I’m not sure I know what the “real internet” looks like anymore. 🙈 I’ve haven’t seen much in the way of advertising on the internet in perhaps 10 years or so, as I’ve been running a Pi-hole as a n...

bincapz is an open-source utility that enumerates predicted binary capabilities for both compiled and scripting languages (more here). Even before the recent problems with the xz compression libra...

There was a lot to read this weekend about the xz backdoor, how maintainers get burned out, and a great tl;dr response plan. As someone who’s both led a terrifyingly complex software factory and w...

🎉 This is post number 50! 🎉 I read a lot before starting this blog about capital-B Blogging, building an audience/brand/etc., and many writings on writing from writers I admired. There’s a solid ...

Part 1: A gentle intro to container escapes (link) 🔐 Lots of security and sysadmin courses talk about a “container escape”, but what is that really? We’ll go over what a container is, demonstrate ...

New gig, new tech stack to learn … let’s do the simple things first! 📚 some-natalie/jekyll-in-a-can: 🧪🥫 - it’s Jekyll in a container on GitHub’s container registry We’re going to build a cont...

Tech job descriptions are the professional version of a tween “dream boyfriend” checklist. 🙊 It’s normally a lot of bullet points, some of them likely much more meaningful than others. Learning w...

This post links to all the publicly-accessible GitHub content I’ve written, coded, or talked to.1 I’ve left GitHub. As this website is mostly things I’m learning and making repeatable (e.g., thin...

Last time, we looked at a simple “chargeback” system for the SaaS version of GitHub. As there’s limited availability of the data by API, we downloaded some CSV files and used a spreadsheet’s built...

One of the most common questions asked by companies adopting GitHub Enterprise is how to know who’s using what. This information is critically important to government agencies, non-profits, consul...