Podcasts about jwt

Bienvenue dans le deux-cent-quatre-vingt-douzième épisode de CacaoCast! Dans cet épisode, Philippe Casgrain et Philippe Guitard discutent des sujets suivants: UIScene - Vos applications UIKit devront l'adopter Empreinte carbone ChatGPT - D'autres calculs plus conservateurs IA et O'Reilly - La fin de la programmation comme on la connaît? L'IA est le futur - Ne soyez pas en reste Jot - Pour faire des tokens JWT en Swift avec CryptoKit mobygratis - Plus de 500 pistes pour vos projets Ecoutez cet épisode

 In this episode of Spikes Excitement Talks, Gordon sits down with David Rosenberg — CMO / CXO, a brand builder and innovation strategist whose career spans from the golden era of ad agencies to the cutting edge of Amazon Health, currently leading the product management.David's journey is anything but conventional: from early days at JWT and LBI to launching a startup in the wild west of digital advertising, to redefining fan engagement in the gaming world and managing the brand identities of pro athletes. They unpack the throughlines in David's path — a relentless curiosity, a love for systems (and breaking them), and a deep belief in the power of stories to shape both products and perception. David shares why gaming was his creative playground long before it became mainstream marketing, what it means to work in ecosystems instead of silos, and how he's now bringing product and brand together in the health space. They also explore the emotional craft of marketing, the importance of being “multi-lingual” across culture, tech, and storytelling — and what happens when you stop playing by the old rules and start building your own game. Tune in to hear, how brand lives inside products and why the most powerful moves in marketing often start with a simple question: What if?

Surge in Scans for Juniper t128 Default User Lasst week, we dedtect a significant surge in ssh scans for the username t128 . This user is used by Juniper s Session Smart Routing, a product they acquired from 128 Technologies which is the reason for the somewhat unusual username. https://isc.sans.edu/diary/Surge%20in%20Scans%20for%20Juniper%20%22t128%22%20Default%20User/31824 Vulnerable Verizon API Allowed for Access to Call Logs An API Verizon offered to users of its call filtering application suffered from an authentication bypass vulnerability allowing users to access any Verizon user s call history. While using a JWT to authenticate the user, the phone number used to retrieve the call history logs was passed in a not-authenticated header. https://evanconnelly.github.io/post/hacking-call-records/ Google Offering End-to-End Encryption to G-Mail Business Users Google will add an end-to-end encryption feature to commercial GMail users. However, for non GMail users to read the emails they first must click on a link and log in to Google. https://workspace.google.com/blog/identity-and-security/gmail-easy-end-to-end-encryption-all-businesses

O Poder da Publicidade na Arte: A História da Dionisio.AG Com Jean Paschalis | #podcast #empreendedorismo #podcastbrasilJean Paschalis é um empreendedor e estrategista criativo com uma trajetória marcada pela inovação no mercado de publicidade e arte. Graduado em Publicidade e Propaganda pela Anhembi Morumbi, iniciou sua carreira atuando em planejamento e atendimento em algumas das maiores agências do Brasil, incluindo a JWT (atual Wunderman Thompson). Com uma visão empreendedora, fundou a Tofi Comunicação, agência especializada em marketing, antes de mergulhar no universo da arte e cofundar a Dionisio.AG ao lado de seus sócios, Victor e Rafael.Com uma sólida experiência em publicidade, Jean já desenvolveu projetos para grandes marcas como Warner Bros, Pepsico e General Motors, consolidando sua expertise em branding e conexões estratégicas entre arte e mercado. Sua paixão pelo setor começou no blog Dionisio Arte, onde atuou como redator e explorou tendências artísticas, ampliando sua visão sobre o impacto da arte no universo corporativo.Atualmente, na Dionisio.AG, ele segue liderando projetos que conectam marcas, artistas e inovação, transformando a criatividade em estratégias de impacto. Com uma trajetória que une publicidade, arte e empreendedorismo, Jean Paschalis continua moldando o mercado e elevando a arte como um ativo estratégico para empresas.

You want brutal honesty? Well here it is. Jane Evans says she has always been radical and these days she is not afraid to point out the bleeding obvious, not that she ever was. The issue being, midlife women, women of a certain age, simply fade from sight. For many, they become invisible.Jane Evans is an executive creative director and activist who has lived & worked in the advertising sector in Australia. Now back in the UK, Jane is the Co-Founder of Visible Inc., and on this episode of the Power Of Women Podcast, she shares how she has created a movement to empower midlife women, and the need for societal change to support women in their careers. Jane and Di explore the challenges and opportunities faced by midlife women, emphasising the need for a shift in perceptions, empowerment, and the recognition of this cohort's consumer power. The conversation highlights the need for a new narrative that embraces aging and redefines beauty, while also honouring the contributions of previous generations of women. New podcast episodes drop every Monday to power your week. KEY TOPICS: 00:00 Introduction to Jane Evans: A Radical Voice01:24 The Importance of Brutal Honesty12:44 Midlife Women: Challenges and Opportunities18:00 Creating a Movement for Midlife Women35:11 The Power of Midlife Women as Consumers45:23 Empowering Midlife Women to Create Change WHO IS JANE EVANS?Jane Evans is Co-Founder & Head of Visible Creators at Visible Inc, based in the UK. Jane is one of the most successful female creatives of her era. She was a regional Creative director for JWT, won a swag of awards and created campaigns that still run after 30 years. She's most famous for creating James Squire, Australia's top selling craft beer before there were craft beers. But in her fifties, she found herself completely invisible to the advertising industry. Her immediate reaction was, “If I can become invisible, what hope do other women have?” It was the first time in her career where she had no clients or briefs, so she made midlife women her client and brief to change the narrative for all of us. FIND JANE EVANS AT:LinkedIn https://www.linkedin.com/in/janeelondon/Website https://www.visible-inc.com/ CONNECT WITH DI & POWER OF WOMEN: LinkedIn https://www.linkedin.com/in/di-gillett-power-of-women/ Contact https://powerofwomen.com.au/contact/ Be the first to catch inspiring interviews, empowering stories, and thought-provoking content. Follow the podcast, share the episodes & hit that subscribe button so you never miss an episode.Subscribe on YouTube: https://www.youtube.com/channel/UCeuAx74qUBrHxaQPEnxRpTw?sub_confirmation=1CREDITS:Sound Design: Daryl Missen - www.vinilo.com.au DISCLAIMER: https://powerofwomen.com.au/podcast-disclaimer/#PowerOfWomenpodcast #powerofwomenpodcastwithdigillett #powerofvisibility #femaleempowerment #VisibleInc #janeevans #midlife #midlifewomen #midlifecareer #invisible #visibility #aginggracefully #ageism Hosted on Acast. See acast.com/privacy for more information.

 My guest today is Suzanne Darmory, the Chief Marketing Officer at Profundo, the only minority-owned fintech platform in the tax industry, committed to fostering inclusivity in the communities they serve. In addition to founding her own boutique agency, The Agency That Sold Agnesi, she has spent her career on both the client side—working with companies like IBM, L'Oréal, and Jackson Hewitt—and the agency side in New York (Arnold Deutsch, Gray, JWT) and London (Bates UK, Euro KG, Ogilvy Mather).Suzanne brings over 25 years of international experience championing Fortune 500 brands and articulating their visions through innovative marketing and advertising initiatives. Her track record of driving transformative change, paired with a relentless focus on results, has solidified her reputation as a renowned industry leader.She has been recognized by Mars as one of the Top 100 Influencers in Marketing and Advertising, by Business Leaders Magazine as one of the Top 100 Business Leaders, and by Refinery29 as one of the 29 Most Powerful Women in Digital. She has also been featured on the Where Are the Boss Ladies list. 

Visuals: https://getbehindthebillboard.com/episode-83-aidan-mcclureEpisode #83 features the super-charming, super-talented Aidan McClure, CCO and co-founder of Wonderhood Studios.We caught up with Aidan just before Christmas and had a great natter.We heard the story of how he got onto the Watford Copywriting course by pretending to be the Queen.We discovered how Aidan (and partner Laurent Simon) got their first job after winning the Diageo Best Student Team in the UK doing placements at Mother, BBH and JWT before settling at AMV. Not a bad start.We even talked about Aidan's musical side hustle, playing the violin nearly as well as Stefan Grappelli.And of course there were many brilliant billboards, starting with some classics for The Economist and VW before the incredible BBC Russia World Cup tapestry … still hanging in the Football Museum in Manchester today.We found out how Aidan worked with our Dan on the ground-breaking Google Front Row campaign that featured the world's first live stream to pitch side hoardings.Then there was Nike ‘The 93', The Migration Museum and the changing of the signage of Coral's betting shops during the last Euro's.Every piece of work has a story, a vibe that makes it feel more than advertising. It's a theme throughout Aidan's award-winning career which includes ‘The Bear and Hare' campaign for John Lewis, which won a Cannes Gold and BBC1's Christmas campaign ‘The Supporting Act' that was one of the Beeb's most successful commercials ever.Aidan thank you so much for coming on and bringing your warmth and creativity to us in abundance! It was a total pleasure.

All appsec teams need quality tools and all developers benefit from appsec guidance that's focused on meaningful results. Greg Anderson shares his experience in bringing the OWASP DefectDojo project to life and maintaining its value for over a decade. He reminds us that there are tons of appsec teams with low budgets and few members that need tools to help them bring useful insights to developers. Segment Resources: https://owasp.org/www-project-defectdojo/ Three-quarters of CISOs surveyed reported being "overwhelmed" by the growing number of tools and their alerts: https://www.darkreading.com/cloud-security/cisos-throwing-cash-tools-detect-breaches As many as one-fifth of all cybersecurity alerts turn out to be false positives. Among 800 IT professionals surveyed, just under half of them stated that approximately 40% of the alerts they receive are false positives: https://www.securitymagazine.com/articles/97260-one-fifth-of-cybersecurity-alerts-are-false-positives 91% of organizations knowingly released vulnerable applications, 57% of vulnerabilities are left unresolved by developers, 32% of CISOs deploy vulnerable code in the hopes it won't be discovered, 56% of developers struggle to prioritize vulnerability fixes: https://info.checkmarx.com/future-of-application-security-2024 Curl removes a Rust backend, double clickjacking revives an old vuln, a new tool for working with HTTP/3, a brief reminder to verify JWT signatures, design lessons from recursion, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-312

Curl removes a Rust backend, double clickjacking revives an old vuln, a new tool for working with HTTP/3, a brief reminder to verify JWT signatures, design lessons from recursion, and more! Show Notes: https://securityweekly.com/asw-312

All appsec teams need quality tools and all developers benefit from appsec guidance that's focused on meaningful results. Greg Anderson shares his experience in bringing the OWASP DefectDojo project to life and maintaining its value for over a decade. He reminds us that there are tons of appsec teams with low budgets and few members that need tools to help them bring useful insights to developers. Segment Resources: https://owasp.org/www-project-defectdojo/ Three-quarters of CISOs surveyed reported being "overwhelmed" by the growing number of tools and their alerts: https://www.darkreading.com/cloud-security/cisos-throwing-cash-tools-detect-breaches As many as one-fifth of all cybersecurity alerts turn out to be false positives. Among 800 IT professionals surveyed, just under half of them stated that approximately 40% of the alerts they receive are false positives: https://www.securitymagazine.com/articles/97260-one-fifth-of-cybersecurity-alerts-are-false-positives 91% of organizations knowingly released vulnerable applications, 57% of vulnerabilities are left unresolved by developers, 32% of CISOs deploy vulnerable code in the hopes it won't be discovered, 56% of developers struggle to prioritize vulnerability fixes: https://info.checkmarx.com/future-of-application-security-2024 Curl removes a Rust backend, double clickjacking revives an old vuln, a new tool for working with HTTP/3, a brief reminder to verify JWT signatures, design lessons from recursion, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-312

Curl removes a Rust backend, double clickjacking revives an old vuln, a new tool for working with HTTP/3, a brief reminder to verify JWT signatures, design lessons from recursion, and more! Show Notes: https://securityweekly.com/asw-312

Sócia e diretora executiva de criação na agência Mischief, Bianca Guimarães está há 15 anos nos EUA. Após algumas experiências em pequenas agências, ainda recém-formada, um período de estudos e um estágio a levaram para o que seria a grande virada da sua vida. Em Nova York, trabalhou em gigantes da comunicação como a JWT e a BBDO, consolidando sua experiência e reputação na área. Durante a pandemia, mais um grande e importante passo: a fundação de sua própria empresa, em resposta a um desafio que colocou em evidência sua essência profissional. Neste episódio do Falas Women to Watch, Bianca fala sobre os desafios e aprendizados ao migrar do Brasil para Nova York, destacando a importância do networking para o crescimento profissional. Siga o Falas Women to Watch para não perder os próximos programas, e acompanhe o Women to Watch em outros canais: Site: https://womentowatch.com.br Instagram: @womentowatchbrasil LinkedIn: https://www.linkedin.com/showcase/womentowatchbrasilSee omnystudio.com/listener for privacy information.

