News

  1. KubeCon NA 2025 CTF Writeup (skybound.link)
  2. Copilot code review and coding agent now support agent-specific instructions (github.blog)
  3. Secret scanning improves private key detection, updates Sentry pattern names (github.blog)
  4. How Copilot helps build the GitHub platform (github.blog)
  5. Connecting to production: the architecture of remote bindings (blog.cloudflare.com)
  6. Weekly Update 477 (troyhunt.com)
  7. Organizations Achieve 288% ROI with The Snyk AI Trust Platform, According to New Forrester TEI Study (snyk.io)
  8. Using Sentry Logs to Debug a Dynamic Sampling Issue (blog.sentry.io)
  9. Clean Up Bloated CQRS Handlers (codeopinion.com)
  10. Auto model selection for Copilot in Visual Studio in public preview (github.blog)
  11. StyleX: A Styling Library for CSS at Scale (engineering.fb.com)
  12. Cyber Security and Resilience Policy Statement to strengthen regulation of critical sectors (www.ncsc.gov.uk)
  13. Announcing .NET 10 (devblogs.microsoft.com)
  14. .NET and .NET Framework November 2025 servicing releases updates (devblogs.microsoft.com)
  15. .NET 10 - Release (github.com)
  16. Designing for every learner in every classroom (www.raspberrypi.org)
  17. Cyber Action Toolkit: breaking down the barriers to resilience (www.ncsc.gov.uk)
  18. Secure by Design: The Future of Threat Modeling for AI-Native Applications (snyk.io)
  19. Hire Me in Japan (overreacted.io)
  20. Claude Sonnet 3.5 deprecated, Claude Haiku 4.5 available in Copilot Free (github.blog)
  21. GitHub Enterprise Cloud with data residency now supports Visual Studio subscriptions (github.blog)
  22. Meta’s Generative Ads Model (GEM): The Central Brain Accelerating Ads Recommendation AI Innovation (engineering.fb.com)
  23. Raptor mini is rolling out in public preview for GitHub Copilot (github.blog)
  24. Headings: Semantics, Fluidity, and Styling — Oh My! (css-tricks.com)
  25. A closer look at Python Workflows, now in beta (blog.cloudflare.com)
  26. The Agentic OODA Loop: How AI and Humans Learn to Defend Together (snyk.io)
  27. Detecting AV1-encoded videos with Python (alexwlchan.net)
  28. TISZA Világ - 198,520 breached accounts (haveibeenpwned.com)
  29. Removing notifications for @mentions in commit messages (github.blog)
  30. Actions pull_request_target and environment branch protections changes (github.blog)
  31. What 986 million code pushes say about the developer workflow in 2025 (github.blog)
  32. DIY BYOIP: a new way to Bring Your Own IP prefixes to Cloudflare (blog.cloudflare.com)
  33. Sourcing the stack for local government technology (technology.blog.gov.uk)
  34. GraphQL Explorer removal from API documentation on November 7, 2025 (github.blog)
  35. Pull request “Files changed” public preview and merge experience – November 6 updates (github.blog)
  36. GitHub Copilot CLI 101: How to use GitHub Copilot from the command line (github.blog)
  37. TypeScript’s rise in the AI era: Insights from Lead Architect, Anders Hejlsberg (github.blog)
  38. Explaining the Accessible Benefits of Using Semantic HTML Elements (css-tricks.com)
  39. How AI shapes your feed: An explainable social media simulator for the classroom (www.raspberrypi.org)
  40. Async QUIC and HTTP/3 made easy: tokio-quiche is now open-source (blog.cloudflare.com)
  41. Extract audio from your videos with Cloudflare Stream (blog.cloudflare.com)
  42. How I use AI to code (natemcmaster.com)
  43. Synthient Credential Stuffing Threat Data - 1,957,476,021 breached accounts (haveibeenpwned.com)
  44. Monitor and reduce your mobile app size with Size Analysis (Early Access) (blog.sentry.io)
  45. How Copilot Studio uses .NET and WebAssembly for performance and innovation (devblogs.microsoft.com)
  46. GitHub Copilot tutorial: How to build, test, review, and ship code faster (with real prompts) (github.blog)
