News

1. Report URI - outage update (scotthelme.ghost.io)
2. How we’re making GitHub Copilot smarter with fewer tools (github.blog)
3. CodeQL 2.23.5 adds support for Swift 6.2, new Java queries, and improved analysis accuracy (github.blog)
4. Supercharge Your Test Coverage with GitHub Copilot Testing for .NET (devblogs.microsoft.com)
5. How to write a great agents.md: Lessons from over 2,500 repositories (github.blog)
6. Integrity Policy - Monitoring and Enforcing the use of SRI (scotthelme.ghost.io)
7. PowerToys 0.96 is here: endpoints for Advanced Paste, metadata support for PowerRename and more! (devblogs.microsoft.com)
8. What's New in WebGPU (Chrome 143) (developer.chrome.com)
9. Beyond Automation: Securing Low-Code Agentic AI with MCP Guardrails (snyk.io)
10. Anthem Awards 2025: Snyk Learn Recognized for Commitment to Secure AI Development (snyk.io)
11. The metrics product we built worked — But we killed it and started over anyway (blog.sentry.io)
12. GitHub Copilot CLI: New models, enhanced code search, and better image support (github.blog)
13. Level up design-to-code collaboration with GitHub’s open source Annotation Toolkit (github.blog)
14. A step-by-step guide to modernizing .NET applications with GitHub Copilot agent mode (devblogs.microsoft.com)
15. Gemini 3 Pro is in public preview for GitHub Copilot (github.blog)
16. Auto model selection for Copilot in JetBrains IDEs, Xcode, and Eclipse in public preview (github.blog)
17. Enhanced MCP OAuth support for GitHub Copilot in JetBrains, Eclipse, and Xcode (github.blog)
18. Custom agents available in GitHub Copilot for JetBrains, Eclipse, and Xcode now in public preview (github.blog)
19. Unified code-to-cloud artifact risk visibility with Microsoft Defender for Cloud now in public preview (github.blog)
20. Isolated Subagents for JetBrains, Eclipse, and Xcode now in public preview (github.blog)
21. GitHub Copilot Next Edit Suggestions (NES) now in public preview for Xcode and Eclipse (github.blog)
22. GitHub Copilot coding agent for Eclipse now in public preview (github.blog)
23. Efficient Optimization With Ax, an Open Platform for Adaptive Experimentation (engineering.fb.com)
24. Post-Quantum Cryptography in .NET (devblogs.microsoft.com)
25. Code Club Conference 2025: Creativity, community, and collaboration in Cambridge (www.raspberrypi.org)
26. Changes to location permissions in Chrome on Windows (developer.chrome.com)
27. Announcing the Completion of the Core 2Africa System: Building the Future of Connectivity Together (engineering.fb.com)
28. Snyk and Continue Partner to Embed AI-Powered Security into Every Step of the Developer Workflow (snyk.io)
29. Cloudflare outage on November 18, 2025 (blog.cloudflare.com)
30. Introducing webvitals.com: Find out what’s slowing down your site (blog.sentry.io)
31. Fix “This video format is not supported” on YouTube TV (davidwalsh.name)
32. Book early-access discount code (ericlippert.com)
33. Introducing F# 10 (devblogs.microsoft.com)
34. Introducing C# 14 (devblogs.microsoft.com)
35. Highlights from Git 2.52 (github.blog)
36. Enhancing HDR on Instagram for iOS With Dolby Vision (engineering.fb.com)
37. Sentry has a bold new look (blog.sentry.io)
38. The “Most Hated” CSS Feature: asin(), acos(), atan() and atan2() (css-tricks.com)
39. Shaping the future of public sector technology with the new Enterprise Architecture team (technology.blog.gov.uk)
40. Replicate is joining Cloudflare (blog.cloudflare.com)
41. Cleaning up messy dates in JSON (alexwlchan.net)
42. Extending supported hashes in script-src (developer.chrome.com)
43. The Dawn of the 10x Team (blog.sentry.io)
44. Support For CIMD For MCP In Visual Studio Code (den.dev)
45. Streaming Digits of Pi (swharden.com)
46. Weekly Update 478 (troyhunt.com)
47. Open Source Is Good for the Environment (engineering.fb.com)
