org, @erougeux.bsky.social and @lostinbrittany.bsky.social
🎧https://clever-cloud.com/podcast/gimp-prend-les-arm-de-warp-pour-coder-des-app-de-maraichage-open-source-avec-lia/
Reposted by Arnaud Lefebvre
BREAKING.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
April 15, 2025 at 5:23 PM
BREAKING.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.
Reposted by Arnaud Lefebvre
1. LLM-generated code tries to run code from online software packages. Which is normal but
2. The packages don’t exist. Which would normally cause an error but
3. Nefarious people have made malware under the package names that LLMs make up most often. So
4. Now the LLM code points to malware.
2. The packages don’t exist. Which would normally cause an error but
3. Nefarious people have made malware under the package names that LLMs make up most often. So
4. Now the LLM code points to malware.
LLMs hallucinating nonexistent software packages with plausible names leads to a new malware vulnerability: "slopsquatting."
LLMs can't stop making up software dependencies and sabotaging everything
: Hallucinated package names fuel 'slopsquatting'
www.theregister.com
April 12, 2025 at 11:43 PM
1. LLM-generated code tries to run code from online software packages. Which is normal but
2. The packages don’t exist. Which would normally cause an error but
3. Nefarious people have made malware under the package names that LLMs make up most often. So
4. Now the LLM code points to malware.
2. The packages don’t exist. Which would normally cause an error but
3. Nefarious people have made malware under the package names that LLMs make up most often. So
4. Now the LLM code points to malware.
Reposted by Arnaud Lefebvre
🚨 A BGP leak from a DDoS mitigation company caused a global impact last week.
We break it down in traffic + routing data—and how RFC 9234's "Only to Customer" could’ve helped.
New from @eldomador.bsky.social:
👉 www.kentik.com/blog/beyond-...
#BGP #RoutingSecurity #DDoS
We break it down in traffic + routing data—and how RFC 9234's "Only to Customer" could’ve helped.
New from @eldomador.bsky.social:
👉 www.kentik.com/blog/beyond-...
#BGP #RoutingSecurity #DDoS
Beyond Their Intended Scope: DDoS Mitigation Leak
In this edition of Beyond Their Intended Scope, we take a look at last week’s BGP leak by a DDoS mitigation company which impacted networks around the world. We look at the impacts in both BGP and tra...
www.kentik.com
April 8, 2025 at 4:37 PM
🚨 A BGP leak from a DDoS mitigation company caused a global impact last week.
We break it down in traffic + routing data—and how RFC 9234's "Only to Customer" could’ve helped.
New from @eldomador.bsky.social:
👉 www.kentik.com/blog/beyond-...
#BGP #RoutingSecurity #DDoS
We break it down in traffic + routing data—and how RFC 9234's "Only to Customer" could’ve helped.
New from @eldomador.bsky.social:
👉 www.kentik.com/blog/beyond-...
#BGP #RoutingSecurity #DDoS
Reposted by Arnaud Lefebvre
#Firefox 137 apporte un support du codec vidéo #HEVC:
- via décodage matériel sur tous les périphériques
- via décodage logiciel sur les vieux PC sous Linux et les vieux Smartphone Android (pour Windows, il faut payer 1€ à Microsoft pour avoir le décodage logiciel)
➡️ lafibre.info/tv-numerique...
- via décodage matériel sur tous les périphériques
- via décodage logiciel sur les vieux PC sous Linux et les vieux Smartphone Android (pour Windows, il faut payer 1€ à Microsoft pour avoir le décodage logiciel)
➡️ lafibre.info/tv-numerique...
April 4, 2025 at 6:28 AM
#Firefox 137 apporte un support du codec vidéo #HEVC:
- via décodage matériel sur tous les périphériques
- via décodage logiciel sur les vieux PC sous Linux et les vieux Smartphone Android (pour Windows, il faut payer 1€ à Microsoft pour avoir le décodage logiciel)
➡️ lafibre.info/tv-numerique...
