News

1. A More Powerful, Code-First Knowledge Base Experience on the DigitalOcean Gradient™ AI Platform (www.digitalocean.com)
2. GPT-5.2 is now generally available in GitHub Copilot (github.blog)
3. Introducing DigitalOcean Gradient™ AI Agent Development Kit: A code-first way to build production-ready AI agents (www.digitalocean.com)
4. GPT-5.1-Codex-Max is now generally available in GitHub Copilot (github.blog)
5. A Year of Innovation: DigitalOcean Managed Databases in 2025 (www.digitalocean.com)
6. GPT-5.1 and GPT-5.1-Codex are now generally available in GitHub Copilot (github.blog)
7. Home working: preparing your organisation and staff (www.ncsc.gov.uk)
8. Copilot code review now available for organization members without a license (github.blog)
9. Responsive List of Avatars Using Modern CSS (Part 2) (css-tricks.com)
10. Dynamic Copilot prompts on GitHub Docs (github.blog)
11. Data breaches: guidance for individuals and families (www.ncsc.gov.uk)
12. Gemini 3 Flash is now in public preview for GitHub Copilot (github.blog)
13. Sextortion emails: how to protect yourself (www.ncsc.gov.uk)
14. How We Built Meta Ray-Ban Display: From Zero to Polish (engineering.fb.com)
15. Astro Pi is 10: A decade of your code in space  (www.raspberrypi.org)
16. The palm tree that led to Palmyra (alexwlchan.net)
17. Directional CSS with scroll-state(scrolled) (una.im)
18. Weekly Update 482 (troyhunt.com)
19. Why “Microservices” Debates Miss the Point (codeopinion.com)
20. Introducing the Custom Date Range Billing View (www.digitalocean.com)
21. Enterprise governance and policy improvements for secret scanning (github.blog)
22. C++ code editing tools for GitHub Copilot in public preview (github.blog)
23. Microsoft.Testing.Platform Now Fully Supported in Azure DevOps (devblogs.microsoft.com)
24. What’s !important #1: Advent Calendars, CSS Wrapped, Web Platform Updates, and More (css-tricks.com)
25. Conda ecosystem support for Dependabot version updates now generally available (github.blog)
26. Dependabot version updates now support Julia (github.blog)
27. 2025 highlights from the Raspberry Pi Computing Education Research Centre (www.raspberrypi.org)
28. Welcome to the new Project Zero Blog (googleprojectzero.blogspot.com)
29. Thinking Outside The Box [dusted off draft from 2017] (googleprojectzero.blogspot.com)
30. Drawing good architecture diagrams (www.ncsc.gov.uk)
31. Windows Exploitation Techniques: Winning Race Conditions with Path Lookups (googleprojectzero.blogspot.com)
32. New to the web platform in December (web.dev)
33. Old AI Security vs Evo: Watch Agentic Security Replace Weeks of Manual Work (snyk.io)
34. Cocoa SDK 9.0.0 has landed (blog.sentry.io)
35. How Temporal Powers Reliable Cloud Operations at Netflix (netflixtechblog.com)
36. Leveling Up Kubernetes: Key DigitalOcean Managed Kubernetes Releases in 2025 (www.digitalocean.com)
37. How to Build iOS Widgets with .NET MAUI (devblogs.microsoft.com)
38. Toon Title Text Generator (css-tricks.com)
39. Powering the Next Leap in AI: GPU Droplets accelerated by NVIDIA HGX™ B300 are coming soon to DigitalOcean (www.digitalocean.com)
40. Netflix Live Origin (netflixtechblog.com)
41. How AI Is Transforming the Adoption of Secure-by-Default Mobile Frameworks (engineering.fb.com)
42. Responsive List of Avatars Using Modern CSS (Part 1) (css-tricks.com)
43. Report URI Penetration Test 2025 (scotthelme.ghost.io)
44. From learners to leaders: Jayantika and Ruturaj’s journey as Code Club youth mentors (www.raspberrypi.org)
