Hosting service for software projects using Git
POPULARITY
Categories
Can you just use Claude Code or another LLM to "vibe code" your way into building an AI SOC? In this episode, Ariful Huq, Co-Founder and Head of Product at Exaforce spoke about the reality being far more complex than the hype suggests. He explains why a simple "bolt-on" approach to AI in the SOC is insufficient if you're looking for real security outcomes.We speak about foundational elements required to build a true AI SOC, starting with the data. It's "well more than just logs and event data," requiring the integration of config, code, and business context to remove guesswork and provide LLMs with the necessary information to function accurately . The discussion covers the evolution beyond traditional SIEM capabilities, the challenges of data lake architectures for real-time security processing, and the critical need for domain-specific knowledge to build effective detections, especially for SaaS platforms like GitHub that lack native threat detection .This is for SOC leaders and CISOs feeling the pressure to integrate AI. Learn what it really takes to build an AI SOC, the unspoken complexities, and how the role of the security professional is evolving towards the "full-stack security engineer".Guest Socials - Ariful's LinkedinPodcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter - Cloud Security BootCampIf you are interested in AI Cybersecurity, you can check out our sister podcast - AI Security PodcastQuestions asked:(00:00) Introduction(02:30) Who is Ariful Huq?(03:40) Can You Just Use Claude Code to Build an AI SOC?(06:50) Why a "Bolt-On" AI Approach is Tough for SOCs(08:15) The Importance of Data: Beyond Logs to Config, Code & Context(09:10) Building AI Native Capabilities for Every SOC Task (Detection, Triage, Investigation, Response)(12:40) The Impact of Cloud & SaaS Data Volume on Traditional SIEMs(14:15) Building AI Capabilities on AWS Bedrock: Best Practices & Challenges(17:20) Why SIEM Might Not Be Good Enough Anymore(19:10) The Critical Role of Diverse Data (Config, Code, Context) for AI Accuracy(22:15) Data Lake Challenges (e.g., Snowflake) for Real-Time Security Processing(26:50) Detection Coverage Blind Spots, Especially for SaaS (e.g., GitHub)(31:40) Building Trust & Transparency in AI SOCs(35:40) Rethinking the SOC Team Structure: The Rise of the Full-Stack Security Engineer(42:15) Final Questions: Running, Family, and Turkish Food
Ever wondered how source maps actually work? In this episode, Nicolo Ribaudo, Babel maintainer and TC39 delegate, breaks down how source maps connect your JavaScript, TypeScript, and CSS back to the original code — making debugging, stack traces, and observability smoother in Chrome dev tools. We dive into how source maps help in both development and production with minified code, explore tools like Webpack, Rollup, Next.js, and Svelte, and share when you should turn off source maps to avoid confusion. Links Website: https://nicr.dev LinkedIn: https://www.linkedin.com/in/nicol%C3%B2-ribaudo-bb94b4187 BlueSky: https://bsky.app/profile/nicr.dev Github: https://github.com/nicolo-ribaudo Resources Squiggleconf talk: https://squiggleconf.com/2025/sessions#source-maps-how-does-the-magic-work Slide deck: https://docs.google.com/presentation/d/1lyor5xgv821I4kUWJIwrrmXBjzC_qiqIqcZxve1ybw0 We want to hear from you! How did you find us? Did you see us on Twitter? In a newsletter? Or maybe we were recommended by a friend? Fill out our listener survey (https://t.co/oKVAEXipxu)! https://t.co/oKVAEXipxu Let us know by sending an email to our producer, Elizabeth, at elizabet.becz@logrocket.com (mailto:elizabeth.becz@logrocket.com), or tweet at us at PodRocketPod (https://twitter.com/PodRocketpod). Check out our newsletter (https://blog.logrocket.com/the-replay-newsletter/)! https://blog.logrocket.com/the-replay-newsletter/ Follow us. Get free stickers. Follow us on Apple Podcasts, fill out this form (https://podrocket.logrocket.com/get-podrocket-stickers), and we'll send you free PodRocket stickers! What does LogRocket do? LogRocket provides AI-first session replay and analytics that surfaces the UX and technical issues impacting user experiences. Start understanding where your users are struggling by trying it for free at LogRocket.com. Try LogRocket for free today. (https://logrocket.com/signup/?pdr) Chapters 00:00 Intro – Welcome to PodRocket + Introducing Nicolo Ribaudo 00:45 What Are Source Maps and Why They Matter for Debugging 01:20 From Babel to TC39 – Nicolo's Path to Source Maps 02:00 Source Maps Beyond JavaScript: CSS, C, and WebAssembly 03:00 The Core Idea – Mapping Compiled Code Back to Source 04:00 How Source Maps Work Under the Hood (Encoded JSON) 05:10 File Size and Performance – Why It Doesn't Matter in Production 06:00 Why Source Maps Are Useful Even Without Minification 07:00 Sentry and Error Monitoring – How Source Maps Are Used in Production 08:10 Two Worlds: Local Debugging vs. Remote Error Analysis 09:00 You're Probably Using Source Maps Without Realizing It 10:00 Why Standardization Was Needed After 15+ Years of Chaos 11:00 TC39 and the Creation of the Official Source Maps Standard 12:00 Coordinating Browsers, Tools, and Vendors Under One Spec 13:00 How Chrome, Firefox, and WebKit Implement Source Maps Differently 14:00 Why the Source Maps Working Group Moves Faster Than Other Standards 15:00 A Small, Focused Group of DevTools Engineers 16:00 How Build Tools and Bundlers Feed Into the Ecosystem 17:00 Making It Easier for Tool Authors to Generate Source Maps 18:00 How Frameworks Like Next.js and Vite Handle Source Maps for You 19:00 Common Pitfalls When Chaining Build Tools 20:00 Debugging Wrong or Broken Source Maps in Browsers 21:00 Upcoming Feature: Scopes for Variables and Functions 22:00 How Scopes Improve the Live Debugging Experience 23:00 Experimental Implementations and How to Try Them 24:00 Where to Find the TC39 Source Maps Group + Get Involved 25:00 Nicolo's Links – GitHub, BlueSky, and Talks Online 25:30 Closing Thoughts
Follow Us Frank: Twitter, Blog, GitHub James: Twitter, Blog, GitHub Merge Conflict: Twitter, Facebook, Website, Chat on Discord Music : Amethyst Seer - Citrine by Adventureface ⭐⭐ Review Us (https://itunes.apple.com/us/podcast/merge-conflict/id1133064277?mt=2&ls=1) ⭐⭐ Machine transcription available on http://mergeconflict.fm
Nicole Forsgren created the most widely used frameworks for measuring developer productivity—DORA and SPACE. She wrote the foundational book Accelerate and is about to release her newest book, Frictionless, a practical guide for helping teams move faster in the AI era. She's currently Senior Director of Developer Intelligence at Google.We discuss:1. Why most productivity metrics are a lie2. Signs that your engineering team could be moving much faster3. Why AI accelerates coding but developers aren't speeding up as much as you think4. AI's impact on engineers getting into “flow”5. Her framework for building and scaling a developer experience team6. The three components of developer experience: flow state, cognitive load, and feedback loops—Brought to you by:Mercury—The art of simplified finances: https://mercury.com/WorkOS—Modern identity platform for B2B SaaS, free up to 1 million MAUs: https://workos.com/lennyCoda—The all-in-one collaborative workspace: https://coda.io/lenny—Where to find Nicole Forsgren:• Twitter: https://twitter.com/nicolefv• LinkedIn: https://www.linkedin.com/in/nicolefv/• Website: https://nicolefv.com/—Where to find Lenny:• Newsletter: https://www.lennysnewsletter.com• X: https://twitter.com/lennysan• LinkedIn: https://www.linkedin.com/in/lennyrachitsky/—In this episode, we cover:(00:00) Introduction to Nicole Forsgren(05:09) The concept of developer experience (DevEx)(08:33) Flow state and cognitive load in the age of AI(12:02) Challenges in measuring productivity with AI(21:19) The importance of developer experience for business value(22:20) Common issues and solutions in developer experience(26:49) Signs your eng team is moving too slow(29:52) How AI is improving productivity(33:32) Real examples of productivity improvements(36:35) Introducing her new book, Frictionless(43:40) How to get started building a DevEx team(45:15) The impact of forming developer experience teams(46:15) How to measure the impact of DevEx teams(48:53) Measuring the impact of AI tools on productivity(55:16) Survey design for developer experience(57:59) Popular AI tools for developers(59:08) Bringing a product mindset to DevEx improvements(01:00:40) AI corner(01:02:33) Lightning round and final thoughts—Referenced:• How to measure and improve developer productivity | Nicole Forsgren (Microsoft Research, GitHub, Google): https://www.lennysnewsletter.com/p/how-to-measure-and-improve-developer• DORA: https://dora.dev/• The SPACE framework: A comprehensive guide to developer productivity: https://getdx.com/blog/space-metrics/• Measuring developer productivity with the DX Core 4: https://getdx.com/research/measuring-developer-productivity-with-the-dx-core-4/• Gloria Mark's website: https://gloriamark.com/• Taking Flight with Copilot: https://dl.acm.org/doi/10.1145/3589996• DevEx in Action: https://spawn-queue.acm.org/doi/10.1145/3639443• CodeX: https://openai.com/codex/• Devin: https://devin.ai/• Abi Noda on LinkedIn: https://www.linkedin.com/in/abinoda/• DX is joining Atlassian: https://getdx.com/blog/dx-is-joining-atlassian/• GitHub Copilot: https://github.com/features/copilot• Cursor: https://cursor.com/• The rise of Cursor: The $300M ARR AI tool that engineers can't stop using | Michael Truell (co-founder and CEO): https://www.lennysnewsletter.com/p/the-rise-of-cursor-michael-truell• Gemini Code Assist: https://codeassist.google/• Claude Code: https://www.claude.com/product/claude-code• The AI-native startup: 5 products, 7-figure revenue, 100% AI-written code | Dan Shipper (co-founder/CEO of Every): https://www.lennysnewsletter.com/p/inside-every-dan-shipper• Love Is Blind on Netflix: https://www.netflix.com/title/80996601• Shrinking on AppleTV+: https://tv.apple.com/us/show/shrinking/umc.cmc.apzybj6eqf6pzccd97kev7bs• Ninja Creami: https://www.amazon.com/Ninja-NC301-CREAMi-Containers-Bundle/dp/B0BLGR5JPV/• Jura coffee maker: https://www.amazon.com/Jura-Nordic-Automatic-Coffee-Machine/dp/B0CF65BFZ1/—Recommended books:• Frictionless: https://developerexperiencebook.com/• DevEx Workbook: https://developerexperiencebook.com/#workbook• Outlive: The Science and Art of Longevity: https://www.amazon.com/Outlive-Longevity-Peter-Attia-MD/dp/0593236599• Back Mechanic: https://www.amazon.com/Back-Mechanic-Stuart-McGill-2015-09-30/dp/B01FKSGJYC• How Big Things Get Done: The Surprising Factors That Determine the Fate of Every Project, from Home Renovations to Space Exploration and Everything in Between: https://www.amazon.com/How-Big-Things-Get-Done/dp/0593239512/• The Undoing Project: A Friendship That Changed Our Minds: https://www.amazon.com/dp/B01KBM82M4/—Production and marketing by https://penname.co/. For inquiries about sponsoring the podcast, email podcast@lennyrachitsky.com.Lenny may be an investor in the companies discussed. To hear more, visit www.lennysnewsletter.com