"If you got one foot in tomorrow and one foot in yesterday, then you're squattin' on today." - Brian's grandma Our favorite stories: 3x author, professor, and agency chief turned clinical therapist Over 20 years in China leading perhaps the most storied industry-shaper J. Walter Thompson on accounts like Kraft, Nike, and Microsoft. There was a lot of proud when you saw your work up there... there was a lot of social cache. Investment banking was a big thing and consulting was too, but there was no shame in saying "I went to a business school and went into advertising." "There was never a CMO... the relationship between agency and client was taken very seriously. Agency reviews were meant to consolidate relationships instead of cracking open fissures that might be helping in reducing fees." On moving to China: "You could tell very quickly who was going to thrive... I came in and was immediately moved by the aspirational sparkle in their eyes... the willingness to absorb information..." Big moments from doing the work: "There was tremendous focus on strategy and creative as the center of gravity... Leo Burnett and JWT had review boards making sure the leadership of the agency was collectively endorsing what was going on. There was no question the decision making was not focused on media." "I helped launch Lunchables... the marketing head and I were very good friends and I knew his family and we went to multiple football games... cookouts... that relationship was particularly warm but not unheard of at the time." "Living in the lanes... not a high rise where the ex-pats were... once you learn the language (Chinese), it gives you insight into how the Chinese view their relationship between the individual and society and the cosmos..."Career advice we'll live with: People are very frightened about digital technology. The people who have command over the digital ecosystem are the new aspirational characters in the industry.Down-funnel: a shift in the center of gravity; those who could understand and could harness the power of data vs ideas. Ideas were left by the wayside. "Clearly there are areas in communication communities that are still brand-centric. The question that I have is, whether people that are part of these part of these functions are ultimately going to scale the ladders of the power structure." Ask yourself, where can I feel most at home? The fundamentals of what a good insight is... what a good brand purpose is -- these are not being taught, in fact they are being slightly ridiculed. You fall back on brand guide books that are overly prescriptive. Find us us on Twitter, Instagram, and at The Bad Podcast dot com

Rizél Scarlett, staff developer advocate at TBD and Block explores the fascinating world of verifiable credentials, diving into their usage, security, and potential to revolutionize everyday processes. Links https://developer.tbd.website jwt.io https://x.com/blackgirlbytes https://www.linkedin.com/in/rizel-bobb-semple https://github.com/blackgirlbytes https://cfe.dev/speakers/rizel-scarlett https://blackgirlbytes.dev We want to hear from you! How did you find us? Did you see us on Twitter? In a newsletter? Or maybe we were recommended by a friend? Let us know by sending an email to our producer, Emily, at emily.kochanekketner@logrocket.com (mailto:emily.kochanekketner@logrocket.com), or tweet at us at PodRocketPod (https://twitter.com/PodRocketpod). Follow us. Get free stickers. Follow us on Apple Podcasts, fill out this form (https://podrocket.logrocket.com/get-podrocket-stickers), and we'll send you free PodRocket stickers! What does LogRocket do? LogRocket provides AI-first session replay and analytics that surfaces the UX and technical issues impacting user experiences. Start understand where your users are struggling by trying it for free at [LogRocket.com]. Try LogRocket for free today.(https://logrocket.com/signup/?pdr) Special Guest: Rizèl Scarlett.

Fredrik och Kristoffer snackar problemlösning, Pythonpakethantering, och pocketdatorer. Med mera. Fredrik kom vidare med sitt problem från avsnitt 597. Han berättar hur det gick till, och Kristoffer frågar om vilka tips som faktiskt hjälpte till att lösa knuten. Vad är problemet med att ha allt på servern? Diskussionen tar en sväng över tunnare webbklienter och hur mycket webben faktiskt kan numera, innan den återkommer till processer och nyttan med checklistor, som kan ge en någonting tydligt att följa när man känner sig osäker eller riskerar att glömma något. Därefter diskuterar vi UV - en ny och spännande pakethanterare för Python. Ämnet leder oss via riskkapital in på frågan: Hur tänker folk med pengar? Varför får vissa saker riskkapital, och hur kommer de att förstöras av det? Och relaterat till den frågan: varför bygga in anrop till andras språkmodeller i sina saker, utan en tydlig vinst och utan tydliga förhoppningar att det någon gång skulle börja fungera bättre? För att muntra upp oss igen avslutar vi med att snacka lite mer om MNT pocket reform - en dator från en gladare och mer hemmabyggd tidslinje med en frisk fläkt från Berlin. Ett stort tack till Cloudnet som sponsrar vår VPS! Har du kommentarer, frågor eller tips? Vi är @kodsnack, @thieta, @krig, och @bjoreman på Mastodon, har en sida på Facebook och epostas på info@kodsnack.se om du vill skriva längre. Vi läser allt som skickas. Gillar du Kodsnack får du hemskt gärna recensera oss i iTunes! Du kan också stödja podden genom att ge oss en kaffe (eller två!) på Ko-fi, eller handla något i vår butik. Länkar Avsnitt 597 - Fredriks problem och listan med sätt att komma vidare Cookies Chrome skulle förbjuda tredjepartscookies JWT-tokens Chris Ferdinandi Webbkomponenter Chris Ferdinandi gör om en React-app till webbkomponent Next.js Variabler i CSS Media queries @layer i CSS Checklistor Ett visualiseringsplugin för VS code Pluginutveckling för VS code Microsofts IPV6-bugg - RCE utan interaktivitet Stöd oss på Ko-fi! UV - ny pakethanterare med mera för Python Setuptools Easy install (inte Easy setup, som vi sa) Pip Poetry pyenv Flask Cargo för Rust Go package manager Rye - projektet som gått upp i UV Armin Ronacher, som skrivit Flask Astral - startupen bakom UV Virtuella miljöer för Python Nvm - Node version manager Ruff Zed Zed AI Developer voices med Zach Lloyd, skaparen av Warp Iterms LLM-integration - utbrutet i ett plugin Sed Bash AWK Regexp Savage, Procreate, och klippet med deras VD MNT pocket reform Nintendo DS 100 rabbits Eee Schweiz kräver öppen mjukvara Titlar Plågoperioden Såhär gör man inte med cookies längre Cookies är på tapeten Bra på att se mönster Ett slag för loggning Lägg det i sessionen All state på server Dra sladdar för hand 640 måste man hårdkoda Berätta om det med en annan struktur Bara två gånger per år Bryta paniken Istället för att hyperventilera En checklista med tjugosex steg Gandalfpaketet Som ett modernt system Jag förstår inte hur personer med pengar tänker Hur de med pengar tänker Av någon anledning så har du hamnat i terminalen Sätt dig och lär dig, skärp dig Solid leksakskänsla En alternativ datorvärld AI och misär

Andrés Marantá es gerente de Diseño de Alpina, la empresa láctea líder en Colombia.Andrés lidera la estrategia de diseño y los aspectos visuales del packaging, la comunicación de marcas y nuevos lanzamientos en Alpina.Con más de 15 años de experiencia en agencias de publicidad como Leo Burnett, Lowe SSP3, Sancho BBDO, JWT y Ogilvy, él ha sido reconocido en los festivales de creatividad más importantes del mundo. Ha trabajado para marcas como Pfizer, Grupo Ferrero, Postobón, Grupo Aval, Chevrolet, Ecopetrol, Alpina, y P&G, entre otras.En este episodio, Andrés comparte su visión sobre la importancia de la belleza en el diseño de packaging. Relata su experiencia en agencias de publicidad y su transición a trabajar del lado del cliente. Nos sumergimos en el arte y la estrategia del diseño de envases, y cómo trabajar en estrecha colaboración con los clientes puede dar lugar a un trabajo creativo innovador.Links Relevantes:Andrés Marantá LinkedInAlpinaGuto StudioSeguinos:BRANDERMAN websiteBRANDERMAN InstagramHernán Braberman LinkedInMy packaging design agency TRIDIMAGEPACKNEWS BlogSuscribite:Suscribite a BRANDERMAN en tu App de Podcast favorita para no perderte ninguno denuestros próximos episodios.SpotifyApple PodcastsYouTubeOvercastIvoox

Kit Kat debated whether to update its “Have a break” platform or to abandon it. This APG Grand Prix winning campaign from 2003 is about the peril of becoming so ubiquitous that you're no longer noticed. About all the brand signals looking strong, while profitability was in decline. Fern Miller, the planner on the account at then JWT, shares the journey and the pivot. Thanks to Tracksuit (the affordable brand tracking solution for modern brands) for supporting our show. Learn more at gotracksuit.com.

Elyse Oleksak is the author of A Shark Ate My Bagel and co-founder of Bantam Bagels. Elyse has always been competitive and incorporated the concepts she learned as a D1 lacrosse player, such as time management, hustling, and perseverance, into her entrepreneurship. She began her career in advertising as an Account Associate at JWT. From there, she went to Morgan Stanley, where she learned how to navigate the politics of corporate America. After some soul-searching, a late-night idea came to her husband, and eventually Bantam Bagels was born. After googling “how to make a bagel," figuring out how to get the cream cheese inside, and developing a business plan, they came up with the recipe that they took to Shark Tank.On the show today, Alan and Elyse talk about her rocket ship ride into entrepreneurship as the cofounder of Bantam Bagels, when they knew they had something real, her experience with Shark Tank, and how it changed everything for them. We also talk about her recent book, what inspired her to write it, and the advice she has for budding entrepreneurs that she learned from both failures and successes alike.In this episode, you'll learn:How Bantam Bagels was bornThe benefits of being a Shark Tank brandElyse's advice to budding entrepreneursKey Highlights:[01:20] Experience of a D1 lacrosse player [06:00] How Bantam Bagels was born[12:00] How do they get the cream cheese inside?[12:30] When they know they really had done it[13:15] Why A Shark Ate My Bagel, and why now? [15:15] The Shark Tank experience [19:35] Major lessons learned[24:20] Success does not exist without failure. [29:30] Advice to budding entrepreneurs[31:10] The impact of a semester abroad [34:45] Advice to her younger self [35:40] The AI balance [37:45] Trends to watch[38:35] The speed of change Looking for more?Visit our website for the full show notes, links to resources mentioned in this episode, and ways to connect with the guest! Become a member today and listen ad-free, visit https://plus.acast.com/s/marketingtoday. Hosted on Acast. See acast.com/privacy for more information.

Nicole Vilalte was born and raised in Puerto Rico, went to college on the island, and started her career there as an account executive at DDB LATAM. She eventually moved to New York to work for JWT before becoming an account supervisor at The Vidal Partnership for Sprint Wireless. She relocated to Portland for a few years to take over the Target account at Wieden + Kennedy before heading back to New York to work on IBM Global at Ogilvy. In 2017, Nicole returned home to become the Business Director for Puerto Rico Tourism Company, and after another stint with Ogilvy, she was hired on as the Chief Marketing Officer at Invest Puerto Rico in 2021.Invest Puerto Rico is on a mission to promote the island and bring new capital investment and businesses to the region. It is a public-private partnership that helps companies get established on the island by assisting them in navigating incentives, connecting them with resources for real estate selection and access to talent, and facilitating introductions to key stakeholders like sector experts and industry associations. Over the last 5 years, Invest Puerto Rico has secured commitments of $1 billion in capital investments, contributed to the establishment of over 550 new businesses, and helped create 20,000 new jobs. On the show today, Alan and Nicole talk about the unique challenges of marketing a place, who their target audience is, and how they communicate the benefits of establishing and expanding business operations in Puerto Rico. Nicole also tells us about the inspiration behind their new campaign, “It's not what's next, it's where,” and what business sectors they are focused on the most. In this episode, you'll learn:Invest Puerto Rico's mission and how they market a place. The inspiration behind their new campaign: “It's not what's next, it's where.”The future of marketing for Invest Puerto RicoKey Highlights:[01:55] Life with a hot sauce addiction [04:45] Full circle agency career path [12:55] Invest Puerto Rico: Their mission and who they serve[14:55] How do you market a place?[18:55] Which sectors are they trying to grow in most?[23:20] The new campaign, “It's not what's next, it's where.”[26:30] Benefits of being in PR[27:40] The future of marketing for Invest Puerto Rico[29:40] Unique challenges of marketing a place to niche audiences[31:10] Crossroads that shaped who Nicole is today [34:05] Advice to her younger self[37:10] The AI portion of the show[40:10] Watching the metaverse and VR space Looking for more?Visit our website for the full show notes, links to resources mentioned in this episode, and ways to connect with the guest! Become a member today and listen ad-free, visit https://plus.acast.com/s/marketingtoday. Hosted on Acast. See acast.com/privacy for more information.

