@postmodern-mod3.bsky.social
Software Engineer, Open Source Developer/Maintainer. Ruby, Crystal, Bash. Sometimes I do security stuff.
GitHub: https://github.com/postmodern
Mastodon:
https://ruby.social/@postmodern
https://infosec.exchange/@postmodern
GitHub: https://github.com/postmodern
Mastodon:
https://ruby.social/@postmodern
https://infosec.exchange/@postmodern
Could someone on @securitylab.github.com's GHSA team please look at these PRs to remove duplicate GHSA entries? It's been a week and I'm still waiting.
* github.com/github/advis...
* github.com/github/advis...
Also this one which was contested:
* github.com/github/advis...
#github #ghsa
* github.com/github/advis...
* github.com/github/advis...
Also this one which was contested:
* github.com/github/advis...
#github #ghsa
Remove duplicate `camaleon_cms` advisory by postmodern · Pull Request #5622 · github/advisory-database
GHSA-3hp8-6j24-m5gm appears to be the exact same advisory as GHSA-7x4w-cj9r-h4v9, but with slightly different formatting and no CVSS metadata.
github.com
May 28, 2025 at 3:18 PM
Could someone on @securitylab.github.com's GHSA team please look at these PRs to remove duplicate GHSA entries? It's been a week and I'm still waiting.
* github.com/github/advis...
* github.com/github/advis...
Also this one which was contested:
* github.com/github/advis...
#github #ghsa
* github.com/github/advis...
* github.com/github/advis...
Also this one which was contested:
* github.com/github/advis...
#github #ghsa
When is ruby-3.5.0-preview2 scheduled to be released? Apparently the cgi library is going to be partially removed in 3.5.0-preview2, but is still present in 3.5.0-preview1.
bugs.ruby-lang.org/issues/21258
#ruby
bugs.ruby-lang.org/issues/21258
#ruby
Feature #21258: Retire CGI library from Ruby 3.5 - Ruby - Ruby Issue Tracking System
Redmine
bugs.ruby-lang.org
May 16, 2025 at 7:07 PM
When is ruby-3.5.0-preview2 scheduled to be released? Apparently the cgi library is going to be partially removed in 3.5.0-preview2, but is still present in 3.5.0-preview1.
bugs.ruby-lang.org/issues/21258
#ruby
bugs.ruby-lang.org/issues/21258
#ruby
Added Ruby 3.4.4 to the ruby-versions database. ruby-install users can now safely upgrade to Ruby 3.4.4.
$ ruby-install -U ruby-3.4.4
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #ruby_install #rubyinstall
$ ruby-install -U ruby-3.4.4
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #ruby_install #rubyinstall
Ruby 3.4.4 Released
www.ruby-lang.org
May 14, 2025 at 6:56 PM
Added Ruby 3.4.4 to the ruby-versions database. ruby-install users can now safely upgrade to Ruby 3.4.4.
$ ruby-install -U ruby-3.4.4
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #ruby_install #rubyinstall
$ ruby-install -U ruby-3.4.4
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #ruby_install #rubyinstall
Just added Ruby 3.5.0-preview1 to the ruby-versions database for ruby-install users. You can now safely install Ruby 3.5.0-preview1 and test it.
$ ruby-install -U ruby-3.5.0-preview1
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #rubyinstall #ruby_install
$ ruby-install -U ruby-3.5.0-preview1
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #rubyinstall #ruby_install
Ruby 3.5.0 preview1 Released
www.ruby-lang.org
April 22, 2025 at 7:50 PM
Just added Ruby 3.5.0-preview1 to the ruby-versions database for ruby-install users. You can now safely install Ruby 3.5.0-preview1 and test it.
$ ruby-install -U ruby-3.5.0-preview1
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #rubyinstall #ruby_install
$ ruby-install -U ruby-3.5.0-preview1
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #rubyinstall #ruby_install
Added Ruby 3.3.8 to the ruby-versions database for ruby-install users.
$ ruby-install -U ruby-3.3.8
www.ruby-lang.org/en/news/2025...
#ruby #ruby_install #rubyinstall
$ ruby-install -U ruby-3.3.8
www.ruby-lang.org/en/news/2025...