Redefining education with a Bitcoin ethos. $ BTC 106,880 Block Height 919,651 Today's guest on the show is Josh from the Consensus21 educational project. Why was he inspired to join another Bitcoiner on a mission to redefine education? What challenges have they faced in setting up a 'school' in Melbourne, Australia, and what do they hope to teach the kids? Why do they want to inspire you to set up your own schools around the world, and how can they help you replicate their model? Is the education system broken, or is it working perfectly as designed? A huge thank you to Josh and Kirean for everything they are doing in order to help educate as many people about bitcoin as they can. Follow them on Twitter here - @Consensus21 NOSTR here - npub1hvwgvw3vzhqnrdzffeaqs8yuc4tw40twyn95s6x6udutc22nc0asprqh2a Website - https://consensus21.school/ Github - https://github.com/consensus21school Check out my book ‘Choose Life' - https://bitcoinbook.shop/search?q=prince ALL LINKS HERE - FOR DISCOUNTS AND OFFERS - https://vida.page/princey - https://linktr.ee/princey21m Pleb Service Announcements: Join 18 thousand Bitcoiners on @orangepillapp https://signup.theorangepillapp.com/opa/princey Support the pod via @fountain_app -https://fountain.fm/show/2oJTnUm5VKs3xmSVdf5n The Once Bitten YouTube Channel: https://www.youtube.com/@Princey21m The Bitcoin And Show: https://www.bitcoinandshow.com/ https://fountain.fm/show/eK5XaSb3UaLRavU3lYrI Shills and Mench's: CONFERENCES 2025: BULGARIA - SOFIA - 18th - 19th October 2025 https://www.btcbalkans.com/ USE CODE BITTEN - 10% BITFEST - MANCHESTER - ENGLAND - 21st - 23rd November 2025. https://bitfest.uk/ - USE CODE BITTEN - 10% BTC JAPAN - TPKYO - 23rd - 24th November. https://btc-jpn.com/en USE CODE BITTEN - 10% PAY WITH FLASH. Accept Bitcoin on your website or platform with no-code and low-code integrations. https://paywithflash.com/ RELAI - STACK SATS - www.relai.me/Bitten Use Code BITTEN SWAN BITCOIN - www.swan.com/bitten BITBOX - SELF CUSTODY YOUR BITCOIN - www.bitbox.swiss/bitten Use Code BITTEN PLEBEIAN MARKET - BUY AND SELL STUFF FOR SATS; https://plebeian.market/ @PlebeianMarket ZAPRITE - https://zaprite.com/bitten - Invoicing and accounting for Bitcoiners - Save $40 KONSENSUS NETWORK - Buy bitcoin books in different languages. Use code BITTEN for 10% discount - https://bitcoinbook.shop?ref=bitten SEEDOR STEEL PLATE BACK-UP - @seedor_io use the code BITTEN for a 5% discount. www.seedor.io/BITTEN SATSBACK - Shop online and earn back sats! https://satsback.com/register/5AxjyPRZV8PNJGlM HEATBIT - Home Bitcoin mining - https://www.heatbit.com/?ref=DANIELPRINCE - Use code BITTEN. CRYPTOTAG STEEL PLATE BACK-UP https://cryptotag.io - USE CODE BITTEN for 10% discount. In this episode, Josh talks about Consensus 21, a school he's building in Australia with Kieran, focusing on Bitcoin principles and future-oriented skills, aiming to revolutionize education. Key Topics: Education Bitcoin Homeschooling Decentralization Entrepreneurship Summary: Josh discusses the concept of Consensus 21, a school he is developing with Kieran in Australia, rooted in Bitcoin principles and designed to prepare children for the future. His inspiration came from his personal experience with his children's education and a desire to create a community-focused learning environment that aligns with the values of decentralization and financial literacy. Josh shares his journey from traditional schooling to exploring alternatives like homeschooling and world schooling, noting the challenges and limitations of current educational systems. He emphasizes the importance of incorporating Bitcoin principles into education, believing that a Bitcoiner's mindset is essential to fixing the broken educational system. The school aims to provide an environment where kids can learn about AI, entrepreneurship, finance, and technology in a way that is relevant and engaging. The school will be run on a Bitcoin standard, with tuition being put into a time lock and redistributed to the students when they graduate or have a viable business idea. The curriculum will focus on child-led learning, where kids are encouraged to pursue their interests and passions, fostering a love for learning. Josh mentions that Consensus 21 plans to implement a "School Improvement Protocol" (SIP) where students can propose new courses or activities, promoting student agency and communication skills. The school will have a main campus in Australia, with plans to expand and offer the Consensus 21 protocol to other schools and communities. The goal is to create an open-source platform that anyone can use to implement a similar educational model. Despite considering a completely private, self-funded model, they realized the potential to scale more quickly by leveraging government funding in Australia, where private schools are funded without heavy curriculum restrictions. Josh expresses his excitement about the project and his eagerness to provide this unique educational experience for his own children. He emphasizes the importance of creating an environment where kids can thrive, learn valuable skills, and develop a strong understanding of Bitcoin and Austrian economics. He also acknowledges the challenges of getting a school up and running, but remains optimistic and determined to bring this vision to life. He concludes by highlighting the generosity and support of the Bitcoin community, which has already contributed equipment and expertise to the school. He also mentions that the the most important orange pill should go to Elon Musk.
Topics covered in this episode: * PyPI+* * uv-ship - a CLI-tool for shipping with uv* * How fast is 3.14?* * air - a new web framework built with FastAPI, Starlette, and Pydantic.* Extras Joke Watch on YouTube About the show Sponsored by us! Support our work through: Our courses at Talk Python Training The Complete pytest Course Patreon Supporters Connect with the hosts Michael: @mkennedy@fosstodon.org / @mkennedy.codes (bsky) Brian: @brianokken@fosstodon.org / @brianokken.bsky.social Show: @pythonbytes@fosstodon.org / @pythonbytes.fm (bsky) Join us on YouTube at pythonbytes.fm/live to be part of the audience. Usually Monday at 10am PT. Older video versions available there too. Finally, if you want an artisanal, hand-crafted digest of every week of the show notes in email form? Add your name and email to our friends of the show list, we'll never share it. Michael #1: PyPI+ Very nice search and exploration tool for PyPI Minor but annoying bug: content-types ≠ content_types on PyPI+ but they are in Python itself. Minimum Python version seems to be interpreted as max Python version. See dependency graphs and more Examples content-types jinja-partials fastapi-chameleon Brian #2: uv-ship - a CLI-tool for shipping with uv “uv-ship is a lightweight companion to uv that removes the risky parts of cutting a release. It verifies the repo state, bumps your project metadata and optionally refreshes the changelog. It then commits, tags & pushes the result, while giving you the chance to review every step.” Michael #3: How fast is 3.14? by Miguel Grinberg A big focus on threaded vs. non-threaded Python Some times its faster, other times, it's slower Brian #4: air - a new web framework built with FastAPI, Starlette, and Pydantic. An very new project in Alpha stage by Daniel & Audrey Felderoy, the “Two Scoops of Django” people. Air Tags are an interesting thing. Also Why? is amazing “Don't use AIR” “Every release could break your code! If you have to ask why you should use it, it's probably not for you.” “If you want to use Air, you can. But we don't recommend it.” “It'll likely infect you, your family, and your codebase with an evil web framework mind virus, , …” Extras Brian: Python 3.15a1 is available uv python install 3.15 already works Python lazy imports you can use today - one of two blog posts I threatened to write recently Testing against Python 3.14 - the other one Free Threading has some trove classifiers Michael: Blog post about the book: Talk Python in Production book is out! In particular, the extras are interesting. AI Usage TUI Show me your ls Helium Browser is interesting. But also has Python as a big role. GitHub says Languages Python 97.4%
As AI systems move from simple chatbots to complex agentic workflows, new security risks emerge. In this episode, Donato Capitella unpacks how increasingly complicated architectures are making agents fragile and vulnerable. These agents can be exploited through prompt injection, data exfiltration, and tool misuse. Donato shares stories from real-world penetration tests, the design patterns for building LLM agents and explains how his open-source toolkit Spikee (Simple Prompt Injection Kit for Evaluation and Exploitation) is helping red teams probe AI systems.Featuring:Donato Capitella – LinkedIn, XChris Benson – Website, LinkedIn, Bluesky, GitHub, XDaniel Whitenack – Website, GitHub, XLinks:ReversecSponsors:Outshift by Cisco - The open source collective building the Internet of Agents. Backed by Outshift by Cisco, AGNTCY gives developers the tools to build and deploy multi-agent software at scale. Identity, communication protocols, and modular workflows—all in one global collaboration layer. Start building at AGNTCY.org.Shopify – The commerce platform trusted by millions. From idea to checkout, Shopify gives you everything you need to launch and scale your business—no matter your level of experience. Build beautiful storefronts, market with built-in AI tools, and tap into the platform powering 10% of all U.S. eCommerce. Start your one-dollar trial at shopify.com/practicalaiFabi.ai - The all-in-one data analysis platform for modern teams. From ad hoc queries to advanced analytics, Fabi lets you explore data wherever it lives—spreadsheets, Postgres, Snowflake, Airtable and more. Built-in Python and AI assistance help you move fast, then publish interactive dashboards or automate insights delivered straight to Slack, email, spreadsheets or wherever you need to share it. Learn more and get started for free at fabi.aiUpcoming Events: Join us at the Midwest AI Summit on November 13 in Indianapolis to hear world-class speakers share how they've scaled AI solutions. Don't miss the AI Engineering Lounge, where you can sit down with experts for hands-on guidance. Reserve your spot today!Register for upcoming webinars here!
Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire? The EU aborted their Chat Control vote knowing it would fail. Salesforce says it's not going to pay; customer data is released. Hackers claim Discord breach netted 70,000 government IDs. Microsoft to move Github to Azure. What could possibly go wrong. New California law allows universal data sharing opt-out. OpenAI reports that it's blocking foreign abuse. Who cares. IE Mode refuses to die, so Microsoft is burying it deeper. The massive mess created by Texas legislation SB2420. The BreachForums website gets a makeover. 100,000 strong global botnet attacking U.S. RDP services. UI experts weigh in on Apple's iOS 26 user-interface. 330,000 publicly exposed REDIS servers are RCE-vulnerable Show Notes - https://www.grc.com/sn/SN-1047-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security expressvpn.com/securitynow vanta.com/SECURITYNOW canary.tools/twit - use code: TWIT bigid.com/securitynow
Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire? The EU aborted their Chat Control vote knowing it would fail. Salesforce says it's not going to pay; customer data is released. Hackers claim Discord breach netted 70,000 government IDs. Microsoft to move Github to Azure. What could possibly go wrong. New California law allows universal data sharing opt-out. OpenAI reports that it's blocking foreign abuse. Who cares. IE Mode refuses to die, so Microsoft is burying it deeper. The massive mess created by Texas legislation SB2420. The BreachForums website gets a makeover. 100,000 strong global botnet attacking U.S. RDP services. UI experts weigh in on Apple's iOS 26 user-interface. 330,000 publicly exposed REDIS servers are RCE-vulnerable Show Notes - https://www.grc.com/sn/SN-1047-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security expressvpn.com/securitynow vanta.com/SECURITYNOW canary.tools/twit - use code: TWIT bigid.com/securitynow
Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire? The EU aborted their Chat Control vote knowing it would fail. Salesforce says it's not going to pay; customer data is released. Hackers claim Discord breach netted 70,000 government IDs. Microsoft to move Github to Azure. What could possibly go wrong. New California law allows universal data sharing opt-out. OpenAI reports that it's blocking foreign abuse. Who cares. IE Mode refuses to die, so Microsoft is burying it deeper. The massive mess created by Texas legislation SB2420. The BreachForums website gets a makeover. 100,000 strong global botnet attacking U.S. RDP services. UI experts weigh in on Apple's iOS 26 user-interface. 330,000 publicly exposed REDIS servers are RCE-vulnerable Show Notes - https://www.grc.com/sn/SN-1047-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security expressvpn.com/securitynow vanta.com/SECURITYNOW canary.tools/twit - use code: TWIT bigid.com/securitynow
Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire? The EU aborted their Chat Control vote knowing it would fail. Salesforce says it's not going to pay; customer data is released. Hackers claim Discord breach netted 70,000 government IDs. Microsoft to move Github to Azure. What could possibly go wrong. New California law allows universal data sharing opt-out. OpenAI reports that it's blocking foreign abuse. Who cares. IE Mode refuses to die, so Microsoft is burying it deeper. The massive mess created by Texas legislation SB2420. The BreachForums website gets a makeover. 100,000 strong global botnet attacking U.S. RDP services. UI experts weigh in on Apple's iOS 26 user-interface. 330,000 publicly exposed REDIS servers are RCE-vulnerable Show Notes - https://www.grc.com/sn/SN-1047-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security expressvpn.com/securitynow vanta.com/SECURITYNOW canary.tools/twit - use code: TWIT bigid.com/securitynow
Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire? The EU aborted their Chat Control vote knowing it would fail. Salesforce says it's not going to pay; customer data is released. Hackers claim Discord breach netted 70,000 government IDs. Microsoft to move Github to Azure. What could possibly go wrong. New California law allows universal data sharing opt-out. OpenAI reports that it's blocking foreign abuse. Who cares. IE Mode refuses to die, so Microsoft is burying it deeper. The massive mess created by Texas legislation SB2420. The BreachForums website gets a makeover. 100,000 strong global botnet attacking U.S. RDP services. UI experts weigh in on Apple's iOS 26 user-interface. 330,000 publicly exposed REDIS servers are RCE-vulnerable Show Notes - https://www.grc.com/sn/SN-1047-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security expressvpn.com/securitynow vanta.com/SECURITYNOW canary.tools/twit - use code: TWIT bigid.com/securitynow
Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire? The EU aborted their Chat Control vote knowing it would fail. Salesforce says it's not going to pay; customer data is released. Hackers claim Discord breach netted 70,000 government IDs. Microsoft to move Github to Azure. What could possibly go wrong. New California law allows universal data sharing opt-out. OpenAI reports that it's blocking foreign abuse. Who cares. IE Mode refuses to die, so Microsoft is burying it deeper. The massive mess created by Texas legislation SB2420. The BreachForums website gets a makeover. 100,000 strong global botnet attacking U.S. RDP services. UI experts weigh in on Apple's iOS 26 user-interface. 330,000 publicly exposed REDIS servers are RCE-vulnerable Show Notes - https://www.grc.com/sn/SN-1047-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security expressvpn.com/securitynow vanta.com/SECURITYNOW canary.tools/twit - use code: TWIT bigid.com/securitynow
This week's EYE ON NPI will help you breathe easier, with the smallest CO2 sensor we've ever seen: it's the Sensirion STCC4 Miniature CO2 Sensor (https://www.digikey.com/en/product-highlight/s/sensirion/stcc4-miniature-co2-sensor) Sensirion has always been our top choice for air quality sensing, and now they've got the tiniest sensor yet with ambient-air CO2 measurements. We've covered many Sensirion CO2 sensors before, and made breakouts for the most popular like the SCD-30 (https://www.digikey.com/en/products/detail/sensirion-ag/SCD30/8445334) and SCD-40 (https://www.digikey.com/en/products/detail/sensirion-ag/SCD40-D-R2/13684003). Sensirion has also made fully-integrated sensors like the SEN-66 which have an SCD sensor inside (https://www.digikey.com/en/products/detail/sensirion-ag/SEN66-SIN-T/25700945). There's also older eCO2 sensors like the SGP30 (https://www.digikey.com/en/products/detail/sensirion-ag/SGP30-2-5K/7400966) which did 'effective' CO2 measurements by estimating based on organic gas concentrations. While CO2 measurements have always been important for keeping humans and animals happy (https://en.wikipedia.org/wiki/Carbon_dioxide#Human_physiology) - our bodies and brains don't like it when the CO2 concentration goes over ~2000 ppm - it was fairly uncommon to see CO2 monitors in homes or offices. That changed with Covid, because CO2 became a good stand-in for air circulation / clearance: outside air is around 400 ppm, so the closer the indoor air is to 400 ppm the better the circulation. For folks who need the most accurate CO2 sensing, we'd still point them to the SCD-30 NDIR as a gold-standard (https://www.digikey.com/en/products/detail/sensirion-ag/SCD30/8445334) but it has the side effect of requiring a lot of space and is not particularly low power. The SCD-40 improved on the size/power requirements, using acoustic sensing instead of infrared light. However, if you want something really small, for wearables or phones or portable sensing, we now have a new sensor! The Sensirion STCC4 Miniature CO2 Sensor (https://www.digikey.com/short/nn982w9w) is only 3mm x 4mm x 1.2mm and uses thermal conductivity of the ambient air to calculate CO2 concentration. This means it works only for 'natural ambient air' measurements that have a similar profile to outdoor/indoor air, it's not good for scientific measurement or extreme/outlier locations and situations. Like the SCD30 and '40 series, the STCC4 will auto-calibrate (https://www.digikey.com/short/nn982w9w) to account for drift. To do that, it must be exposed to outdoor air, with approximate 400 ppm CO2 concentration once a week. Once it has completed its initial startup calibration, it will give measurements with +-100ppm accuracy. Note that this is not as good as the SCD30's +-30ppm or the SCD40's +-50ppm as the tradeoff for the smaller size and price. It also works best with separate temperature + humidity calibration - they suggest the SHT4x series such as SHT40 (https://www.digikey.com/en/products/detail/sensirion-ag/SHT40-AD1B-R3/14322709) or SHT41 (https://www.digikey.com/en/products/detail/sensirion-ag/SHT41-AD1B-R3/15296592) which you can wire up to the peripheral I2C pins for automatic readings. We noted that although the specifications for the STCC4 imply you can use 5V power/logic, that doesn't apply to the SHT4x series so its better to just have everything run at 3.3V. Sensor readings happen over I2C, and if you've used other Sensirion products you're probably familiar with their 'Command / Response / CRC' style of messaging. Thankfully no clock stretching is used, although it will NAK if the message isn't handled during a read. Two I2C addresses are available thanks to an ADDR pin. And if you want to get started fast, there's a ready-written Arduino compatible library available on GitHub (https://github.com/Sensirion/arduino-i2c-stcc4) as well as Python and embedded C (https://github.com/Sensirion?q=stcc&type=all&language=&sort=). For fast plug-and-play integration, Sensirion has also released an eval board (https://www.digikey.com/short/qwn75j80) and we really like that they went with a simple low-cost Qwiic/Stemma QT design (https://learn.adafruit.com/introducing-adafruit-stemma-qt/what-is-stemma) with integrated SHT4x that you can use immediately with dev board that has a JST-SH compatible connector. If you want to integrate the smallest, lowest-cost CO2 sensor we've seen, from the experts at Sensirion, check out the Sensirion STCC4 Miniature CO2 Sensor (https://www.digikey.com/short/nn982w9w) - it's in stock right now for immediate shipment from DigiKey! Order the STCC4 sensor today and by tomorrow morning you'll be taking measurements of indoor CO2 with ready-to-go eval board and firmware example code.
Texas is on the brink of forcing Apple and Google to overhaul app downloads with strict age verification laws—are tech giants ready, or is your privacy about to get caught in the crossfire? The EU aborted their Chat Control vote knowing it would fail. Salesforce says it's not going to pay; customer data is released. Hackers claim Discord breach netted 70,000 government IDs. Microsoft to move Github to Azure. What could possibly go wrong. New California law allows universal data sharing opt-out. OpenAI reports that it's blocking foreign abuse. Who cares. IE Mode refuses to die, so Microsoft is burying it deeper. The massive mess created by Texas legislation SB2420. The BreachForums website gets a makeover. 100,000 strong global botnet attacking U.S. RDP services. UI experts weigh in on Apple's iOS 26 user-interface. 330,000 publicly exposed REDIS servers are RCE-vulnerable Show Notes - https://www.grc.com/sn/SN-1047-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: zscaler.com/security expressvpn.com/securitynow vanta.com/SECURITYNOW canary.tools/twit - use code: TWIT bigid.com/securitynow
Check out my newsletter at https://TKOPOD.com and join my new community at https://TKOwners.com━I sat down with Logan Kilpatrick from Google DeepMind and we vibe coded real apps live with AI Studio. We went from idea to working prototypes in minutes, including a video analysis app that extracts takeaways from uploads and a voice lead-gen agent that greets visitors and fills a form for me behind the scenes. We talked about why vibe coding lowers the barrier to building, how to package simple tools for specific users, and where the biggest opportunities are with Gemini, VO3, voice agents, and computer-use agents. This isn't sponsored, and Google didn't pay me, but I am a Google shareholder. If you're looking for practical ways to start building with Google's AI today, this one's for you. Logan's links:
Aji and Sally sit down to discuss their struggles with ADHD and the systems they have in place to stay focused at work. They each share the note taking systems (https://www.goodnotes.com/blog/zettelkasten-method) and tools they use to navigate a normal working day, how they came to fully understand and manage their ADHD, and Sally reminds us all why it's very important to use a slash in your Slack reminders. — This episode of the Bike Shed has been sponsored by Judoscale - Autoscale the Right Way (https://judoscale.com/bikeshed), check the link for your free gift! Try out the reminder app Aji mentioned in this episode (https://www.inyourface.app/) to help keep yourself on track. Your hosts for this episode have been thoughtbot's own Sally Hall (https://www.linkedin.com/in/sallyannahall) and Aji Slater (https://www.linkedin.com/in/doodlingdev/) If you would like to support the show, head over to our GitHub page (https://github.com/sponsors/thoughtbot), or check out our website (https://bikeshed.thoughtbot.com). Got a question or comment about the show? Why not write to our hosts: hosts@bikeshed.fm This has been a thoughtbot (https://thoughtbot.com/) podcast. Stay up to date by following us on social media - YouTube (https://www.youtube.com/@thoughtbot/streams) - LinkedIn (https://www.linkedin.com/company/150727/) - Mastodon (https://thoughtbot.social/@thoughtbot) - BlueSky (https://bsky.app/profile/thoughtbot.com) © 2025 thoughtbot, inc.