  47. How Workers VPC Services connects to your regional private networks from anywhere in the world (blog.cloudflare.com)
  48. NCSC to retire Web Check and Mail Check (www.ncsc.gov.uk)
  49. Celebrating the UK’s National Engineering Day 2025 (www.raspberrypi.org)
  50. Publisher pages: New to the Chrome Web Store (developer.chrome.com)
  51. 2 Billion Email Addresses Were Exposed, and We Indexed Them All in Have I Been Pwned (troyhunt.com)
  52. Snyk Studio brings security scanning and automated fixes to Factory's Droids (snyk.io)
  53. Not so "mini"-dumps: How we found missing crashes on SteamOS (blog.sentry.io)
  54. Supercharging the ML and AI Development Experience at Netflix (netflixtechblog.com)
  55. Video Invisible Watermarking at Scale (engineering.fb.com)
  56. Get Ready for .NET Conf 2025! (devblogs.microsoft.com)
  57. Building a better testing experience for Workflows, our durable execution engine for multi-step applications (blog.cloudflare.com)
  58. Celebrating young tech creators: Coolest Projects 2025 and what’s next in 2026 (www.raspberrypi.org)
  59. External attack surface management (EASM) buyer's guide (www.ncsc.gov.uk)
  60. Beyond the Scan: The Future of Snyk Container (snyk.io)
  61. Leading the Cloud With Curiosity : Spotlight on Pranav Nambiar, SVP, AI/ML & PaaS (www.digitalocean.com)
  62. CyberSlop — meet the new threat actor, MIT and Safe Security (doublepulsar.com)
  63. Defeating KASLR by Doing Nothing at All (googleprojectzero.blogspot.com)
  64. The “Most Hated” CSS Feature: tan() (css-tricks.com)
  65. Fresh insights from old data: corroborating reports of Turkmenistan IP unblocking and firewall testing (blog.cloudflare.com)
  66. Weekly Update 476 (troyhunt.com)
  67. FedCM updates: Display iframe domain (developer.chrome.com)
  68. You Need To Become A Full Stack Person (den.dev)
  69. Building Better Apps with GitHub Copilot Custom Agents (montemagno.com)
  70. GitHub Game Off 2025 theme announcement (github.blog)
  71. BGP zombies and excessive path hunting (blog.cloudflare.com)
  72. Go and enhance your calm: demolishing an HTTP/2 interop problem (blog.cloudflare.com)
  73. Beyond IP lists: a registry format for bots and agents (blog.cloudflare.com)
  74. Measuring what matters: How offline evaluation of GitHub MCP Server works (github.blog)
  75. Wiz Cloud Security Championship September 2025 (skybound.link)
  76. I’m writing another book! (ericlippert.com)
  77. Anonymous credentials: rate-limiting bots and agents without compromising privacy (blog.cloudflare.com)
  78. Policy, privacy and post-quantum: anonymous credentials for everyone (blog.cloudflare.com)
  79. What should be included in a data science curriculum for schools? (www.raspberrypi.org)
  80. Getting Creative With Small Screens (css-tricks.com)
  81. Double Dispatch in DDD (codeopinion.com)
  82. How cybercriminals can hijack your contracts (www.namecheap.com)
  83. Helping Startups Build Faster with an AI Startup Ecosystem (www.digitalocean.com)
  84. Measuring characteristics of TCP connections at Internet scale (blog.cloudflare.com)
  85. One IP address, many users: detecting CGNAT to reduce collateral effects (blog.cloudflare.com)
  86. How to build your own VPN, or: the history of WARP (blog.cloudflare.com)
  87. Defending QUIC from acknowledgement-based DDoS attacks (blog.cloudflare.com)
  88. So long, and thanks for all the fish: how to escape the Linux networking stack (blog.cloudflare.com)
  89. Helping protect the 2025 Moldova elections (blog.cloudflare.com)
  90. Chrome 143 beta (developer.chrome.com)
  91. Detect fallback positions with anchored container queries from Chrome 143 (developer.chrome.com)
  92. Introducing Custom Agents for .NET Developers: C# Expert & WinForms Expert (devblogs.microsoft.com)
  93. The new home for Blockly (www.raspberrypi.org)
  94. Introducing Agent HQ: Any agent, any way you work (github.blog)
  95. Octoverse: A new developer joins GitHub every second as AI leads TypeScript to #1 (github.blog)
