Search
113 results for “aegilops”
-
I’ve released more GitHub :github: Secret 🔑 Scanning 🔎 custom patterns, which you can use with Advanced Security.
Some are 🔥 (IMHO), some are for auditing only - e.g. my “common passwords” pattern, written to spot some of the most commonly leaked weak passwords - “P@55word123!” etc.
We have DataDog, Sentry, .Net configs, MS SQLServer user creation, and Bearer tokens.
https://aegilops.github.io/posts/new-github-secret-scanning-custom-patterns/
-
I kicked off my blog with a post about writing regex for GitHub Secret Scanning's custom patterns (which you get if you pay for Advanced Security):
https://aegilops.github.io/posts/regex-for-secret-scanning/
#GitHub #SecretScanning #SecureCoding #DevSecOps #regex #HyperScan
-
@HeartOfChina @aegilops @TheDigitalGlobalCitizen @languagelovers Very nice! Yes the classical ties are evident in sinosphere languages. I'm learning #Korean, and though their own script #Hangul is a marvel I know that at some point I will have to learn #Hanja as well 😄
-
Xie et al. use genotyping by target sequencing (GBTS) to generate an exome capture panel of the Triticeae D #genome and facilitate definition of the introgression landscape of Aegilops tauschii-#wheat derivatives.
https://doi.org/10.1111/jipb.70106
@WileyLifeSci
#PlantSci #JIPB #CropScience #botany #FreeAccess -
Xie et al. use genotyping by target sequencing (GBTS) to generate an exome capture panel of the Triticeae D #genome and facilitate definition of the introgression landscape of Aegilops tauschii-#wheat derivatives.
https://doi.org/10.1111/jipb.70106
@WileyLifeSci
#PlantSci #JIPB #CropScience #botany #FreeAccess -
CW: Insects
TIL that earwigs can fly. Though they mostly don't bother flying, it's a little embarrassing as someone with two biology degrees not to have known this 😳
(HT @aegilops)
They have shimmering, foldable wings that they hide away under their stiff forewings, like beetles do. Their wing deployment reminds me of an unfurling solar sail.
https://www.nationalgeographic.com/animals/article/earwig-origami-wings-how-they-work-insect-flight (includes video)
#Earwigs #FlyingInsects #InsectFlight #AnimalFacts #NationalGeographic #TodayILearned #Biology
-
Aqua Security’s Trivy GitHub Action was compromised, and Checkmarx’s KICS too: a reminder that I wrote an Actions audit script that can search for particular Actions and versions run in workflows (or just list all Actions with exact commit versions run in all workflows).
Auditing script:
https://github.com/github/audit-actions-workflow-runsStepSecurity blogs in the thread 🧵
-
I wrote a script to show the exact versions of Actions used in your workflows on GitHub Actions.
It uses the audit logs (or just a list of workflow runs, for a single repo), grabs the workflow logs, and shows which commit was downloaded for each Action.
It’s useful in cases like the tj-actions/changed-files and reviewdog compromises.
https://github.com/github/audit-actions-workflow-runs
#DevSecOps #SupplyChainSecurity #Actions #CiCd #GitHub #TJActions #ReviewDog
-
Speculative execution and other microarchitectural attacks never went away, and the research just keeps getting smarter.
Pathfinder introduces new tools and two new types of speculative execution, affecting Intel and AMD CPUs.
-
That “3 million 🪥 DDoS” story is a fairytale 🦄🧌🧚📖
BleedingComputer confirmed with FortiNet that it’s a ✨hypothetical situation✨. The original article authors say the interview presented it as real.
Major journalistic failure all round, aside from BleedingComputer 👏
3m smart toothbrush DDoS is false 🙅
#DDoS #IoT #FortiNet #BleedingComputer #FortiGuard #FakeNews
-
Dia duit! Any Irish ☘️ language learners on here?
I’m starting learning on Duolingo🦉and looking for ways to improve on that - but I don’t live in Ireland 🇮🇪, so in-person courses are probably out.
