It really annoys me when #tech chooses unnecessarily arcane terms when there are meaningful, obvious terms they could have used instead.
Who decided on "forward proxy" and "reverse proxy" when "client proxy" and "server proxy" were right there? #dev#DevOps#DevSecOps
Sneak peek of some of the things coming in the next #Regal release. Language server (#LSP) component extended to do more than linting, as we try to make all aspects of #Rego development more enjoyable. Screenshots from #VSCode where both tooltips and inlay hints are provided via Regal. And there’s more… 😎
I can finally be public about my new role as a Staff Research Engineer at Endor Labs!
I’m going back to my #appsec research roots here, getting a chance to focus on #DevSecOps topics for education, research work, and contributing to the OpenSource ecosystem. This role has been a year in the making, and I’m super excited to get started on the work!
I just published #Regal v0.16.0. This release brings two new linter rules, but most importantly it adds a language server (LSP) mode to Regal, allowing editor integrations to lint your workspace continuously as you work on your #Rego policies. Client implementations soon to follow. Exciting times!
I wish more companies handled security patches like JetBrains with TeamCity. They ship a patch as a plugin that you can easily install without a server restart so we can triage the CVE immediately rather than sweating about how an upgrade might break everything. Makes security events nearly effortless to manage when they happen. #DevOps#DevSecOps#InfoSec
If you're in #Amsterdam 🇳🇱 next week, come join me and many others for another #OPA meetup! @parcifal will be talking about OPA for authorization in #Backstage, and I will be talking about building a linter in #Rego and for Rego — #Regal. It'll be fun!
Me and @charlieegan3 have been working on a new guide for the most common errors seen in #OPA during #Rego policy development. Parser errors, compiler errors and evaluation errors — it's all in there. Hopefully it'll be a useful resource to anyone trying to get a better understanding on why some errors happen, and how to fix them. Feedback always welcome!
I never moved away from Docker Desktop. For some time, after you use it to build an image, it prints a message: "View a summary of image vulnerabilities and recommendations".
What better way to spend the weekend than with a new version of #Regal? Everyone's favorite #Rego linter now have 2 more new rules, and some other nice improvements added. Check it out!
Does anyone have good links for where I can learn a bit more about egress proxies? Particularly for Kubernetes?
Use-case: I need to request a lot of potentially large media from servers outside of my control (one's that exist on the fediverse), and I'd like to do this as safely as possible, without exposing anything internal to my network/cluster.