Kieran Antill is the Director of Brand and Marketing at Ne-Lo, and Ross Hastings is the Managing Director. Their agency, Ne-Lo, has its foundation in a gym of all places, where two people with wildly different backgrounds and perspectives, yet with a shared fascination with the challenges of modern business, met. Kieren, who was heading up the creative team at the late JWT and was at a point of exasperated disillusionment with the way agency business models stifled innovation and marginalised creativity.  Ross, an expert in the role of psychology in organisational leadership and culture, who was consulting and coaching executive teams and was frustrated by the lack of creativity in strategy and culture change. Both were expecting their first-born daughters, a handy catalyst to address these frustrations and build something they were proud to tell their daughters about. So, in 2018, Ne-Lo was born, and soon after, The Anatomy of Marketing.  Listen on Apple: https://podcasts.apple.com/au/podcast/managing-marketing/id1018735190  Listen on Spotify: https://open.spotify.com/show/75mJ4Gt6MWzFWvmd3A64XW?si=a3b63c66ab6e4934  Listen on Google: https://podcasts.google.com/feed/aHR0cHM6Ly9mZWVkcy5zb3VuZGNsb3VkLmNvbS91c2Vycy9zb3VuZGNsb3VkOnVzZXJzOjE2MTQ0MjA2NC9zb3VuZHMucnNz  Listen on Stitcher: https://www.stitcher.com/show/managing-marketing  Listen on Podbean: https://managingmarketing.podbean.com/  For more episodes of TrinityP3's Managing Marketing podcast, visit https://www.trinityp3.com/managing-marketing-podcasts/  Recorded on RiversideFM and edited, mixed and managed by JML Audio with thanks to Jared Lattouf.

Visuals: https://getbehindthebillboard.com/episode-74-kate-congreveWe love firsts on the podcast. So episode #74 is a treat for Dan and Huge who hosted Kate Congreve our first ever producer. And not just any producer, but a producer at Mother, Campaign's current agency of the year.Kate shared many brilliant stories from her career to date, having worked both agency and production side.We talked Snickers and skateboarding and how she helped put together the shoot for Paul Belford while at AMV. Shot by James Dimmock it's a beautiful campaign with some eye-opening stories about casting.Next was another fascinating shoot, this time for Hovis at JWT, working with brilliant creative team Claudia & Verity and photographer Kelvin Murray, managing to shoot everything in camera.And then the Mother years, packed full of more amazing work. IKEA, Stella Artois. KFC, Uber. Four monster campaigns. Everyone an award winner, crafted to perfection.The KFC story is particularly interesting. Try promoting a finger lickin' brand during a time when the last thing you should do was lick your fingers. Hear how the work still ran during the pandemic.Thanks Kate for coming in and sharing your stories. We loved it. 

Sandy Greenberg is co-founder of Terri & Sandy, an award-winning independent creative agency. She has led the development of iconic work for brands such as The Walt Disney Company, Freshpet, Nutella, and BJ's Wholesale Club. We discussed all of this and more this week on the On Brand podcast. Enjoy This Episode Now Download Episode Listen on Apple Podcasts Listen on Spotify About Sandy Greenberg After rising through the ranks at DMB&B, JWT, and FCB, Sandy Greenberg founded Terri & Sandy in 2010 with her long-term creative partner, Terri Meyer, with diversity and independence in its DNA. Named Ad Age's Best Small Agency in North America and ranked the EFFIE'S #1 Most Effective Independent Agency in the US, Terri & Sandy services an impressive client roster that includes iconic brands such as The Walt Disney Company, Freshpet, Nutella, and BJ's Wholesale Club. Sandy has been the creative firepower behind some of the most notable campaigns for brands like Oreo, Peeps, Planters, Disney, and Gerber, and her work has permeated popular culture — generating feature stories across Conan, CNN, The View, and more, and winning numerous industry awards including EFFIES, Clio's, and Webby's. From the Show What brand has made Sandy smile recently? “I'm going to share a brand I didn't expect to make me smile — Special K,” Sandy said, noting their recent cereal box featuring pregnant cookbook author Molly Baz. Connect with Terry on LinkedIn and the Terri and Sandy website. As We Wrap … Listen and subscribe at  Apple Podcasts, Spotify, Amazon/Audible, Google Play, Stitcher, TuneIn, iHeart, YouTube, and RSS. Rate and review the show—If you like what you're hearing, be sure to head over to Apple Podcasts and click the 5-star button to rate the show. And, if you have a few extra seconds, write a couple of sentences and submit a review to help others find the show. Did you hear something you liked on this episode or another? Do you have a question you'd like our guests to answer? Let me know on Twitter using the hashtag #OnBrandPodcast and you may just hear your thoughts here on the show. On Brand is a part of the Marketing Podcast Network. Until next week, I'll see you on the Internet! Learn more about your ad choices. Visit megaphone.fm/adchoices

Have you ever predicted your next campaign's success with uncanny accuracy? You will. That's because we're bringing you marketing lessons this week from AT&T's “You Will” campaign with the help of our special guest, Rokt CMO Doug Rozen.Together, we talk about demonstrating the future, using intrigue as a marketing tool, closing your copy strong, and increasing the frequency of your ads.About our guest, Doug RozenAs Chief Marketing Officer at Rokt, Doug Rozen leads strategy & execution for all Rokt's global go to market efforts. Known for seamlessly exploiting the intersection of creativity, technology and data, Doug has been recognized globally for transforming companies through change & removing barriers in the business world. He's been fortunate to be part of many major industry firsts and has become a trusted, go-to adviser in delivering modern marketing for some of the world's greatest brands. Prior to joining Rokt, Doug served as CEO of dentsu Media, where he was responsible for 4,350+ media experts and $20+ billion in media at Carat, iProspect, dentsu X, 360i & beyond. Before dentsu Media, Doug was the first Chief Media Officer at 360i, where he helped them become a Forrester leader, MediaPost Agency of the Year, & AdAge A-list agency. He joined 360i from OMD, where he led digital & innovation activities globally at a critical period in our industry. Before Omnicom, Doug served as Chief Innovation Officer & General Manager at Meredith & created Carlson Marketing's global agency unit including creative, media, mobile & social offerings. He also helped guide its acquisition by Aimia. Earlier, Doug served as Senior Partner & Managing Director at WPP's JWT, where as one of the first digital leaders he established digital@jwt and combined it with other direct and data offerings. Doug is a vocal cancer survivor and proud advocate for Stand Up to Cancer. He holds a BS in Psychology from the University of Wisconsin–Madison and has studied ecommerce at the University of Chicago Booth School of Business and artificial intelligence at UC Berkeley's Haas School of Business. Doug is an avid cyclist and skier, living in Connecticut with his wife, daughter and son.What B2B Companies Can Learn From AT&T's “You Will” Campaign:Demonstrate the future. Show your audience the benefit of doing business with you. Give them a visual of the time saved or frustrations avoided by using your product. Ian says, “It speaks to the simplicity of consumer experience and product experience. [Identifying] pain points of, ‘Hey, this thing is annoying. I bet you something will fix that.'” And Doug adds, “I think as a marketer, part of my job is to help, both internally and externally, audiences understand the future and be ready for it. And so I think a key component of this campaign is that ability to predict the future. And have a point of view.”Intrigue is a powerful tool. Make your audience question and think about the possibilities if they were to buy your product. Start with a question. In the AT&T “You Think” campaign, they started each ad with something like: “Have you ever kept an eye on your home when you're not at home?” Asking a question gets your audience engaged immediately by thinking of their answer. Have a strong close. This campaign is called the “You Will” campaign for a reason. Because each ad spot ended with the phrase, “You Will. And the company that will bring it to you: AT&T.” This campaign became iconic not just for its futuristic predictions, but for its strong copy. Doug says, “These commercials and these messages closed an ad as good as any I've ever seen. To me, this felt less like ads and more like little pieces of content.” Increase the frequency of your ads. Include two or three examples of the benefits of your product. It's essentially fitting multiple ads in one, and uses the power of repetition. In each ad from the AT&T “You Will” campaign, they asked three questions. For example, “Have you ever opened doors with the sound of your voice, carried your medical history in your wallet, or attended a meeting in your bare feet?” And each question suggested a new technology AT&T was working on. Doug says, “A 30-second commercial would have three of them in a row. And so they get two or three of these in what was a standard spot length. And so you got frequency as part of that as well, which is just brilliant.”Quotes*”I don't care if it's 1 second, 5 seconds, 20 seconds or 20 minutes. Good pieces of content, branded content, need a beginning, middle, and end. And I think that's what [the AT&T “You Will”] campaign has. And I'd say 90 percent of campaigns don't have that. ”*”A key component of story building is data. The fact that research was the foundation to which then the stories came to life. I think a lot of times, building a story is about having that data and doing something with it in a really interesting way. And being okay that we don't know how to solve it, but we're going to craft a story about our role, even though we're in the process of solving it. That's bold.”*”I think it's important for all marketers to believe in your product. If you don't, then I think you're going to be missing the passion and zest that is necessary to be a good marketer. If you don't, how do you find the magic? To me, the magic is what makes marketing great.”*”That's such an important factor in today's marketing landscape, is just to know who you are, and more importantly, know who you're not. And if you're going to make a moment, really make it stand out and, and really trust yourself.”Time Stamps[0:55] Meet Rokt CMO Doug Rozen[1:51] The Impact of Storytelling vs. Story Building in Marketing[3:43] The Genius Behind Predicting the Future: AT&T's Marketing Mastery[15:35 Exploring the Role of Data in Product Success[22:04] Unveiling Brand Identity and the Power of Category Creation[23:16] The Art of Timeless Campaigns and Content Marketing Mastery[23:41] Reviving Classic Campaigns: A Nostalgic Marketing Strategy[24:27] The Evolution of AT&T's Marketing Strategy: A Case Study[25:22] The Impact of Leadership Changes on Marketing Campaigns[25:41] Sustaining Iconic Ad Campaigns and Brand Identity[30:40] The Strategic Shift in Marketing Approach at Rokt[33:03] Leveraging Employee Influence in Content Strategy[35:00] The Future of E-commerce and Content Marketing[41:37] Content Strategy Insights for CMOsLinksConnect with Doug on LinkedInLearn more about RoktAbout Remarkable!Remarkable! is created by the team at Caspian Studios, the premier B2B Podcast-as-a-Service company. Caspian creates both nonfiction and fiction series for B2B companies. If you want a fiction series check out our new offering - The Business Thriller - Hollywood style storytelling for B2B. Learn more at CaspianStudios.com. In today's episode, you heard from Ian Faison (CEO of Caspian Studios) and Meredith Gooderham (Senior Producer). Remarkable was produced this week by Jess Avellino, mixed by Scott Goodrich, and our theme song is “Solomon” by FALAK. Create something remarkable. Rise above the noise.