45. The 2025 Cloudflare Radar Year in Review: The rise of AI, post-quantum, and record-breaking DDoS attacks (blog.cloudflare.com)
46. ChatGPT's rivals, Kwai's quiet rise: the top Internet services of 2025 (blog.cloudflare.com)
47. Mitigating malware and ransomware attacks (www.ncsc.gov.uk)
48. Cyber deception trials: what we’ve learned so far (www.ncsc.gov.uk)
49. Why I returned my Proton subscription (theorangeone.net)
50. Wrapping Up 2025 - The Year Of MCP (den.dev)
51. Processing 630 Million More Pwned Passwords, Courtesy of the FBI (troyhunt.com)
52. The future of AI-powered software optimization (and how it can help your team) (github.blog)
53. Throttle individual network requests (developer.chrome.com)
54. What Else Could Container Queries… Query? (css-tricks.com)
55. Secondary school maths showing that AI systems don’t think (www.raspberrypi.org)
56. Meeting my younger self (alexwlchan.net)
57. A look at an Android ITW DNG exploit (googleprojectzero.blogspot.com)
58. CSS scroll-triggered animations are coming! (developer.chrome.com)
59. Let’s talk about GitHub Actions (github.blog)
60. React2Shell and related RSC vulnerabilities threat brief: early exploitation activity and threat actor techniques (blog.cloudflare.com)
61. GitHub Availability Report: November 2025 (github.blog)
62. Celebrating the community: Irioluwa, Michelle, Jedidiah and Inioluwa (www.raspberrypi.org)
63. Vote for the web features you want to see (web.dev)
64. Let your Coding Agent debug your browser session with Chrome DevTools MCP (developer.chrome.com)
65. A better way to monitor your AI agents in .NET apps (blog.sentry.io)
66. Tails 7.3.1 (tails.net)
67. Creating Scroll-Based Animations in Full view() (css-tricks.com)
68. Hard problems in social media archiving (alexwlchan.net)
69. MCP joins the Linux Foundation: What this means for developers building the next era of AI tools and agents (github.blog)
70. Now Available: Remote MCP for DigitalOcean Services (www.digitalocean.com)
71. .NET and .NET Framework December 2025 servicing releases updates (devblogs.microsoft.com)
72. Implementing Cross-Platform In-App Billing in .NET MAUI Applications (devblogs.microsoft.com)
73. Speed is nothing without control: How to keep quality high in the AI era (github.blog)
74. CSS Wrapped 2025 (css-tricks.com)
75. Fit width text in 1 line of CSS (css-tricks.com)
76. November 2025 Baseline monthly digest (web.dev)
77. Signal API for passkeys available on Chrome for Android (developer.chrome.com)
78. Shifting left at enterprise scale: how we manage Cloudflare with Infrastructure as Code (blog.cloudflare.com)
79. How Snyk Helps Federal Agencies Prepare for the Genesis Mission Era of AI-Driven Science (snyk.io)
80. Microsoft Learn MCP Server Elevates Development (devblogs.microsoft.com)
81. Aggregates in DDD: Model Rules, Not Relationships (codeopinion.com)
82. The new identity of a developer: What changes and what doesn’t in the AI era (github.blog)
83. .NET 10 Networking Improvements (devblogs.microsoft.com)
84. Shopping and paying safely online (www.ncsc.gov.uk)
85. How to recover an infected device (www.ncsc.gov.uk)
86. From User to Trusted Advisor: How Jeff Fan Powers Customer Success at DigitalOcean (www.digitalocean.com)
87. Recovering a hacked account (www.ncsc.gov.uk)
88. Early Years practitioners: using cyber security to protect your settings (www.ncsc.gov.uk)
89. How to spot scammers claiming to be from the NCSC (www.ncsc.gov.uk)
90. That Time I Tried Explaining HTML and CSS to My 5-Year Old Niece (css-tricks.com)
91. The Architecture Decision Record (ADR) Framework: making better technology decisions across the public sector (technology.blog.gov.uk)
