@bujuman.bsky.social
Lateral thinker / IS security MGMT practitioner
Reposted
Google Antigravity vibe-codes user's entire drive out of existence
Google Antigravity vibe-codes user's entire drive out of existence
Caveat coder
In what appears to be the latest example of a troubling trend of "vibe coding" software development tools behaving badly, a Reddit user is reporting that Google's Antigravity platform improperly wiped out the contents of an entire hard drive partition. …
dlvr.it
December 1, 2025 at 9:47 PM
Google Antigravity vibe-codes user's entire drive out of existence
Reposted
medium.com/@nehaspatil/...
Security as a post-release checklist doesn't work anymore. Modern pipelines need to catch vulnerabilities before code reaches production, not after. DevSecOps means embedding security scans into every build automatically. (1️⃣/3️⃣)
🧵
Security as a post-release checklist doesn't work anymore. Modern pipelines need to catch vulnerabilities before code reaches production, not after. DevSecOps means embedding security scans into every build automatically. (1️⃣/3️⃣)
🧵
Building a Secure CI/CD Pipeline with OWASP, SonarQube & Trivy
Gone are the days when security was a post-release checklist item.
In modern DevOps, speed without security is a recipe for disaster.
medium.com
November 27, 2025 at 5:00 PM
medium.com/@nehaspatil/...
Security as a post-release checklist doesn't work anymore. Modern pipelines need to catch vulnerabilities before code reaches production, not after. DevSecOps means embedding security scans into every build automatically. (1️⃣/3️⃣)
🧵
Security as a post-release checklist doesn't work anymore. Modern pipelines need to catch vulnerabilities before code reaches production, not after. DevSecOps means embedding security scans into every build automatically. (1️⃣/3️⃣)
🧵
Reposted
medium.com/@tolghn/from...
With the NGINX Ingress Controller getting deprecated there is a lot of discussion in this space. One approach is using the newer Gateway API. An example of migrating to the Gateway API using the AWS Load Balancer Controller is below. (1️⃣/3️⃣)
🧵
With the NGINX Ingress Controller getting deprecated there is a lot of discussion in this space. One approach is using the newer Gateway API. An example of migrating to the Gateway API using the AWS Load Balancer Controller is below. (1️⃣/3️⃣)
🧵
From Nginx Ingress to ALB Gateway API on Amazon EKS
Introduction
medium.com
November 20, 2025 at 3:57 PM
medium.com/@tolghn/from...
With the NGINX Ingress Controller getting deprecated there is a lot of discussion in this space. One approach is using the newer Gateway API. An example of migrating to the Gateway API using the AWS Load Balancer Controller is below. (1️⃣/3️⃣)
🧵
With the NGINX Ingress Controller getting deprecated there is a lot of discussion in this space. One approach is using the newer Gateway API. An example of migrating to the Gateway API using the AWS Load Balancer Controller is below. (1️⃣/3️⃣)
🧵
End of windows 10 support:
Y a-t-il dans ce réseau un membre de l'assemblée nationale qui pourrait défendre l'idée de débloquer le compte CPF-dont la protection contre les tentatives d'arnaques nous épuisent - pour le remplacement des machines pour les personnes touchées ?
Y a-t-il dans ce réseau un membre de l'assemblée nationale qui pourrait défendre l'idée de débloquer le compte CPF-dont la protection contre les tentatives d'arnaques nous épuisent - pour le remplacement des machines pour les personnes touchées ?
November 16, 2025 at 8:02 PM
End of windows 10 support:
Y a-t-il dans ce réseau un membre de l'assemblée nationale qui pourrait défendre l'idée de débloquer le compte CPF-dont la protection contre les tentatives d'arnaques nous épuisent - pour le remplacement des machines pour les personnes touchées ?
Y a-t-il dans ce réseau un membre de l'assemblée nationale qui pourrait défendre l'idée de débloquer le compte CPF-dont la protection contre les tentatives d'arnaques nous épuisent - pour le remplacement des machines pour les personnes touchées ?
Reposted
builder.aws.com/content/35LY...