#ruby #ruby_install #rubyinstall
Ruby 3.3.8 Released
www.ruby-lang.org
April 15, 2025 at 7:04 PM
Added Ruby 3.3.8 to the ruby-versions database for ruby-install users.
$ ruby-install -U ruby-3.3.8
www.ruby-lang.org/en/news/2025...
#ruby #ruby_install #rubyinstall
$ ruby-install -U ruby-3.3.8
www.ruby-lang.org/en/news/2025...
#ruby #ruby_install #rubyinstall
Added Ruby 3.4.3 to the ruby-versions database for ruby-install users.
$ ruby-install -U ruby-3.4.3
www.ruby-lang.org/en/news/2025...
#ruby #ruby_install #rubyinstall
$ ruby-install -U ruby-3.4.3
www.ruby-lang.org/en/news/2025...
#ruby #ruby_install #rubyinstall
Ruby 3.4.3 Released
www.ruby-lang.org
April 14, 2025 at 7:32 PM
Added Ruby 3.4.3 to the ruby-versions database for ruby-install users.
$ ruby-install -U ruby-3.4.3
www.ruby-lang.org/en/news/2025...
#ruby #ruby_install #rubyinstall
$ ruby-install -U ruby-3.4.3
www.ruby-lang.org/en/news/2025...
#ruby #ruby_install #rubyinstall
Where do you (or should you) put the code used for code generation within a library? Obviously cannot put it in `lib/`, because this code is only meant to be used internally to generate the code in `lib/`.
February 18, 2025 at 3:08 AM
Where do you (or should you) put the code used for code generation within a library? Obviously cannot put it in `lib/`, because this code is only meant to be used internally to generate the code in `lib/`.
Ronin 2.1.1 and other patch versions have been released!
ronin-rb.dev/blog/2025/02...
#ronin #roninrb #ruby #infosec #securitytools #opensource
ronin-rb.dev/blog/2025/02...
#ronin #roninrb #ruby #infosec #securitytools #opensource
Ronin 2.1.1 and more released! | RoninReddit logoHackerNews logolobste.rs iconLinkedIn icon
ronin-rb.dev
February 16, 2025 at 8:32 AM
Ronin 2.1.1 and other patch versions have been released!
ronin-rb.dev/blog/2025/02...
#ronin #roninrb #ruby #infosec #securitytools #opensource
ronin-rb.dev/blog/2025/02...
#ronin #roninrb #ruby #infosec #securitytools #opensource
Hashtags > Feeds. The concept of Feeds for a topic on #BlueSky are broken. There's no way to filter out off-topic posts from Feeds and I keep seeing random fan-art accounts show up in the largest CyberSec / InfoSec Feed. If only there was some kind of way to "tag" the posts with relevant keywords...
February 15, 2025 at 2:04 AM
Hashtags > Feeds. The concept of Feeds for a topic on #BlueSky are broken. There's no way to filter out off-topic posts from Feeds and I keep seeing random fan-art accounts show up in the largest CyberSec / InfoSec Feed. If only there was some kind of way to "tag" the posts with relevant keywords...
Added Ruby 3.4.2 to the ruby-versions database. It is now safe for ruby-install users to install Ruby 3.4.2.
$ ruby-install -U ruby 3.4.2
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #ruby_install #rubyinstall
$ ruby-install -U ruby 3.4.2
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #ruby_install #rubyinstall
Ruby 3.4.2 Released
www.ruby-lang.org
February 14, 2025 at 10:44 PM
Added Ruby 3.4.2 to the ruby-versions database. It is now safe for ruby-install users to install Ruby 3.4.2.
$ ruby-install -U ruby 3.4.2
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #ruby_install #rubyinstall
$ ruby-install -U ruby 3.4.2
www.ruby-lang.org/en/news/2025...
github.com/postmodern/r...
#ruby #ruby_install #rubyinstall
Lazy Rails: how do you define String based/backed Enums in ActiveRecord 7.x? Appears that by giving an explicit mapping of Hash{Symbol => String}, this causes an ArgumentError where it incorrectly tries to define the same `enum_value?` method twice.
github.com/ronin-rb/ron...
#activerecord
github.com/ronin-rb/ron...