Cet épisode news revient sur le rachat de Hashicorp par IBM, sur le changement de license Redis, sur le bug macos 14.4 et Java, sur la faille de de chaine d'approvisionnement sur XZ. Et nous débutons notre subrique Ask Me Anything. N'hésitez pas à nous soumettre vos question sur https://lescastcodeurs.com/ama. Enregistré le 26 avril 2024 Téléchargement de l'épisode LesCastCodeurs-Episode-311.mp3 News Langages Attendez peut-être avant d'upgrader macOS à la version 14.4, si vous faites du Java ! Attention le crash ! https://blogs.oracle.com/java/post/java-on-macos-14-4 Bug à suivre https://bugs.java.com/bugdatabase/view_bug?bug_id=8327860 À été fixé en 14.4.1 https://blogs.oracle.com/java/post/java-on-macos-14-4 c'était lié à un changement de comportement dans l'execution de code dynamique (compilé après le lancement du process) Au lieu de recevoir signal, SIGBUS or SIGSEGV et de le gérer SIGKILL était lancé et forcément ça marchait moins bien Apple a corrigé le comportement Article de Gunnar Morling sur la nouvelle API de “gatherer” de Java 22, pour améliorer les streams, ici en montrant une implémentation d'un “zipper” qui assemble les éléments de 2 streams 2 à 2 https://www.morling.dev/blog/zipping-gatherer/ on a parlé des gatherers déjà qui permet de faire de faire des opérateurs intermediaries custom par rapport à ce que je JDK offre ici Gunnar montrer un zipper qui n'est pas présent par défaut Julien Ponge est Java champion, félicitations ! JFR 9 est sorti https://hirt.se/blog/?p=1477 peut tourner dans Eclispe Support de arm64 pour Linux et macOS Dark mode ! Des améliorations de performance Support graalvm native image Nouveau afficheur de flame graph G1 pause target compliance Librairies Nouvelle version de Jilt, l'annotation processor qui implémente les builders https://www.endoflineblog.com/jilt-1_5-released Evite les hacks à la Lombok Une nouvelle méthode toBuilder() pour obtenir un builder d'un bean déjà configuré Support des méta-annotations, histoire de pas répéter sur chaque type comment on souhaite définir ses builders Possibilité de mettre l'annotation @Builder sur les constructeurs privés Support agnostique de @Nullable quel que soit l'origine de cette annotation Infrastructure IBM pourrait racheter Hashicorp https://www.reuters.com/markets/deals/ibm-nearing-buyout-deal-hashicorp-wsj-reports-2024-04-23/ rien n'est fait Hashicorp qui a été dans la tourmente après le passage de Terraform en closed source mais les revenus sont là. C'est fait https://www.hashicorp.com/blog/hashicorp-joins-ibm Web Google intègre son framework interne Wiz dans Angular https://blog.angular.io/angular-and-wiz-are-better-together-91e633d8cd5a Wiz est un framework interne à Google utilisé dans des produits comme Google Search ou Photos, très axé sur la performance Wiz va amener plus de performance à Angular, tout en gardant la super interactivité d'Angular Wiz historiquement sur la perf et peu d'interactions utilisateur, angular sur interactions riches et super experience developer Wiz server side rendering first et streamé, ce qui élimine le javascript dans le chemin de charge initial des fonctions comme deferred views sont venu vers angular et signals sont venu a wiz vont merger au fur et a mesure des prochaines années via Angular comme receptacle open Data et Intelligence Artificielle Redis aussi se met à changer sa licence pour une licence pas tout à fait open source. Un fork nommé Valkey, animé par des mainteneurs de Redis, rejoint la fondation Linux https://www.linuxfoundation.org/press/linux-foundation-launches-open-source-valkey-community AWS, Google, Oracle, Ericsson et Snap sont nommés dans l'effort Open Source fight back mais via des grands acteurs qui ont un interet dans la version “gratuite” pour le cloud les infos de Redis https://redis.com/blog/redis-adopts-dual-source-available-licensing/ En gros releasé sous SSPL (comme MongoDB) ou une license spécifique Redis RSAL est source available license (dont pas open source) et SSPL est pas reconnu comme open source par l'OSI car elle impose des restrictions à l'usage du coup certaines fonctions closed sources deviennent source available Met les cloud provider en cause du problème, ils font de l'argent et commodetize Redis sans redonner du revenu aux développeurs de Redis est-ce que les gens seront ok de continuer a coder pour du code pas open, juste disponible et évidemment ca casse l'écosystème redis ou open source qui voulait utiliser redis en tant qu'open pas autorisé de faire du support sur un produit qui derive de redis sans payer une license si c'est “compétitif” Elon Musk tient sa promesse et ouvre son Large Language Model, Grok https://x.ai/blog/grok-os Modèle de 314 milliards de paramètres (Pi !) Architecture MoE (Mixture of Experts) qui fait qu'il n'y a que 25% des neurones actifs à l'inférence (efficace et rapide) C'est un modèle “pre-trained”, de base, non-finetuné, donc pas très utilisable en l'état (il faut le finetuner en mode “instruct” et/ou “chat” pour qu'il soit vraiment utilisable) Le code dans le repo Github, ainsi que les poids du réseau de neurones, sont OSS sous licence Apache 2 L'entrainement a été effectué avec JAX et Rust ! La cut-off date est Octobre 2023 Outillage Oracle lance son extension VSCode pour Java https://devclass.com/2024/03/19/java-22-is-out-and-oracle-is-pushing-its-own-extension-for-vs-code-over-not-very-good-red-hat-alternative/ une extension en competition avec l'extension officielle et historique Java faite par MS et Red Hat Oracle estime l'extension pas tres bonne cafr basée sur le compilateur Eclipse 33M de telechargements quand même La nouvelle s'appuie sur javac donc proche de la verite par definition et en avance par definition de la facon dont Oracle release quand il veut aligné avec le timing de simplification de Java pour les débutants Sécurité Rémi Forax nous partage cet article sur les puces M1/M2/M3 d'Apple, qui utilisent un nouveau “prefetcher” un peu trop agressif qui permet de leaker les clés utilisées lors des opérations cryptographiques : https://arstechnica.com/security/2024/03/hackers-can-extract-secret-encryption-keys-from-apples-mac-chips/ comme d'hab pour les side channels attaques de de type c'est su un autre process peut tourner sur la machine et être adversaire lié a un data dependent memory fetcher dans ce cas, un champ est soit une valeur, soit un pointeur et Appel pre-fetch dans le cas où c'est un pointeur et c'est attaquable en injectant des variables qui ressemblent a des pointeurs vers des données controlées et on peut en déduire la clés secrete si cette variable et la clé ont des opérations mais le code peut désactiver cette optimisation si j'ai bien compris L'histoire d'une porte dérobée dans le projet open source XZ qui a failli mettre à mal toutes les connexions sous Open SSH, avec pour tâche de fond la fragilité de projets open source maintenu par des individuels bénévoles à bout de souffle https://uwyn.net/@rusty@piaille.fr/112190942187106096 ArsTechnica détaille l'histoire https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/ https://www.minimachines.net/actu/la-menace-xz-ou-comment-le-ciel-a-failli-tomber-sur-nos-tetes-125967 Les impacts de laisser trainer son secret client dans les connections Keycloak https://medium.com/@benjaminbuffet/dis-keycloack-cest-grave-si-je-laisse-tra%C3%AEner-mon-client-secret-d371a0f657ee un article qui explique les raison plutôt que de dire c'est mal car c'est secret quand on utilise un mot de passe du client (et pas un JWT signé ou une clé privé) si ca se perd, c'est l'usurpation de l'identité d'un utilisateur via son usage de client qui est en jeu (donc joué en tant que) ou usurper l'identité client en tant que telle (plus facile) et quelques conseils pour réduire ce risque Loi, société et organisation JavaOne serait de retour pour de vrai ? https://www.oracle.com/javaone/ En mars 2025, c'est dans un an, on a le temps ! Ça se déroulera sur le campus d'Oracle dans la Silicon Valley peu d'infos et de détail, pas sur que cela soit le JavaOne de nos souvenirs. Des infos concretes sur l'IA souveraine Albert https://x.com/emile_marzolf/status/1783072739630121432 AMA, Ask Me Anything Hamza: “Comment être un rockstar dans le domaine, s'il vous plaît une réponse détaillée sur le plan d'action veille, auto formation, side projets …… depuis vos expériences personnelles. Merci d'avance” Conférences La liste des conférences provenant de Developers Conferences Agenda/List par Aurélie Vache et contributeurs : 3-4 mai 2024 : Faiseuses Du Web 3 - Dinan (France) 8-10 mai 2024 : Devoxx UK - London (UK) 16-17 mai 2024 : Newcrafts Paris - Paris (France) 22 mai 2024 : OpenInfra Day France - Palaiseau (France) 22-25 mai 2024 : Viva Tech - Paris (France) 24 mai 2024 : AFUP Day Nancy - Nancy (France) 24 mai 2024 : AFUP Day Poitiers - Poitiers (France) 24 mai 2024 : AFUP Day Lille - Lille (France) 24 mai 2024 : AFUP Day Lyon - Lyon (France) 28-29 mai 2024 : Symfony Live Paris - Paris (France) 1 juin 2024 : PolyCloud - Montpellier (France) 6 juin 2024 : WAX 2024 - Aix-en-Provence (France) 6-7 juin 2024 : DevFest Lille - Lille (France) 6-7 juin 2024 : Alpes Craft - Grenoble (France) 7 juin 2024 : Fork it! Community - Rouen (France) 11 juin 2024 : Cloud Toulouse - Toulouse (France) 11-12 juin 2024 : OW2con - Paris (France) 11-12 juin 2024 : PGDay Lille - Lille (France) 12-14 juin 2024 : Rencontres R - Vannes (France) 13-14 juin 2024 : Agile Tour Toulouse - Toulouse (France) 14 juin 2024 : DevQuest - Niort (France) 18 juin 2024 : Mobilis In Mobile 2024 - Nantes (France) 18 juin 2024 : BSides Strasbourg 2024 - Strasbourg (France) 18 juin 2024 : Tech & Wine 2024 - Lyon (France) 19-20 juin 2024 : AI_dev: Open Source GenAI & ML Summit Europe - Paris (France) 19-21 juin 2024 : Devoxx Poland - Krakow (Poland) 26-28 juin 2024 : Breizhcamp 2024 - Rennes (France) 27 juin 2024 : DotJS - Paris (France) 27-28 juin 2024 : Agi Lille - Lille (France) 4-5 juillet 2024 : Sunny Tech - Montpellier (France) 8-10 juillet 2024 : Riviera DEV - Sophia Antipolis (France) 6 septembre 2024 : JUG Summer Camp - La Rochelle (France) 6-7 septembre 2024 : Agile Pays Basque - Bidart (France) 19-20 septembre 2024 : API Platform Conference - Lille (France) & Online 26 septembre 2024 : Agile Tour Sophia-Antipolis 2024 - Biot (France) 2-4 octobre 2024 : Devoxx Morocco - Marrakech (Morocco) 7-11 octobre 2024 : Devoxx Belgium - Antwerp (Belgium) 10 octobre 2024 : Cloud Nord - Lille (France) 10-11 octobre 2024 : Volcamp - Clermont-Ferrand (France) 10-11 octobre 2024 : Forum PHP - Marne-la-Vallée (France) 11-12 octobre 2024 : SecSea2k24 - La Ciotat (France) 16 octobre 2024 : DotPy - Paris (France) 17-18 octobre 2024 : DevFest Nantes - Nantes (France) 17-18 octobre 2024 : DotAI - Paris (France) 30-31 octobre 2024 : Agile Tour Nantais 2024 - Nantes (France) 31 octobre 2024-3 novembre 2024 : PyCon.FR - Strasbourg (France) 6 novembre 2024 : Master Dev De France - Paris (France) 7 novembre 2024 : DevFest Toulouse - Toulouse (France) 8 novembre 2024 : BDX I/O - Bordeaux (France) 13-14 novembre 2024 : Agile Tour Rennes 2024 - Rennes (France) 28 novembre 2024 : Who Run The Tech ? - Rennes (France) 3-5 décembre 2024 : APIdays Paris - Paris (France) 4-5 décembre 2024 : Open Source Experience - Paris (France) 22-25 janvier 2025 : SnowCamp 2025 - Grenoble (France) 16-18 avril 2025 : Devoxx France - Paris (France) Nous contacter Pour réagir à cet épisode, venez discuter sur le groupe Google https://groups.google.com/group/lescastcodeurs Contactez-nous via twitter https://twitter.com/lescastcodeurs Faire un crowdcast ou une crowdquestion Soutenez Les Cast Codeurs sur Patreon https://www.patreon.com/LesCastCodeurs Tous les épisodes et toutes les infos sur https://lescastcodeurs.com/

Published in 1974, JWT's Planning Guide features the theories on which JWT's planning methods were based and sets out a framework for best practice planning techniques and how to understand the process of marketing and brand building. Josh Bullmore, chief strategy officer at Leo Burnett and Rachel Mercer, former CXO at Proto and former head of strategy at R/GA join Lena Roland to discuss the Guide's continuing relevance, half a century later.Stay up-to-date with the latest marketing and advertising news with our free daily newsletter.