92. Using IPsec to protect data (www.ncsc.gov.uk)
93. Prompt injection is not SQL injection (it may be worse) (www.ncsc.gov.uk)
94. Using TLS to protect data (www.ncsc.gov.uk)
95. A method to assess 'forgivable' vs 'unforgivable' vulnerabilities (www.ncsc.gov.uk)
96. The Internet forgets, but I don’t want to (alexwlchan.net)
97. Provisioning and managing certificates in the Web PKI (www.ncsc.gov.uk)
98. Updating our guidance on security certificates, TLS and IPsec (www.ncsc.gov.uk)
99. CSS Wrapped 2025 (developer.chrome.com)
100. Python Workers redux: fast cold starts, packages, and a uv-first workflow (blog.cloudflare.com)
101. Meet Web Vitals Performance Issues (blog.sentry.io)
102. CSS Wrapped: 2025! (una.im)
103. KinoKong - 817,808 breached accounts (haveibeenpwned.com)
104. DoTs SDK Development: Automating TypeScript Client Generation (www.digitalocean.com)
105. HTML Web Components Proposal From 1998 (css-tricks.com)
106. Cybersecurity industry overreacts to React vulnerability, starts panic, burns own house down again (doublepulsar.com)
107. What's new in DevTools, Chrome 143 (developer.chrome.com)
108. Winners of the Built-in AI Challenge 2025 (developer.chrome.com)
109. When square pixels aren’t square (alexwlchan.net)
110. Weekly Update 481 (troyhunt.com)
111. Cloudflare outage on December 5, 2025 (blog.cloudflare.com)
112. How to use GitHub Copilot Spaces to debug issues faster (github.blog)
113. AV1 — Now Powering 30% of Netflix Streaming (netflixtechblog.com)
114. .NET Conf 2025 Recap – Celebrating .NET 10, Visual Studio 2026, AI, Community, & More (devblogs.microsoft.com)
115. Evaluate your AI agents faster and more effectively (www.digitalocean.com)
116. Getting Creative With “The Measure” (css-tricks.com)
117. AI updates for all Sentry users (blog.sentry.io)
118. Why Does Have I Been Pwned Contain "Fake" Email Addresses? (troyhunt.com)
119. Introducing Data Ingestion Building Blocks (Preview) (devblogs.microsoft.com)
120. Your stack, your rules: Introducing custom agents in GitHub Copilot for observability, IaC, and security (github.blog)
121. Cloudflare WAF proactively protects against React vulnerability (blog.cloudflare.com)
122. Cloudflare's 2025 Q3 DDoS threat report -- including Aisuru, the apex of botnets (blog.cloudflare.com)
123. Building trust in the digital age: a collaborative approach to content provenance technologies (www.ncsc.gov.uk)
124. Chrome 144 beta (developer.chrome.com)
125. Accelerating innovation with AWS: Snyk selected as an AWS Pattern Partner (snyk.io)
126. Security Advisory: Critical RCE Vulnerabilities in React Server Components (CVE-2025-55182) (snyk.io)
127. Run AutoMCP To Supercharge Your AI Agent with Libraries MCP Servers (snyk.io)
128. November 2025 Reading List (den.dev)
129. Small numbers of Notepad++ users reporting security woes (doublepulsar.com)
130. “The local-first rebellion”: How Home Assistant became the most important project in your house (github.blog)
131. Scrollytelling on Steroids With Scroll-State Queries (css-tricks.com)
132. What makes a responsible cyber actor: introducing the Pall Mall industry consultation on good practice (www.ncsc.gov.uk)
133. Announcing Baseline in action (web.dev)
134. New in Chrome 143 (developer.chrome.com)
135. Domain-Driven Design Misconceptions (codeopinion.com)
136. Prevent a page from scrolling while a dialog is open (css-tricks.com)
137. How to orchestrate agents using mission control (github.blog)
138. Zilvia.net - 287,863 breached accounts (haveibeenpwned.com)