I’ve done some searches so have ideas, but recommendations would be great.
I’m happy with books, videos, apps and video chat, paid or free.
Go raith maith agat!
-
A new setting to enable for :github: Secret Scanning is “non-vendor patterns”.
This now covers some private keys, database connection strings and web auth headers, and will grow over time: it won’t offer push protection.
For public repos on #GitHub you can enable everything above 👆 for 🆓.
(For private repos on GitHub Enterprise you can buy Advanced Security for this security experience; with new AI enabled features coming soon, on top of what public repos get)
-
I’ve discovered the Vanished Voices app, which lets you explore modern and reconstructed #IndoEuropean #languages
https://www.indo-Europeans.online/vanished-voices/
It introduced me to the posited Proto-Indo-Anatolian language, a precursor to “classic” #ProtoIndoEuropean. It places the split of the #Anatolian languages first in the broader PIE family.
It’s all (very) educated guesswork; modern theories try to reconcile linguistic, archaeological and genetic data into a consistent story.
-
@simontsui Unit42 buried a significant part:
"One of the largest obstacles…was how fast AWS reacted in applying the quarantine policy to prevent malicious operations. AWS applied [it] within two minutes of the AWS credentials being leaked on GitHub.“
That’s down to GitHub’s automated secret scanning and partner program.
I’d love to know how many keys slip past that, or where the AWS user removes the quarantine.
-
I added Pyre 🔥 to my :python: linter Action , adding a 4th type checker to choose from.
-
@joxean tilck, seL4 or the Firefly Kernel might fit the bill?
https://github.com/vvaltchev/tilck
-
@joxean tilck, seL4 or the Firefly Kernel might fit the bill?
https://github.com/vvaltchev/tilck
-
@joxean tilck, seL4 or the Firefly Kernel might fit the bill?
https://github.com/vvaltchev/tilck
-
@joxean tilck, seL4 or the Firefly Kernel might fit the bill?
https://github.com/vvaltchev/tilck
-
@joxean tilck, seL4 or the Firefly Kernel might fit the bill?
https://github.com/vvaltchev/tilck
-
I've made a Python :python: code linting Action ▶️ for GitHub :github: Code Scanning.
It wraps up #Ruff, #Flake8, #Pylint, #Fixit2, #Mypy, #Pyright and #Pytype into an Action that uploads to Code Scanning, part of Advanced Security, the GitHub appsec platform.
ℹ️ that’s free for open source repos hosted on GitHub!
Read 📖 about it👇 on my blog:
https://lnkd.in/es_pd2W6Try ⚙️ it👇 on the Actions ▶️ marketplace:
https://lnkd.in/ei7-H2V9#Python #Linting #CodeQuality #Linters #SARIF #GitHubActions
-
I've made a Python :python: code linting Action ▶️ for GitHub :github: Code Scanning.
It wraps up #Ruff, #Flake8, #Pylint, #Fixit2, #Mypy, #Pyright and #Pytype into an Action that uploads to Code Scanning, part of Advanced Security, the GitHub appsec platform.
ℹ️ that’s free for open source repos hosted on GitHub!
Read 📖 about it👇 on my blog:
https://lnkd.in/es_pd2W6Try ⚙️ it👇 on the Actions ▶️ marketplace:
https://lnkd.in/ei7-H2V9#Python #Linting #CodeQuality #Linters #SARIF #GitHubActions
-
I've made a Python :python: code linting Action ▶️ for GitHub :github: Code Scanning.
It wraps up #Ruff, #Flake8, #Pylint, #Fixit2, #Mypy, #Pyright and #Pytype into an Action that uploads to Code Scanning, part of Advanced Security, the GitHub appsec platform.
ℹ️ that’s free for open source repos hosted on GitHub!
Read 📖 about it👇 on my blog:
https://lnkd.in/es_pd2W6Try ⚙️ it👇 on the Actions ▶️ marketplace:
https://lnkd.in/ei7-H2V9#Python #Linting #CodeQuality #Linters #SARIF #GitHubActions