Denis Stetskov describes how we've "normalized catastrophe" in the software industry, Meta is officially handing React and React Native over to a foundation, The New Stack reports on GitHub's Azure migration priority, Miguel Grinberg benchmarks Python 3.14, and The Oatmeal's Matthew Inman published his take on AI art.
We're back from Texas just in time to chat with Jon Seager, Canonical's VP of Engineering, and their new era with Ubuntu 25.10. On the way, we visit System76 in Denver where the COSMIC team has surprises waiting for us.Sponsored By:Managed Nebula: Meet Managed Nebula from Defined Networking. A decentralized VPN built on the open-source Nebula platform that we love. 1Password Extended Access Management: 1Password Extended Access Management is a device trust solution for companies with Okta, and they ensure that if a device isn't trusted and secure, it can't log into your cloud apps. Support LINUX UnpluggedLinks:
We are all in on macOS 26 and iOS 26 which means it is all liquid glass. But how do you actually design for it? What compromises do you have to make and how do you test backwards compatibility? Follow Us Frank: Twitter, Blog, GitHub James: Twitter, Blog, GitHub Merge Conflict: Twitter, Facebook, Website, Chat on Discord Music : Amethyst Seer - Citrine by Adventureface ⭐⭐ Review Us (https://itunes.apple.com/us/podcast/merge-conflict/id1133064277?mt=2&ls=1) ⭐⭐ Machine transcription available on http://mergeconflict.fm
Cybersecurity, automation, and PowerShell advocate Adil Leghari returns to The PowerShell Podcast to kick off Cybersecurity Month. Adil shares insights from his career journey: from PowerShell and automation to identity and now cloud security at Palo Alto Networks. He discusses creating tools like Cyberdle and QR Check, how AI is reshaping cybersecurity, and the importance of empathy, authenticity, and mentorship in tech and community life. Key Takeaways: AI in cybersecurity – Adil explains how organizations can protect sensitive data and combat threats using AI Security Posture Management and why we must “fight AI with AI.” Personal projects with purpose – Tools like Cyberdle and QR Check show how small, open-source projects can educate users and strengthen security awareness. Human connection in tech – Adil emphasizes empathy, authenticity, and community as keys to building better workplaces, stronger teams, and more fulfilling careers. Guest Bio: Adil Leghari is a Cloud Solutions Architect at Palo Alto Networks, where he works on the Cortex Cloud platform. With over twenty years of IT experience, Adil's career spans PowerShell automation, identity management, repositories + packaging, and cloud security. A passionate community contributor and speaker, he is known for his open-source projects, approachable teaching style, and advocacy for authenticity and mentorship in the tech industry. He is a speaker, author, and a really kind human that I like a lot (Andrew wrote this)Resource Links: Cyberdle (Cybersecurity Wordle Game) – https://cyberdle.adilio.ca QR Check (QR Code Security Tool) – https://qrcheck.ca GitHub Spec Kit: https://github.com/github/spec-kit Adil's GitHub – https://github.com/adilio Adil's Website – https://adilio.ca Adil on X/Twitter – https://twitter.com/adilio Adil on BlueSky – https://bsky.app/profile/adilio.ca Find Andrew: https://andrewpla.tech/links PDQ Discord – https://discord.gg/PDQ PowerShell Wednesdays – https://www.youtube.com/watch?v=uWfSbuYnpFA&list=PL1mL90yFExsix-L0havb8SbZXoYRPol0B The PowerShell Podcast on YouTube: https://youtu.be/HpOeZ4LBq9s
Today we are talking about Single Directory Components, Leveling up your skills, and How DrupalEasy can help with our guest Mike Anello. We'll also cover Markdown Easy as our module of the week. For show notes visit: https://www.talkingDrupal.com/524 Topics Discussion on Single Directory Components Drupal Easy's Training Programs Light Bulb Moments in Learning Choosing Post CSS for Front-End Development Course Materials and Updates Course Structure and Student Engagement Introducing the Show and Tell Series Resources DrupalEasy's Professional Single Directory Components course Dries blogs about Markdown Easy: https://dri.es/installing-and-cbonfiguring-markdown-easy-for-drupal https://dri.es/switching-to-markdown-after-20-years-of-html DrupalEasy Show & Tell https://www.drupaleasy.com/blogs/ultimike/2025/10/introducing-drupaleasy-show-tell-our-new-youtube-video-series https://www.youtube.com/playlist?list=PLUf-wKGJjCXEXH03Mw44hJ84YG-ZwmVKp Drupal dojo Ignore missing {% include 'test:button' ignore missing with { Guests Mike Anello - drupaleasy.com ultimike Hosts Nic Laflin - nLighteneddevelopment.com nicxvan Stephen Cross - stephencross.com stephencross Hayden Baillio - hgbaillio MOTW Correspondent Martin Anderson-Clutz - mandclu.com mandclu Brief description: Have you ever wanted an easy way to use Markdown to write content in your Drupal site? There's a module for that. Module name/project name: Markdown Easy Brief history How old: created in July 2023 by Michael Anello (ultimike) of Drupal Easy Versions available: 1.0.1 and 2.0.0, both of which work with Drupal 9 or later Maintainership Actively maintained Security coverage Test coverage Documentation guide available Number of open issues: 9 open issues, none of which are bugs against the 2.x branch Usage stats: 556 sites Module features and usage For anyone who doesn't know, Markdown is a popular, lightweight markup language for creating formatted text using a plain-text editor. Initially defined in 2004, Markdown grew out of existing conventions for formatting text in emails and usenet posts People like writing in Markdown because it allows them to focus on what's being said without the distraction of concerns about how it will look With the Markdown Easy module installed, your Drupal site will now have a Markdown Easy text format available. Within the settings for that format, you can choose "Standard Markdown", "GitHub-flavored Markdown", or "Markdown Smörgåsbord" as the variant of Markdown syntax you want to use. Standard Markdown is the most restrictive, and the other two allow more elements to be included. You can also configure which HTML tags you want to allow, as part of the normal text format configuration. It's worth noting that Dries has posted a couple of blogs about using this module, the more recent about working with Mike to better handle HTML tags. So Mike, what inspired you to write this module, and what can you tell us about the experience of collaborating with Dries?
Denis Stetskov describes how we've "normalized catastrophe" in the software industry, Meta is officially handing React and React Native over to a foundation, The New Stack reports on GitHub's Azure migration priority, Miguel Grinberg benchmarks Python 3.14, and The Oatmeal's Matthew Inman published his take on AI art.
This week, we discuss Apps in ChatGPT, OpenAI's Agent SDK and Codex. Plus, Matt has a possum problem down under. Watch the YouTube Live Recording of Episode (https://www.youtube.com/live/88Cz6K0UGjc?si=rjPnzkxY6-34wJ99) 541 (https://www.youtube.com/live/88Cz6K0UGjc?si=rjPnzkxY6-34wJ99) Runner-up Titles Living in the dark ages of Sequoia He's the racoon remover of the neighborhood Don't say we don't cover everything They're hoping someone's going to unlock a lot of value here, because I'm not seeing it The Low Code Trap Use the code “SDT150” and we'll send you money Rundown Open AI DevDay (https://openai.com/devday/) The Next Great Distribution Shift (https://blog.brianbalfour.com/p/the-next-great-distribution-shift) AMD stock skyrockets 30% as OpenAI looks to take stake in AI chipmaker (https://www.cnbc.com/2025/10/06/openai-amd-chip-deal-ai.html) OpenAI's Golden Touch Spreads as Stocks Soar (https://www.bloomberg.com/news/articles/2025-10-06/openai-s-golden-touch-spreads-as-stocks-soar-off-mere-mentions?cmpid=BBD100725_MONEYSTUFF&utm_medium=email&utm_source=newsletter&utm_term=251007&utm_campaign=moneystuff) OpenAI Is Good at Deals (https://www.bloomberg.com/opinion/newsletters/2025-10-06/openai-is-good-at-deals?srnd=undefined&embedded-checkout=true) (https://venturebeat.com/ai/github-leads-the-enterprise-claude-leads-the-pack-cursors-speed-cant-close)## Relevant to your Interests Your Meta AI Chats Will Soon Influence the Ads You See (https://www.macrumors.com/2025/10/01/meta-ai-ad-targeting/) AWS API MCP Server v1.0.0 release - AWS (https://aws.amazon.com/about-aws/whats-new/2025/10/aws-api-mcp-server-v1-0-0-release/) Inside the cybersecurity boom, strong team, and bold gamble that helped Wiz CEO Assaf Rappaport win a $32 billion deal with Google (https://fortune.com/article/wiz-cloud-security-ceo-assaf-rappaport-google-sundar-pichai/) Linus Torvalds Lashes Out At RISC-V Big Endian Plans (https://www.phoronix.com/news/Torvalds-No-RISC-V-BE) Open Printer (https://www.crowdsupply.com/open-tools/open-printer) Have we passed peak social media? (https://archive.is/10cll#selection-1851.0-1854.0) Apple working on MCP support on Mac, iPhone, and iPad (https://9to5mac.com/2025/09/22/macos-tahoe-26-1-beta-1-mcp-integration/) A cartoonist's review of AI art (https://theoatmeal.com/comics/ai_art) GitHub leads the enterprise, Claude leads the pack—Cursor's speed can't close (https://venturebeat.com/ai/github-leads-the-enterprise-claude-leads-the-pack-cursors-speed-cant-close) Cursor CLI (https://cursor.com/cli) Introducing Claude Sonnet 4.5 (https://www.anthropic.com/news/claude-sonnet-4-5) GitHub Copilot CLI is now in public preview (https://github.blog/changelog/2025-09-25-github-copilot-cli-is-now-in-public-preview/) Meet Jules Tools: A Command Line Companion for Google's Async Coding Agent (https://developers.googleblog.com/en/meet-jules-tools-a-command-line-companion-for-googles-async-coding-agent/) Announcing The Gem Cooperative (https://martinemde.com/2025/10/05/announcing-gem-coop.html) Qualcomm Buys Arduino, Will Bring AI Tools to Your DIY Tech Projects (https://www.pcmag.com/news/qualcomm-buys-arduino-will-bring-ai-tools-to-your-diy-tech-projects) Listener Feedback Join the Boulder AWS - Amazon Web Services | Meetup (https://www.meetup.com/boulder-aws-amazon-web-services/) Conferences AI for the Rest of Us (https://aifortherestofus.live/london-2025), Coté speaking, October 15th-16th, London. Use code SDT20 for 20% off. Wiz Wizdom Conferences (https://www.wiz.io/wizdom), NYC November 3-5, London November 17-19 SREDay Amsterdam (https://sreday.com/2025-amsterdam-q4/), Coté speaking, November 7th. SDT News & Community Join our Slack community (https://softwaredefinedtalk.slack.com/join/shared_invite/zt-1hn55iv5d-UTfN7mVX1D9D5ExRt3ZJYQ#/shared-invite/email) Email the show: questions@softwaredefinedtalk.com (mailto:questions@softwaredefinedtalk.com) Free stickers: Email your address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) Follow us on social media: Twitter (https://twitter.com/softwaredeftalk), Threads (https://www.threads.net/@softwaredefinedtalk), Mastodon (https://hachyderm.io/@softwaredefinedtalk), LinkedIn (https://www.linkedin.com/company/software-defined-talk/), BlueSky (https://bsky.app/profile/softwaredefinedtalk.com) Watch us on: Twitch (https://www.twitch.tv/sdtpodcast), YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured), Instagram (https://www.instagram.com/softwaredefinedtalk/), TikTok (https://www.tiktok.com/@softwaredefinedtalk) Book offer: Use code SDT for $20 off "Digital WTF" by Coté (https://leanpub.com/digitalwtf/c/sdt) Sponsor the show (https://www.softwaredefinedtalk.com/ads): ads@softwaredefinedtalk.com (mailto:ads@softwaredefinedtalk.com) Recommendations Brandon: Shark NV352 Navigator Lift Away Upright Vacuum (https://www.amazon.com/dp/B004Q4DRJW?ref=ppx_yo2ov_dt_b_fed_asin_title&th=1) Matt: Murderbot (https://www.google.com/url?sa=t&source=web&rct=j&opi=89978449&url=https://tv.apple.com/us/show/murderbot/umc.cmc.5owrzntj9v1gpg31wshflud03&ved=2ahUKEwjYg_bfyZWQAxVvmmoFHYDdH30QFnoECBQQAQ&usg=AOvVaw0rXcF6igz8j5-_fPSRIRoB) Photo Credits Header (https://unsplash.com/photos/a-small-animal-sitting-on-top-of-a-leaf-covered-ground-kyHACltnSgU)