139. Weekly Update 480 (troyhunt.com)
140. Why Replicate is joining Cloudflare (blog.cloudflare.com)
141. Automatically Signing a Windows EXE with Azure Trusted Signing, dotnet sign, and GitHub Actions (hanselman.com)
142. Mypy 1.19 released (mypy-lang.org)
143. Wiz Cloud Security Championship October 2025 (skybound.link)
144. It's time for all small businesses to act (www.ncsc.gov.uk)
145. NCSC handing over the baton of smart meter security: a decade of progress (www.ncsc.gov.uk)
146. China Software Developer Network - 6,414,990 breached accounts (haveibeenpwned.com)
147. .NET Day on Agentic Modernization Coming Soon (devblogs.microsoft.com)
148. Visual collaboration week: getting involved with the Digital Workplace community   (technology.blog.gov.uk)
149. New to the web platform in November (web.dev)
150. Digital Credentials API for credential issuance (developer.chrome.com)
151. Dissecting The Halo 5 Spartan Rank Manifest (den.dev)
152. Streamline Your Workflow: Announcing Environment Support for DigitalOcean App Platform (www.digitalocean.com)
153. Brand New Layouts with CSS Subgrid (www.joshwcomeau.com)
154. How Ada Computer Science empowers students: Survey findings (www.raspberrypi.org)
155. WebGPU is now supported in major browsers (web.dev)
156. Partnering with Black Forest Labs to bring FLUX.2 [dev] to Workers AI (blog.cloudflare.com)
157. One Year Of Model Context Protocol Through A Core Maintainer Lens (den.dev)
158. Minimal APIs, CQRS, DDD… Or Just Use Controllers? (codeopinion.com)
159. On Inheriting and Sharing Property Values (css-tricks.com)
160. Get better visibility for the WAF with payload logging (blog.cloudflare.com)
161. Choosing a managed service provider (MSP) (www.ncsc.gov.uk)
162. <100ms E-commerce: Instant loads with Speculation Rules API (blog.sentry.io)
163. Eliminating N+1 Queries with Seer’s Automated Root Cause Analysis (blog.sentry.io)
164. What's New In The 2025-11-25 MCP Authorization Spec (den.dev)
165. CodeStepByStep - 103,077 breached accounts (haveibeenpwned.com)
166. Weekly Update 479 (troyhunt.com)
167. ADDA - 1,829,314 breached accounts (haveibeenpwned.com)
168. Should I rewrite the Python Launcher for Unix in Python? (snarky.ca)
169. Zoomer: Powering AI Performance at Meta’s Scale Through Intelligent Debugging and Optimization (engineering.fb.com)
170. Sketch: A guided tour of Copenhagen (css-tricks.com)
171. Powered by DigitalOcean Hatch: How Ex-human uses GPU Droplets to Build Empathetic AI that Serves Customers (www.digitalocean.com)
172. Hacktoberfest 2025 Comes to a Close (www.digitalocean.com)
173. Can you take an ox to Oxford? (alexwlchan.net)
174. tree-me: Because git worktrees shouldn’t be a chore (haacked.com)
175. What organisations can learn from the record breaking fine over Capita’s ransomware incident (doublepulsar.com)
176. International Kiteboarding Organization - 340,349 breached accounts (haveibeenpwned.com)
177. The varying strictness of TypedDict (snarky.ca)
178. Reinventing how .NET Builds and Ships (Again) (devblogs.microsoft.com)
179. Key Transparency Comes to Messenger (engineering.fb.com)
180. Beckett Collectibles - 1,041,238 breached accounts (haveibeenpwned.com)
181. Eurofiber - 10,003 breached accounts (haveibeenpwned.com)
182. Vultr - 187,872 breached accounts (haveibeenpwned.com)
183. JavaScript SpeechSynthesis API (davidwalsh.name)
184. Seer can now trigger Cursor Agents to fix your bugs (blog.sentry.io)
185. Halo World Championship 2025 (den.dev)
186. Report URI - outage update (scotthelme.ghost.io)
187. Integrity Policy - Monitoring and Enforcing the use of SRI (scotthelme.ghost.io)