GenAI tools have entered everyone's life in a big way. They can help with a lot including increase developer productivity in the hands of experienced devs. Using a spec-driven approach can help building maintainable code like with creating MCP servers. (1️⃣/3️⃣)
🧵
GenAI tools have entered everyone's life in a big way. They can help with a lot including increase developer productivity in the hands of experienced devs. Using a spec-driven approach can help building maintainable code like with creating MCP servers. (1️⃣/3️⃣)
🧵
AWS Builder Center
Connect with builders who understand your journey. Share solutions, influence AWS product development, and access useful content that accelerates your growth. Your community starts here.
builder.aws.com
November 14, 2025 at 4:21 PM
builder.aws.com/content/35LY...
GenAI tools have entered everyone's life in a big way. They can help with a lot including increase developer productivity in the hands of experienced devs. Using a spec-driven approach can help building maintainable code like with creating MCP servers. (1️⃣/3️⃣)
🧵
GenAI tools have entered everyone's life in a big way. They can help with a lot including increase developer productivity in the hands of experienced devs. Using a spec-driven approach can help building maintainable code like with creating MCP servers. (1️⃣/3️⃣)
🧵
Reposted
medium.com/@repobaby/wh...
S3 has to be the most widely used cloud service. Most people think of it as just an endless network storage service. It can do a lot more though and can also end up costing a lot of money if you don't understand how it works and the pricing model. (1️⃣/3️⃣)
🧵
S3 has to be the most widely used cloud service. Most people think of it as just an endless network storage service. It can do a lot more though and can also end up costing a lot of money if you don't understand how it works and the pricing model. (1️⃣/3️⃣)
🧵
Why I stopped thinking of S3 as just a file server and started saving big
When I migrated my first workload from our on-premises data center to AWS, I treated Simple Storage Service (S3) like a giant, durable…
medium.com
November 5, 2025 at 3:32 PM
medium.com/@repobaby/wh...
S3 has to be the most widely used cloud service. Most people think of it as just an endless network storage service. It can do a lot more though and can also end up costing a lot of money if you don't understand how it works and the pricing model. (1️⃣/3️⃣)
🧵
S3 has to be the most widely used cloud service. Most people think of it as just an endless network storage service. It can do a lot more though and can also end up costing a lot of money if you don't understand how it works and the pricing model. (1️⃣/3️⃣)
🧵
Reposted
🐩Pour la dernière édition de la Cyber-revue à bas bruit, on parle d'architectes un peu particuliers, de cyberattaque contre une crèche et de Happy Gilmore et... de chien :)
Bonne lecture !
#cybersécurité #CoréeduNord #ransomware #IoTSecurity #spyware
Bonne lecture !
#cybersécurité #CoréeduNord #ransomware #IoTSecurity #spyware
Le Corbusier nord-coréen, le chien mystérieux et l'image publique
Bonjour ☕ Bienvenue dans la Cyber-revue à bas bruit de la semaine. Les deux dernières semaines, j'étais en vadrouille (à The ONE Conference à La Haye, puis à la conf annuelle de l'ETSI à Sophia-Antipolis).
www.linkedin.com
October 20, 2025 at 4:36 PM
🐩Pour la dernière édition de la Cyber-revue à bas bruit, on parle d'architectes un peu particuliers, de cyberattaque contre une crèche et de Happy Gilmore et... de chien :)
Bonne lecture !
#cybersécurité #CoréeduNord #ransomware #IoTSecurity #spyware
Bonne lecture !
#cybersécurité #CoréeduNord #ransomware #IoTSecurity #spyware
Reposted
aws.amazon.com/blogs/aws/ac...
When iterating on changes for cloud deployments you may decide changes over and over takes up too much time or potentially costs too much when every developer has to have their own environment. Using a tool look Localstack can help. (1️⃣/3️⃣)
🧵
When iterating on changes for cloud deployments you may decide changes over and over takes up too much time or potentially costs too much when every developer has to have their own environment. Using a tool look Localstack can help. (1️⃣/3️⃣)
🧵
Accelerate serverless testing with LocalStack integration in VS Code IDE | Amazon Web Services
AWS is announcing integrated LocalStack support in the AWS Toolkit for Visual Studio Code that makes it easier than ever for developers to test and debug serverless applications locally. This enhancem...
aws.amazon.com
September 14, 2025 at 2:18 AM
aws.amazon.com/blogs/aws/ac...
