News

1. Building a Complete FIRE Calculator App with GitHub Copilot in One Chat Session (montemagno.com)
2. Медицинская лаборатория Гемотест (Gemotest) - 6,341,495 breached accounts (haveibeenpwned.com)
3. Strengthening supply chain security: Preparing for the next malware campaign (github.blog)
4. Thank You (2025 Edition) (css-tricks.com)
5. 5 podcast episodes to help you build with confidence in 2026 (github.blog)
6. This year’s most influential open source projects (github.blog)
7. Improved performance for GitHub Actions workflows page (github.blog)
8. Control who can request apps for your organization now in public preview (github.blog)
9. text-decoration-inset is Like Padding for Text Decorations (css-tricks.com)
10. Python Typing Survey 2025: Code Quality and Flexibility As Top Reasons for Typing Adoption (engineering.fb.com)
11. How Workers powers our internal maintenance scheduling pipeline (blog.cloudflare.com)
12. Drawing Truchet tiles in SVG (alexwlchan.net)
13. Weekly Update 483 (troyhunt.com)
14. Adding a README to S3 buckets with Terraform (alexwlchan.net)
15. Code Orange: Fail Small — our resilience plan following recent incidents (blog.cloudflare.com)
16. You can now require reviews before closing Dependabot alerts with delegated alert dismissal (github.blog)
17. DrP: Meta’s Root Cause Analysis Platform at Scale (engineering.fb.com)
18. Copilot memory early access for Pro and Pro+ (github.blog)
19. Masonry Layout is Now grid-lanes (css-tricks.com)
20. Innovating to address streaming abuse — and our latest transparency report (blog.cloudflare.com)
21. Evo Adds CycloneDX Support to Give Full AI Visibility (snyk.io)
22. Speed Up Your JavaScript Apps: Native Bun Support is Now Available on App Platform (www.digitalocean.com)
23. Introducing RSC Explorer (overreacted.io)
24. CodeQL 2.23.7 and 2.23.8 add security queries for Go and Rust (github.blog)
25. Assigning GitHub Copilot to an issue now adds you as an assignee (github.blog)
26. GitHub Advanced Security trials now available for more GitHub Enterprise customers (github.blog)
27. GitHub Copilot now supports Agent Skills (github.blog)
28. Claude Opus 4.5 is now generally available in GitHub Copilot (github.blog)
29. GitHub Enterprise Cloud data residency in Japan is generally available (github.blog)
30. Search CSS-Tricks Raycast Extension (css-tricks.com)
31. Announcing support for GROUP BY, SUM, and other aggregation queries in R2 SQL (blog.cloudflare.com)
32.  Introducing our new ‘Programming with AI’ unit (www.raspberrypi.org)
33. AUTOSUR - 487,226 breached accounts (haveibeenpwned.com)
34. The Botting Network - 96,320 breached accounts (haveibeenpwned.com)
35. Building a Code Review system that uses prod data to predict bugs (blog.sentry.io)
36. Web Hosting Talk - 515,149 breached accounts (haveibeenpwned.com)
37. A More Powerful, Code-First Knowledge Base Experience on the DigitalOcean Gradient™ AI Platform (www.digitalocean.com)
38. Introducing DigitalOcean Gradient™ AI Agent Development Kit: A code-first way to build production-ready AI agents (www.digitalocean.com)
39. A Year of Innovation: DigitalOcean Managed Databases in 2025 (www.digitalocean.com)
40. Home working: preparing your organisation and staff (www.ncsc.gov.uk)
41. Responsive List of Avatars Using Modern CSS (Part 2) (css-tricks.com)
42. Data breaches: guidance for individuals and families (www.ncsc.gov.uk)
43. Sextortion emails: how to protect yourself (www.ncsc.gov.uk)
44. How We Built Meta Ray-Ban Display: From Zero to Polish (engineering.fb.com)
45. Astro Pi is 10: A decade of your code in space  (www.raspberrypi.org)
46. The palm tree that led to Palmyra (alexwlchan.net)
47. LCP and INP are now Baseline Newly available (web.dev)
48. Directional CSS with scroll-state(scrolled) (una.im)
49. Weekly Update 482 (troyhunt.com)
50. Why “Microservices” Debates Miss the Point (codeopinion.com)
51. Introducing the Spend by Date Range Billing View (www.digitalocean.com)
52. Microsoft.Testing.Platform Now Fully Supported in Azure DevOps (devblogs.microsoft.com)
53. What’s !important #1: Advent Calendars, CSS Wrapped, Web Platform Updates, and More (css-tricks.com)