48. Unlocking the full power of Copilot code review: Master your instructions files (github.blog)
49. Quiet UI Came and Went, Quiet as a Mouse (css-tricks.com)
50. Python in Visual Studio Code – November 2025 Release (devblogs.microsoft.com)
51. GitHub Availability Report: October 2025 (github.blog)
52. TypeScript, Python, and the AI feedback loop changing software development (github.blog)
53. Debunking myths about space science with Astro Pi impact evidence (www.raspberrypi.org)
54. The Range Syntax Has Come to Container Style Queries and if() (css-tricks.com)
55. Finding the grain of sand in a heap of Salt (blog.cloudflare.com)
56. Operation Endgame 3.0 - 2,046,030 breached accounts (haveibeenpwned.com)
57. Automated Package-Publication Incident IndonesianFoods in the NPM Ecosystem Linked to Crypto Reward-Farming Scam (snyk.io)
58. Tails 7.2 (tails.net)
59. GPU Observability: Get Deeper Insights into Your Droplets and DOKS Clusters (www.digitalocean.com)
60. How Copilot helps build the GitHub platform (github.blog)
61. Connecting to production: the architecture of remote bindings (blog.cloudflare.com)
62. Weekly Update 477 (troyhunt.com)
63. Organizations Achieve 288% ROI with The Snyk AI Trust Platform, According to New Forrester TEI Study (snyk.io)
64. Teams React to Student Robotics 2026 (studentrobotics.org)
65. Using Sentry Logs to Debug a Dynamic Sampling Issue (blog.sentry.io)
66. Range Syntax for Style Queries (una.im)
67. Clean Up Bloated CQRS Handlers (codeopinion.com)
68. StyleX: A Styling Library for CSS at Scale (engineering.fb.com)
69. Cyber Security and Resilience Policy Statement to strengthen regulation of critical sectors (www.ncsc.gov.uk)
70. Announcing .NET 10 (devblogs.microsoft.com)
71. .NET and .NET Framework November 2025 servicing releases updates (devblogs.microsoft.com)
72. .NET 10 - Release (github.com)
73. Designing for every learner in every classroom (www.raspberrypi.org)
74. October 2025 Baseline monthly digest (web.dev)
75. Cyber Action Toolkit: breaking down the barriers to resilience (www.ncsc.gov.uk)
76. Hire Me in Japan (overreacted.io)
77. Meta’s Generative Ads Model (GEM): The Central Brain Accelerating Ads Recommendation AI Innovation (engineering.fb.com)
78. Headings: Semantics, Fluidity, and Styling — Oh My! (css-tricks.com)
79. A closer look at Python Workflows, now in beta (blog.cloudflare.com)
80. Detecting AV1-encoded videos with Python (alexwlchan.net)
81. TISZA Világ - 198,520 breached accounts (haveibeenpwned.com)
82. What 986 million code pushes say about the developer workflow in 2025 (github.blog)
83. DIY BYOIP: a new way to Bring Your Own IP prefixes to Cloudflare (blog.cloudflare.com)
84. Sourcing the stack for local government technology (technology.blog.gov.uk)
85. GitHub Copilot CLI 101: How to use GitHub Copilot from the command line (github.blog)
86. Explaining the Accessible Benefits of Using Semantic HTML Elements (css-tricks.com)
87. How AI shapes your feed: An explainable social media simulator for the classroom (www.raspberrypi.org)
88. Async QUIC and HTTP/3 made easy: tokio-quiche is now open-source (blog.cloudflare.com)
89. Extract audio from your videos with Cloudflare Stream (blog.cloudflare.com)
90. How I use AI to code (natemcmaster.com)
91. Synthient Credential Stuffing Threat Data - 1,957,476,021 breached accounts (haveibeenpwned.com)
92. Monitor and reduce your mobile app size with Size Analysis (Early Access) (blog.sentry.io)
93. How Copilot Studio uses .NET and WebAssembly for performance and innovation (devblogs.microsoft.com)
94. How Workers VPC Services connects to your regional private networks from anywhere in the world (blog.cloudflare.com)
95. NCSC to retire Web Check and Mail Check (www.ncsc.gov.uk)
96. Celebrating the UK’s National Engineering Day 2025 (www.raspberrypi.org)
97. Publisher pages: New to the Chrome Web Store (developer.chrome.com)