When iterating on changes for cloud deployments you may decide changes over and over takes up too much time or potentially costs too much when every developer has to have their own environment. Using a tool look Localstack can help. (1️⃣/3️⃣)
🧵
When iterating on changes for cloud deployments you may decide changes over and over takes up too much time or potentially costs too much when every developer has to have their own environment. Using a tool look Localstack can help. (1️⃣/3️⃣)
🧵
Reposted
Docker Desktop bug let containers hop the fence with barely a nudge
Docker Desktop bug let containers hop the fence with barely a nudge
Isolation? We've heard of it
Docker has patched a critical hole in Docker Desktop that let a container break out and take control of the host machine with laughable ease.…
dlvr.it
August 26, 2025 at 12:20 PM
Docker Desktop bug let containers hop the fence with barely a nudge
Reposted
You can't secure what you don't know about. 👀
GitHub's dependency graph can help. ✅ Use it to get a project's entire software supply chain, including both direct and indirect dependencies.
Enable this feature and improve your project's security.👇
github.blog/security/sup...
GitHub's dependency graph can help. ✅ Use it to get a project's entire software supply chain, including both direct and indirect dependencies.
Enable this feature and improve your project's security.👇
github.blog/security/sup...
July 14, 2025 at 9:09 PM
You can't secure what you don't know about. 👀
GitHub's dependency graph can help. ✅ Use it to get a project's entire software supply chain, including both direct and indirect dependencies.
Enable this feature and improve your project's security.👇
github.blog/security/sup...
GitHub's dependency graph can help. ✅ Use it to get a project's entire software supply chain, including both direct and indirect dependencies.
Enable this feature and improve your project's security.👇
github.blog/security/sup...
Reposted
"Here's the big idea behind #passkeys: If you never have to share your secret with a legitimate relying party, then you'll never accidentally share your secret with a malicious actor"
www.zdnet.com/article/how-... #cybersecurity #infosec #passwordless #authentication
www.zdnet.com/article/how-... #cybersecurity #infosec #passwordless #authentication
How passkeys work: The complete guide to your inevitable passwordless future
Why are passkeys so much safer than passwords? And how exactly does this sorcery work? We go behind the scenes of this still-evolving authentication process.
www.zdnet.com
July 15, 2025 at 6:03 PM
"Here's the big idea behind #passkeys: If you never have to share your secret with a legitimate relying party, then you'll never accidentally share your secret with a malicious actor"
www.zdnet.com/article/how-... #cybersecurity #infosec #passwordless #authentication
www.zdnet.com/article/how-... #cybersecurity #infosec #passwordless #authentication
Reposted
community.aws/content/2zQB...
With every week we see many new GenAI tools and frameworks being released non-stop. Some of the biggest ones in the last few months have been around the Model Context Protocol (MCP) from Anthropic. MCP offers endless possibilities but lots of concern as well. (1️⃣/3️⃣)
🧵
With every week we see many new GenAI tools and frameworks being released non-stop. Some of the biggest ones in the last few months have been around the Model Context Protocol (MCP) from Anthropic. MCP offers endless possibilities but lots of concern as well. (1️⃣/3️⃣)
🧵
Why MCP is not Production ready yet.
A Critical Assessment of Production Readiness for MPC
community.aws
July 5, 2025 at 3:28 PM
community.aws/content/2zQB...
With every week we see many new GenAI tools and frameworks being released non-stop. Some of the biggest ones in the last few months have been around the Model Context Protocol (MCP) from Anthropic. MCP offers endless possibilities but lots of concern as well. (1️⃣/3️⃣)
🧵
With every week we see many new GenAI tools and frameworks being released non-stop. Some of the biggest ones in the last few months have been around the Model Context Protocol (MCP) from Anthropic. MCP offers endless possibilities but lots of concern as well. (1️⃣/3️⃣)
🧵
Reposted
CertMate is a powerful SSL certificate management system designed for modern infrastructure for developers and IT pros. Source code repo github.com/fabriziosalm...
GitHub - fabriziosalmi/certmate: SSL Certificate Management System (API + UI)
SSL Certificate Management System (API + UI). Contribute to fabriziosalmi/certmate development by creating an account on GitHub.
github.com
July 5, 2025 at 9:19 AM
CertMate is a powerful SSL certificate management system designed for modern infrastructure for developers and IT pros. Source code repo github.com/fabriziosalm...
Reposted
Let's Encrypt rolls out free security certs for IP addresses
Let's Encrypt rolls out free security certs for IP addresses
You probably don't need one, but it's nice to have the option
Let's Encrypt, a certificate authority (CA) known for its free TLS/SSL certificates, has begun issuing digital certificates for IP addresses.…
dlvr.it
July 3, 2025 at 7:39 AM
Let's Encrypt rolls out free security certs for IP addresses
Reposted
www.freecodecamp.org/news/from-co...