Jake and Michael discuss all the latest Laravel releases, tutorials, and happenings in the community.This episode is sponsored by Sentry - code breaks, fix it faster. Don't just observe, take action today!Show linksIncrement a rate limiter by a custom amount in Laravel 10.46Query builder whereAll() and whereAny() methods added to Laravel 10.47Laravel 11 streamlined configuration filesTailwind has open-sourced the v4 alphaTailwind v4 build times are really fastThe evolution of the Laravel welcome pageIntegrate Clouflare Turnstile into Laravel and LivewirePhone number formatting, validation, and model casts in LaravelAdd architecture tests to Saloon API integrations with LawmanProtect routes with JWT tokens using this package for LaravelLaracon IndiaLaracon USLaracon AU

2024-02-06 Weekly News — Episode 211Watch the video version on YouTube at https://youtube.com/live/_Uo1izajUeM?feature=shareHosts: Gavin Pickin - Senior Developer at Ortus SolutionsEric Peterson - Senior Developer at Ortus SolutionsThanks to our Sponsor - Ortus SolutionsThe makers of ColdBox, CommandBox, ForgeBox, TestBox and all your favorite box-es out there. A few ways to say thanks back to Ortus Solutions:Buy workshop tickets to CF Summit EastBuy Tickets to Into the Box 2024 in Washington DC https://www.intothebox.org/Like and subscribe to our videos on YouTube. Help ORTUS reach for the Stars - Star and Fork our ReposStar all of your Github Box Dependencies from CommandBox with https://www.forgebox.io/view/commandbox-github Subscribe to our Podcast on your Podcast Apps and leave us a review AND WE WILL READ IT ON THE SHOWSign up for a free or paid account on CFCasts, which is releasing new content regularlyBOXLife store: https://www.ortussolutions.com/about-us/shopBuy Ortus's Books102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips)Now on Amazon!https://www.amazon.com/dp/B0CJHB712MLearn Modern ColdFusion (CFML) in 100+ Minutes - Free online https://modern-cfml.ortusbooks.com/ or buy an EBook or Paper copy https://www.ortussolutions.com/learn/books/coldfusion-in-100-minutes Patreon Support (skillful)We have 45 patreons: https://www.patreon.com/ortussolutions. News and AnnouncementsCF Summit East Announced Hey east coast Adobe #ColdFusion developers, get ready because #CFSummitEast2024 is coming in hot, on April 23rd-24th!This #FreeEvent brings together some of the most accomplished #CFML speakers in the world in a government, military and adjacent contractors focused #conference,in an intimate, small setting in Washington D.C..We are also once again offering an in-person training and certification opportunity to earn your Adobe Certified Professional: Adobe ColdFusion ($99). https://www.linkedin.com/posts/marktakata_coldfusion-cfsummiteast2024-freeevent-activity-7158533583014436864-u182 Mark Takata at AdobeOn LinkedIn earlier this week, Mark Takata said that he is both thrilled and humbled to announce that he had been promoted to Senior ColdFusion Technical Evangelist at Adobe!Congrats Mark!Second set of ITB Speakers & Sessions announced - more to come!!!Get ready for an innovative and exciting experience at the upcoming Into the Box 2024 conference, where we're changing venues and reshaping the essence of content delivery. Anticipate a surge of excitement with thrilling product updates and new releases. Join us from May 15th to 17th, 2024, in the dynamic city of Washington, DC, hosted at the cutting-edge Optica venue. Witness a conference that marks the dawn of a new modernization era, curated by the forward-thinking Ortus Solutions Team.https://www.ortussolutions.com/blog/into-the-box-2024-second-round-of-sessions-released https://www.intothebox.org/New Releases and UpdatesColdFusion Builder extension for Visual Studio Code -  A new update is available!We are pleased to announce the availability of the updated ColdFusion Builder extension for Visual Studio Code. Highlights of the releaseColdFusion Builder extension for Visual Studio code (update 2) (release date: January 16, 2024) contains dictionary support for the functions added in ColdFusion (2023 release), such as JWT, serialization, and XML. The update also contains a few bug fixes.https://community.adobe.com/t5/coldfusion-discussions/coldfusion-builder-extension-for-visual-studio-code-a-new-update-is-available/m-p/14365891 Hyper v7.3.0Retrying Failed RequestsYou can now configure a HyperRequest to automatically retry failed requests.  See the HyperRequest docs for details.Default User-AgentHyper now sends a default User-Agent of HyperCFML/#versionNumber#.Reset Fake Request Counts and SequencesHyper can now reset the fake request counts and sequences without losing the fake configuration using the resetFakes method.https://hyper.ortusbooks.com/whats-new#id-7.3.0Webinars, Meetups and WorkshopsICYMI - Online CFMeetup - “The Many Capabilities of CF Package Management and cfpm" with Charlie Arehart  #305Thursday, January 25, 2024 9:00 AM PSTYou may or may not have heard that CF2021 added a new tool called cfpm, the ColdFusion Package Manager. It was introduced in CF2021, and while some are aware that it can help manage the new modular packages-based design of ColdFusion, many are unaware of the many features of this cfpm tool--and how this package management mechanism can be used to their advantage.In this talk, veteran CF troubleshooter Charlie Arehart will introduce the feature (CF's package-based design and the package manager), including identifying the way it can manage the packages used in a current CF instance as well as in automating creation of new instances. Perhaps most useful, we'll see how the tool offers a mechanism to SCAN your CFML code base to identify what packages you would need. We'll also see how the tool can help with updating CF, as well as managing the update download "repo". And speaking of updates, we'll discuss ways the cfpm/package mechanism has evolved in updates since the release of CF2021 and in CF2023.Meetup:https://www.meetup.com/coldfusionmeetup/events/298727912/ Recording: https://www.youtube.com/watch?v=EYTW7adg_Ao&list=PLG2EHzEbhy0-QirMKgSxhjkUyTSSTvHjL&index=1&pp=iAQB CF Hawaii - ColdBox Modules - Jon Clausen Feb 23rd - 12pm Hawaii Timehttps://cfml.slack.com/archives/C06TSRXCJ/p1706309775867449?thread_ts=1706236924.005739&cid=C06TSRXCJRecent ReleasesInto the Box 2023 Videos are now available for all Paid Subscriptions https://cfcasts.com/series/itb-2023 Coming Soon - After the break from HolidaysMastering CBWIRE v3 from GrantConferences and TrainingAdobe ColdFusion Online Summit 2024Unleash the powe...

Bravas is a new offering based out of the EU, focused on the small business market. Identity and Device Management together, they're trying something new for the SMB market. Hosts: Tom Bridge - @tbridge@theinternet.social Charles Edge - @cedge318 Guests: Yoann Gini - LinkedIn Links: Bravas - https://www.bravas.io/en/ JWT - https://jwt.io/ WebAuthN - https://webauthn.io/ Shared Signals Framework - https://openid.net/wg/sharedsignals/ XKCD Standards - https://xkcd.com/927/ Kotlin Language - https://kotlinlang.org/ ACME - https://en.wikipedia.org/wiki/Automatic_Certificate_Management_Environment SCEP - https://en.wikipedia.org/wiki/Simple_Certificate_Enrollment_Protocol ACME vs SCEP, from Secure W-2 - https://www.securew2.com/blog/acme-ios-certificate-enrollment Sponsors: Kandji Kolide Siit Nudge Security Watchman Monitoring If you're interested in sponsoring the Mac Admins Podcast, please email podcast@macadmins.org for more information. Get the latest about the Mac Admins Podcast, follow us on Twitter! We're @MacAdmPodcast! The Mac Admins Podcast has launched a Patreon Campaign! Our named patrons this month include Weldon Dodd, Damien Barrett, Justin Holt, Chad Swarthout, William Smith, Stephen Weinstein, Seb Nash, Dan McLaughlin, Joe Sfarra, Nate Cinal, Jon Brown, Dan Barker, Tim Perfitt, Ashley MacKinlay, Tobias Linder Philippe Daoust, AJ Potrebka, Adam Burg, & Hamlin Krewson  

Lane chats with Dev Agrawal— content creator & Developer Advocate at Clerk! Tune in as they discuss DevRel, authentication vs. authorization, JWT, and so much more in this episode. Learn back-end development - https://boot.devListen on your favorite podcast player: https://www.backendbanter.fmDev's Twitter: https://twitter.com/devagrawal09Dev's Youtube: https://www.youtube.com/@devagr

Nikon Kwantu is a film and animation producer. His most recent work as an animation producer was for the documentary, Lowndes County and the Road to Black Power, Washingtonia, an animated feature for Comedy Central and Our Cartoon President, for Showtime. He has also been an animation and digital producer for Sesame Workshop, Flicker Lab, Animation Collective, Animagic, Hornet Inc. and JWT ad agency. Nikon also served as the animation producer for Whoopi Goldberg Presents Mom's Mabley and TED TALKS LIVE Short - Unconscious Bias.  @nkwantu

With a more than 100 year history, movie making has a lot to teach us about collaboration and creativity in complex environments. How do directors bring together so many people with such different skills for months, sometimes years, to make a movie that holds together as a story that entertains and makes a profit? That's exactly what we asked Scott Rice, an Emmy-award winning film and television director, who has been teaching film at the University of Texas at Austin for 25 years. He teaches a course called “Script to Screen” with Academy-award winning actor Matthew McConaughey. We chat with Scott about how to get your creative process unstuck, how to find collaborators that amplify your skills and bring the right energy to a project, and the essential components for telling a compelling story, whether it's a feature-length movie or short, convincing pitch. Bio Scott Rice is an Emmy Award-winning filmmaker and commercial director whose clients include Mastercard, Subway, Vegas Tourism, Shell, Sears and the American Heart Association. He' s worked with talent like Glenn Close, Brett Favre and Matthew McConaughey with whom he co-teaches a film course at the University of Texas. He' s collaborated with agencies including JWT, R&R Partners, McGarrah Jessee, Archer Malmo, TM, Commerce House, Fenton and GDC. Scott's narrative work holds a staggering film festival record of 300 Official Selections and 85 Awards, including two Student Academy Award nominations. Comedy Central, CBS, Showtime, Hulu, Blockbuster and PBS have distributed his films. He has also directed projects for A&E, the Mental Health Channel, MTV Networks and Sony Pictures. Design Better “Office Hours” with Automattic: Dave Lockie This episode is sponsored in part by Automattic, the people behind WordPress.com, Woo, Pocket Casts, Jetpack, and more. Stay tuned after the interview where we chat with Dave Lockie, Web3 Lead at Automattic. Automattic is a fully distributed company with the goal of democratizing publishing and commerce so that anyone with a story can tell it. Dave talks about why he sees crypto as an extension of the heart of open source, and his perspective on how Automattic is a mission-driven business that cares about people's freedoms online. To learn more about working at Automattic, including current job opportunities, visit dbtr.co/automattic. *** Subscribe to DB+ (50% off) Subscribe to DB+ to get episodes a week early and ad-free. Plus, every month, you're invited to exclusive AMAs (Ask Me Anything) with big names in design and tech, from companies like Nike, Netflix, and the New York Times who will answer your questions directly. Early bird subscribers get 50% off for the first three months. Visit designbetter.plus to learn more and subscribe. *** Visiting the links below is one of the best ways to support our show: American Giant: Makers of the best hoodie on the planet, their clothing is American-made, ethically produced, and built to last. What more could you ask for? Save 20% off your first order with American Giant using our promo code DESIGNBETTER at checkout. dbtr.co/americangiant Uplift Desks: For people like us who spend countless hours at our desk, ergonomics are an essential consideration. A standing desk from Uplift Desk can help you avoid the negative effects of sitting all day by improving circulation and reducing strain. Design Better can get a special deal by visiting UPLIFTDesk.com. Use the code DESIGNBETTER at checkout for 5% off your order. Free shipping, free returns, and an industry-leading 15-year warranty. They're a great company. Methodical Coffee: Roasted, blended, brewed, served and perfected by verified coffee nerds

Nella puntata 493 Leonardo ci spiega come funziona Tor, la porta di accesso al dark web... che è sì dark, ma non così cattivo come spesso ci viene raccontato.Kuna ha intervistato Dario Fiorentino, sommozzatore di alto fondale con brevetto di closed-bell diving che ci racconta le procedure, i rischi e le particolarità di un lavoro che per lunghi periodi sottopone letteralmente a enormi pressioni.Andrea, infine, ci parla di alcuni articoli che parlano di chimica delle atmosfere esoplanetarie e molecole considerate precursori della vita, sparse in zone difficilmente raggiungibili della galassia.Per approfondire:https://www.atlasobscura.com/articles/what-is-a-saturation-diverhttps://subacqueaedintorni.wordpress.com/2017/01/07/2790/https://www.sci.news/space/extraterrestrial-atmospheric-hazes-12484.htmlhttps://news.mit.edu/2023/carbon-lite-atmosphere-life-terrestrial-planets-mit-study-1228https://www.nasa.gov/science-research/planetary-science/astrobiology/nasa-some-icy-exoplanets-may-have-habitable-oceans-and-geysers/https://www.nature.com/articles/s41586-023-06616-1

საქართველოს ბანკის ახალი წლის კამპანიას და ვიდეო რგოლს წლეებია უკვე უამრავი ადამიანი ელოდება. აღნიშნული კამპანიიდან წამოსულ გზავნილებს ბევრისთვის მნიშვნელოვანი დატვირთვა აქვს და ერთვარად შემდეგი წლის აქტოვობებისთვის მოტივაციის მიმცემია. ტრადიცია წელსაც გაგრძელდა და Metro Production-თან და პოპულარულ ინტერნეტ პერსონაჟთან, ჟირაფ ჟოზესთან ერთად ახალი მცირე ვიდეო რგოლი შემოგვთავაზეს, რომლის მესიჯიც მარტივია - „საუკეთესო წინ არის“. ამ იმედით და მოტივაციით სავსე ვიდეო რგოლმა უკვე უამრავი ადამიანის გული დაიპყრო. სწორედ ამ თემაზე ვსაუბრობთ მარკეტერის პოდკასტის წლის ბოლო ეპიზოდში, რომლის სტუმრებიც არიან მარიამ ცანავა, საქართველოს ბანკის ბრენდის მიმართულების ხელმძღვანელი და ეკა ყიფიანი, „JWT მეტროს“ კრეატიული დირექტორი. წამყვანი: აკო ახალაია პოდკასტის წარმდგენია: საქართველოს ბანკი