- via décodage matériel sur tous les périphériques
- via décodage logiciel sur les vieux PC sous Linux et les vieux Smartphone Android (pour Windows, il faut payer 1€ à Microsoft pour avoir le décodage logiciel)
➡️ lafibre.info/tv-numerique...
Reposted by Arnaud Lefebvre
🔵 Opening Voices - The podcast highlighting technological innovation in Europe
Europe has initiatives and companies that can help it become a world technology leader. These initiatives are not highlighted enough.
It's time to talk about it. Join us this Thursday 3 April for the first episode !
Europe has initiatives and companies that can help it become a world technology leader. These initiatives are not highlighted enough.
It's time to talk about it. Join us this Thursday 3 April for the first episode !
April 1, 2025 at 2:46 PM
🔵 Opening Voices - The podcast highlighting technological innovation in Europe
Europe has initiatives and companies that can help it become a world technology leader. These initiatives are not highlighted enough.
It's time to talk about it. Join us this Thursday 3 April for the first episode !
Europe has initiatives and companies that can help it become a world technology leader. These initiatives are not highlighted enough.
It's time to talk about it. Join us this Thursday 3 April for the first episode !
Reposted by Arnaud Lefebvre
A brief retrospective of network-layer DDoS attacks in 2024 at OVHcloud
blog.ovhcloud.com/a-brief-retr...
blog.ovhcloud.com/a-brief-retr...
A brief retrospective of network-layer DDoS attacks in 2024 at OVHcloud - OVHcloud Blog
[15 min read] This article is primarily intended for an international audience of networks professionals, information security specialists, security researchers and technical stakeholders. Whether or ...
blog.ovhcloud.com
April 2, 2025 at 8:43 AM
A brief retrospective of network-layer DDoS attacks in 2024 at OVHcloud
blog.ovhcloud.com/a-brief-retr...
blog.ovhcloud.com/a-brief-retr...
Reposted by Arnaud Lefebvre
#Nine: un nouveau point d'échange internet pour bousculer le marché. Créé par Ferdinand Chevrant-Breton et Nicolas Vuillermet (moji)+ Hugues
➡️ lafibre.info/gix/nine/
Avec 50 datacentres au lancement, Nine propose des interconnexions locales et distantes avec un prix /3 par rapport aux grands acteurs
➡️ lafibre.info/gix/nine/
Avec 50 datacentres au lancement, Nine propose des interconnexions locales et distantes avec un prix /3 par rapport aux grands acteurs
March 29, 2025 at 8:41 AM
#Nine: un nouveau point d'échange internet pour bousculer le marché. Créé par Ferdinand Chevrant-Breton et Nicolas Vuillermet (moji)+ Hugues
➡️ lafibre.info/gix/nine/
Avec 50 datacentres au lancement, Nine propose des interconnexions locales et distantes avec un prix /3 par rapport aux grands acteurs
➡️ lafibre.info/gix/nine/
Avec 50 datacentres au lancement, Nine propose des interconnexions locales et distantes avec un prix /3 par rapport aux grands acteurs
Reposted by Arnaud Lefebvre
Despite Oracle denying a breach of its Oracle Cloud federated SSO login servers and the theft of account data for 6 million people, BleepingComputer has confirmed with multiple companies that associated data samples shared by the threat actor are valid.
Oracle customers confirm data stolen in alleged cloud breach is valid
Despite Oracle denying a breach of its Oracle Cloud federated SSO login servers and the theft of account data for 6 million people, BleepingComputer has confirmed with multiple companies that associated data samples shared by the threat actor are valid.
www.bleepingcomputer.com
March 26, 2025 at 8:21 PM
Despite Oracle denying a breach of its Oracle Cloud federated SSO login servers and the theft of account data for 6 million people, BleepingComputer has confirmed with multiple companies that associated data samples shared by the threat actor are valid.
Reposted by Arnaud Lefebvre
Cloudflare a annoncé l'ouverture du code source d'OpenPubkey SSH, un outil permettant le SSO via OpenID Connect au protocole SSH
👉 blog.cloudflare.com/...