#activerecord
Upate ActiveRecord `enum` syntax (closes #143). · ronin-rb/ronin-db-activerecord@51c9b07
ActiveRecord backend for the Ronin Database. Contribute to ronin-rb/ronin-db-activerecord development by creating an account on GitHub.
github.com
February 12, 2025 at 12:12 AM
Lazy Rails: how do you define String based/backed Enums in ActiveRecord 7.x? Appears that by giving an explicit mapping of Hash{Symbol => String}, this causes an ArgumentError where it incorrectly tries to define the same `enum_value?` method twice.
github.com/ronin-rb/ron...
#activerecord
github.com/ronin-rb/ron...
#activerecord
Is there a way to flag or request that an account be removed from a BlueSky Feed? Just noticed a Sonic the Hedgehog-themed shitpost account in the largest Cyber Security / InfoSec feed. Yay, how about no.
#bluesky
#bluesky
February 10, 2025 at 7:11 AM
Is there a way to flag or request that an account be removed from a BlueSky Feed? Just noticed a Sonic the Hedgehog-themed shitpost account in the largest Cyber Security / InfoSec feed. Yay, how about no.
#bluesky
#bluesky
Released ruby-install 0.10.1 with a minor fix for homebrew users who also want to compile ruby with jemalloc support.
github.com/postmodern/r...
github.com/postmodern/r...
#ruby #ruby_install #jemalloc #homebrew
github.com/postmodern/r...
github.com/postmodern/r...
#ruby #ruby_install #jemalloc #homebrew
Release 0.10.1 · postmodern/ruby-install
ruby
Pass in the path of homebrew's jemalloc to ./configure via --with-opt-dir.
github.com
February 6, 2025 at 6:58 PM
Released ruby-install 0.10.1 with a minor fix for homebrew users who also want to compile ruby with jemalloc support.
github.com/postmodern/r...
github.com/postmodern/r...
#ruby #ruby_install #jemalloc #homebrew
github.com/postmodern/r...
github.com/postmodern/r...
#ruby #ruby_install #jemalloc #homebrew
Released ruby-install 0.10.0! This release contains many small improvements to usability and better support for building CRuby with jemalloc or YJIT enabled.
$ ruby-install ruby -- --with-jemalloc
$ ruby-install ruby -- --enable-yjit
github.com/postmodern/r...
#ruby #yjit #jemalloc
$ ruby-install ruby -- --with-jemalloc
$ ruby-install ruby -- --enable-yjit
github.com/postmodern/r...
#ruby #yjit #jemalloc
Release 0.10.0 · postmodern/ruby-install
If the installation directory or one of it's parent directories cannot be written to then ruby-install will exit with an error before attempting to build the Ruby. When running under a non-TTY, dis...
github.com
February 5, 2025 at 10:39 PM
Released ruby-install 0.10.0! This release contains many small improvements to usability and better support for building CRuby with jemalloc or YJIT enabled.
$ ruby-install ruby -- --with-jemalloc
$ ruby-install ruby -- --enable-yjit
github.com/postmodern/r...
#ruby #yjit #jemalloc
$ ruby-install ruby -- --with-jemalloc
$ ruby-install ruby -- --enable-yjit
github.com/postmodern/r...
#ruby #yjit #jemalloc
I'm curious what other Rubyists/Railists are using for setting up external/backend API servers (aka micro-services or macro-services)? How are you managing authentication between the app and the external API?
#ruby #rails #microservices #macroservices
#ruby #rails #microservices #macroservices
February 5, 2025 at 9:12 AM
I'm curious what other Rubyists/Railists are using for setting up external/backend API servers (aka micro-services or macro-services)? How are you managing authentication between the app and the external API?
#ruby #rails #microservices #macroservices
#ruby #rails #microservices #macroservices
BlueSky Feature Request: the ability to save or follow searches. It should be easy to monitor certain keywords.
#bluesky #featurerequest
#bluesky #featurerequest
February 5, 2025 at 8:24 AM
BlueSky Feature Request: the ability to save or follow searches. It should be easy to monitor certain keywords.
#bluesky #featurerequest
#bluesky #featurerequest
How are people running their tests on GitHub Actions as *non-root* users? I have tests that specifically test when a given directory is writable and not writable. Running the tests as a privileged root user makes *everything* writable and thus breaks some tests.
#githubactions
#githubactions
February 3, 2025 at 7:31 AM
How are people running their tests on GitHub Actions as *non-root* users? I have tests that specifically test when a given directory is writable and not writable. Running the tests as a privileged root user makes *everything* writable and thus breaks some tests.