  96. Announcing the 2025 GitHub Partner Award winners 🎉 (github.blog)
  97. EASM buyer's guide now available (www.ncsc.gov.uk)
  98. State of the post-quantum Internet in 2025 (blog.cloudflare.com)
  99. Springs and Bounces in Native CSS (www.joshwcomeau.com)
  100. Why can’t my iPhone play that video? (alexwlchan.net)
  101. What's new in DevTools, Chrome 142 (developer.chrome.com)
  102. New in Chrome 142 (developer.chrome.com)
  103. My GSoC journey: Contributing to Chrome Extensions (developer.chrome.com)
  104. Wiz Cloud Security Championship August 2025 (skybound.link)
  105. Pure CSS Tabs With Details, Grid, and Subgrid (css-tricks.com)
  106. How We (Almost) Found Chromium's Bug via Crash Reports to Report URI (troyhunt.com)
  107. MyVidster (2025) - 3,864,364 breached accounts (haveibeenpwned.com)
  108. AI Code Review: 30K Bugs Lighter, 50% faster (blog.sentry.io)
  109. Post-Training Generative Recommenders with Advantage-Weighted Supervised Finetuning (netflixtechblog.com)
  110. Weekly Update 475 (troyhunt.com)
  111. Tackling credential theft as a small business (www.namecheap.com)
  112. Play, pedagogy, and real-world impact: What we learned from the AI Quests webinars (www.raspberrypi.org)
  113. CSS Animations That Leverage the Parent-Child Relationship (css-tricks.com)
  114. Announcing Sponsorship on NuGet.org (devblogs.microsoft.com)
  115. Upgrading to Microsoft Agent Framework in Your .NET AI Chat App (devblogs.microsoft.com)
  116. Image and audio models from fal now available on DigitalOcean (www.digitalocean.com)
  117. Microsoft builds on Recall with Gaming Copilot — fails basic privacy tests (doublepulsar.com)
  118. Scaling Privacy Infrastructure for GenAI Product Innovation (engineering.fb.com)
  119. An Introduction to JavaScript Expressions (css-tricks.com)
  120. OAuth App Based Workload Identity for Droplets (www.digitalocean.com)
  121. Authorization: Domain or Application Layer? (codeopinion.com)
  122. Patch management is essential to securing your supply chain (www.namecheap.com)
  123. Doing my own syntax highlighting (finally) (alexwlchan.net)
  124. Device Bound Session Credentials: Second origin trial begins (developer.chrome.com)
  125. Deprecating live editing of JavaScript sources in Chrome DevTools (developer.chrome.com)
  126. What's New in WebGPU (Chrome 142) (developer.chrome.com)
  127. SR2026 Issue 01 (studentrobotics.org)
  128. Inside the Synthient Threat Data (troyhunt.com)
  129. Synthient Stealer Log Threat Data - 182,962,095 breached accounts (haveibeenpwned.com)
  130. Cyber security is business survival (www.ncsc.gov.uk)
  131. Behind the Streams: Real-Time Recommendations for Live Events Part 3 (netflixtechblog.com)
  132. How to Fix Any Bug (overreacted.io)
  133. Building a Honeypot Field That Works (css-tricks.com)
  134. Disaggregated Scheduled Fabric: Scaling Meta’s AI Journey (engineering.fb.com)
  135. Experience AI receives global recognition from UNESCO (www.raspberrypi.org)
  136. Weekly Update 474 (troyhunt.com)
  137. URLPattern is now Baseline Newly available (web.dev)
  138. Unreal Engine crash reporting now available on gaming consoles with trace-connected logs (blog.sentry.io)
  139. How and Why Netflix Built a Real-Time Distributed Graph: Part 1 — Ingesting and Processing Data… (netflixtechblog.com)
  140. Scaling LLM Inference: Innovations in Tensor Parallelism, Context Parallelism, and Expert Parallelism (engineering.fb.com)
  141. Branching in a Sapling Monorepo (engineering.fb.com)
  142. 10X Backbone: How Meta Is Scaling Backbone Connectivity for AI (engineering.fb.com)
  143. Celebrating creativity at Coolest Projects Sri Lanka 2025 (www.raspberrypi.org)
  144. The engineer of the future: AI in digital and data (technology.blog.gov.uk)
  145. Same-document view transitions have become Baseline Newly available (web.dev)