👉 blog.cloudflare.com/...
March 26, 2025 at 6:05 PM
Cloudflare a annoncé l'ouverture du code source d'OpenPubkey SSH, un outil permettant le SSO via OpenID Connect au protocole SSH
👉 blog.cloudflare.com/...
👉 blog.cloudflare.com/...
Reposted by Arnaud Lefebvre
Je souhaitais vous remercier pour vos (très) nombreuses réactions suite à mon passage dans Underscore_.
L'épisode est désormais disponible sur Youtube 👇
L'épisode est désormais disponible sur Youtube 👇
[𝗣𝗢𝗗𝗖𝗔𝗦𝗧] Underscore_ with @waxzce.org finally on YouTube! 🚀
Is the French cloud a failure? ❌☁️
That's the big question debated by Micode, Matthieu Lambda and @waxzce.org in the latest episode of Underscore_.
👉 www.youtube.com/watch?v=z9y5...
Is the French cloud a failure? ❌☁️
That's the big question debated by Micode, Matthieu Lambda and @waxzce.org in the latest episode of Underscore_.
👉 www.youtube.com/watch?v=z9y5...
March 25, 2025 at 11:13 AM
Je souhaitais vous remercier pour vos (très) nombreuses réactions suite à mon passage dans Underscore_.
L'épisode est désormais disponible sur Youtube 👇
L'épisode est désormais disponible sur Youtube 👇
Reposted by Arnaud Lefebvre
"It is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware."
With the amount of Next.js-based sites around, especially on infosec sites, I'd say this looks like a problem.
CVSS: 9.1
github.com/vercel/next....
With the amount of Next.js-based sites around, especially on infosec sites, I'd say this looks like a problem.
CVSS: 9.1
github.com/vercel/next....
March 21, 2025 at 9:48 PM
"It is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware."
With the amount of Next.js-based sites around, especially on infosec sites, I'd say this looks like a problem.
CVSS: 9.1
github.com/vercel/next....
With the amount of Next.js-based sites around, especially on infosec sites, I'd say this looks like a problem.
CVSS: 9.1
github.com/vercel/next....
Reposted by Arnaud Lefebvre
[𝗖𝗛𝗔𝗡𝗚𝗘𝗟𝗢𝗚] PostgreSQL 16.8 & 17.4 are available on Clever Cloud!
👀 Migrating is great, but beware: some extensions are no longer supported!
A detailed article is coming soon to our blog! In the meantime, check it out here: www.clever-cloud.com/developers/c...
👀 Migrating is great, but beware: some extensions are no longer supported!
A detailed article is coming soon to our blog! In the meantime, check it out here: www.clever-cloud.com/developers/c...
PostgreSQL 16 and 17 are available
It's time to prepare for PostgreSQL 18!
www.clever-cloud.com
March 19, 2025 at 10:52 AM
[𝗖𝗛𝗔𝗡𝗚𝗘𝗟𝗢𝗚] PostgreSQL 16.8 & 17.4 are available on Clever Cloud!
👀 Migrating is great, but beware: some extensions are no longer supported!
A detailed article is coming soon to our blog! In the meantime, check it out here: www.clever-cloud.com/developers/c...
👀 Migrating is great, but beware: some extensions are no longer supported!
A detailed article is coming soon to our blog! In the meantime, check it out here: www.clever-cloud.com/developers/c...
Reposted by Arnaud Lefebvre
Relax everybody — North Korea is back online after resolving their RPKI snafu! 😮💨
In my latest post for @kentik.bsky.social, I look into the strange development in BGP out of the hermit kingdom — a self-inflected outage due to a misconfigured ROA.
In my latest post for @kentik.bsky.social, I look into the strange development in BGP out of the hermit kingdom — a self-inflected outage due to a misconfigured ROA.
On March 18, 2025, North Korea’s BGP routes became RPKI-invalid due to the publication of a faulty ROA.
