Latest Articles

Newest Discoveries

Discovery Description
Get notified on expiring Azure App Registration client secrets
Versioning data in Postgres? Testing a git like approach got curious about storing everything in Git. It has out of the box versioning, branching, conflict resolution, scale, etc. After a few days of digging, I realised it was a bit overkill and not the best for structured content like JSON, but it motivated me to try something new, a generic git-like versioning but in Postgres.
The startup CTO's Handbook The Startup CTO's Handbook, a book covering leadership, management and technical topics for leaders of software engineering teams
Kubernetes And Kernel Panics How Netflix’s Container Platform Connects Linux Kernel Panics to Kubernetes Pods
BookStack BookStack is a simple, self-hosted, easy-to-use platform for organising and storing information. Open source
windmill Open-source developer platform and workflow engine Turn scripts into auto-generated UIs, APIs and cron jobs. Compose them as workflows or data pipelines. Build complex, data-intensive apps with ease. Open source Commercial
EAM: Grundprinzipien der agilen Enterprise-Architektur Enterprise-Architektur-Management muss agil sein, wenn die Unternehmensarchitektur im ständigen Wandel mithalten soll. Eine paar Grundprinzipien helfen dabei.
PostgreSQL Internals: 3 Things to Know About UPDATE Statements
Why would you still want to use strace in 2023?
deepflow - Instant Observability for Cloud-Native Applications Open source
drgn drgn (pronounced "dragon") is a debugger with an emphasis on programmability. drgn exposes the types and variables in a program for easy, expressive scripting in Python. Open source
A minimal, complete and correct ELF file As part of the compiler for my homebrew language, Garlic, I've been exploring what's in an ELF file. This is so I can output a binary file, ready for execution, instead of depending on an external compiler like GCC to do that last step. As a first step, I've hand-generated, byte-by-byte, a small ELF file that can be run on a 64-bit x86-64 Linux installation.
How I reduced the size of my very first published docker image by 40% - A lesson in dockerizing shell scripts How I reduced the size of my very first published docker image by 40% - A lesson in dockerizing shell scripts
Leaky Vessels: Docker and runc container breakout vulnerabilities (January 2024) s. An attacker could use these container escapes to gain unauthorized access to the underlying host operating system from within the container.
Leaky Vessels Dynamic Detector In this repository you'll find a reference implementation for an eBPF-based runtime detection for the runc and Docker vulnerabilities CVE-2024-21626, CVE-2024-23651, CVE-2024-23652 and CVE-2024-23653. It hooks into Linux syscalls (e.g., chdir, mount) and function invocations of the Docker daemon and associates them with Docker builds and container processes to identify exploitations of these vulnerabilities. Open source