On the PRmoment Podcast, this week is Adam Clyne, founder of Coolr, and we're going to talk about what social agencies do and how that compares to what PR firms do.Clearly, PR firms say they do social. But to what extent do they do social compared to the broader, or perhaps deeper, social remit of social agencies? And is this a problem for PR agencies? Do they need to worry about that? Or are they better off out of a very competitive social agency market?To introduce our guest, Adam Clyne. He started in PR, and then he made the move into advertising with JWT. Adam launched his own digital agency called The Lab in 2002, which he then sold to the agency that is now called Kindred. He also had spells at TVC and Weber Shandwick.He launched his own social media agency, Coolr, in 2017.When I last interviewed Adam in 2020, Coolr had  20 employees. Now, in Nov 2023, it has 90. Adam won't tell me his fee income, but there's clearly a lot of growth in those in 3 years, especially considering Coolr doesn't buy much paid media, the reasons for which we'll talk about later in the show. Coolr clients include Burger King and Deliveroo.Thanks to the PRmoment Podcast sponsors, The PRCA.Also, a heads up to our PRmoment Podcast data partners - Meltwater.2.30 mins Where does PR fit into the world of social media marketing, and where does social media marketing fit into the world of PR? “Social and PR are kindred spirits, but there are a lot of differences and nuances between them.”“Sometimes something that starts in the world of PR and media can explode into the world of social.”“We never take on a PR brief. We prefer to be absolute specialists within social…there are nuances and differences in the ways of thinking and the ways of working.”5 mins Are there areas that PR firms tend to play and areas where social media agencies own?“When it comes to our competitor set, it's very rare for us to compete against PR agencies.”“The infrastructure is fundamentally different between how a PR agency is structured and how a PR firm is structured….and I've been in both.”6.30 mins Who owns social client side - comms, brand or marketing?8 mins What is the difference between social-earned media and PR-earned media? In terms of the type of campaign and the type of creative?“Where the worlds are a little bit closer are the hero campaigns… those moments in time…The work we do is always on, a publishing approach.”10.30 mins How do brands set themselves up as publishers on social?12 mins What types of skill sets does a social agency need to create and activate content?“Very few people here are from a PR agency background…We have people from publishers,...we have people from a TV background..from a social first background.”15 mins How do the social channels break down in terms of the demographics of their audience?  “TikTok is getting older, and Facebook is still very powerful and potent…but it's more about the content that works with the audience...It's a platform-first approach.”“We want to play in culture.”“Are there things in the draw ready for certain situations? 100% But you can't plan for every situation. You have to have the agility to be ready, the process with the client to be able to approach stuff while it's a cultural moment, but more importantly, you have to have the trust from a brand.”28 mins To what extent can AI automate customer service on social?“You've got to be careful about automation of responses. Particularly on community mana

What's the key to growing a healthcare niche marketing agency? If you ask today's guest, Stewart Gandolf, the answer is quite simple. It's all about deep domain expertise. But simple doesn't mean easy, and in this episode, we break down just how Stewart built his expertise - and his agency. Founded in 2006, Healthcare Success is a 40-person agency that today works with multi-location healthcare providers from medical specialty to dental offices, as well as health systems providers and medical device companies. Stewart shares his story, going from working at agency giants like JWT to founding his own shop in 2006, immediately skyrocketing to the top of Google search results, and what ensued after. If you leave with one takeaway after listening to this episode, it is that winning agency leaders understand their niche at a deep level. When it comes to medical knowledge in the healthcare industry, there's no such thing as winging it. Stewart's success has stemmed from being able to truly act as the healthcare marketing expert his clients can trust. Aside from expertise, what makes Healthcare Success unique as an agency is that Stewart hasn't built it to follow the same path many others are on; their philosophy isn't about scaling the business at all costs, so they are able to offer more flexible service to their clients. This episode dives into topics like communicating expertise, evolving your agency business to serve larger clients, and why passion in any given industry makes for a great hire. Here's what Corey and Stewart discuss in this episode: What it means to be a leader, the good and the bad. How he bootstrapped his agency by driving business with SEO. How Stewart's team was doing content marketing before it was popular. How to communicate true expertise in a niche, and why achieving it is not easy. How to add value to your clients outside of your core offering. Here are some actionable key takeaways for agency founders: Asking insightful questions can double as credentials. Everybody wants expertise but not everybody wants to pay for it. The bigger the client company, the more sophisticated service you need to deliver. Niches are small, so reputation is everything for an agency. Figure out a repeatable process to sell to not start from scratch every time. The resources mentioned in this episode are: - Connect with Stewart on LinkedIn Here - Learn About Healthcare Success Here - Subscribe to Stewart's Newsletter Here Join us as we discuss healthcare marketing and verticalized agencies as a whole.

Visuals: https://getbehindthebillboard.com/episode-63-guy-murphyEpisode #63 features our first ever planner, which seems a bit overdue considering the best planners are often the best creatives and vice versa. And we've haven't got just any old planner, but one who's been round the block with tread to spare. Guy Murphy many things: award-winning strategist, big creative thinker, agency leader, but also someone who just loves ideas and the chat about strat and tech and how they're all joined up. Plus he's a footy fan. All of which makes him perfect for the pod.Guy started his career at the home of planning BMP, before moving to BBH for a successful 16 year tenure where he first met and worked with Hugh. Guy rose through the ranks to become Deputy Chairman, before heading off to Knightsbridge and the global reach of JWT. But he couldn't shake Hugh, whom he worked with again on the Baileys pitch, winning with a strategy of lusciousness and a campaign of a thousand lips shot by @rankinarchive @rankincreative (BtB episode #17)One of Guy's BBH high points was for Levi's Japan, ‘The original jeans for original people' featuring the world's largest photocopier - so big you could lay down on it - shipped in from Korea for the shoot. A great idea that could work on any platform, but especially well for billboards. We also discussed the Audi design / jewellery campaign which was a huge change in strategy, but still resulted in award winning iconic work.We ended with Dan and Guy having a spod-off, debating AI and the future of OOH and Guy's current position as Co-Founder of AdTech start-up OSSA. (OSSA is a self-service advertising platform using GenAI to help small business do digital advertising)Thanks so much Guy for coming on. It was a a real pleasure getting behind the strategy behind the billboard

Welcome to Episode 172: Banter Vol. 11. We babble about everything from the JWT's new discoveries, the strange case of The Robot Grandma, to the insanity of climbing Mount Everest. Unscripted and virtually unedited. Thanks for listening! Available on most platforms that support podcasts, as well as Instagram, Facebook, and Twitter, I guess. For now, anyway. (c) 2023 Scatterbrain Productions. Always. --- Send in a voice message: https://podcasters.spotify.com/pod/show/scatterbrain-podcast/message

Episode 39: In this episode of Critical Thinking - Bug Bounty Podcast, We're catching up on news, including new override updates from Chrome, GPT-4, SAML presentations, and even a shoutout from Live Overflow! Then we get busy laying the groundwork on a discussion of web architecture. better get started on this one, cause we're going to need a part two!Follow us on twitter at: @ctbbpodcastWe're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.ioShoutout to YTCracker for the awesome intro music!------ Links ------Follow your hosts Rhynorater & Teknogeek on twitter:https://twitter.com/0xteknogeekhttps://twitter.com/rhynoraterCT shoutout from Live Overflowhttps://www.youtube.com/watch?v=3zShGLEqDn8Chrome Override updateshttps://developer.chrome.com/blog/new-in-devtools-117/#overridesGPT-4/AI Prompt Injectionhttps://x.com/rez0__/status/1706334160569213343?s=20 & https://x.com/evrnyalcin/status/1707298475216425400?s=20Caido Releases Pro free for studentshttps://twitter.com/CaidoIO/status/1707099640846250433Or, use code ctbbpodcast for 10% of the subscription priceAleksei Tiurin on SAML hackinghttps://twitter.com/antyurin/status/1704906212913951187Account Takeover on Teslahttps://medium.com/@evan.connelly/post-account-takeover-account-takeover-of-internal-tesla-accounts-bc720603e67dJosephhttps://portswigger.net/bappstore/82d6c60490b540369d6d5d01822bdf61Cookie Monsterhttps://github.com/iangcarroll/cookiemonsterHTMXhttps://htmx.org/Timestamps:(00:00:00) Introduction(00:04:40) Shoutout from Live Overflow(00:06:40) Chrome Overrides update(00:08:48) GPT-4V and AI Prompt Injection(00:14:35) Caido Promos (00:15:40) SAML Vulns(00:17:55) Account takeover on Tesla, and auth token from one context in a different context(00:24:30) Testing for vulnerabilities in JWT-based authentication(00:28:07) Web Architectures(00:32:49) Single page apps + a rest API(00:45:20) XSS vulnerabilities in single page apps(00:49:00) Direct endpoint architecture(00:55:50) Content Enumeration(01:02:23) gRPC & Protobuf(01:06:08) Microservices and Reverse Proxy(01:12:10) Request Smuggling/Parameter Injections

Communication is a skill that doesn't appear on top 10 lists, rarely appears as a conference topic, and doesn't appear enough on job requirements. Yet communication is one of the critical ways that security teams influence developers, convey risk, and share knowledge with others. Even our own Security Weekly site falls a little short with only a podcast category for "Training" instead of more options around communication and collaboration. Lina shares her experience presenting to executives and boards in high-stress situations, as well as training incident responders on real-world scenarios. Segment resources https://training.xintra.org https://www.scmagazine.com/podcast-episode/2839-pointers-and-perils-for-presentations-josh-goldberg-asw-251 In the news segment, attackers impersonate Dependabot commits, an alg of "none" plagues a JWT, CISA calls for hardware bills of materials, OpenSSF lists its critical projects, Exim (finally! maybe?) has some patches, bug bounties and open source projects, and more! Visit https://securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/secweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/asw-257

Attackers impersonate Dependabot commits, an alg of "none" plagues a JWT, CISA calls for hardware bills of materials, OpenSSF lists its critical projects, Exim (finally! maybe?) has some patches, bug bounties and open source projects, and more! Show Notes: https://securityweekly.com/asw-257

Communication is a skill that doesn't appear on top 10 lists, rarely appears as a conference topic, and doesn't appear enough on job requirements. Yet communication is one of the critical ways that security teams influence developers, convey risk, and share knowledge with others. Even our own Security Weekly site falls a little short with only a podcast category for "Training" instead of more options around communication and collaboration. Lina shares her experience presenting to executives and boards in high-stress situations, as well as training incident responders on real-world scenarios. Segment resources https://training.xintra.org https://www.scmagazine.com/podcast-episode/2839-pointers-and-perils-for-presentations-josh-goldberg-asw-251 In the news segment, attackers impersonate Dependabot commits, an alg of "none" plagues a JWT, CISA calls for hardware bills of materials, OpenSSF lists its critical projects, Exim (finally! maybe?) has some patches, bug bounties and open source projects, and more! Visit https://securityweekly.com/asw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/secweekly Like us on Facebook: https://www.facebook.com/secweekly Show Notes: https://securityweekly.com/asw-257

Andy & Dan have a look at the latest news including;Breaking News from NASA's JWT, signs of life detectedEncounters on NetflixRoss Coulthart on Neil MitchellIn Plain Sight updatesPolitical manouvering in the background?Plenty of UFO movies out!And more...Monsters in California; https://geni.us/MonstersOfCaliforniaPlease support the show sponsors;Betonline; Claim your welcome bonus - use my special link https://promotions.betonline.ag/ThatUFO-109320 to save 50% on your first deposit up to $1,000. ZenAI; Use my special link https://zen.ai/bqZTjFHe0WbWTvMx7d2G2A to save 12% off your first three months of your ZenAI subscriptionNom Nom; 50% off your first order here - ⁠https://trynom.com/thatufo⁠New Era; 15% off at New Era https://www.neweracap.com/thatufoMotley Fool; Save $110 off the full list price of Stock Advisor for your first year, go to ⁠⁠fool.com/thatufo⁠⁠ and start your investing journey today!*$110 discount off of $199 per year list price. Membership will renew annually at the then current list price.Wild!: Use my special link https://zen.ai/tOoFwDptszFiILz9SYFHLg to save 40% on your order at wearewild.com for UK listeners and 25% off for global listeners.” BlendJet2; Save 12% off your order, use my special link and the discount will be applied at checkout ⁠⁠zen.ai/thatufo12⁠⁠You can also sign up to Zencastr with 40% off for 3 months with promo code: ufopodcast at ⁠⁠https://zencastr.com/pricing?coupon=ufopodcast&fpr=7ooh0⁠⁠ . Start recording your own podcast or meetings today!Get in touch with the show;Twitter: @UFOUAPAMFacebook, YouTube & Instagram: "That UFO Podcast"YouTube: ⁠⁠YouTube.com/c/ThatUFOPodcast⁠⁠Email: ⁠⁠UFOUAPAM@gmail.com⁠All podcast links & associated links;⁠⁠Linktr.ee/ufouapam⁠⁠⁠ThatUFOPodcast.com⁠⁠⁠⁠Linktr.ee/TheZignal⁠⁠⁠⁠UAPMedia.UK⁠Don't forget to subscribe, like and leave a review of the show,Enjoy folks,Andy