54. 2025 highlights from the Raspberry Pi Computing Education Research Centre (www.raspberrypi.org)
55. Welcome to the new Project Zero Blog (googleprojectzero.blogspot.com)
56. Thinking Outside The Box [dusted off draft from 2017] (googleprojectzero.blogspot.com)
57. Drawing good architecture diagrams (www.ncsc.gov.uk)
58. Windows Exploitation Techniques: Winning Race Conditions with Path Lookups (googleprojectzero.blogspot.com)
59. New to the web platform in December (web.dev)
60. Old AI Security vs Evo: Watch Agentic Security Replace Weeks of Manual Work (snyk.io)
61. Cocoa SDK 9.0.0 has landed (blog.sentry.io)
62. How Temporal Powers Reliable Cloud Operations at Netflix (netflixtechblog.com)
63. Leveling Up Kubernetes: Key DigitalOcean Managed Kubernetes Releases in 2025 (www.digitalocean.com)
64. How to Build iOS Widgets with .NET MAUI (devblogs.microsoft.com)
65. Toon Title Text Generator (css-tricks.com)
66. Powering the Next Leap in AI: GPU Droplets accelerated by NVIDIA HGX™ B300 are coming soon to DigitalOcean (www.digitalocean.com)
67. Netflix Live Origin (netflixtechblog.com)
68. How AI Is Transforming the Adoption of Secure-by-Default Mobile Frameworks (engineering.fb.com)
69. Responsive List of Avatars Using Modern CSS (Part 1) (css-tricks.com)
70. Report URI Penetration Test 2025 (scotthelme.ghost.io)
71. From learners to leaders: Jayantika and Ruturaj’s journey as Code Club youth mentors (www.raspberrypi.org)
72. The 2025 Cloudflare Radar Year in Review: The rise of AI, post-quantum, and record-breaking DDoS attacks (blog.cloudflare.com)
73. ChatGPT's rivals, Kwai's quiet rise: the top Internet services of 2025 (blog.cloudflare.com)
74. Mitigating malware and ransomware attacks (www.ncsc.gov.uk)
75. Cyber deception trials: what we’ve learned so far (www.ncsc.gov.uk)
76. Why I returned my Proton subscription (theorangeone.net)
77. Wrapping Up 2025 - The Year Of MCP (den.dev)
78. Processing 630 Million More Pwned Passwords, Courtesy of the FBI (troyhunt.com)
79. The future of AI-powered software optimization (and how it can help your team) (github.blog)
80. Throttle individual network requests (developer.chrome.com)
81. What Else Could Container Queries… Query? (css-tricks.com)
82. Secondary school maths showing that AI systems don’t think (www.raspberrypi.org)
83. Meeting my younger self (alexwlchan.net)
84. A look at an Android ITW DNG exploit (googleprojectzero.blogspot.com)
85. CSS scroll-triggered animations are coming! (developer.chrome.com)
86. Let’s talk about GitHub Actions (github.blog)
87. React2Shell and related RSC vulnerabilities threat brief: early exploitation activity and threat actor techniques (blog.cloudflare.com)
88. GitHub Availability Report: November 2025 (github.blog)
89. Celebrating the community: Irioluwa, Michelle, Jedidiah and Inioluwa (www.raspberrypi.org)
90. Vote for the web features you want to see (web.dev)
91. Let your Coding Agent debug your browser session with Chrome DevTools MCP (developer.chrome.com)
92. A better way to monitor your AI agents in .NET apps (blog.sentry.io)
93. Tails 7.3.1 (tails.net)
94. Creating Scroll-Based Animations in Full view() (css-tricks.com)
95. Hard problems in social media archiving (alexwlchan.net)
96. MCP joins the Linux Foundation: What this means for developers building the next era of AI tools and agents (github.blog)
97. Now Available: Remote MCP for DigitalOcean Services (www.digitalocean.com)
98. .NET and .NET Framework December 2025 servicing releases updates (devblogs.microsoft.com)
99. Implementing Cross-Platform In-App Billing in .NET MAUI Applications (devblogs.microsoft.com)
100. Speed is nothing without control: How to keep quality high in the AI era (github.blog)
101. CSS Wrapped 2025 (css-tricks.com)
102. Fit width text in 1 line of CSS (css-tricks.com)
103. November 2025 Baseline monthly digest (web.dev)
104. Signal API for passkeys available on Chrome for Android (developer.chrome.com)
105. Shifting left at enterprise scale: how we manage Cloudflare with Infrastructure as Code (blog.cloudflare.com)
