LLM generated text is so boring, everything looks the same. I'm at the point where if I see a blog is LLM-generated I close the tab and move on.

Cette année au nsec CTF, nous avons demandé aux gens d’autodéclarer les flags trouvés par un agent IA. Nous avons aussi demandé à la communauté leur opinion sur le rôle+impact des agents IA dans les CTFs Plus de 40% des participants ont répondu au sondage! J’ai écrit un blogpost qui analyse le tout

This is such a bad look for you @vscode.dev. I'm usually all for giving the benefit of the doubt but you're making it very difficult with this one news.ycombinator.com/item?id=4798...

This is hilarious. With AI generated music polluting Tidal feeds of existing artists I could see myself join this movement. fuckoffaimusic.com

JetBrains Rider has a very clever way to handle cases were there are multiple function calls on the same line when debugging, you use the arrows to select which one you want to step into. It's the first time I see this and now I wish all debuggers supported it.

Bitwarden cli compromised in supply chain attack socket.dev/blog/bitward...

🚨 Active supply chain attack on [email protected]. The latest version pulls in [email protected] -- a brand-new package that didn't exist before today. We're still investigating. If you use axios, pin your version and audit your lockfile. socket.dev/blog/axios-n...

new post on my personal blog. i think these three areas often go unexplained, so hopefully this explains why some of these packages exist. these are fine to exist but the majority of developers shouldn't have to pay the cost for them.

A tale in two images.

The U.S. Senate must be clear: no war with Iran.

Dependabot security alerts have terrible signal-to-noise ratio, especially for Go vulns. That hurts security! Just turn it off and set up a pair of scheduled GitHub Actions, one running govulncheck and the other running CI with the latest version of your deps. Less work, less risk, better results!

Yet another episode of infected npm packages www.aikido.dev/blog/shai-hu...

Trying Ubuntu in Hyper-V once again and the experience is not great. The clipboard randomly stops working, I have to close and reopen the session.

So it turns out GitHub Copilot in VSCode is much better at doing code search on a very large code base because it could benefit from automatic remote indexing from GitHub, where Claude Code is basically just grepping files locally with no auto indexing: code.visualstudio.com/docs/copilot...

New blog post! 📰 I tried "vibe coding" in VSCode using GitHub Copilot (Claude Sonnet) to build an MCP proxy tool in Rust — I didn't touch a line of code, just pure agent mode magic 🧙‍♂️ 🚀👇 awakecoding.com/posts/vibe-c...

Check out the #PSCONFEU 2025 playlist. We finished the summit yesterday, we published the 1st video on the finaly day (aka yesterday) and 2nd one TODAY. Guess what will be next! Better subscribe to the channel. Playlist for 2025 below. youtube.com/playlist?lis...

🎉 Big news! We've secured a $3M, three-year sponsorship from @devolutions.net This sponsorship will allow us to speed up development, improve docs & tooling for all the community's benefit! 🚀 Read about it here: github.com/AvaloniaUI/...

Arguing point-by-point considered harmful #SuggestedRead #devopsish www.seangoedecke.com...

NEW: Trump today signed an executive order to rescind parts of Obama and Biden cyber EOs and modify others. Text is TBD, but here's a fact sheet: www.whitehouse.gov/fact-sheets/... Still in: secure software development, BGP, PQC Out: Some AI safety, digital ID, and cyber-related sanctions stuff

"I’m the Canadian who was detained by Ice for two weeks. It felt like I had been kidnapped" www.theguardian.com/us-news/2025...

Lots of interesting insights in this thread

Cancelled Youtube Music (switched to Tidal), Netflix, Disney+ and Microsoft Game Pass. My money will go anywhere but the US whenever I can until this nonsense ends. I have nothing against Americans but Trump can go fuck himself.

This is completely insane. What the 6 minutes video to get a sense of the scale of the work involved to get this running. Huge props to @michigantypescript.com .

🚀 Join my webinar: Decrypting RDP Traffic in Wireshark! 🔍 📅 Date: February 11th ⏰ Time: 09:00 AM – 10:00 AM EST Learn how to analyze and decrypt RDP traffic like a pro. Can't make it live? No worries—register now, and you'll get the slides & recording afterward! 🔗 Register now 👇

I have a new paper in Dialogues on Climate Change exploring climate outcomes under current policies. I find that we are likely headed toward 2.7C by 2100 (with uncertainties from 1.9C to 3.7C), and that high end emissions scenarios have become much less likely. journals.sagepub.com...

New: “Major incident” at U.S. Treasury after alleged Chinese hackers steal a cryptographic key used by vendor BeyondTrust. Government workstations breached. www.reuters.com/technology/c...

I (finally) wrote up my thoughts on "Founder Mode" and the Brian Chesky morality tale about how he turned around Airbnb company culture. This has made it into the Silicon Valley water table; it must be dealt with. There are some good nuggets within; let's dig them out. charity.wtf/2024/12/17/f...

hey @semgrep.bsky.social, big fan of your tool here. Being cold emailed 5 times in a week by one of your sales rep, not so much.

Good read of @ericlaw.bsky.social's mistakes building Fiddler as a side-project while working at Microsoft. Super tempted to deep dive into that Thread Pool problem he hints at towards the start, something Visual Studio itself thinks about a lot! textslashplain.com/2024/11/24/f...

Just wrote my first blog post, its about Rust and Slack, check it out! ocx64.dev/blog/rust-sl...

Omg www.infosecurity-magazine.com/news/new-cit...

.NET 9 Released 🎉 Announcing .NET 9 devblogs.microsoft.com/dotnet/annou... Visual Studio 2022 v17.12 with .NET 9 devblogs.microsoft.com/visualstudio... .NET 6 end of life devblogs.microsoft.com/dotnet/dotne... #dotnet

Hypervisor isolation is great for security, but not known for fast cold starts. Meet Hyperlight - an open source Rust library that can create new VMs in one to two milliseconds. opensource.microsoft.com/blog/2024/11...

Note mostly for future me; if github.dev displays "Unable to resolve resource vscode-vfs" when opening a repo, disable Enhanced Tracking Protection in Firefox.