  146. Prosper - 17,605,276 breached accounts (haveibeenpwned.com)
  147. PowerToys 0.95 is here: new Light Switch utility, faster Command Palette, and Peek with Spacebar (devblogs.microsoft.com)
  148. Sequential linear() Animation With N Elements (css-tricks.com)
  149. Hello Cake - 22,907 breached accounts (haveibeenpwned.com)
  150. Free the internet (tails.net)
  151. .NET 10 Release Candidate 2 (github.com)
  152. .NET and .NET Framework October 2025 servicing releases updates (devblogs.microsoft.com)
  153. Announcing .NET 10 Release Candidate 2 (devblogs.microsoft.com)
  154. Design for Sustainability: New Design Principles for Reducing IT Hardware Emissions (engineering.fb.com)
  155. Announcing the .NET Security Group (devblogs.microsoft.com)
  156. CVE-2025-49844 - The Redis CVSS 10.0 vulnerability and how we responded (scotthelme.ghost.io)
  157. There's a hole in my bucket (www.ncsc.gov.uk)
  158. Tails 7.1 (tails.net)
  159. Maintaining a sustainable strengthened cyber security posture (www.ncsc.gov.uk)
  160. Phishing attacks: defending your organisation (www.ncsc.gov.uk)
  161. Hello World #28 out now: Teaching programming (www.raspberrypi.org)
  162. Masonry: Watching a CSS Feature Evolve (css-tricks.com)
  163. I ran a Half Marathon (theorangeone.net)
  164. Weekly Update 473 (troyhunt.com)
  165. What's The Deal With GitHub Spec Kit (den.dev)
  166. Vietnam Airlines - 7,316,915 breached accounts (haveibeenpwned.com)
  167. Why it took 4 years to get a lock files specification (snarky.ca)
  168. Python in Visual Studio Code – October 2025 Release (devblogs.microsoft.com)
  169. We Completely Missed width/height: stretch (css-tricks.com)
  170. Is DigitalOcean Your Next Career Spot? A 5-Year Insider on Why It Should Be (www.digitalocean.com)
  171. Court Injunctions are the Thoughts and Prayers of Data Breach Response (troyhunt.com)
  172. Improving browser tracing step by step (blog.sentry.io)
  173. The thing about contrast-color (css-tricks.com)
  174. Getting your organisation ready for Windows 11 upgrade before Autumn 2025 (www.ncsc.gov.uk)
  175. Strengthening national cyber resilience through observability and threat hunting (www.ncsc.gov.uk)
  176. Vibe Coding: Closing The Feedback Loop With Traceability (blog.sentry.io)
  177. Your API Errors Suck (Here’s How to Fix Them) (codeopinion.com)
  178. Announcing GPU Droplets accelerated by NVIDIA HGX H100 in the EU (www.digitalocean.com)
  179. RFC 9794: a new standard for post-quantum terminology (www.ncsc.gov.uk)
  180. Creating a personal wrapper around yt-dlp (alexwlchan.net)
  181. Adpost - 3,339,512 breached accounts (haveibeenpwned.com)
  182. Ten Years of Community Support (letsencrypt.org)
  183. Introducing the DigitalOcean AI Ecosystem (www.digitalocean.com)
  184. Red Hat Consulting breach puts over 5000 high profile enterprise customers at risk — in detail (doublepulsar.com)
  185. Getting Creative With shape-outside (css-tricks.com)
  186. Weekly Update 472 (troyhunt.com)
  187. Artists&Clients - 95,351 breached accounts (haveibeenpwned.com)
  188. HomeRefill - 187,457 breached accounts (haveibeenpwned.com)
  189. Latest Pilot Jobs - 118,864 breached accounts (haveibeenpwned.com)
  190. Announcing cost-efficient storage with Network file storage, cold storage, and usage-based backups (www.digitalocean.com)
  191. Announcing per-sec billing, new Droplet plans, BYOIP, and NAT gateway preview to reduce scaling costs (www.digitalocean.com)
  192. Storage that thinks for itself: Introducing Storage autoscaling, the newest feature for Managed Databases (www.digitalocean.com)
  193. Introducing DigitalOcean Organizations, a new and comprehensive account layer (www.digitalocean.com)
  194. Build Smarter Agents with Image Generation, Auto-Indexing, VPC Security, and new AI Tools on DigitalOcean Gradient™ AI Platform (www.digitalocean.com)
  195. Where It's at:// (overreacted.io)