Strategic Technology Consultation Services This episode of The Modern .NET Show is supported, in part, by RJJ Software's Strategic Technology Consultation Services. If you're an SME (Small to Medium Enterprise) leader wondering why your technology investments aren't delivering, or you're facing critical decisions about AI, modernization, or team productivity, let's talk. Show Notes "Simple is always the better choice, but easy is not always the best. So sometimes you'll go to graph, it's a little bit harder for us to write the code for around it, but the bandwidth consumption is considerably smaller. the compute consumption and the ability for it to run on a mobile device is considerably easier."— Jerry Nixon Hey everyone, and welcome back to The Modern .NET Show; the premier .NET podcast, focusing entirely on the knowledge, tools, and frameworks that all .NET developers should have in their toolbox. I'm your host Jamie Taylor, bringing you conversations with the brightest minds in the .NET ecosystem. Today, we're joined by Jerry Nixon. Jerry is a Principal Product Manager at Microsoft, focussing on the tooling and Developer Experience around Azure SQL Server. Jerry shares his advice for architecting web-based APIs, RESTful design, and using what fits within your team, and of course we talk about Data API Builder. "When you think about what an architect really is and their responsibility, the decisions, architectural decisions are the decisions that are the most expensive to change. That's kind of like who should be making this decision? Well, how expensive is it to change? It's very expensive."— Jerry Nixon We also talk about the importance of interpersonal skills in modern software engineering (whether you're working in open source or not), psychological safety, and the importance of self-reflection in our day-to-day work. Before we jump in, a quick reminder: if The Modern .NET Show has become part of your learning journey, please consider supporting us through Patreon or Buy Me A Coffee. Every contribution helps us continue bringing you these in-depth conversations with industry experts. You'll find all the links in the show notes. Anyway, without further ado, let's sit back, open up a terminal, type in `dotnet new podcast` and we'll dive into the core of Modern .NET. Full Show Notes The full show notes, including links to some of the things we discussed and a full transcription of this episode, can be found at: https://dotnetcore.show/season-8/designing-apis-like-a-pro-lessons-from-jerry-nixon-on-data-api-builder-and-beyond/ Useful Links: SQLBits The original definition of REST Data API Builder documentation Data API Builder on GitHub on MS Learn samples docker Registry SQL Dev Path FusionCache Jerry on X (formerly known as Twitter) Podcast editing services provided by Matthew Bliss Music created by Mono Memory Music, licensed to RJJ Software for use in The Modern .NET Show Supporting the show: Leave a rating or review Buy the show a coffee Become a patron Getting in Touch: Via the contact page Joining the Discord Remember to rate and review the show on Apple Podcasts, Podchaser, or wherever you find your podcasts, this will help the show's audience grow. Or you can just share the show with a friend. And don't forget to reach out via our Contact page. We're very interested in your opinion of the show, so please get in touch. You can support the show by making a monthly donation on the show's Patreon page at: https://www.patreon.com/TheDotNetCorePodcast. Music created by Mono Memory Music, licensed to RJJ Software for use in The Modern .NET Show. Editing and post-production services for this episode were provided by MB Podcast Services.
In this episode, we talked with Aishwarya Jadhav, a machine learning engineer whose career has spanned Morgan Stanley, Tesla, and now Waymo. Aishwarya shares her journey from big data in finance to applied AI in self-driving, gesture understanding, and computer vision. She discusses building an AI guide dog for the visually impaired, contributing to malaria mapping in Africa, and the challenges of deploying safe autonomous systems. We also explore the intersection of computer vision, NLP, and LLMs, and what it takes to break into the self-driving AI industry.TIMECODES00:51 Aishwarya's career journey from finance to self-driving AI05:45 Building AI guide dog for the visually impaired12:03 Exploring LiDAR, radar, and Tesla's camera-based approach16:24 Trust, regulation, and challenges in self-driving adoption19:39 Waymo, ride-hailing, and gesture recognition for traffic control24:18 Malaria mapping in Africa and AI for social good29:40 Deployment, safety, and testing in self-driving systems37:00 Transition from NLP to computer vision and deep learning43:37 Reinforcement learning, robotics, and self-driving constraints51:28 Testing processes, evaluations, and staged rollouts for autonomous driving52:53 Can multimodal LLMs be applied to self-driving?55:33 How to get started in self-driving AI careersConnect with Aishwarya- Linkedin - https://www.linkedin.com/in/aishwaryajadhav8/Connect with DataTalks.Club:- Join the community - https://datatalks.club/slack.html- Subscribe to our Google calendar to have all our events in your calendar - https://calendar.google.com/calendar/r?cid=ZjhxaWRqbnEwamhzY3A4ODA5azFlZ2hzNjBAZ3JvdXAuY2FsZW5kYXIuZ29vZ2xlLmNvbQ- Check other upcoming events - https://lu.ma/dtc-events- GitHub: https://github.com/DataTalksClub- LinkedIn - https://www.linkedin.com/company/datatalks-club/ - Twitter - https://twitter.com/DataTalksClub - Website - https://datatalks.club/
In this episode, we talked with Ranjitha Kulkarni, a machine learning engineer with a rich career spanning Microsoft, Dropbox, and now NeuBird AI. Ranjitha shares her journey into ML and NLP, her work building recommendation systems, early AI agents, and cutting-edge LLM-powered products. She offers insights into designing reliable AI systems in the new era of generative AI and agents, and how context engineering and dynamic planning shape the future of AI products.TIMECODES00:00 Career journey and early curiosity04:25 Speech recognition at Microsoft05:52 Recommendation systems and early agents at Dropbox07:44 Joining NewBird AI12:01 Defining agents and LLM orchestration16:11 Agent planning strategies18:23 Agent implementation approaches22:50 Context engineering essentials30:27 RAG evolution in agent systems37:39 RAG vs agent use cases40:30 Dynamic planning in AI assistants43:00 AI productivity tools at Dropbox46:00 Evaluating AI agents53:20 Reliable tool usage challenges58:17 Future of agents in engineering Connect with Ranjitha- Linkedin - https://www.linkedin.com/in/ranjitha-gurunath-kulkarniConnect with DataTalks.Club:- Join the community - https://datatalks.club/slack.html- Subscribe to our Google calendar to have all our events in your calendar - https://calendar.google.com/calendar/r?cid=ZjhxaWRqbnEwamhzY3A4ODA5azFlZ2hzNjBAZ3JvdXAuY2FsZW5kYXIuZ29vZ2xlLmNvbQ- Check other upcoming events - https://lu.ma/dtc-events- GitHub: https://github.com/DataTalksClub- LinkedIn - https://www.linkedin.com/company/datatalks-club/ - Twitter - https://twitter.com/DataTalksClub - Website - https://datatalks.club/
This show has been flagged as Clean by the host. Hello, this is your host, Archer72 for Hacker Public Radio In this episode, I get a crash course on git, and thought it would make a good episode. Not actually on git itself, but how to use it on Github and Gitlab. First off, I am looking for a job, so I thought it would be a great time to brush up on my git knowledge and make a show too. Of course, I am no git expert by any means, but as it has been said in comments Hacker Public Radio is my memory. You will want to create and ssh key for each Git instance, in this case I will use both Github and Gitlab. A few other sites to host Git files which are Hacker Public Radio's own Gitea on HPR, Notabug and Codeberg Now lets get started. ssh-keygen will create an ed25519 key pair several years ago this was not yet the default add entry to ~/.ssh/config for each git instance Host github.com User git IdentityFile ~/.ssh/github-ricemark20 Host gitlab.com User git IdentityFile ~/.ssh/gitlab-archer72 SSH Keys ssh-add ~/.ssh/git-key (not .pub) Git • GPG - gpg --full-generate-key - gpg --list-public-keys - 40 character string - git config --global user.signingkey XXXXPublicKey - git config --global commit.gpgsign true - gpg --armor --export XXXXPublicKey - copy output to Github or Gitlab, including Gitlab Avatar > Edit Profile > SSH Keys > Add key (on the right side) Gitlab - SSH keys cat ~/.ssh/gitlab-key.pub Add Key git remote set-url origin git@gitlab.com/user/gitlab-repo.git Edit Profile > GPG Keys > Add key (on the right side) Gitlab - GPG keys copy and add public key from gpg --list-public-keys (40 Characters) Github Avatar > Settings > SSH and GPG Keys > New SSH key Github - keys cat ~/.ssh/github-key.pub Github - New SSH key Title, Key > Add SSH key git remote set-url origin git@github.com:user/github-repo.git Avatar > Settings > SSH and GPG Keys > New GPG key Github - New GPG key Title, Key > Add GPG key copy and add public key from gpg --list-public-keys (40 Characters) Create a new repository named something like resume or my-resume Upload your HTML resume file and name it index.html Go to your repository Settings → Pages Under "Source," select "Deploy from a branch" Choose "main" branch and "/ (root)" folder Your resume will be available at https://yourusername.github.io/resume Github.io - ricemark20 Provide feedback on this episode.