188. PowerToys 0.96 is here: endpoints for Advanced Paste, metadata support for PowerRename and more! (devblogs.microsoft.com)
189. The metrics product we built worked — But we killed it and started over anyway (blog.sentry.io)
190. Efficient Optimization With Ax, an Open Platform for Adaptive Experimentation (engineering.fb.com)
191. Introducing Logs, User Feedback, and more in the Sentry Godot SDK (blog.sentry.io)
192. Code Club Conference 2025: Creativity, community, and collaboration in Cambridge (www.raspberrypi.org)
193. Announcing the Completion of the Core 2Africa System: Building the Future of Connectivity Together (engineering.fb.com)
194. Cloudflare outage on November 18, 2025 (blog.cloudflare.com)
195. Introducing webvitals.com: Find out what’s slowing down your site (blog.sentry.io)
196. Fix “This video format is not supported” on YouTube TV (davidwalsh.name)
197. Book early-access discount code (ericlippert.com)
198. Enhancing HDR on Instagram for iOS With Dolby Vision (engineering.fb.com)
199. Sentry has a bold new look (blog.sentry.io)
200. Shaping the future of public sector technology with the new Enterprise Architecture team (technology.blog.gov.uk)
201. Replicate is joining Cloudflare (blog.cloudflare.com)
202. Cleaning up messy dates in JSON (alexwlchan.net)
203. The Dawn of the 10x Team (blog.sentry.io)
204. Support For CIMD For MCP In Visual Studio Code (den.dev)
205. Streaming Digits of Pi (swharden.com)
206. Weekly Update 478 (troyhunt.com)
207. Open Source Is Good for the Environment (engineering.fb.com)
208. Python in Visual Studio Code – November 2025 Release (devblogs.microsoft.com)
209. Debunking myths about space science with Astro Pi impact evidence (www.raspberrypi.org)
210. Finding the grain of sand in a heap of Salt (blog.cloudflare.com)
211. Operation Endgame 3.0 - 2,046,030 breached accounts (haveibeenpwned.com)
212. Tails 7.2 (tails.net)
213. KubeCon NA 2025 CTF Writeup (skybound.link)
214. GPU Observability: Get Deeper Insights into Your Droplets and DOKS Clusters (www.digitalocean.com)
215. Connecting to production: the architecture of remote bindings (blog.cloudflare.com)
216. Weekly Update 477 (troyhunt.com)
217. Teams React to Student Robotics 2026 (studentrobotics.org)
218. Using Sentry Logs to Debug a Dynamic Sampling Issue (blog.sentry.io)
219. Range Syntax for Style Queries (una.im)
220. Clean Up Bloated CQRS Handlers (codeopinion.com)
221. StyleX: A Styling Library for CSS at Scale (engineering.fb.com)
222. Cyber Security and Resilience Policy Statement to strengthen regulation of critical sectors (www.ncsc.gov.uk)
223. .NET 10 - Release (github.com)
224. Designing for every learner in every classroom (www.raspberrypi.org)
225. October 2025 Baseline monthly digest (web.dev)
226. Cyber Action Toolkit: breaking down the barriers to resilience (www.ncsc.gov.uk)
227. Hire Me in Japan (overreacted.io)
228. A closer look at Python Workflows, now in beta (blog.cloudflare.com)
229. Detecting AV1-encoded videos with Python (alexwlchan.net)
230. TISZA Világ - 198,520 breached accounts (haveibeenpwned.com)
231. DIY BYOIP: a new way to Bring Your Own IP prefixes to Cloudflare (blog.cloudflare.com)
232. Sourcing the stack for local government technology (technology.blog.gov.uk)
233. How AI shapes your feed: An explainable social media simulator for the classroom (www.raspberrypi.org)
234. Async QUIC and HTTP/3 made easy: tokio-quiche is now open-source (blog.cloudflare.com)
235. Extract audio from your videos with Cloudflare Stream (blog.cloudflare.com)