  196. 5 Ways I Use Background Coding Agents Every Day (montemagno.com)
  197. Moving your business from the physical to the digital (www.ncsc.gov.uk)
  198. Same Idea, Different Paint Brush (css-tricks.com)
  199. New to the web platform in September (web.dev)
  200. September 2025 Baseline monthly digest (web.dev)
  201. Putting staff welfare at the heart of incident response (www.ncsc.gov.uk)
  202. Meet Sentry’s 2025 summer interns (blog.sentry.io)
  203. 100X Faster: How We Supercharged Netflix Maestro’s Workflow Engine (netflixtechblog.com)
  204. Touring New CSS Features in Safari 26 (css-tricks.com)
  205. Capture JavaScript Integrity Metadata using CSP! (scotthelme.ghost.io)
  206. Understanding your OT environment: the first step to stronger cyber security (www.ncsc.gov.uk)
  207. Hacktoberfest 2025: How to Participate (www.digitalocean.com)
  208. Welcoming CERN to Have I Been Pwned (troyhunt.com)
  209. Spelungit: When `git log –grep` isn’t enough (haacked.com)
  210. Weekly Update 471 (troyhunt.com)
  211. Announcing Hotkey Typer — type long prompts with a hotkey (montemagno.com)
  212. Building a Resilient Data Platform with Write-Ahead Log at Netflix (netflixtechblog.com)
  213. Pointer leaks through pointer-keyed data structures (googleprojectzero.blogspot.com)
  214. Early Years practitioners: using cyber security to protect your settings (www.ncsc.gov.uk)
  215. Simplifying Resource Management in mssql-python through Context Manager (devblogs.microsoft.com)
  216. Open Social (overreacted.io)
  217. Cultura - 1,462,025 breached accounts (haveibeenpwned.com)
  218. Session Replay: Becoming your own digital secret shopper (blog.sentry.io)
  219. CRUD-Sourcing is why Your Event Streams Are Bloated (codeopinion.com)
  220. Reasonable Expectations for Cybersecurity Mentees (tisiphone.net)
  221. Bouygues Telecom - 5,685,771 breached accounts (haveibeenpwned.com)
  222. HIBP Demo: Querying the API, and the Free Test Key! (troyhunt.com)
  223. Sentry AI code review, now in beta: break production less (blog.sentry.io)
  224. Scaling Muse: How Netflix Powers Data-Driven Creative Insights at Trillion-Row Scale (netflixtechblog.com)
  225. Build faster, debug smarter, and make AI safer with new DigitalOcean Gradient™ AI Platform features (www.digitalocean.com)
  226. The Big Gotcha With @starting-style (www.joshwcomeau.com)
  227. Inside Sentry’s Hackweek: An excuse to break things (blog.sentry.io)
  228. Weekly Update 470 (troyhunt.com)
  229. Animeify - 808,034 breached accounts (haveibeenpwned.com)
  230. Halt and Catch Fire: Forcefully Stopping Python (theorangeone.net)
  231. Empowering Netflix Engineers with Incident Management (netflixtechblog.com)
  232. Hacktoberfest 2025: Celebrate All Things Open Source! (www.digitalocean.com)
  233. The cyber risks of automated delivery (www.namecheap.com)
  234. Have I Been Pwned Demos Are Now Live! (troyhunt.com)
  235. I turned error messages into a sales machine (by accident) (blog.sentry.io)
  236. Opening all the files that have been modified in a Git branch (alexwlchan.net)
  237. FreeOnes - 960,213 breached accounts (haveibeenpwned.com)
  238. Tails 7.0 (tails.net)
  239. django.tasks exists (theorangeone.net)
  240. Browserslist now supports Baseline (web.dev)
  241. Miljödata - 870,108 breached accounts (haveibeenpwned.com)
  242. Frontend JavaScript performance testing: A comprehensive guide (blog.sentry.io)
  243. ACME Renewal Information (ARI) Published as RFC 9773 (letsencrypt.org)
  244. The Elephant in The Biz: outsourcing of critical IT and cybersecurity functions risks UK economic… (doublepulsar.com)
  245. Regex for Email Validation? Think Again! (codeopinion.com)
  246. Python in Visual Studio Code – September 2025 Release (devblogs.microsoft.com)
  247. A (Nearly) Branchless RESP Request Parser (kevinmontrose.com)
  248. Linking to text fragments with a bookmarklet (alexwlchan.net)