Using automation like Github Actions and workflows is a great way to get consistent behaviour for many tasks. When working with Kubernetes using Gitops is an approach you should consider. The article below shows a detailed solution using this. (1️⃣/3️⃣)
🧵
Using automation like Github Actions and workflows is a great way to get consistent behaviour for many tasks. When working with Kubernetes using Gitops is an approach you should consider. The article below shows a detailed solution using this. (1️⃣/3️⃣)
🧵
From Commit to Production: Hands-On GitOps Promotion with GitHub Actions, Argo CD, Helm, and Kargo
Have you ever wanted to go beyond ‘hello world’ and build a real, production-style CI/CD pipeline – starting from scratch? Let’s pause for a moment: what are you trying to learn from your DevOps journ...
www.freecodecamp.org
June 12, 2025 at 5:38 PM
www.freecodecamp.org/news/from-co...
Using automation like Github Actions and workflows is a great way to get consistent behaviour for many tasks. When working with Kubernetes using Gitops is an approach you should consider. The article below shows a detailed solution using this. (1️⃣/3️⃣)
🧵
Using automation like Github Actions and workflows is a great way to get consistent behaviour for many tasks. When working with Kubernetes using Gitops is an approach you should consider. The article below shows a detailed solution using this. (1️⃣/3️⃣)
🧵
Reposted
dev.to/aws-builders...
Terraform makes it much easier to keep your resources organized, duplicate envs when needed, and help with cleanup when no longer needed. When working with AWS, provisioning across multiple regions with Terraform is now easier in the latest Terraform beta version. (1️⃣/3️⃣)
🧵
Terraform makes it much easier to keep your resources organized, duplicate envs when needed, and help with cleanup when no longer needed. When working with AWS, provisioning across multiple regions with Terraform is now easier in the latest Terraform beta version. (1️⃣/3️⃣)
🧵
Terraform AWS multi-region deployments: region meta-argument in Beta
Terraform holds a solid position in the ADOPT category of SOK Tech Radar, and for a good reason. Most...
dev.to
June 8, 2025 at 3:54 PM
dev.to/aws-builders...
Terraform makes it much easier to keep your resources organized, duplicate envs when needed, and help with cleanup when no longer needed. When working with AWS, provisioning across multiple regions with Terraform is now easier in the latest Terraform beta version. (1️⃣/3️⃣)
🧵
Terraform makes it much easier to keep your resources organized, duplicate envs when needed, and help with cleanup when no longer needed. When working with AWS, provisioning across multiple regions with Terraform is now easier in the latest Terraform beta version. (1️⃣/3️⃣)
🧵
Reposted
Dark Patterns explained: How e-commerce websites trick you and how to fight back
search.app/FJDPZ
#darkpatterns #EcommerceMarketing #ecommerce #onlineshopping #tech #technology
search.app/FJDPZ
#darkpatterns #EcommerceMarketing #ecommerce #onlineshopping #tech #technology
Dark Patterns explained: How e-commerce websites trick you and how to fight back
Union Minister for Food and Consumer Affairs, Pralhad Joshi, urged all leading online retail platforms to comply with the government’s rules regarding ‘dark patterns’.
search.app
May 31, 2025 at 11:44 AM
Dark Patterns explained: How e-commerce websites trick you and how to fight back
search.app/FJDPZ
#darkpatterns #EcommerceMarketing #ecommerce #onlineshopping #tech #technology
search.app/FJDPZ
#darkpatterns #EcommerceMarketing #ecommerce #onlineshopping #tech #technology
Reposted
iamrajaram1.medium.com/demystifying...
AWS's latest database offering DSQL is not GA yet but is in preview and looks very promising. It supports active-active high availability and enables simultaneous read and write operations across multiple regions while maintaining strong consistency. (1️⃣/2️⃣)
🧵
AWS's latest database offering DSQL is not GA yet but is in preview and looks very promising. It supports active-active high availability and enables simultaneous read and write operations across multiple regions while maintaining strong consistency. (1️⃣/2️⃣)
🧵
Demystifying AWS DSQL: Building Scalable, Multi-Region Distributed SQL Clusters
In today’s data-driven world, low-latency access, high availability, and global scalability are non-negotiable for modern applications…
iamrajaram1.medium.com
May 26, 2025 at 2:38 PM
iamrajaram1.medium.com/demystifying...
