Multiple, serious security vulnerabilities found in the Rust clone of Sudo — which shipped with Ubuntu 25.10 (the most recent release). Not little vulnerabilities: We’re talking about the disclosure of passwords and total bypassing of authentication. In fact, we’re getting new

Just had to do actual computer science. 🤮 I'm self taught, I'm not supposed to need those things. Needed a sparse data structure to represent test status with retries across commit/time.

The way people retry CI actions is wrong. You don't want your test runner to retry. Let the pipeline fail and track the failure. Then automate the retry as a new run. Track how often its failing and get the logs for it. Don't use things like pytest-retry or nick-fields/retry.

DX isn’t just pretty docs and fast builds. It’s trust. Flaky tests break that trust. You lose all the speed when you are debugging and retrying tests. Why are all the Developer Experience teams building stuff that doesn't improve the daily life of the people they are serving?

I'm building a side project to solve flaky tests / non-deterministic tests and Claude just implemented my oauth for integrating with Github. What a time to be alive. Now I have to code review this to make sure it isn't going to get me a CVE

PlanetScale for Postgres is now GA. https://t.co/1clVoM7M2T

I'm excited for the future where the LLMs have access to test history/logs/etc. I've already been seeing things like the playwright MCP server that get us closer to that future.

I took a 1-week vacation next week to try and launch a side project. I doubt a week is enough time but it'll be fun to take a break from work to do some work

Most problems can be solved with Postgres and Redis.

a lot of you didn’t brick the family computer trying to install linux in 2004 and it shows

Here is your annual reminder to get in the holiday spirit with https://t.co/Utk4eC6dAQ

Unless there is legislative change, it no longer makes sense to start a bootstrapped software startup in America anymore It’s hard to overstate how catastrophically bad Section 174 is for software companies Here’s an overview for anyone hearing about this only recently:

This is your annual reminder that you can bring holiday cheer to your terminal with https://t.co/Utk4eC5FLi!

It is weird that everyone at #KubeCon is pronouncing kubectl wrong. I've heard "kube C T L", "kube cuddle", etc. The correct pronunciation is "Kub Ecktul". Hopefully that helps!

Heading to check-in for first day of #kubecon! Excited to talk to everyone about running stateful services on kubernetes and running your own control plane as god intended!

I understand kubernetes is complex but as an SRE from the 1900s, I don’t have it in me to go through another wave of innovation. Let’s stop here!

I wrote up my steps for completing the EKS Cluster Games CTF in case anyone wants to see: https://t.co/rPo9v9Fkim Lots of spoilers so don't check it out if you're still working through the problems.

Looking at the subfreezing temperatures in Illinois have me wondering if I really want to leave Puerto Rico to go to KubeCon next week 🥶. My love for kubernetes only goes so far!

CentOS 7 is the real security hero this week! 💪 ✅ cURL too old for CVE-2023-38545 ✅ glibc too old for CVE-2023-4911 / Looney Tunables ✅ httpd too old for CVE-2023-44487 or any HTTP/2 support

Imagine if the narrative around artists was they shouldn’t practice their craft outside of paid gigs. Or if someone went up and told Carmack he should spend less time in front of a computer. 🙄 Please let the anti-tech tech narrative die. Some of us like building things.