98. 2 Billion Email Addresses Were Exposed, and We Indexed Them All in Have I Been Pwned (troyhunt.com)
99. Not so "mini"-dumps: How we found missing crashes on SteamOS (blog.sentry.io)
100. Supercharging the ML and AI Development Experience at Netflix (netflixtechblog.com)
101. Video Invisible Watermarking at Scale (engineering.fb.com)
102. Get Ready for .NET Conf 2025! (devblogs.microsoft.com)
103. Building a better testing experience for Workflows, our durable execution engine for multi-step applications (blog.cloudflare.com)
104. Celebrating young tech creators: Coolest Projects 2025 and what’s next in 2026 (www.raspberrypi.org)
105. External attack surface management (EASM) buyer's guide (www.ncsc.gov.uk)
106. Leading the Cloud With Curiosity : Spotlight on Pranav Nambiar, SVP, AI/ML & PaaS (www.digitalocean.com)
107. CyberSlop — meet the new threat actor, MIT and Safe Security (doublepulsar.com)
108. Defeating KASLR by Doing Nothing at All (googleprojectzero.blogspot.com)
109. The “Most Hated” CSS Feature: tan() (css-tricks.com)
110. Fresh insights from old data: corroborating reports of Turkmenistan IP unblocking and firewall testing (blog.cloudflare.com)
111. Weekly Update 476 (troyhunt.com)
112. FedCM updates: Display iframe domain (developer.chrome.com)
113. You Need To Become A Full Stack Person (den.dev)
114. Building Better Apps with GitHub Copilot Custom Agents (montemagno.com)
115. BGP zombies and excessive path hunting (blog.cloudflare.com)
116. Go and enhance your calm: demolishing an HTTP/2 interop problem (blog.cloudflare.com)
117. Beyond IP lists: a registry format for bots and agents (blog.cloudflare.com)
118. I’m writing another book! (ericlippert.com)
119. Anonymous credentials: rate-limiting bots and agents without compromising privacy (blog.cloudflare.com)
120. Policy, privacy and post-quantum: anonymous credentials for everyone (blog.cloudflare.com)
121. What should be included in a data science curriculum for schools? (www.raspberrypi.org)
122. New to the web platform in October (web.dev)
123. Getting Creative With Small Screens (css-tricks.com)
124. Double Dispatch in DDD (codeopinion.com)
125. How cybercriminals can hijack your contracts (www.namecheap.com)
126. Helping Startups Build Faster with an AI Startup Ecosystem (www.digitalocean.com)
127. Measuring characteristics of TCP connections at Internet scale (blog.cloudflare.com)
128. One IP address, many users: detecting CGNAT to reduce collateral effects (blog.cloudflare.com)
129. How to build your own VPN, or: the history of WARP (blog.cloudflare.com)
130. Defending QUIC from acknowledgement-based DDoS attacks (blog.cloudflare.com)
131. Detect fallback positions with anchored container queries from Chrome 143 (developer.chrome.com)
132. Chrome 143 beta (developer.chrome.com)
133. Detect fallback positions with anchored container queries from Chrome 143 (una.im)
134. Introducing Custom Agents for .NET Developers: C# Expert & WinForms Expert (devblogs.microsoft.com)
135. The new home for Blockly (www.raspberrypi.org)
136. EASM buyer's guide now available (www.ncsc.gov.uk)
137. Springs and Bounces in Native CSS (www.joshwcomeau.com)
138. Why can’t my iPhone play that video? (alexwlchan.net)
139. What's new in DevTools, Chrome 142 (developer.chrome.com)
140. New in Chrome 142 (developer.chrome.com)
141. My GSoC journey: Contributing to Chrome Extensions (developer.chrome.com)
142. Pure CSS Tabs With Details, Grid, and Subgrid (css-tricks.com)
143. How We (Almost) Found Chromium's Bug via Crash Reports to Report URI (troyhunt.com)
144. The winners of the Baseline Tooling Hackathon are... (web.dev)
145. MyVidster (2025) - 3,864,364 breached accounts (haveibeenpwned.com)
146. AI Code Review: 30K Bugs Lighter, 50% faster (blog.sentry.io)
147. Post-Training Generative Recommenders with Advantage-Weighted Supervised Finetuning (netflixtechblog.com)