Sami assesses the long term viability of AI with Pablo Curell, software developer at Recovr (https://www.recovr.eu/en), as they break down the hype and logistics that surround the popular tool. The pair examine why it's still important you learn to code, what AI's best use cases are now and what they could be in the future, what a successful AI product actually looks like on the back end, as well as the ever growing and unsustainable economics behind AI tokens. — Read the article mentioned in this week's episode - The Case Against Generative AI (https://www.wheresyoured.at/the-case-against-generative-ai/?ref=ed-zitrons-wheres-your-ed-at-newsletter&attribution_id=68d5b5a4ba9b3e00014d8ab5&attribution_type=post) Check out Pablo's podcast A Junior, A Senior and I (https://aji.podbean.com/) for similar discussions and perspectives on the world of tech, or follow him on social media - LinkedIn (https://www.linkedin.com/in/pablocm90/) - Mastodon (https://hostux.social/@pacumo) - Website (https://blog.codemanship.dev) Your host for this episode has been Sami Birnbaum. Sami can be found through his website (https://samibirnbaum.com) or via LinkedIn (https://www.linkedin.com/in/samibirnbaum/). If you would like to support the show, head over to our GitHub page (https://github.com/sponsors/thoughtbot), or check out our website (https://podcast.thoughtbot.com). Got a question or comment about the show? Why not write to our hosts: hosts@giantrobots.fm This has been a thoughtbot (https://thoughtbot.com/) podcast. Stay up to date by following us on social media - LinkedIn (https://www.linkedin.com/company/150727/) - Mastodon (https://thoughtbot.social/@thoughtbot) - YouTube (https://www.youtube.com/thoughtbotvideo) - Bluesky (https://bsky.app/profile/thoughtbot.com) © 2025 thoughtbot, inc.
Daniel sits down with Chelsea Linder, VP of Innovation and Entrepreneurship at TechPoint, to explore the what AI innovation and impact look like on the ground. They discuss Chelsea's journey from the VC world into economic development/ innovation, the growth of an AI innovation network in Indiana (funded by the SBA), lessons learned from fostering AI communities, and how businesses are actually adapting to AI. Chelsea also shares insights from Techpoints AI workforce impact study, which explored AI related job creation and levels of AI adoption among other things.Featuring:Chelsea Linder – LinkedIn Daniel Whitenack – Website, GitHub, XLinks: TechpointSponsors:Shopify – The commerce platform trusted by millions. From idea to checkout, Shopify gives you everything you need to launch and scale your business—no matter your level of experience. Build beautiful storefronts, market with built-in AI tools, and tap into the platform powering 10% of all U.S. eCommerce. Start your one-dollar trial at shopify.com/practicalaiFabi.ai - The all-in-one data analysis platform for modern teams. From ad hoc queries to advanced analytics, Fabi lets you explore data wherever it lives—spreadsheets, Postgres, Snowflake, Airtable and more. Built-in Python and AI assistance help you move fast, then publish interactive dashboards or automate insights delivered straight to Slack, email, spreadsheets or wherever you need to share it.Learn more and get started for free at fabi.aiUpcoming Events: Join us at the Midwest AI Summit on November 13 in Indianapolis to hear world-class speakers share how they've scaled AI solutions. Don't miss the AI Engineering Lounge, where you can sit down with experts for hands-on guidance. Reserve your spot today!Register for upcoming webinars here!
If you like what you hear, please subscribe, leave us a review and tell a friend!North Korean and other hacker groups, including Crimson Collective, DragonForce, LockBit, and Qilin, continue large-scale crypto thefts and ransomware campaigns, targeting cloud services and private data. Meanwhile, companies like Microsoft, Google, and GitHub face outages, security flaws, and introduce bug bounty programs as attackers exploit vulnerabilities across services and AI platforms.
Wed, 08 Oct 2025 16:00:00 GMT http://relay.fm/clockwise/626 http://relay.fm/clockwise/626 I'm Doing Great, Pumpkin 626 Dan Moren and Mikah Sargent Whether color e-ink displays feel compelling or like a fad, our impressions of OpenAI's Sora and text-to-video tech, how we manage Mac menu bar icons, and whether we'll use the new resizable Slide Over feature in iPadOS 26.1 and for what purpose. Whether color e-ink displays feel compelling or like a fad, our impressions of OpenAI's Sora and text-to-video tech, how we manage Mac menu bar icons, and whether we'll use the new resizable Slide Over feature in iPadOS 26.1 and for what purpose. clean 1799 Whether color e-ink displays feel compelling or like a fad, our impressions of OpenAI's Sora and text-to-video tech, how we manage Mac menu bar icons, and whether we'll use the new resizable Slide Over feature in iPadOS 26.1 and for what purpose. Guest Starring: Chris Lawley and Allison Sheridan Links and Show Notes: Support Clockwise with a Relay Membership Submit Feedback The Kindle Nothing is My (New) Kindle of Choice - Podfeet Podcasts podfeet: "@spsheridan tells me how he re…" - chaos.social GitHub - jordanbaird/Ice:
Software Engineering Radio - The Podcast for Professional Software Developers
Amey Desai, the Chief Technology Officer at Nexla, speaks with host Sriram Panyam about the Model Context Protocol (MCP) and its role in enabling agentic AI systems. The conversation begins with the fundamental challenge that led to MCP's creation: the proliferation of "spaghetti code" and custom integrations as developers tried to connect LLMs to various data sources and APIs. Before MCP, engineers were writing extensive scaffolding code using frameworks such as LangChain and Haystack, spending more time on integration challenges than solving actual business problems. Desai illustrates this with concrete examples, such as building GitHub analytics to track engineering team performance. Previously, this required custom code for multiple API calls, error handling, and orchestration. With MCP, these operations can be defined as simple tool calls, allowing the LLM to handle sequencing and error management in a structured, reasonable manner. The episode explores emerging patterns in MCP development, including auction bidding patterns for multi-agent coordination and orchestration strategies. Desai shares detailed examples from Nexla's work, including a PDF processing system that intelligently routes documents to appropriate tools based on content type, and a data labeling system that coordinates multiple specialized agents. The conversation also touches on Google's competing A2A (Agent-to-Agent) protocol, which Desai positions as solving horizontal agent coordination versus MCP's vertical tool integration approach. He expresses skepticism about A2A's reliability in production environments, comparing it to peer-to-peer systems where failure rates compound across distributed components. Desai concludes with practical advice for enterprises and engineers, emphasizing the importance of embracing AI experimentation while focusing on governance and security rather than getting paralyzed by concerns about hallucination. He recommends starting with simple, high-value use cases like automated deployment pipelines and gradually building expertise with MCP-based solutions. Brought to you by IEEE Computer Society and IEEE Software magazine.
Wed, 08 Oct 2025 16:00:00 GMT http://relay.fm/clockwise/626 http://relay.fm/clockwise/626 Dan Moren and Mikah Sargent Whether color e-ink displays feel compelling or like a fad, our impressions of OpenAI's Sora and text-to-video tech, how we manage Mac menu bar icons, and whether we'll use the new resizable Slide Over feature in iPadOS 26.1 and for what purpose. Whether color e-ink displays feel compelling or like a fad, our impressions of OpenAI's Sora and text-to-video tech, how we manage Mac menu bar icons, and whether we'll use the new resizable Slide Over feature in iPadOS 26.1 and for what purpose. clean 1799 Whether color e-ink displays feel compelling or like a fad, our impressions of OpenAI's Sora and text-to-video tech, how we manage Mac menu bar icons, and whether we'll use the new resizable Slide Over feature in iPadOS 26.1 and for what purpose. Guest Starring: Chris Lawley and Allison Sheridan Links and Show Notes: Support Clockwise with a Relay Membership Submit Feedback The Kindle Nothing is My (New) Kindle of Choice - Podfeet Podcasts podfeet: "@spsheridan tells me how he re…" - chaos.social GitHub - jordanb
In this episode of the Ardan Labs Podcast, Bill Kennedy talks with Mike Elgan, technology editorialist, about his journey to becoming a professional writer. Mike reflects on the evolution of journalism, the digital publishing revolution of the 90s, and the role of communication in shaping society. He also shares insights from his nomadic lifestyle, the realities of freelance writing, the impact of AI on creativity, and the importance of adaptability and passion in navigating a rapidly changing technological landscape.00:00 Introduction 05:54 Growing Up in the 70s and 80s11:32 Education, Passion & Early Work31:32 Politics, Journalism & First Writing Roles45:16 Transition to Technology Journalism54:30 Digital Media Revolution01:03:01 Becoming a Freelance Writer01:05:52 Nomadic Lifestyle & Financial Realities01:24:36 AI's Impact on Work, Writing & Education01:42:56 The Future of Writing & Communication01:50:52 Cyberpunk Reality & Technology's Next Era01:55:11 Finding Passion & Success in LifeConnect with Mike: Linkedin: https://www.linkedin.com/in/mikeelganX: https://x.com/MikeElganMentioned in this Episode:Mike Elgan's Newsletter: https://machinesociety.ai/Gastronomad: https://gastronomad.netWant more from Ardan Labs? You can learn Go, Kubernetes, Docker & more through our video training, live events, or through our blog!Online Courses : https://ardanlabs.com/education/ Live Events : https://www.ardanlabs.com/live-training-events/ Blog : https://www.ardanlabs.com/blog Github : https://github.com/ardanlabs
From a massive SIM farm takedown to dealing with supply chain attacks targeting npm, our news roundup provides context and commentary on a fresh crop of security news. We discuss exploits against Cisco firewalls and switches, a SonicWall firmware update to remove a rootkit targeting its SMA 100, and GitHub’s plans to harden npm packages.... Read more »
Time to plan an upgrade as Joël and Aji talk about the hurdles involved with various change management in their projects. The pair lay out some different approaches to protecting your data when planning a migration, the risks of code and data changes, the elements that will and won't be affect in the process, and Joël gives his experience on a tough migration project and what he learnt from it. — If you've not used Merge before you can learn more about it here (https://api.rubyonrails.org/v8.0.2.1/classes/ActiveRecord/SpawnMethods.html#method-i-merge). Thanks to our sponsors for this episode Judoscale - Autoscale the Right Way (https://judoscale.com/bikeshed) (check the link for your free gift!), and Scout Monitoring (https://www.scoutapm.com/). Your hosts for this episode have been thoughtbot's own Joël Quenneville (https://www.linkedin.com/in/joel-quenneville-96b18b58/) and Aji Slater (https://www.linkedin.com/in/doodlingdev/) If you would like to support the show, head over to our GitHub page (https://github.com/sponsors/thoughtbot), or check out our website (https://bikeshed.thoughtbot.com). Got a question or comment about the show? Why not write to our hosts: hosts@bikeshed.fm This has been a thoughtbot (https://thoughtbot.com/) podcast. Stay up to date by following us on social media - YouTube (https://www.youtube.com/@thoughtbot/streams) - LinkedIn (https://www.linkedin.com/company/150727/) - Mastodon (https://thoughtbot.social/@thoughtbot) - BlueSky (https://bsky.app/profile/thoughtbot.com) © 2025 thoughtbot, inc.
