If all the libraries are rust as the article claims having the top layer in Python probably makes even less difference. I tend to agree with the article’s statement about the value of the test code though, may even have…
And they’re introducing an EV tax that’ll be charged per mile. https://www.bbc.co.uk/news/articles/c8jw9l7gx92o
It definitely does come up. A common complaint in the UK is that there are two types of tax added to fuel prices; fuel duty and VAT. So you end up paying VAT on the fuel duty you’re paying. We have had fuel price…
Without giving away exactly how old I am… I am old enough to remember old programmers complaining about the wave of new shareware/freeware apps that people made with Visual Basic when that came out. Many of the apps…
The article is relatively clear that it is an assumption that the apps are vibe-coded based on the jump being so large. I guess they could’ve tried to cross-correlate that with sales of books or courses on app…
Having previously spent a reasonable amount of time on Metaculus I’m familiar with Brier scores and rating my confidence. I assume that’s how I was able to get better than average results. It’s an interesting app. It’s…
I’m not the person you’re talking to but the stats are copied from the second link in the post, the web archive one.
https://www.ntia.gov/sites/default/files/publications/sbom_m... Depending on who you ask an SBOM might not need a hash. NTIA only recommend a hash.
You’re right that SBOMs cannot be used to attest that a library is correctly used. I’m not sure if that’s a common use-case of SBOMs though. I normally see people wanting SBOMs for security transparency (customer can…
A long time ago, so the details are vague and may have changed, I was interested in adding trees and tagging their species in OSM. I asked some people that know more about OSM than me and was told that OSM doesn't want…
I had regular emails from a security testing tool telling me that internal IP addresses were being exposed on a webpage, in reality the page was a forum post where someone had pasted some console output including an IP…
Did you find that after reading https://labs.hakaioffsec.com/nginx-alias-traversal/ by any chance? Semgrep has a nginx ruleset too https://semgrep.dev/p/nginx
In one of the TV interviews a cave rescuer talked about a rescue where an inexperienced diver was restrained whilst being brought out of a tunnel. Given the distances involved here it would seem unlikely they would…
When people say things like "serious possibility" they are not merely intending to alter the perception of the likelihood but also attempting to impress upon the listener the gravity of the event. In cold war era…
If all the libraries are rust as the article claims having the top layer in Python probably makes even less difference. I tend to agree with the article’s statement about the value of the test code though, may even have…
And they’re introducing an EV tax that’ll be charged per mile. https://www.bbc.co.uk/news/articles/c8jw9l7gx92o
It definitely does come up. A common complaint in the UK is that there are two types of tax added to fuel prices; fuel duty and VAT. So you end up paying VAT on the fuel duty you’re paying. We have had fuel price…
Without giving away exactly how old I am… I am old enough to remember old programmers complaining about the wave of new shareware/freeware apps that people made with Visual Basic when that came out. Many of the apps…
The article is relatively clear that it is an assumption that the apps are vibe-coded based on the jump being so large. I guess they could’ve tried to cross-correlate that with sales of books or courses on app…
Having previously spent a reasonable amount of time on Metaculus I’m familiar with Brier scores and rating my confidence. I assume that’s how I was able to get better than average results. It’s an interesting app. It’s…
I’m not the person you’re talking to but the stats are copied from the second link in the post, the web archive one.
https://www.ntia.gov/sites/default/files/publications/sbom_m... Depending on who you ask an SBOM might not need a hash. NTIA only recommend a hash.
You’re right that SBOMs cannot be used to attest that a library is correctly used. I’m not sure if that’s a common use-case of SBOMs though. I normally see people wanting SBOMs for security transparency (customer can…
A long time ago, so the details are vague and may have changed, I was interested in adding trees and tagging their species in OSM. I asked some people that know more about OSM than me and was told that OSM doesn't want…
I had regular emails from a security testing tool telling me that internal IP addresses were being exposed on a webpage, in reality the page was a forum post where someone had pasted some console output including an IP…
Did you find that after reading https://labs.hakaioffsec.com/nginx-alias-traversal/ by any chance? Semgrep has a nginx ruleset too https://semgrep.dev/p/nginx
In one of the TV interviews a cave rescuer talked about a rescue where an inexperienced diver was restrained whilst being brought out of a tunnel. Given the distances involved here it would seem unlikely they would…
When people say things like "serious possibility" they are not merely intending to alter the perception of the likelihood but also attempting to impress upon the listener the gravity of the event. In cold war era…