AWS's latest database offering DSQL is not GA yet but is in preview and looks very promising. It supports active-active high availability and enables simultaneous read and write operations across multiple regions while maintaining strong consistency. (1️⃣/2️⃣)
🧵
AWS's latest database offering DSQL is not GA yet but is in preview and looks very promising. It supports active-active high availability and enables simultaneous read and write operations across multiple regions while maintaining strong consistency. (1️⃣/2️⃣)
🧵
Reposted
When should you use GitHub-hosted runners versus self-hosted runners with GitHub Actions? 🤔 It depends on your needs for control, security, scalability, and cost. Get a clear breakdown of the pros, cons, and factors to consider in this detailed guide. ⬇️
When to choose GitHub-Hosted runners or self-hosted runners with GitHub Actions
This deep dive explores important factors to consider when making this critical infrastructure decision for your development team.
github.blog
April 28, 2025 at 9:58 PM
When should you use GitHub-hosted runners versus self-hosted runners with GitHub Actions? 🤔 It depends on your needs for control, security, scalability, and cost. Get a clear breakdown of the pros, cons, and factors to consider in this detailed guide. ⬇️
Hey 🐦 lovers.
Would like to share real time detected birds from Tolosa.#addBirder
Would like to share real time detected birds from Tolosa.#addBirder
April 21, 2025 at 6:21 PM
Hey 🐦 lovers.
Would like to share real time detected birds from Tolosa.#addBirder
Would like to share real time detected birds from Tolosa.#addBirder
Reposted
medium.com/@khaled.kurd...
I recommend using managed services on AWS whenever possible but there will be cases that require running EC2 instances. When you have to use EC2 instances you will need to ensure they are up to date with patches. An automated solution for that is described below. (1️⃣/2️⃣)
🧵
I recommend using managed services on AWS whenever possible but there will be cases that require running EC2 instances. When you have to use EC2 instances you will need to ensure they are up to date with patches. An automated solution for that is described below. (1️⃣/2️⃣)
🧵
Automated EC2 Patching Solution with AWS Step Functions: A Serverless Approach
Introduction
medium.com
April 19, 2025 at 2:43 AM
medium.com/@khaled.kurd...
I recommend using managed services on AWS whenever possible but there will be cases that require running EC2 instances. When you have to use EC2 instances you will need to ensure they are up to date with patches. An automated solution for that is described below. (1️⃣/2️⃣)
🧵
I recommend using managed services on AWS whenever possible but there will be cases that require running EC2 instances. When you have to use EC2 instances you will need to ensure they are up to date with patches. An automated solution for that is described below. (1️⃣/2️⃣)
🧵
Reposted
👓Ce n'est pas parce qu'on dit rien qu'on fait rien ;) Je publie à partir d'aujourd'hui mes conclusions - et un nouvel outil - sur #NIS2 en Europe.
Depuis novembre 2024, je construis une plate-forme pour comprendre les exigences nationales résultant de la transposition NIS2.
👉 dub.sh/NIS2enEurope
Depuis novembre 2024, je construis une plate-forme pour comprendre les exigences nationales résultant de la transposition NIS2.
👉 dub.sh/NIS2enEurope
April 15, 2025 at 9:46 AM
👓Ce n'est pas parce qu'on dit rien qu'on fait rien ;) Je publie à partir d'aujourd'hui mes conclusions - et un nouvel outil - sur #NIS2 en Europe.
Depuis novembre 2024, je construis une plate-forme pour comprendre les exigences nationales résultant de la transposition NIS2.
👉 dub.sh/NIS2enEurope
Depuis novembre 2024, je construis une plate-forme pour comprendre les exigences nationales résultant de la transposition NIS2.
👉 dub.sh/NIS2enEurope
Reposted
📣 This just in...
The *open source* and official GitHub MCP Server is here 🤩 github.blog/changelog/20...
The *open source* and official GitHub MCP Server is here 🤩 github.blog/changelog/20...
github-mcp-server is now available in public preview · GitHub Changelog
github-mcp-server [Public Preview]
github.blog
April 4, 2025 at 8:15 PM
📣 This just in...
The *open source* and official GitHub MCP Server is here 🤩 github.blog/changelog/20...
The *open source* and official GitHub MCP Server is here 🤩 github.blog/changelog/20...