In his latest analysis, @eldomador.bsky.social visualizes the impact on the propagation of affected routes.
www.kentik.com/blog/north-k...
#BGP #RPKI #InternetAnalysis
In his latest analysis, @eldomador.bsky.social visualizes the impact on the propagation of affected routes.
www.kentik.com/blog/north-k...
#BGP #RPKI #InternetAnalysis
North Korea Downed by Faulty ROA
On March 18, 2025, North Korea’s BGP routes became RPKI-invalid due to the publication of a faulty ROA. In this post, we’ll visualize the impact on the propagation of affected routes and what North Ko...
www.kentik.com
March 19, 2025 at 6:12 PM
Relax everybody — North Korea is back online after resolving their RPKI snafu! 😮💨
In my latest post for @kentik.bsky.social, I look into the strange development in BGP out of the hermit kingdom — a self-inflected outage due to a misconfigured ROA.
In my latest post for @kentik.bsky.social, I look into the strange development in BGP out of the hermit kingdom — a self-inflected outage due to a misconfigured ROA.
Reposted by Arnaud Lefebvre
Added a few more folks to the #eBPF starter pack. Who else am I missing that is here on Bluesky? go.bsky.app/GgS24Fv
March 19, 2025 at 9:51 AM
Added a few more folks to the #eBPF starter pack. Who else am I missing that is here on Bluesky? go.bsky.app/GgS24Fv
Reposted by Arnaud Lefebvre
Docs : une alternative Open Source à Notion ou Outline. (P)
Ce projet est le fruit d'une collaboration entre les gouvernements français (la DINUM) et allemand (ZenDiS).
👉 Le projet : github.com/suitenume...
👉 En savoir plus : docs.numerique.gouv....
Ce projet est le fruit d'une collaboration entre les gouvernements français (la DINUM) et allemand (ZenDiS).
👉 Le projet : github.com/suitenume...
👉 En savoir plus : docs.numerique.gouv....
March 17, 2025 at 5:56 PM
Docs : une alternative Open Source à Notion ou Outline. (P)
Ce projet est le fruit d'une collaboration entre les gouvernements français (la DINUM) et allemand (ZenDiS).
👉 Le projet : github.com/suitenume...
👉 En savoir plus : docs.numerique.gouv....
Ce projet est le fruit d'une collaboration entre les gouvernements français (la DINUM) et allemand (ZenDiS).
👉 Le projet : github.com/suitenume...
👉 En savoir plus : docs.numerique.gouv....
Reposted by Arnaud Lefebvre
A new critical severity vulnerability found in American Megatrends International's MegaRAC Baseboard Management Controller (BMC) software can let attackers hijack and potentially brick vulnerable servers.
Critical AMI MegaRAC bug can let attackers hijack, brick servers
A new critical severity vulnerability found in American Megatrends International's MegaRAC Baseboard Management Controller (BMC) software can let attackers hijack and potentially brick vulnerable servers.
www.bleepingcomputer.com
March 18, 2025 at 3:29 PM
A new critical severity vulnerability found in American Megatrends International's MegaRAC Baseboard Management Controller (BMC) software can let attackers hijack and potentially brick vulnerable servers.
Reposted by Arnaud Lefebvre
"We come in peace!" 🛸👽
Clever Cloud just crash-landed on Bluesky, and we’re here to deploy chaos (but, like, the good kind).
If you love it… then hey, we might just be your people.
Clever Cloud just crash-landed on Bluesky, and we’re here to deploy chaos (but, like, the good kind).
If you love it… then hey, we might just be your people.
a green alien is laying on a couch
Alt: A green alien is laying on a couch waving hello.
media.tenor.com
March 10, 2025 at 10:42 AM
"We come in peace!" 🛸👽
Clever Cloud just crash-landed on Bluesky, and we’re here to deploy chaos (but, like, the good kind).
If you love it… then hey, we might just be your people.
Clever Cloud just crash-landed on Bluesky, and we’re here to deploy chaos (but, like, the good kind).
If you love it… then hey, we might just be your people.