148. Weekly Update 475 (troyhunt.com)
149. Tackling credential theft as a small business (www.namecheap.com)
150. Play, pedagogy, and real-world impact: What we learned from the AI Quests webinars (www.raspberrypi.org)
151. CSS Animations That Leverage the Parent-Child Relationship (css-tricks.com)
152. Image and audio models from fal now available on DigitalOcean (www.digitalocean.com)
153. Microsoft builds on Recall with Gaming Copilot — fails basic privacy tests (doublepulsar.com)
154. Scaling Privacy Infrastructure for GenAI Product Innovation (engineering.fb.com)
155. An Introduction to JavaScript Expressions (css-tricks.com)
156. OAuth App Based Workload Identity for Droplets (www.digitalocean.com)
157. Authorization: Domain or Application Layer? (codeopinion.com)
158. Patch management is essential to securing your supply chain (www.namecheap.com)
159. Doing my own syntax highlighting (finally) (alexwlchan.net)
160. SR2026 Issue 01 (studentrobotics.org)
161. Inside the Synthient Threat Data (troyhunt.com)
162. Synthient Stealer Log Threat Data - 182,962,095 breached accounts (haveibeenpwned.com)
163. Cyber security is business survival (www.ncsc.gov.uk)
164. Behind the Streams: Real-Time Recommendations for Live Events Part 3 (netflixtechblog.com)
165. How to Fix Any Bug (overreacted.io)
166. Building a Honeypot Field That Works (css-tricks.com)
167. Disaggregated Scheduled Fabric: Scaling Meta’s AI Journey (engineering.fb.com)
168. Experience AI receives global recognition from UNESCO (www.raspberrypi.org)
169. Weekly Update 474 (troyhunt.com)
170. URLPattern is now Baseline Newly available (web.dev)
171. Unreal Engine crash reporting now available on gaming consoles with trace-connected logs (blog.sentry.io)
172. How and Why Netflix Built a Real-Time Distributed Graph: Part 1 — Ingesting and Processing Data… (netflixtechblog.com)
173. The engineer of the future: AI in digital and data (technology.blog.gov.uk)
174. Same-document view transitions have become Baseline Newly available (web.dev)
175. Prosper - 17,605,276 breached accounts (haveibeenpwned.com)
176. PowerToys 0.95 is here: new Light Switch utility, faster Command Palette, and Peek with Spacebar (devblogs.microsoft.com)
177. Sequential linear() Animation With N Elements (css-tricks.com)
178. Hello Cake - 22,907 breached accounts (haveibeenpwned.com)
179. Free the internet (tails.net)
180. .NET 10 Release Candidate 2 (github.com)
181. CVE-2025-49844 - The Redis CVSS 10.0 vulnerability and how we responded (scotthelme.ghost.io)
182. There's a hole in my bucket (www.ncsc.gov.uk)
183. Tails 7.1 (tails.net)
184. Maintaining a sustainable strengthened cyber security posture (www.ncsc.gov.uk)
185. Phishing attacks: defending your organisation (www.ncsc.gov.uk)
186. Masonry: Watching a CSS Feature Evolve (css-tricks.com)
187. I ran a Half Marathon (theorangeone.net)
188. Weekly Update 473 (troyhunt.com)
189. What's The Deal With GitHub Spec Kit (den.dev)
190. Vietnam Airlines - 7,316,915 breached accounts (haveibeenpwned.com)
191. Why it took 4 years to get a lock files specification (snarky.ca)
192. Python in Visual Studio Code – October 2025 Release (devblogs.microsoft.com)
193. We Completely Missed width/height: stretch (css-tricks.com)
194. Is DigitalOcean Your Next Career Spot? A 5-Year Insider on Why It Should Be (www.digitalocean.com)
195. Court Injunctions are the Thoughts and Prayers of Data Breach Response (troyhunt.com)
196. Improving browser tracing step by step (blog.sentry.io)
197. The thing about contrast-color (css-tricks.com)
198. Getting your organisation ready for Windows 11 upgrade before Autumn 2025 (www.ncsc.gov.uk)
199. Strengthening national cyber resilience through observability and threat hunting (www.ncsc.gov.uk)
200. Vibe Coding: Closing The Feedback Loop With Traceability (blog.sentry.io)
