Pablo Gutiérrez 🇲🇽 🇳🇱 🇪🇺
@pablomxnl.bsky.social
Techie. Geek.
I hate bash, I hate YAML, I've no clue what I'm doing
https://yeahwellyouknowthatsjustlikeuhyouropinionman.com/
I hate bash, I hate YAML, I've no clue what I'm doing
https://yeahwellyouknowthatsjustlikeuhyouropinionman.com/
haven't been in a company which uses them in a very long time (20 years). I have the impression it's a blast from the past, ie client/server or two tier desktop applications.
April 28, 2025 at 5:38 PM
haven't been in a company which uses them in a very long time (20 years). I have the impression it's a blast from the past, ie client/server or two tier desktop applications.
eso no es un gato Barteke! es una almohada de sofá 🤣🤣🤣😹😹😹
April 26, 2025 at 9:58 PM
eso no es un gato Barteke! es una almohada de sofá 🤣🤣🤣😹😹😹
usually these json files are fed to vulnerability scanners and other security tools on build pipelines, there are some tools to verify the quality of the sbom like
sbom-scorecard
or ntia-conformance-checker
Chainguard folks explain it really well:
edu.chainguard.dev/open-source/...
sbom-scorecard
or ntia-conformance-checker
Chainguard folks explain it really well:
edu.chainguard.dev/open-source/...
What Makes a Good SBOM?
An explanation of what makes a good SBOM
edu.chainguard.dev
April 23, 2025 at 5:28 AM
usually these json files are fed to vulnerability scanners and other security tools on build pipelines, there are some tools to verify the quality of the sbom like
sbom-scorecard
or ntia-conformance-checker
Chainguard folks explain it really well:
edu.chainguard.dev/open-source/...
sbom-scorecard
or ntia-conformance-checker
Chainguard folks explain it really well:
edu.chainguard.dev/open-source/...
Reposted by Pablo Gutiérrez 🇲🇽 🇳🇱 🇪🇺
Large scale distributed systems are hard. They will go down.
Teams need disaster response scenarios, so if GitHub is still down, they can still deploy, even if it's manual.
Mirror git locally. Or to gitlab. I worked in a place that didn't care if us-east-1 died, so did their customers. :-(
Teams need disaster response scenarios, so if GitHub is still down, they can still deploy, even if it's manual.
Mirror git locally. Or to gitlab. I worked in a place that didn't care if us-east-1 died, so did their customers. :-(
January 14, 2025 at 8:02 AM
Large scale distributed systems are hard. They will go down.
Teams need disaster response scenarios, so if GitHub is still down, they can still deploy, even if it's manual.
Mirror git locally. Or to gitlab. I worked in a place that didn't care if us-east-1 died, so did their customers. :-(
Teams need disaster response scenarios, so if GitHub is still down, they can still deploy, even if it's manual.
Mirror git locally. Or to gitlab. I worked in a place that didn't care if us-east-1 died, so did their customers. :-(
I use KDE Neon basically Ubuntu lts + latest plasma/KDE
December 3, 2024 at 10:12 AM
I use KDE Neon basically Ubuntu lts + latest plasma/KDE