106. How Snyk Helps Federal Agencies Prepare for the Genesis Mission Era of AI-Driven Science (snyk.io)
107. Microsoft Learn MCP Server Elevates Development (devblogs.microsoft.com)
108. Aggregates in DDD: Model Rules, Not Relationships (codeopinion.com)
109. The new identity of a developer: What changes and what doesn’t in the AI era (github.blog)
110. .NET 10 Networking Improvements (devblogs.microsoft.com)
111. Shopping and paying safely online (www.ncsc.gov.uk)
112. How to recover an infected device (www.ncsc.gov.uk)
113. From User to Trusted Advisor: How Jeff Fan Powers Customer Success at DigitalOcean (www.digitalocean.com)
114. Recovering a hacked account (www.ncsc.gov.uk)
115. Early Years practitioners: using cyber security to protect your settings (www.ncsc.gov.uk)
116. How to spot scammers claiming to be from the NCSC (www.ncsc.gov.uk)
117. That Time I Tried Explaining HTML and CSS to My 5-Year Old Niece (css-tricks.com)
118. The Architecture Decision Record (ADR) Framework: making better technology decisions across the public sector (technology.blog.gov.uk)
119. Using IPsec to protect data (www.ncsc.gov.uk)
120. Prompt injection is not SQL injection (it may be worse) (www.ncsc.gov.uk)
121. Using TLS to protect data (www.ncsc.gov.uk)
122. A method to assess 'forgivable' vs 'unforgivable' vulnerabilities (www.ncsc.gov.uk)
123. The Internet forgets, but I don’t want to (alexwlchan.net)
124. Provisioning and managing certificates in the Web PKI (www.ncsc.gov.uk)
125. Updating our guidance on security certificates, TLS and IPsec (www.ncsc.gov.uk)
126. CSS Wrapped 2025 (developer.chrome.com)
127. Python Workers redux: fast cold starts, packages, and a uv-first workflow (blog.cloudflare.com)
128. Meet Web Vitals Performance Issues (blog.sentry.io)
129. CSS Wrapped: 2025! (una.im)
130. KinoKong - 817,808 breached accounts (haveibeenpwned.com)
131. DoTs SDK Development: Automating TypeScript Client Generation (www.digitalocean.com)
132. HTML Web Components Proposal From 1998 (css-tricks.com)
133. Cybersecurity industry overreacts to React vulnerability, starts panic, burns own house down again (doublepulsar.com)
134. What's new in DevTools, Chrome 143 (developer.chrome.com)
135. Winners of the Built-in AI Challenge 2025 (developer.chrome.com)
136. When square pixels aren’t square (alexwlchan.net)
137. Weekly Update 481 (troyhunt.com)
138. Cloudflare outage on December 5, 2025 (blog.cloudflare.com)
139. How to use GitHub Copilot Spaces to debug issues faster (github.blog)
140. AV1 — Now Powering 30% of Netflix Streaming (netflixtechblog.com)
141. .NET Conf 2025 Recap – Celebrating .NET 10, Visual Studio 2026, AI, Community, & More (devblogs.microsoft.com)
142. Evaluate your AI agents faster and more effectively (www.digitalocean.com)
143. Getting Creative With “The Measure” (css-tricks.com)
144. AI updates for all Sentry users (blog.sentry.io)
145. Why Does Have I Been Pwned Contain "Fake" Email Addresses? (troyhunt.com)
146. Introducing Data Ingestion Building Blocks (Preview) (devblogs.microsoft.com)
147. Cloudflare WAF proactively protects against React vulnerability (blog.cloudflare.com)
148. Cloudflare's 2025 Q3 DDoS threat report -- including Aisuru, the apex of botnets (blog.cloudflare.com)
149. Building trust in the digital age: a collaborative approach to content provenance technologies (www.ncsc.gov.uk)
150. Chrome 144 beta (developer.chrome.com)
151. Security Advisory: Critical RCE Vulnerabilities in React Server Components (CVE-2025-55182) (snyk.io)
152. Accelerating innovation with AWS: Snyk selected as an AWS Pattern Partner (snyk.io)
153. November 2025 Reading List (den.dev)
154. Small numbers of Notepad++ users reporting security woes (doublepulsar.com)
155. What makes a responsible cyber actor: introducing the Pall Mall industry consultation on good practice (www.ncsc.gov.uk)
156. Announcing Baseline in action (web.dev)
157. New in Chrome 143 (developer.chrome.com)
158. Domain-Driven Design Misconceptions (codeopinion.com)
159. Zilvia.net - 287,863 breached accounts (haveibeenpwned.com)
160. Weekly Update 480 (troyhunt.com)
161. Why Replicate is joining Cloudflare (blog.cloudflare.com)