236. How I use AI to code (natemcmaster.com)
237. Synthient Credential Stuffing Threat Data - 1,957,476,021 breached accounts (haveibeenpwned.com)
238. Monitor and reduce your mobile app size with Size Analysis (beta) (blog.sentry.io)
239. How Workers VPC Services connects to your regional private networks from anywhere in the world (blog.cloudflare.com)
240. NCSC to retire Web Check and Mail Check (www.ncsc.gov.uk)
241. 2 Billion Email Addresses Were Exposed, and We Indexed Them All in Have I Been Pwned (troyhunt.com)
242. Not so "mini"-dumps: How we found missing crashes on SteamOS (blog.sentry.io)
243. Supercharging the ML and AI Development Experience at Netflix (netflixtechblog.com)
244. External attack surface management (EASM) buyer's guide (www.ncsc.gov.uk)
245. Leading the Cloud With Curiosity : Spotlight on Pranav Nambiar, SVP, AI/ML & PaaS (www.digitalocean.com)
246. CyberSlop — meet the new threat actor, MIT and Safe Security (doublepulsar.com)
247. Weekly Update 476 (troyhunt.com)
248. Defeating KASLR by Doing Nothing at All (googleprojectzero.blogspot.com)
249. You Need To Become A Full Stack Person (den.dev)
250. Building Better Apps with GitHub Copilot Custom Agents (montemagno.com)
251. Wiz Cloud Security Championship September 2025 (skybound.link)
252. I’m writing another book! (ericlippert.com)
253. New to the web platform in October (web.dev)
254. Double Dispatch in DDD (codeopinion.com)
255. How cybercriminals can hijack your contracts (www.namecheap.com)
256. Helping Startups Build Faster with an AI Startup Ecosystem (www.digitalocean.com)
257. Detect fallback positions with anchored container queries from Chrome 143 (una.im)
258. EASM buyer's guide now available (www.ncsc.gov.uk)
259. Springs and Bounces in Native CSS (www.joshwcomeau.com)
260. Why can’t my iPhone play that video? (alexwlchan.net)
261. Wiz Cloud Security Championship August 2025 (skybound.link)
262. How We (Almost) Found Chromium's Bug via Crash Reports to Report URI (troyhunt.com)
263. The winners of the Baseline Tooling Hackathon are... (web.dev)
264. MyVidster (2025) - 3,864,364 breached accounts (haveibeenpwned.com)
265. AI Code Review: 30K Bugs Lighter, 50% faster (blog.sentry.io)
266. 2026 is the year of fine-tuned small models (seldo.com)
267. Post-Training Generative Recommenders with Advantage-Weighted Supervised Finetuning (netflixtechblog.com)
268. Weekly Update 475 (troyhunt.com)
269. Tackling credential theft as a small business (www.namecheap.com)
270. Image and audio models from fal now available on DigitalOcean (www.digitalocean.com)
271. Microsoft builds on Recall with Gaming Copilot — fails basic privacy tests (doublepulsar.com)
272. OAuth App Based Workload Identity for Droplets (www.digitalocean.com)
273. Authorization: Domain or Application Layer? (codeopinion.com)
274. Patch management is essential to securing your supply chain (www.namecheap.com)
275. Doing my own syntax highlighting (finally) (alexwlchan.net)
276. SR2026 Issue 01 (studentrobotics.org)
277. Inside the Synthient Threat Data (troyhunt.com)
278. Synthient Stealer Log Threat Data - 182,962,095 breached accounts (haveibeenpwned.com)
279. Cyber security is business survival (www.ncsc.gov.uk)
280. Behind the Streams: Real-Time Recommendations for Live Events Part 3 (netflixtechblog.com)
281. How to Fix Any Bug (overreacted.io)
282. Weekly Update 474 (troyhunt.com)
283. URLPattern is now Baseline Newly available (web.dev)
284. Unreal Engine crash reporting now available on gaming consoles with trace-connected logs (blog.sentry.io)