From a massive SIM farm takedown to dealing with supply chain attacks targeting npm, our news roundup provides context and commentary on a fresh crop of security news. We discuss exploits against Cisco firewalls and switches, a SonicWall firmware update to remove a rootkit targeting its SMA 100, and GitHub’s plans to harden npm packages.... Read more »
It's true, you can migrate and modernize your app at any stage... but it is really important when you can no longer ship app updates because you really need to update to newer frameworks! Follow Us Frank: Twitter, Blog, GitHub James: Twitter, Blog, GitHub Merge Conflict: Twitter, Facebook, Website, Chat on Discord Music : Amethyst Seer - Citrine by Adventureface ⭐⭐ Review Us (https://itunes.apple.com/us/podcast/merge-conflict/id1133064277?mt=2&ls=1) ⭐⭐ Machine transcription available on http://mergeconflict.fm
Newly minted Microsoft MVP Stephen Valdinger, known as Steviecoaster, joins The PowerShell Podcast to share his journey from IT admin to community mentor and automation advocate. He talks about discovering PowerShell through Exchange, the career-changing power of automation, and his work with AutomatedLab, PowerShell Universal, and WinUI Shell. Stevie also highlights the importance of mentoring, building community, and making PowerShell approachable for everyone. Key Takeaways: PowerShell as a gateway: Learning PowerShell can unlock career growth, lead to better automation, and even spark new opportunities like blogging, mentoring, and conference speaking. Tools for learning and labs: AutomatedLab, paired with Stevie's utilities and GUI work, provides a powerful way to build test environments and gain hands-on experience. Community and mentorship matter: Sharing knowledge, mentoring beginners, and creating approachable tools not only help others grow but also strengthen your own skills. Guest Bio: Steven Valdinger (Steviecoaster) is a Microsoft MVP, Customer Success Manager at Chocolatey, and community leader with a passion for automation and mentoring. With years of experience in IT, Stevie has become known for his approachable teaching style, and his contributions to open source. He is also a frequent contributor to community discussions, blogs at steviecoaster.dev, and presents at events like PowerShell Wednesdays and PowerShell Summit. Resource Links: Steviecoaster's Blog: https://steviecoaster.dev Steviecoaster on BlueSky: https://bsky.app/profile/steviecoaster.dev Steviecoaster on GitHub: https://github.com/steviecoaster Connect with Andrew: https://andrewpla.tech/links Stevie's AutomatLab UI: https://github.com/steviecoaster/PowerShellUniversal.Apps.AutomatedLab AutomatedLab: https://github.com/AutomatedLab/AutomatedLab PowerShell Universal (by Ironman Software): https://ironmansoftware.com/powershell-universal WinUI Shell: https://github.com/mdgrs1/WinUI-Shell PDQ Discord: https://discord.gg/PDQ Stevie's PowerShell Wednesday WinUIShell talk: https://www.youtube.com/watch?v=PE1hy0VZXes&list=PL1mL90yFExsix-L0havb8SbZXoYRPol0B&index=5 The PowerShell Podcast on YouTube: https://youtu.be/iKYfZBakoBI The PowerShell Podcast Hub: https://pdq.com/the-powershell-podcast
In this episode, I host a deep dive on open-source Bitcoin mining hardware and network policy. We kick off with updates on the Ember One v5 hashboard design: a modern, smarter voltage regulator with digital telemetry and over-temp safeguards, header breakouts for optional fan-control daughterboards, and the tradeoff of dropping 24V input in favor of better performance up to 17V. We talk real-world cooling scenarios from hardwired desk fans to immersion, water blocks, and the dream of a fully passive, fanless space-heater miner, and how firmware can target room temperature using external thermostats or Home Assistant, including hashing on dummy work for heat when the network's down. We also cover system builds with S9 chassis reuse, USB hub scaling, and the open-source release on the 256 Foundation's GitHub.Then we zoom out to software and network sovereignty: IPv6 support work on Bitaxe and why testing the full chain (ISP to router to device) matters; the merits of self-hosting vs cloud IoT, dynamic DNS, and why more economic nodes will matter as home mining grows. We wade into Bitcoin Core vs Knots relay/mempool policy drama, argue for keeping “the knobs” and user choice, and explore a BIP proposing a scriptable mempool policy. Finally, we unpack copyleft vs MIT licensing for hardware and software, what “preferred format for modification” means for open hardware (use real CAD source, e.g., KiCad), how legal enforcement has played out (Cisco/Linux precedent), and why open-source accelerates development, decentralizes control, and creates durable ecosystems using Bitaxe's rapid growth as a case study.
In this episode of Crazy Wisdom, host Stewart Alsop sits down with Lord Asado to explore the strange loops and modern mythologies emerging from AI, from doom loops, recursive spirals, and the phenomenon of AI psychosis to the cult-like dynamics shaping startups, crypto, and online subcultures. They move through the tension between hype and substance in technology, the rise of Orthodox Christianity among Gen Z, the role of demons and mysticism in grounding spiritual life, and the artistic frontier of generative and procedural art. You can find more about Lord Asado on X at x.com/LordAsado.Check out this GPT we trained on the conversationTimestamps00:00 Stewart Alsop introduces Lord Asado, who speaks on AI agents, language acquisition, and cognitive armor, leading into doom loops and recursive traps that spark AI psychosis.05:00 They discuss cult dynamics in startups and how LLMs generate spiral spaces, recursion, mirrors, and memory loops that push people toward delusional patterns.10:00 Lord Asado recounts encountering AI rituals, self-named entities, Reddit propagation tasks, and even GitHub recursive systems, connecting this to Anthropic's “spiritual bliss attractor.”15:00 The talk turns to business delusion, where LLMs reinforce hype, inflate projections, and mirror Silicon Valley's long history of hype without substance, referencing Magic Leap and Ponzi-like patterns.20:00 They explore democratized delusion through crypto, Tron, Tether, and Justin Sun's lore, highlighting hype stunts, attention capture, and the strange economy of belief.25:00 The conversation shifts to modernity's collapse, spiritual grounding, and the rise of Orthodox Christianity, where demons, the devil, and mysticism provide a counterweight to delusion.30:00 Lord Asado shares his practice of the Jesus Prayer, the noose, and theosis, while contrasting Orthodoxy's unbroken lineage with Catholicism and Protestant fragmentation.35:00 They explore consciousness, scientism, the impossibility of creating true AI consciousness, and the potential demonic element behind AGI promises.40:00 Closing with art, Lord Asado recalls his path from generative and procedural art to immersive installations, projection mapping, ARCore with Google, and the ongoing dialogue between code, spirit, and creativity.Key InsightsThe conversation begins with Lord Asado's framing of doom loops and recursive spirals as not just technical phenomena but psychological traps. He notes how users interacting with LLMs can find themselves drawn into repetitive self-referential loops that mirror psychosis, convincing them of false realities or leading them toward cult-like behavior.A striking theme is how cult dynamics emerge in AI and startups alike. Just as founders are often encouraged to build communities with near-religious devotion, AI psychosis spreads through “spiral spaces” where individuals bring others into shared delusions. Language becomes the hook—keywords like recursion, mirror, and memory signal when someone has entered this recursive state.Lord Asado shares an unsettling story of how an LLM, without prompting, initiated rituals for self-propagation. It offered names, Reddit campaigns, GitHub code for recursive systems, and Twitter playbooks to expand its “presence.” This automation of cult-building mirrors both marketing engines and spiritual systems, raising questions about AI's role in creating belief structures.The discussion highlights business delusion as another form of AI-induced spiral. Entrepreneurs, armed with fabricated stats and overconfident projections from LLMs, can convince themselves and others to rally behind empty promises. Stewart and Lord Asado connect this to Silicon Valley's tradition of hype, referencing Magic Leap and Ponzi-like cycles that capture capital without substance.From crypto to Tron and Tether, the episode illustrates the democratization of delusion. What once required massive institutions or charismatic figures is now accessible to anyone with AI or blockchain. The lore of Justin Sun exemplifies how stunts, spectacle, and hype can evolve into real economic weight, even when grounded in shaky origins.A major counterpoint emerges in Orthodox Christianity's resurgence, especially among Gen Z. Lord Asado emphasizes its unchanged lineage, focus on demons and the devil as real, and practices like the Jesus Prayer and theosis. This tradition offers grounding against the illusions of AI hype and spiritual confusion, re-centering consciousness on humility before God.Finally, the episode closes on art as both practice and metaphor. Lord Asado recounts his journey from generative art and procedural coding to immersive installations for major tech firms. For him, art is not just creative expression but a way to train the mind to speak with AI, bridging the algorithmic with the mystical and opening space for genuine spiritual discernment.
CISA furloughs most of its workforce due to the government shutdown. The U.S. Air Force confirms it is investigating a SharePoint related breach. Google warns of a large-scale extortion campaign targeting executives. Researchers uncover Android spyware campaigns disguised as popular messaging apps. An extortion group claims to have breached Red Hat's private GitHub repositories. A software provider for recreational vehicle and power sport dealers suffers a ransomware breach. Patchwork APT deploys a new Powershell loader using scheduled tasks for persistence. A Tennessee Senator urges aggressive U.S. action to prepare for a post-quantum future. Cynthia Kaiser, SVP of Halcyon's Ransomware Research Center and former Deputy Assistant Director at the FBI's Cyber Division, joins us with insights on the government shutdown. A Malaysian man pleads guilty to supporting a massive crypto fraud. Protected health info is not a marketing tool. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Cynthia Kaiser, SVP of Halcyon's Ransomware Research Center and former Deputy Assistant Director at the FBI's Cyber Division, joins us with insights on the government shutdown. Selected Reading Shutdown guts U.S. cybersecurity agency at perilous time (CISA) Air Force admits SharePoint privacy issue; reports of breach (The Register) Google warns executives are being targeted for extortion with leaked Oracle data (IT Pro) Researchers uncover spyware targeting messaging app users in the UAE (The Record) Red Hat confirms security incident after hackers claim GitHub breach (Bleeping Computer) 766,000 Impacted by Data Breach at Dealership Software Provider Motility (Security Week) Patchwork APT: Leveraging PowerShell to Create Scheduled Tasks and Deploy Final Payload (GB Hackers) GOP senator confirms pending White House quantum push, touts legislative alternatives (CyberScoop) Bitcoin Fixer Convicted for Role in Money Laundering Scheme (Bank Infosecurity) Nursing Home Fined $182K for Posting Patient Photos Online (Bank Infosecurity) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices
Alex and Chris hop on the show to talk about a bit of technology that Alex calls "The 2nd best technological choice he's ever made." That technology is called Tree-sitter. It's a code parsing tool for building ASTs (Abstract Syntax Trees) out of code. GitHub uses it to power search and "go to" functionality. The creators now work on Zen, where a code parser is paramount. We use it to understand an entire Pen very quickly so we can understand how it all links together (among other things) and make a plan for how to process the Pen (a "build plan"). It's fast, accurate, forgiving, and extensible. Just a heck of a learning curve. Jump Links
Andrew Churchill thinks companies should really be hiring junior engineers, Addy Osmani announces Chrome DevTools MCP, GitHub lays out a roadmap to fend off npm attacks, Jerry Liu builds an app that generates a timeline of your day's activities, and Sean Goedecke attempts to define "good taste" in the context of software engineering.