An airhacks.fm conversation with Sergey Beryozkin (@sberyozkin) about: RPC vs. REST, Paul Sandoz was driving the JAX-RS specification, the scalability of REST, the Tolerant Reader pattern, HATEOAS, Jersey was the reference implementation of JAX-RS, JAX-RS without servlets, the problems with OAuth 1, OAuth 2 fixed OAuth 1 problems, the session fixation problem, OIDC builds on OAuth 2, in OAuth 2 there are no sessions, Confidential OIDC client, OIDC extension, Elytron Security OAuth 2.0, ID tokens vs. access tokens, Opaque access tokens vs. JWT access tokens, the implicit flow, SmallRye JWT extension vs. OIDC extension, the importance of standards, the value of standards, passkeys the NeXT big thing, verifiable credentiats, JSON web proof, mutual TLS support in Quarkus, automatic certificate renewal Sergey Beryozkin on twitter: @sberyozkin

2023-09-19 Weekly News — Episode 204Watch the video version on YouTube at https://youtube.com/live/QR78EAolYQo?feature=share Hosts:  Gavin Pickin - Senior Developer at Ortus Solutions Dan Card- Senior Developer at Ortus Solutions Thanks to our Sponsor - Ortus SolutionsThe makers of ColdBox, CommandBox, ForgeBox, TestBox and all your favorite box-es out there. A few ways  to say thanks back to Ortus Solutions: Like and subscribe to our videos on YouTube.  Help ORTUS reach for the Stars - Star and Fork our ReposStar all of your Github Box Dependencies from CommandBox with https://www.forgebox.io/view/commandbox-github  Subscribe to our Podcast on your Podcast Apps and leave us a review AND WE WILL READ IT ON THE SHOW Sign up for a free or paid account on CFCasts, which is releasing new content every week BOXLife store: https://www.ortussolutions.com/about-us/shop Buy Ortus's Books 102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips) Learn Modern ColdFusion (CFML) in 100+ Minutes - Free online https://modern-cfml.ortusbooks.com/ or buy an EBook or Paper copy https://www.ortussolutions.com/learn/books/coldfusion-in-100-minutes   Patreon SupportWe have 38 patreons: https://www.patreon.com/ortussolutions. News and AnnouncementsSept 13th - Happy Programmers DayHacktoberfest is comingCELEBRATE OUR 10TH YEAR SUPPORTING OPEN SOURCE!This year marks the 10th anniversary of Hacktoberfest, and we're calling on your support! Whether it's your first time participating—or your tenth—it's almost time to hack out four pristine pull/merge requests as we continue our month of support for open source.Hacktoberfest has grown from 676 participants in 2014 to nearly 147,000 participants last year. To help ensure Hacktoberfest can be sustained for another decade, this year we're moving away from a free t-shirt reward to a digital reward.PREPTEMBERSeptember is the perfect time to prepare for Hacktoberfest. Get a jump start by finding projects to contribute to, adding the ‘hacktoberfest' tag to your projects, or familiarizing yourself with Git.Discord: https://discord.gg/hacktoberfest https://hacktoberfest.com/ CFMLers get AWS CertifiedDaniel Garcia from Ortus, and a few other CFML Community members created a study group to complete the AWS Cloud Practitioner Certification, the first on many AWS tracks.All of the group members who took the Certification exam passed, which is great for these developers, their employers, and the community.If you are considering a certification, create a study group with friends or community members, it helps with learning, accountability and it's great to socialize with like minded people.https://d1.awsstatic.com/training-and-certification/docs/AWS_certification_paths.pdfhttps://aws.amazon.com/certification/?nc2=sb_ce_co New Releases and UpdatesLucee 5.4.3.7-Snapshot ready for TestingHey everyone, we have a new 5.4.3.7-SNAPSHOT out which addresses all the known regressions with 5.4.3LDEV-4675 Admin: requested action doesn't exist 1LDEV-3854 a fix for the pagePool locking problem 7LDEV-4480 “.” should not be accepted/converted as/to a number 2LDEV-4676 SerializeJSON() produces invalid JSON when serializing some CFC instances 5Builds are up, including docker images, It would be great if people can test this out and let us knowhttps://dev.lucee.org/t/5-4-3-7-snapshot-ready-for-testing/13001 Webinar / Meetups and WorkshopsOOP & ColdFusionNolan ErckFriday, September 29, 2023 @ 12 PM HAST (Hawaii Standard Time)Object-Oriented Programming is a common term in programming languages. It's a vast concept but to sum it up in a single line, it is a set of concepts and techniques that make use of the “object” construct, to write more reusable, maintainable, and organized code. Objects are implemented differently in every language. In ColdFusion, we have ColdFusion Components (CFCs) that can be instantiated to create objects.Anyone who has ever studied OOP must know that there are four main concepts, which are: Abstraction Encapsulation Inheritance Polymorphism https://www.meetup.com/hawaii-coldfusion-meetup-group/events/294629892/ICYMI - Hawaii CF User Group Meetup - Mark Takata on Graph QL & ColdFusionGraphQL is a query language for APIs and a runtime for fulfilling those queries with your existing data. GraphQL provides a complete and understandable description of the data in your API, gives clients the power to ask for exactly what they need and nothing more, makes it easier to evolve APIs over time, and enables powerful developer tools.https://hawaiicoldfusionusergroup.adobeconnect.com/p6cwiyco0hx7/ ICYMI - Sac Interactive - Mark Takata - ColdFusion 2023 Modern CFML Development EcosystemJoin Mark Takata, Global Technical Evangelist for Adobe ColdFusion as he delves into all of the new incredible feature additions for ColdFusion 2023. We will discuss GraphQL, a variety of GCP native features (including storage, FireStore and Pub/Sub), JWT and security additions for single sign-on for the ColdFusion administrator. Both high level overview and code samples will be highlighted, and all code will be available on GitHub for download after the talk.https://www.youtube.com/watch?v=rdRtN2YEUnE CFCasts Content Updateshttps://www.cfcasts.comRecent Releases Into the Box 2023 Videos is available for purchase as an EXCLUSIVE PREMIUM package. https://cfcasts.com/series/itb-2023  Subscribers will get access to premium packages after a 6 month exclusive window. Into the Box Attendees should have their coupon code in the email already!!!! 2023 ForgeBox Module of the Week Series - 1 new Video https://cfcasts.com/series/2023-forgebox-modules-of-the-week  2023 VS Code Hint tip and Trick of the Week Series - 1 new Video https://cfcasts.com/series/2023-vs-code-hint-tip-and-trick-of-the-week  Coming Soon More ForgeBox and VS Code Podcast snippet videos Mastering CBWIRE v3 from Grant ColdBox Elixir from Eric Conferences and TrainingAdobe CF Summit WestLas Vegas 2-4th of October.Session passes @ $199 Professional passes @ $299. Speakers have been announced - with some great sessionshttps://cfsummit.adobeevents.com/ Andy Bucklee will be there (David Wallace from The Office)Ortus CF Summit Training - ColdBox 7 Zero to Hero - SOLD OUTDate: October 4th - 5th, 2023 | Right after Adobe CFSummit, 2023Speakers: Luis Majano & Gavin PickinLocation: Las Vegas, NevadaVenue: Regus - Las Vegas - 3960 Howard Hughes Parkway Paradise #Suite 500 Las Vegas, NV 89169 United StatesSpotlight Less than 2 miles from the Mirage - 30 mins walk Next to Marriot hotel - 2 min walk 1 mile to Top Golf - 20 min walk 5 min walk to Fogo de Chão Brazilian Steakhouse 5 min walk to starbucks 5 min walk to Lo-los chicken and waffles WIN WIN WIN WINhttps://www.eventbrite.com/e/workshop-coldbox-from-zero-to-hero-tickets-659169262007?aff=oddtdtcreator Into the Box LATAMNovember 30thUniversity of Business in El Salvador.https://latam.intothebox.org/ITB 2024Location: Optica in Washington, DCAnnouncement Blog Post: https://www.ortussolutions.com/blog/our-into-the-box-2024-venue-and-dates-are-setDates: May 15-17, 2024Get Blind Tickets Now: https://www.eventbrite.com/e/into-the-box-2024-the-new-era-of-modernization-tickets-663126347757https://www.ortussolutions.com/blog/call-for-speakers-into-the-box-2024-share-your-expertiseMore conferencesNeed more conferences, this site has a huge list of conferences for almost any language/community.https://confs.tech/Blogs, Tweets, and Videos of the Week9/19/2023 - Blog - Ben Nadel - Which Whitespace Characters Does trim() Remove In ColdFusionYesterday, an external API call that I was making failed because one of the values that I was posting contained a trailing "Zero width space" character (u200b). The value in question was being passed-through ColdFusion's native trim() function; which was clearly not removing this whitespace character. As such, it occurred to me that I didn't really know which characters are (and are not) handled by the trim() function. And so, I wanted to run a test.https://www.bennadel.com/blog/4516-which-whitespace-characters-does-trim-remove-in-coldfusion.htm 9/13/2023 - Blog - Ben Nadel - Using FileReadLine() With Seekable Files In ColdFusion Last week, I started to explore seekable files in ColdFusion. A seekable file allows us to jump to an arbitrary offset within the file contents (which I believe can be done without having to read the entire file into memory). I've recently been dealing with consuming large text-files at work; and, I'm wondering if a seekable file might be something I can use to create a "resumable" consumption process. As such, I wanted to play around with using the fileReadLine() function in conjunction with seekable files in ColdFusion.https://www.bennadel.com/blog/4515-using-filereadline-with-seekable-files-in-coldfusion.htm 9/11/2023 - Tweet - Ben Nadel - Weird Application Datasource ErrorHas anyone had any luck getting per-application datasources (ie, `this.datasources`) to work in #ColdFusion 2023? My code works fine in ACF 2021; but, when I build the same Docker image using 2023, the code breaks.https://x.com/BenNadel/status/1701181955578986946?s=20 CFML JobsSeveral positions available on https://www.getcfmljobs.com/Listing over 98 ColdFusion positions from 65 companies across 43 locations in 5 Countries.3 new jobs listed in the last two weeksFull-Time - Fully Insured End of Lease Cleaners in Melbourne at Melbourn.. - Australia Posted Sep 18 for Bond Cleaning in MelbourneAs your trusted partner for end of lease cleaning, Bond Cleaning in Melbourne is dedicated to exceeding your expectations. With years of experience, we understand the critical details that ensure a successful clean. Our team works diligently to restore your rental property to its original glory, ensuring the swift return of your security deposit. Property owners and real estate agents have come to rely on our expertise, backed by the REIV-approved checklist. We offer flexible packages at affordable rates, tailored to your convenience. Don't leave your deposit to chance - contact us at 03 9068 8186 or reach out through our website. https://www.getcfmljobs.com/viewjob.cfm?jobid=11605 Full-Time - ColdFusion Developer 2 (Remote) at Remote - United States Posted: Sep 18 for Community BrandsThe Developer position is responsible for writing application code to contribute to the full lifecycle of development from concept to post-production support and maintenance of server / OS / desktop / web / mobile applications and services. This position will develop application code, contribute to version-controlled source code repositories and will managed assigned tasks to create measurable value and deliver software to market using industry recognized agile methodologies and best practices. The Developer will be responsible for coding according to prescribed standards and guidelines set forth by the architects and leadership teams and must demonstrate quality, brevity and timeliness in all deliverables.https://www.getcfmljobs.com/jobs/index.cfm/united-states/coldfusion-developer-2-remote-at-community-brands/11604 Full-Time - ColdFusion Developer at Washington, DC - United States Sep 08 for TamminaUS Citizen. Must be clearable. A clearance or an inactive clearance preferred. Government agency experience required.We are seeking an Application Developer to join our team. The developer shall perform and/or support requirements definition, design and prototyping, implementation, unit testing, debugging, verification, deployment, and maintenance activities throughout the software development life cycle (SDLC) for current and future software modules of a comprehensive web portal environment.https://www.getcfmljobs.com/jobs/index.cfm/united-states/ColdFusionDev-at-Washington-DC/11603 Other Job LinksThere is a jobs channel in the CFML slack team, and in the Box team slack now tooForgeBox Module of the WeekOrtus ORM Extension for LuceeThe Ortus ORM Extension is a native Lucee Extension that allows your CFML application to integrate with the powerful Hibernate ORM. With Hibernate, you can interact with your database records in an object oriented fashion, using components to denote each record and simple getters and setters for each field Add Object Relational Mapping to any CFML app with Hibernate ORM Use native CFML methods to update and persist entities to the database (entityNew(), entitySave(), ormFlush(), etc.) Supports 80+ database dialects, from SQLServer2005 to MySQL8 and PostgreSQL 60% faster startup than the Lucee Hibernate extension Generate your mapping XML once and never again with the autoGenMap=false ORM configuration setting React to entity changes with pre and post event listeners such as onPreInsert(), onPreUpdate() and onPreDelete() Over 20 native CFML functions: $ install D062D72F-F8A2-46F0-8CBC91325B2F067B https://orm-extension.ortusbooks.com/ https://www.forgebox.io/view/D062D72F-F8A2-46F0-8CBC91325B2F067BVS Code Hint Tips and Tricks of the WeekCSS PeekAllow peeking to css ID and class strings as definitions from html files to respective CSS. Allows peek and goto definition.This extension extends HTML and ejs code editing with Go To Definition and Go To Symbol in Workspace support for css/scss/less (classes and IDs) found in strings within the source code.This was heavily inspired by a similar feature in Brackets called CSS Inline Editors.https://marketplace.visualstudio.com/items?itemName=pranaygp.vscode-css-peek Thank you to all of our Patreon SupportersThese individuals are personally supporting our open source initiatives to ensure the great toolings like CommandBox, ForgeBox, ColdBox,  ContentBox, TestBox and all the other boxes keep getting the continuous development they need, and funds the cloud infrastructure at our community relies on like ForgeBox for our Package Management with CommandBox. You can support us on Patreon here https://www.patreon.com/ortussolutionsDon't forget, we have Annual Memberships, pay for the year and save 10% - great for businesses everyone. Bronze Packages and up, now get a ForgeBox Pro and CFCasts subscriptions as a perk for their Patreon Subscription. All Patreon supporters have a Profile badge on the Community Website All Patreon supporters have their own Private Forum access on the Community Website All Patreon supporters have their own Private Channel access BoxTeam Slack https://community.ortussolutions.com/Top Patreons (mind-boggling) John Wilson - Synaptrix Tomorrows Guides Jordan Clark Gary Knight Giancarlo Gomez  David Belanger  Dan Card Jeffry McGee - Sunstar Media Dean Maunder Kevin Wright Doug Cain  Nolan Erck  Abdul Raheen And many more PatreonsYou can see an up to date list of all sponsors on Ortus Solutions' Websitehttps://ortussolutions.com/about-us/sponsors Thanks everyone!!! ★ Support this podcast on Patreon ★