162. Automatically Signing a Windows EXE with Azure Trusted Signing, dotnet sign, and GitHub Actions (hanselman.com)
163. Mypy 1.19 released (mypy-lang.org)
164. It's time for all small businesses to act (www.ncsc.gov.uk)
165. NCSC handing over the baton of smart meter security: a decade of progress (www.ncsc.gov.uk)
166. China Software Developer Network - 6,414,990 breached accounts (haveibeenpwned.com)
167. .NET Day on Agentic Modernization Coming Soon (devblogs.microsoft.com)
168. Visual collaboration week: getting involved with the Digital Workplace community   (technology.blog.gov.uk)
169. New to the web platform in November (web.dev)
170. Digital Credentials API for credential issuance (developer.chrome.com)
171. Dissecting The Halo 5 Spartan Rank Manifest (den.dev)
172. Streamline Your Workflow: Announcing Environment Support for DigitalOcean App Platform (www.digitalocean.com)
173. Brand New Layouts with CSS Subgrid (www.joshwcomeau.com)
174. How Ada Computer Science empowers students: Survey findings (www.raspberrypi.org)
175. WebGPU is now supported in major browsers (web.dev)
176. Partnering with Black Forest Labs to bring FLUX.2 [dev] to Workers AI (blog.cloudflare.com)
177. One Year Of Model Context Protocol Through A Core Maintainer Lens (den.dev)
178. Minimal APIs, CQRS, DDD… Or Just Use Controllers? (codeopinion.com)
179. Get better visibility for the WAF with payload logging (blog.cloudflare.com)
180. Choosing a managed service provider (MSP) (www.ncsc.gov.uk)
181. <100ms E-commerce: Instant loads with Speculation Rules API (blog.sentry.io)
182. Eliminating N+1 Queries with Seer’s Automated Root Cause Analysis (blog.sentry.io)
183. What's New In The 2025-11-25 MCP Authorization Spec (den.dev)
184. CodeStepByStep - 103,077 breached accounts (haveibeenpwned.com)
185. Weekly Update 479 (troyhunt.com)
186. ADDA - 1,829,314 breached accounts (haveibeenpwned.com)
187. Should I rewrite the Python Launcher for Unix in Python? (snarky.ca)
188. Zoomer: Powering AI Performance at Meta’s Scale Through Intelligent Debugging and Optimization (engineering.fb.com)
189. Powered by DigitalOcean Hatch: How Ex-human uses GPU Droplets to Build Empathetic AI that Serves Customers (www.digitalocean.com)
190. Hacktoberfest 2025 Comes to a Close (www.digitalocean.com)
191. Can you take an ox to Oxford? (alexwlchan.net)
192. tree-me: Because git worktrees shouldn’t be a chore (haacked.com)
193. What organisations can learn from the record breaking fine over Capita’s ransomware incident (doublepulsar.com)
194. International Kiteboarding Organization - 340,349 breached accounts (haveibeenpwned.com)
195. The varying strictness of TypedDict (snarky.ca)
196. Reinventing how .NET Builds and Ships (Again) (devblogs.microsoft.com)
197. Key Transparency Comes to Messenger (engineering.fb.com)
198. Beckett Collectibles - 1,041,238 breached accounts (haveibeenpwned.com)
199. Eurofiber - 10,003 breached accounts (haveibeenpwned.com)
200. Vultr - 187,872 breached accounts (haveibeenpwned.com)
201. JavaScript SpeechSynthesis API (davidwalsh.name)
202. Seer can now trigger Cursor Agents to fix your bugs (blog.sentry.io)
203. Halo World Championship 2025 (den.dev)
204. Report URI - outage update (scotthelme.ghost.io)
205. Integrity Policy - Monitoring and Enforcing the use of SRI (scotthelme.ghost.io)
206. PowerToys 0.96 is here: endpoints for Advanced Paste, metadata support for PowerRename and more! (devblogs.microsoft.com)
207. The metrics product we built worked — But we killed it and started over anyway (blog.sentry.io)
208. Efficient Optimization With Ax, an Open Platform for Adaptive Experimentation (engineering.fb.com)
209. Introducing Logs, User Feedback, and more in the Sentry Godot SDK (blog.sentry.io)
210. Code Club Conference 2025: Creativity, community, and collaboration in Cambridge (www.raspberrypi.org)
211. Announcing the Completion of the Core 2Africa System: Building the Future of Connectivity Together (engineering.fb.com)
212. Cloudflare outage on November 18, 2025 (blog.cloudflare.com)
213. Introducing webvitals.com: Find out what’s slowing down your site (blog.sentry.io)