201. Your API Errors Suck (Here’s How to Fix Them) (codeopinion.com)
202. Announcing GPU Droplets accelerated by NVIDIA HGX H100 in the EU (www.digitalocean.com)
203. RFC 9794: a new standard for post-quantum terminology (www.ncsc.gov.uk)
204. Creating a personal wrapper around yt-dlp (alexwlchan.net)
205. Adpost - 3,339,512 breached accounts (haveibeenpwned.com)
206. Introducing the DigitalOcean AI Ecosystem (www.digitalocean.com)
207. Red Hat Consulting breach puts over 5000 high profile enterprise customers at risk — in detail (doublepulsar.com)
208. Weekly Update 472 (troyhunt.com)
209. Artists&Clients - 95,351 breached accounts (haveibeenpwned.com)
210. HomeRefill - 187,457 breached accounts (haveibeenpwned.com)
211. Latest Pilot Jobs - 118,864 breached accounts (haveibeenpwned.com)
212. Announcing cost-efficient storage with Network file storage, cold storage, and usage-based backups (www.digitalocean.com)
213. Announcing per-sec billing, new Droplet plans, BYOIP, and NAT gateway preview to reduce scaling costs (www.digitalocean.com)
214. Introducing DigitalOcean Organizations, a new and comprehensive account layer (www.digitalocean.com)
215. Storage that thinks for itself: Introducing Storage autoscaling, the newest feature for Managed Databases (www.digitalocean.com)
216. Build Smarter Agents with Image Generation, Auto-Indexing, VPC Security, and new AI Tools on DigitalOcean Gradient™ AI Platform (www.digitalocean.com)
217. Where It's at:// (overreacted.io)
218. 5 Ways I Use Background Coding Agents Every Day (montemagno.com)
219. Moving your business from the physical to the digital (www.ncsc.gov.uk)
220. September 2025 Baseline monthly digest (web.dev)
221. New to the web platform in September (web.dev)
222. Putting staff welfare at the heart of incident response (www.ncsc.gov.uk)
223. Meet Sentry’s 2025 summer interns (blog.sentry.io)
224. 100X Faster: How We Supercharged Netflix Maestro’s Workflow Engine (netflixtechblog.com)
225. Capture JavaScript Integrity Metadata using CSP! (scotthelme.ghost.io)
226. Understanding your OT environment: the first step to stronger cyber security (www.ncsc.gov.uk)
227. Hacktoberfest 2025: How to Participate (www.digitalocean.com)
228. Welcoming CERN to Have I Been Pwned (troyhunt.com)
229. Spelungit: When `git log –grep` isn’t enough (haacked.com)
230. Weekly Update 471 (troyhunt.com)
231. Announcing Hotkey Typer — type long prompts with a hotkey (montemagno.com)
232. Building a Resilient Data Platform with Write-Ahead Log at Netflix (netflixtechblog.com)
233. Pointer leaks through pointer-keyed data structures (googleprojectzero.blogspot.com)
234. Early Years practitioners: using cyber security to protect your settings (www.ncsc.gov.uk)
235. Simplifying Resource Management in mssql-python through Context Manager (devblogs.microsoft.com)
236. Open Social (overreacted.io)
237. Session Replay: Becoming your own digital secret shopper (blog.sentry.io)
238. Cultura - 1,462,025 breached accounts (haveibeenpwned.com)
239. CRUD-Sourcing is why Your Event Streams Are Bloated (codeopinion.com)
240. Reasonable Expectations for Cybersecurity Mentees (tisiphone.net)
241. Bouygues Telecom - 5,685,771 breached accounts (haveibeenpwned.com)
242. HIBP Demo: Querying the API, and the Free Test Key! (troyhunt.com)
243. Sentry AI code review, now in beta: break production less (blog.sentry.io)
244. Scaling Muse: How Netflix Powers Data-Driven Creative Insights at Trillion-Row Scale (netflixtechblog.com)
245. Build faster, debug smarter, and make AI safer with new DigitalOcean Gradient™ AI Platform features (www.digitalocean.com)
246. The Big Gotcha With @starting-style (www.joshwcomeau.com)
247. Inside Sentry’s Hackweek: An excuse to break things (blog.sentry.io)
248. Weekly Update 470 (troyhunt.com)
249. Animeify - 808,034 breached accounts (haveibeenpwned.com)