In this episode, we speak with Thomas Wilson who plays a critical role in tying the work of user researchers and UX designers, who products and services more deeply into the customer's lives, with the broader ecosystems to support and operationalize those experiences through service design.  He has been an award-winning creative director, UX designer, and service designer for over 25 years. He's been recognized in Forbes Magazine, Best of Web, and twice in the 500. His work with Venture Design. He's moved the needle at 52 Startups and Has worked for companies like NASA, JWT, AIG, Kroger, Amazon Web Services, and 11 of the largest healthcare systems like Blue Cross Blue Shield.  At UnitedHealthcare, he leads the design community of practice and hosts the Friday Design Hour showcasing research, innovation, and design for the largest healthcare company in the world. Linkedin: https://www.linkedin.com/in/thomasianwilson/ More Episodes: The Limina Podcast Music by TimTaj: ⁠https://timtaj.com⁠⁠ Modern Technologies by TimTaj: ⁠https://timtaj.com⁠ This is Interview by TimTaj: ⁠https://timtaj.com⁠

Imagine being constantly misdiagnosed and misunderstood. Struggling to manage your focus and time, hiding your struggles just to survive in your professional life - sounds challenging, doesn't it? Today, we're peeling back the layers on mental health with our guest, Sasha Blejec, an award-winning creative director and an avid gardener. Sasha's tale of resilience in the face of ADHD and mental health challenges is nothing short of inspiring. She shares how her interactions with the pharmaceutical industry and changes in her diet impacted her mental health journey and shed light on controversial theories related to the medical industry and viruses. We also delve into the power of dietary choices and their impacts on mental and physical health. So, tune in, and let Sasha's inspiring journey enlighten and motivate you toward your own path of self-healing.Who is Sasha:She is a NYC creative who finds it creepy when people write glowing, third-person narratives about themselves. She is also a Badass Copywriter who has worked at a bunch of great, New York Ad Agencies in the past decade, from lean, mean shops like Deutsch and Cliff Freeman and Partners to big, shiny ones like JWT.Mostly, she likes coming up with Smart Ideas, and recently orchestrated the first television premiere on Twitter, wrote the first multipart Instagram series, and just finished development on a full Brand Platform for a fledgling media powerhouse. Sasha's currently available as a Gun for Hire both on-site and remote, and is looking to beat her 9 for 9 Pitch Record as either a Power Couple or a Lone Shark depending on your needs. She divides her time between Putting Out Fires in Brooklyn and developing a small Permaculture Farm in Neversink, NY.  Learn more and connect with Sasha:Web: https://www.sashasashasasha.com/LinkedIn: https://www.linkedin.com/in/sashacreative/Email: sblejec@gmail.com Episode highlights: [2:44] Living with ADHD and overcoming challenges[10:56] Uncovering mental health and healing journey[20:39] Vegetarian's dietary journey[28:10] Copper toxicity and its health impact[41:42] Modern medicine and birth control issues[51:02] Impacts of medication and dietary choices[1:01:30] Personal healing and journey of progress[1:07:38] Healing and weight loss journey[1:16:07] Having a supportive partner in your health journey is a blessing[1:30:02] Outro _____Reach out to CaitlinEmail: hello@caitlinpyle.com

2023-06-27 Weekly News - Episode 199Watch the video version on YouTube at https://youtube.com/live/YhGqAVLYZk4?feature=shareHosts:  Gavin Pickin - Senior Developer at Ortus Solutions Brad Wood - Senior Developer at Ortus Solutions Thanks to our Sponsor - Ortus SolutionsThe makers of ColdBox, CommandBox, ForgeBox, TestBox and all your favorite box-es out there. A few ways  to say thanks back to Ortus Solutions: Like and subscribe to our videos on YouTube.  Help ORTUS reach for the Stars - Star and Fork our Repos Star all of your Github Box Dependencies from CommandBox with https://www.forgebox.io/view/commandbox-github  Subscribe to our Podcast on your Podcast Apps and leave us a review Sign up for a free or paid account on CFCasts, which is releasing new content every week BOXLife store: https://www.ortussolutions.com/about-us/shop Buy Ortus's Books  102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips) Learn Modern ColdFusion (CFML) in 100+ Minutes - Free online https://modern-cfml.ortusbooks.com/ or buy an EBook or Paper copy https://www.ortussolutions.com/learn/books/coldfusion-in-100-minutes   Patreon Support ()We have 40 patreons: https://www.patreon.com/ortussolutions. News and AnnouncementsCFCamp was a blastBrad said: Back on US soil again, but still smiling from the wonderful experience at CFCamp.  It was so good to be back in Germany and see my EU friends again in person.  I'd say the first time back since Covid was a smashing success!Alex Well said: Back at home from my trip to 2023‘s #CFCamp

Ella es la presidenta del Creative Leadership Council de McCann Latam. Este año participará como jurado presencial en Cannes Lions 2023 en Radio & Audio. Ganadora del primer León de Glass para Colombia y seleccionada por la red JWT como “Brand Pionner”.Esa noche exploramos el caso de la Galería de las Mentiras, una experiencia virtual que revela cómo las mentiras se convierten en verdades al repetirlas. Además del caso para Notmilk, donde las demandas en su contra por publicidad engañosa fueron la semilla creativa.Abordamos la integración de Chatgpt como nuevo socio de trabajo y su competencia creciente con Google. Conocimos su trayectoria profesional en Thompson y su visión de McCann como una red creativa sólida y conectada. Compartimos su experiencia especial en el caso "Ensuciarse es bueno" de OMO, donde nos contó cómo su éxito en Mofilms Cannes la llevó a viajar por varios países realizando documentales sobre niños.Exploramos la relación entre el miedo y los sueños, y cómo aprendemos a ser auténticos al mostrarnos a los demás. Para terminar, descubrimos su pasión por el fútbol y el impacto de ganar el primer León de Glass para Colombia junto a su dupla creativa y amorosa.Visítanos en https://www.elmartinez.net/ y suscríbete en Spotify, Apple Podcasts o donde lo estés oyendo ahora. Síguenos en FB o IG @elmartinezpodcast. Hosted on Acast. See acast.com/privacy for more information.

In this potluck episode of Syntax, Wes and Scott answer your questions about not becoming dependent on Copilot, CSS variable limitations, finding Sick Picks, lodash hate, and more! Show Notes 00:11 Welcome 00:55 Ice, ice baby 02:01 Reactathon Reactathon returns May 2-3, 2023 The edge cloud platform behind the best of the web | Fastly 04:49 Submit your question for our next potluck 05:24 How do you suggest adding form / database to Svelte? Svelte • Cybernetically enhanced web apps Astro 08:18 What can't go into a CSS custom prop? 12:42 Are there any really good certifications for Javascript or general full stack development? 16:21 What is the most exciting thing about teaching programming for both of you? 19:37 What is the most challenging thing you have ever overcome in this field? 21:55 How can junior to mid-level devs make the most out of GitHub Copilot while avoiding getting dependent on it and hurting their abilities in the long run? 26:23 Any tips on driving a culture of code quality in a team? 30:28 How soon should Sentry be brought into a new project being built from scratch? 33:11 Is there a place where I can search through all the Sick Picks? Syntax Sick Picks 34:40 Why is box-sizing: border-box; not the default? 37:51 Is using lodash in a NextJS web application a terrible idea nowadays? 40:42 What is the best practice for storing JWT token? 43:53 Any tips on converting ajax requests to use Fetch API? patch-package - npm 45:11 Any suggestions for tips for updating a very dated React Native codebase? 50:56 SIIIIICK ××× PIIIICKS ××× ××× SIIIIICK ××× PIIIICKS ××× Scott: Tales of Taboo podcast Spotify / Apple Podcasts Wes: Rubber Flooring Shameless Plugs Scott: Sentry Wes: Wes Bos Tutorials Tweet us your tasty treats Scott's Instagram LevelUpTutorials Instagram Wes' Instagram Wes' Twitter Wes' Facebook Scott's Twitter Make sure to include @SyntaxFM in your tweets Wes Bos on Bluesky Scott on Bluesky Syntax on Bluesky

In today's episode of Elixir Wizards, Michael Lubas, founder of Paraxial.io, joins hosts Owen Bickford and Bilal Hankins to discuss security in the Elixir and Phoenix ecosystem. Lubas shares his insights on the most common security risks developers face, recent threats, and how Elixir developers can prepare for the future. Common security risks, including SQL injection and cross-site scripting, and how to mitigate these threats The importance of rate limiting and bot detection to prevent spam SMS messages Continuous security testing to maintain a secure application and avoid breaches Tools and resources available in the Elixir and Phoenix ecosystem to enhance security The Guardian library for authentication and authorization Take a drink every time someone says "bot" The difference between "bots" and AI language models The potential for evolving authentication, such as Passkeys over WebSocket How Elixir compares to other languages due to its immutability and the ability to trace user input Potion Shop, a vulnerable Phoenix application designed to test security Talking Tom, Sneaker Bots, and teenage hackers! The importance of security awareness and early planning in application development The impact of open-source software on application security How to address vulnerabilities in third-party libraries Conducting security audits and implementing security measures Links in this episode: Michael Lubas Email - michael@paraxial.io LinkedIn - https://www.linkedin.com/in/michaellubas/ Paraxial.io - https://paraxial.io/ Blog/Mailing List - https://paraxial.io/blog/index Potion Shop - https://paraxial.io/blog/potion-shop Elixir/Phoenix Security Live Coding: Preventing SQL Injection in Ecto Twitter - https://twitter.com/paraxialio LinkedIn - https://www.linkedin.com/company/paraxial-io/ GenServer Social - https://genserver.social/paraxial YouTube - https://www.youtube.com/@paraxial5874 Griffin Byatt on Sobelow: ElixirConf 2017 - Plugging the Security Holes in Your Phoenix Application (https://www.youtube.com/watch?v=w3lKmFsmlvQ) Erlang Ecosystem Foundation: Security Working Group - https://erlef.org/wg/security Article by Bram - Client-Side Enforcement of LiveView Security (https://blog.voltone.net/post/31) Special Guest: Michael Lubas.