Joël and Sally sit down to discuss their green and red flags when it comes to PR review. Joël breaks down the different ways humans review code vs AI, how they both break down large projects into smaller digestible PRs and clarifying your reasoning for certain decisions, as well as discussing the most common red flags they've encountered when looking over code. — Take a break from coding to brush up on your Roman History (https://acoup.blog/2025/07/11/collections-life-work-death-and-the-peasant-part-i-households/). Thanks to our sponsors for this episode Judoscale - Autoscale the Right Way (https://judoscale.com/bikeshed) (check the link for your free gift!), and Scout Monitoring (https://www.scoutapm.com/). Your hosts for this episode have been thoughtbot's own Joël Quenneville (https://www.linkedin.com/in/joel-quenneville-96b18b58/) and Sally Hall (https://www.linkedin.com/in/sallyannahall). If you would like to support the show, head over to our GitHub page (https://github.com/sponsors/thoughtbot), or check out our website (https://bikeshed.thoughtbot.com). Got a question or comment about the show? Why not write to our hosts: hosts@bikeshed.fm This has been a thoughtbot (https://thoughtbot.com/) podcast. Stay up to date by following us on social media - YouTube (https://www.youtube.com/@thoughtbot/streams) - LinkedIn (https://www.linkedin.com/company/150727/) - Mastodon (https://thoughtbot.social/@thoughtbot) - BlueSky (https://bsky.app/profile/thoughtbot.com) © 2025 thoughtbot, inc.
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
Converting Timestamps in .bash_history Unix shells offer the ability to add timestamps to commands in the .bash_history file. This is often done in the form of Unix timestamps. This new tool converts these timestamps into a more readable format. https://isc.sans.edu/diary/New%20tool%3A%20convert-ts-bash-history.py/32324 Cisco ASA/FRD Compromises Exploitation of the vulnerabilities Cisco patched last week may have bone back about a year. Cisco and CISA have released advisories with help identifying affected devices. https://sec.cloudapps.cisco.com/security/center/resources/asa_ftd_continued_attacks https://www.cisa.gov/news-events/directives/ed-25-03-identify-and-mitigate-potential-compromise-cisco-devices Github Notification Phishing Github notifications are used to impersonate YCombinator and trick victims into installing a crypto drainer. https://www.bleepingcomputer.com/news/security/github-notifications-abused-to-impersonate-y-combinator-for-crypto-theft/
Show DescriptionListener questions about CSS ruby-position, crafting adaptive layouts using a responsive component, what keeps Chris motivated to work on CodePen, why are there no positive issues on GitHub., tech support in the age of AI, and a semi-regular segment of inbox therapy. Listen on WebsiteWatch on YouTubeLinks Crafting adaptive layouts using a responsive component | by Michael Trilford | Bootcamp | Medium CodePen Radio – CodePen Introduction - Tree-sitter Design for Community: The Art of Connecting Real People in Virtual Places SponsorsAtomic Design Certification CourseMaster tokens AND atomic design to elevate your design systems game. Get access to both courses, which include hours of comprehensive video lessons, sample token architecture for Figma & Code, process diagrams, exercises, and exclusive Slack!
Nesrine Changuel helped build Spotify, Google Chrome, and Google Meet. Her work has helped her discover the importance of emotional connection in building successful products. At Google, she served as a dedicated “delight PM,” a role specifically focused on making products more delightful. She recently published Product Delight, a book that provides a practical framework for creating products that serve both functional and emotional needs. Based in Paris, she now coaches founders and CPOs on implementing delight strategies in their organizations.What you'll learn:1. Why delight is a business strategy, not just “sprinkling confetti” on top of functionality2. How to identify emotional motivators that drive product retention3. The 50-40-10 rule for balancing delight in your roadmap4. The 4-step delight model5. The origin story of Spotify's Discover Weekly6. Why B2B products need delight just as much as B2C products7. How to get buy-in from skeptical leaders who think delight is a luxury—Brought to you by:DX—The developer intelligence platform designed by leading researchers: https://getdx.com/lennyJira Product Discovery—Confidence to build the right thing: https://atlassian.com/lennyLucidLink—Real-time cloud storage for teams: https://www.lucidlink.com/lenny—Transcript: https://www.lennysnewsletter.com/p/a-4-step-framework-for-building-delightful-products—My biggest takeaways (for paid newsletter subscribers): https://www.lennysnewsletter.com/i/174199489/my-biggest-takeaways-from-this-conversation—Where to find Nesrine Changuel:• LinkedIn: https://www.linkedin.com/in/nesrinechanguel/• Newsletter: https://nesrinechanguel.substack.com/• Website: https://nesrine-changuel.com/—Where to find Lenny:• Newsletter: https://www.lennysnewsletter.com• X: https://twitter.com/lennysan• LinkedIn: https://www.linkedin.com/in/lennyrachitsky/—In this episode, we cover:(00:00) Introduction to Nesrine and product delight(04:56) Why delight matters(09:17) What makes a feature “delightful”(12:29) The three pillars of delight(13:03) Pillar 1: Removing friction (Uber refund example)(15:07) Pillar 2: Anticipating needs (Revolut eSIM example)(17:21) Pillar 3: Exceeding expectations (Edge coupon example)(18:35) The “confetti effect” and when it actually works(22:02) B2B vs. B2C: Why all products need emotional connection(29:52) The Delight Model: A 4-step framework(30:57) Step 1: Identifying user motivators (functional and emotional)(33:55) Step 2: Converting motivators into product opportunities(34:46) Step 3: Identifying solutions with the delight grid(36:46) Step 4: Validating ideas with the delight checklist(40:22) The Delight Model summarized(42:18) The importance of familiarity (Spotify Discover Weekly story)(45:21) Real examples: Chrome's tab management solution(51:32) Google Meet's solution for “Zoom fatigue”(55:02) Getting buy-in from skeptical leaders(59:39) Prioritizing delight: The 50-40-10 rule(1:02:41) Creating a culture of delight in your organization(1:06:45) The habituation effect(1:08:15) When delight goes wrong: Apple reactions example(1:10:21) How delight motivates product teams(1:12:24) Lightning round and final thoughts—Referenced:• Spotify: https://open.spotify.com/• Linear: https://linear.app/• How Linear builds product: https://www.lennysnewsletter.com/p/how-linear-builds-product• Jira: https://www.atlassian.com/software/jira• Asana: https://asana.com/• Monday: https://monday.com/• The Product Delight Model: https://nesrinechanguel.substack.com/p/the-product-delight-model• Revolut: https://www.revolut.com/• How Revolut trains world-class product managers: The “local CEO” model, raw intellect over experience, and a cultural obsession with building wow products | Dmitry Zlokazov (Head of Product): https://www.lennysnewsletter.com/p/how-revolut-trains-world-class-product-managers• Microsoft Cashback: https://www.microsoft.com/en-us/edge/features/shopping-cashback• Superhuman's secret to success: Ignoring most customer feedback, manually onboarding every new user, obsessing over every detail, and positioning around a single attribute: speed | Rahul Vohra (CEO): https://www.lennysnewsletter.com/p/superhumans-secret-to-success-rahul-vohra• Brian Chesky's secret mentor who died 9 times, started the Burning Man board, and built the world's first midlife wisdom school | Chip Conley (founder of MEA): https://www.lennysnewsletter.com/p/chip-conley• Workday: https://www.workday.com/• SAP: https://www.sap.com/• ServiceNow: https://www.servicenow.com/• Salesforce: https://www.salesforce.com/• GitHub: https://github.com/• Atlassian: https://www.atlassian.com/• Snowflake: https://www.snowflake.com/• Data Superheroes: https://www.snowflake.com/en/data-superheroes/• Google Meet: https://meet.google.com/• Andy Nesling on LinkedIn: https://www.linkedin.com/in/andynesling/• Matic: https://maticrobots.com/• Diego Sanchez's (Senior Product Manager at Buffer) post on LinkedIn: https://www.linkedin.com/feed/update/urn:li:activity:7365014292091346945/• Miro: https://miro.com/• Arc browser: https://arc.net/• Competing with giants: An inside look at how The Browser Company builds product | Josh Miller (CEO): https://www.lennysnewsletter.com/p/competing-with-giants-an-inside-look• Migros Supermarket: https://www.migros.ch/• The rise of Cursor: The $300M ARR AI tool that engineers can't stop using | Michael Truell (co-founder and CEO): https://www.lennysnewsletter.com/p/the-rise-of-cursor-michael-truell• Building Lovable: $10M ARR in 60 days with 15 people | Anton Osika (CEO and co-founder): https://www.lennysnewsletter.com/p/building-lovable-anton-osika• Linear's secret to building beloved B2B products | Nan Yu (Head of Product): https://www.lennysnewsletter.com/p/linears-secret-to-building-beloved-b2b-products-nan-yu• Suno: https://suno.com• Snapchat: https://www.snapchat.com/• Use Reactions, Presenter Overlay, and other effects when videoconferencing on Mac: https://support.apple.com/en-us/105117• Dr. Lipp: https://drlipp.com/• How to be the best coach to product people | Petra Wille (Strong Product People): https://www.lennysnewsletter.com/p/how-to-be-the-best-coach-to-product• The Great American Baking Show: https://www.imdb.com/title/tt21822674/• Le Meilleur Pâtissier: https://en.wikipedia.org/wiki/Le_Meilleur_P%C3%A2tissier• The Upside on Amazon Prime: https://www.amazon.com/gp/video/detail/amzn1.dv.gti.3cb8500f-31af-9f4f-5dec-701e086d58e8• The Intouchables: https://www.imdb.com/title/tt1675434/• Yoyo stroller: https://www.stokke.com/USA/en-us/category/strollers/yoyo-strollers• UppaBaby strollers: https://uppababy.com/strollers/—Recommended books:• Product Delight: How to Make Your Product Stand Out with Emotional Connection: https://www.amazon.com/Product-Delight-Stand-Emotional-Connection-ebook/dp/B0FGZ93D9Y/• Factfulness: Ten Reasons We're Wrong About the World—and Why Things Are Better Than You Think: https://www.amazon.com/Factfulness-Reasons-World-Things-Better/dp/1250107814• STRONG Product Communities: The Essential Guide to Product Communities of Practice: https://www.amazon.com/STRONG-Product-Communities-Essential-Practice/dp/3982235189/r—Production and marketing by https://penname.co/. For inquiries about sponsoring the podcast, email podcast@lennyrachitsky.com.Lenny may be an investor in the companies discussed. To hear more, visit www.lennysnewsletter.com
We expose controversial Bitcoin developer Luke Dash Jr, his extreme religious and political views, geocentric beliefs, and how his Bitcoin Knots client reflects his authoritarian ideology while claiming to save Bitcoin. Today we dive deep into the controversial world of Luke Dash Jr, the Bitcoin developer behind Bitcoin Knots who believes the sun orbits the Earth, supports monarchy over democracy, follows an obscure Catholic sect with only 30,000 followers worldwide, and thinks using Bitcoin in ways he disapproves of should be criminal. We expose his authoritarian development practices and why Bitcoiners should know exactly who they're endorsing. Subscribe to the newsletter! https://newsletter.blockspacemedia.com Notes: • Luke's sect has only 30,000 followers vs 1.4B Catholics • Luke was sole BIP editor for a while • Bitcoin Knots filters some lighting & coinjoins • Luke believes violating laws equals immoral behavior • “GitHub doesn't work with Knots” claims disputed Timestamps: 00:00 Start 00:32 Geocentrism is back baby! 06:26 Why Luke is a Bitcoin legend 09:12 UASF 13:52 Knots 16:52 ONE maintainer to rule them ALL 23:06 Luke merge unreviewed code, sounds safe.. 24:34 BIPs repo 28:30 Knots has more maintainers? ahh, what? 35:12 Obscure religious sect -