So when the aurora borealis is faint enough, you can capture its glow with the Milky Way 😍 Berthoud Pass, CO last night

I had a run in with ICE snatching a man out of his car while walking my children to school this morning in NW DC I asked a neighbor to continue walking my kids to school and I turned back to document and confront the ICE agents. I am in contact with @dcmigrantmutualaid.org with the full video.

The global push for #SBOM standards is reshaping how we approach cybersecurity and transparency. 🌍 Explore how the EU #CRA, CISA, and @OpenSSF efforts are aligning global software supply chain security. openssf.org/blog/2025/10...

How to contribute your first line of code to open source? Contributing to the OpenSSF #community isn’t just about code, it’s about building trust, learning how secure software is built, and growing your career. Read the blog and take your first step: openssf.org/blog/2025/08...

The usefulness of an open source project is not an indication of the project's health, stability, or reliability in production!!!! AHHHHHHHHHHHHHHHHH

I was interviewed recently about Kusari's new security PR bot. Check it out!

I recently wrote my thoughts on why we should focus more on securely consuming open source than trying to enforce the trustworthiness of devs mikeneeds.rest/license-to-n... Since some folks aren't familiar with satire, this is satire, this is tongue in cheek, please don't take this too seriously :).

The new #Cybersecurity Skills Framework maps 14 core job roles to real-world security skills. ✅ Built by practitioners ✅ Easy to customize ✅ Standards-aligned 🔗 Launch the free tool: cybersecurityframework.io 📰 Read more: openssf.org/press-releas...

Giant Bomb lives! Fandom has sold the site to us and it is now fully independent and employee-owned. We'll see you all on Tuesday for the Giant Bombcast. For more info right now, head over to www.giantbomb.com/join

polygon and giant bomb dead in the same week is just unfathomable

Cat

Because they clearly don’t have a vision. They’re ruining their flagship product to chase after something consumers by and large don’t want.

Here's a playlist with the 7 KubeCon talks from TAG Security leads! Seven!! 🤯 @mikeneeds.rest @sublimi.no www.youtube.com/playlist?lis...

This is it, @mikeneeds.rest. The high water mark. The peak. The climax. The apex. It only goes down from here.

🚨 OpenSSF community is heading to Denver for #OpenSSFCommunity Day NA 2025 on June 26! AI security, SBOM tooling, real-world TTX, and more — all in one day. 🌄 Co-located with #OSSummit 🛡️ Agenda is live — register now! 🔗 openssf.org/blog/2025/04... #CyberSecurity #OpenSourceSecurity

Love when companies post about being major contributors to #opensource projects after laying off a ton of core contributors to those projects!

A keynote about the EU Cyber Resilience Act at the #KubeCon #CloudNativeCon EU couldn't be more appropriate! Happy to see it there and that we start collectively discussing the implications, how to comply, etc.! Thanks @eddieknight.dev and @michaellieberman.bsky.social for bringing that topic 🙂

Are you confused about the CRA? Check out @mikeneeds.rest and @eddieknight.dev's #KubeCon keynote on Friday morning.

AOC: I want to live in an America that guarantees healthcare to every person. I want to live in an America that has a living wage for every person I want to live in an America where you have free speech to express yourself and not be afraid of being put on a list or deported.

I'm looking for my next thing, and I need to move fast. I have several years of experience in developer relations from startups to the enterprise, and I'm particularly skilled at distilling complex topics into something easily understood by newbies and non-technical folks alike, on stage or off. 1/3

If you're wondering where we stand on politics coverage, we're not slowing down, or stopping anytime soon. Some words from our Global Editorial Director @katie-drummond.bsky.social:

After testing OpenAI and Gemini models on the 3 puzzle problems proposed in January on my blog, it is time to look at how Claude models answer them. Tested only versions 3 and 3.5 since I ran the scripts back in Jan, but even so the models performed quite well. More on my blog: mihai.page/ai-2025-5

It’s time to say it plainly. America’s leadership has switched sides in the war. The American people have not, and they should speak up.

EXCLUSIVE: Defense Secretary Pete Hegseth last week ordered U.S. Cyber Command to stand down from all planning against Russia, including offensive digital actions. On @therecordmedia.bsky.social therecord.media/hegseth-orde...

Announcing the initial release of OSPS Baseline, providing a structured set of security requirements aligned with international cybersecurity frameworks, standards, and regulations, aiming to bolster the security posture of #opensource software projects. openssf.org/press-releas...

🔧 Get involved: GitHub: github.com/ossf/wg-glob... Slack: openssf.slack.com/archives/C08...

"How AI generated code accelerates technical debt" leaddev.com/software-qua...

Good news for Java developers! Central now validates OpenSSF sigstore signatures as part of publishing. If you’re already signing your artifacts with Sigstore, you’ll now get real-time validation feedback in the Central Publisher Portal. Read more details here: www.sonatype.com/blog/central...

🌍🔒 The Linux Foundation Europe and #OpenSSF are teaming up to help open source maintainers, manufacturers, and stewards navigate the EU Cyber Resilience Act (#CRA) and global cybersecurity regulations. openssf.org/press-releas...

🚀 Cybersecurity is a global effort! Join LF Research, OpenSSF & LF Europe’s Cybersecurity Readiness Survey to shape best practices and access key insights. 👉 www.research.net/r/MR35RMF #Cybersecurity #LFResearch

After cocktails with one of my favorite people @puerco.mx in Mexico City.

Fun cocktail at Limantour Polanco in Mexico City. You can see @puerco.mx in the background.

Breakfast in Mexico City post kubecon and Linux member summit.

Just two of the cats.

Just sent out a notice that the Common Cloud Controls project is about to enter its first official release cycle 😮 Signups are now open for anyone employed by a financial services institution who wants to be part of the change management board. Credly badges afterward for participants 😁

OH: Cheese, man In reference to this charcuterie board at the Linux Member Summit

Spending most of the month living out of a suitcase and missing this little buddy.

Spent the weekend between @cncf.io #kubecon and @openssf.org governing board meeting in LA visiting family. Here are some cats I saw when out there.

Friday at last…

It’s important to fight evil seriously, but never forget that ridicule is a key part of fighting evil. They absolutely cannot handle being laughed at. But they are ridiculous losers. Laugh at them.

I’m signing books at the Kusari booth at #kubecon come check it out Q37

Bluesky is just fun. I don’t know how long this will last but at least right now it reminds me of better times.

For everyone at #kubecon we are cohosting an event with Active State and Control Plane tonight! www.eventbrite.com/e/open-sourc...

Here on Salt Lake City now for #kubecon. Hit me up to chat about all thing supply chain security related

Who is gonna be at #kubecon next week? I’d love to chat all things security!