214. Fix “This video format is not supported” on YouTube TV (davidwalsh.name)
215. Book early-access discount code (ericlippert.com)
216. Enhancing HDR on Instagram for iOS With Dolby Vision (engineering.fb.com)
217. Sentry has a bold new look (blog.sentry.io)
218. Shaping the future of public sector technology with the new Enterprise Architecture team (technology.blog.gov.uk)
219. Replicate is joining Cloudflare (blog.cloudflare.com)
220. Cleaning up messy dates in JSON (alexwlchan.net)
221. The Dawn of the 10x Team (blog.sentry.io)
222. Support For CIMD For MCP In Visual Studio Code (den.dev)
223. Streaming Digits of Pi (swharden.com)
224. Weekly Update 478 (troyhunt.com)
225. Python in Visual Studio Code – November 2025 Release (devblogs.microsoft.com)
226. Debunking myths about space science with Astro Pi impact evidence (www.raspberrypi.org)
227. Finding the grain of sand in a heap of Salt (blog.cloudflare.com)
228. Operation Endgame 3.0 - 2,046,030 breached accounts (haveibeenpwned.com)
229. Tails 7.2 (tails.net)
230. GPU Observability: Get Deeper Insights into Your Droplets and DOKS Clusters (www.digitalocean.com)
231. Connecting to production: the architecture of remote bindings (blog.cloudflare.com)
232. Weekly Update 477 (troyhunt.com)
233. Teams React to Student Robotics 2026 (studentrobotics.org)
234. Using Sentry Logs to Debug a Dynamic Sampling Issue (blog.sentry.io)
235. Range Syntax for Style Queries (una.im)
236. Clean Up Bloated CQRS Handlers (codeopinion.com)
237. Cyber Security and Resilience Policy Statement to strengthen regulation of critical sectors (www.ncsc.gov.uk)
238. .NET 10 - Release (github.com)
239. Designing for every learner in every classroom (www.raspberrypi.org)
240. October 2025 Baseline monthly digest (web.dev)
241. Cyber Action Toolkit: breaking down the barriers to resilience (www.ncsc.gov.uk)
242. Hire Me in Japan (overreacted.io)
243. A closer look at Python Workflows, now in beta (blog.cloudflare.com)
244. Detecting AV1-encoded videos with Python (alexwlchan.net)
245. TISZA Világ - 198,520 breached accounts (haveibeenpwned.com)
246. Sourcing the stack for local government technology (technology.blog.gov.uk)
247. How I use AI to code (natemcmaster.com)
248. Synthient Credential Stuffing Threat Data - 1,957,476,021 breached accounts (haveibeenpwned.com)
249. Monitor and reduce your mobile app size with Size Analysis (beta) (blog.sentry.io)
250. NCSC to retire Web Check and Mail Check (www.ncsc.gov.uk)
251. 2 Billion Email Addresses Were Exposed, and We Indexed Them All in Have I Been Pwned (troyhunt.com)
252. Not so "mini"-dumps: How we found missing crashes on SteamOS (blog.sentry.io)
253. Supercharging the ML and AI Development Experience at Netflix (netflixtechblog.com)
254. External attack surface management (EASM) buyer's guide (www.ncsc.gov.uk)
255. Leading the Cloud With Curiosity : Spotlight on Pranav Nambiar, SVP, AI/ML & PaaS (www.digitalocean.com)
256. CyberSlop — meet the new threat actor, MIT and Safe Security (doublepulsar.com)
257. Weekly Update 476 (troyhunt.com)
258. Defeating KASLR by Doing Nothing at All (googleprojectzero.blogspot.com)
259. You Need To Become A Full Stack Person (den.dev)
260. Building Better Apps with GitHub Copilot Custom Agents (montemagno.com)
261. I’m writing another book! (ericlippert.com)
262. New to the web platform in October (web.dev)
263. Double Dispatch in DDD (codeopinion.com)
264. How cybercriminals can hijack your contracts (www.namecheap.com)
265. Helping Startups Build Faster with an AI Startup Ecosystem (www.digitalocean.com)
266. Detect fallback positions with anchored container queries from Chrome 143 (una.im)
267. EASM buyer's guide now available (www.ncsc.gov.uk)
268. Springs and Bounces in Native CSS (www.joshwcomeau.com)
269. Why can’t my iPhone play that video? (alexwlchan.net)
270. How We (Almost) Found Chromium's Bug via Crash Reports to Report URI (troyhunt.com)
271. The winners of the Baseline Tooling Hackathon are... (web.dev)
272. MyVidster (2025) - 3,864,364 breached accounts (haveibeenpwned.com)
273. AI Code Review: 30K Bugs Lighter, 50% faster (blog.sentry.io)