#githubactions
#githubactions
Finally added Ruby 3.4 to Ronin's CI and am getting bitten by base64 and csv load issues, due to them no longer being "default gems" but now just "bundled gems". Ruby code can still require these files just fine, but Bundler is excluding them. Must we really add these gems to gem's gemspecs?
#ruby
#ruby
February 2, 2025 at 10:57 PM
Finally added Ruby 3.4 to Ronin's CI and am getting bitten by base64 and csv load issues, due to them no longer being "default gems" but now just "bundled gems". Ruby code can still require these files just fine, but Bundler is excluding them. Must we really add these gems to gem's gemspecs?
#ruby
#ruby
Why doesn't sinatra have it's own project generator CLI util?
January 30, 2025 at 7:35 AM
Why doesn't sinatra have it's own project generator CLI util?
January 29, 2025 at 7:09 PM
This Reddit post showing off Async Ruby's performance against Python, Node.js, and Go is making the rounds.
www.reddit.com/r/ruby/comme...
Also worth noting that ronin-recon also uses Async Ruby for it's custom recursive recon engine.
github.com/ronin-rb/ron...
#ruby #roninrb #infosec #recon
www.reddit.com/r/ruby/comme...
Also worth noting that ronin-recon also uses Async Ruby for it's custom recursive recon engine.
github.com/ronin-rb/ron...
#ruby #roninrb #infosec #recon
From the ruby community on Reddit: Ruby Falcon is 2x faster than asynchronous Python, as fast as Node.js, and slightly slower than Go. Moreover, the Ruby code doesn’t include async/await spam.
Explore this post and more from the ruby community
www.reddit.com
January 29, 2025 at 3:41 AM
This Reddit post showing off Async Ruby's performance against Python, Node.js, and Go is making the rounds.
www.reddit.com/r/ruby/comme...
Also worth noting that ronin-recon also uses Async Ruby for it's custom recursive recon engine.
github.com/ronin-rb/ron...
#ruby #roninrb #infosec #recon
www.reddit.com/r/ruby/comme...
Also worth noting that ronin-recon also uses Async Ruby for it's custom recursive recon engine.
github.com/ronin-rb/ron...
#ruby #roninrb #infosec #recon
Reposted
Oooh, this is a great point! `yay rust` + `ruby-install 3.3` later…
December 4, 2024 at 11:51 AM
Oooh, this is a great point! `yay rust` + `ruby-install 3.3` later…
BlueSky Feature Request: it should be possible to follow a hashtag or add a hashtag to a List. Mastodon has this feature and it was primarily written by some guy in Germany in his free time. Why doesn't BlueSky, with millions in VC funding, not have this feature yet?
#bluesky #featurerequest
#bluesky #featurerequest
January 28, 2025 at 8:27 PM
BlueSky Feature Request: it should be possible to follow a hashtag or add a hashtag to a List. Mastodon has this feature and it was primarily written by some guy in Germany in his free time. Why doesn't BlueSky, with millions in VC funding, not have this feature yet?
#bluesky #featurerequest
#bluesky #featurerequest
BlueSky Feature Request: make it possible to switch to viewing the posts from a List directly from the home page, without having to click on Lists then select the individual List. It should be possible to switch to viewing a List in one mouse click from the home page.
#bluesky #featurerequest
#bluesky #featurerequest
January 28, 2025 at 8:12 PM
BlueSky Feature Request: make it possible to switch to viewing the posts from a List directly from the home page, without having to click on Lists then select the individual List. It should be possible to switch to viewing a List in one mouse click from the home page.
#bluesky #featurerequest
#bluesky #featurerequest
BlueSky Feature Request: allow adding someone to a List, but only show their posts if they contain certain keywords. This would allow a user to filter out off-topic posts from another user who occasionally posts interesting on-topic posts.
#bluesky #featurerequest
#bluesky #featurerequest
January 28, 2025 at 8:08 PM
BlueSky Feature Request: allow adding someone to a List, but only show their posts if they contain certain keywords. This would allow a user to filter out off-topic posts from another user who occasionally posts interesting on-topic posts.
#bluesky #featurerequest
#bluesky #featurerequest