rsc has published a very fun Go testing talk that you as a gopher don't want to miss: research.swtch.com/testing

Many years ago I made an extremely tiny contribution to Go, and now Google's "Results about you" is sending me very regularly on which company is using Go as the contributor list is included in the disclaimers. That's just too fun to read.

If out of memory error cannot be gracefully handled and would crash the machine/internet/world, we do have a big problem.

MiraclePtr security.googleblog.com/2022/09/use-af… - a great security design, but one may easily overlook that the execution of that involves rewriting 15000 uses of insecure pointers in Chrome. Security engineering is determiniation.

People who are maintaining bug bounty program, I wish that we can be more encouraging security researcher to define new security problems that less has thought about instead of dismissing. Security is about finding new ways to exploit. Context: gist.github.com/hackermondev/4…

Google finance was not showing data for Meta for a few days and no one see the urgency about this. issuetracker.google.com/issues/3917222…. Is Google still on the mission of organizing world information?

When I led security at LinkedIn, Yahoo!, and Atlassian, I wished we had the power to: ✅ Stop Insider Risk & IP Exfiltration in minutes ✅ Fix Compliance Gaps in real-time ✅ Secure Apps & Identities effortlessly Anzenna Inc making it a reality with Agentic AI #AI #Cyber

Two years ago we started from a simple problem statement: is there a more human focused way to solve security problem for enterprise? Anzenna Inc linkedin.com/posts/ganeshkr…

Want to see how a People SIEM changes the game? Let’s talk! linkedin.com/posts/anzenna_…

A Disney employee downloaded a fake AI tool—and it led to a life-ruining hack with massive fallout for Disney. Don’t let Sinister AI lurk in your environment. Anzenna helps you root it out fast (1/3)

Thanks to the hard work from Anzenna Inc team, it is no longer hard to spot suspicious applications in your company.

3 teens using ChatGPT to learn how to write actual exploit that actually works. japantoday.com/category/crime…

If you are already spending a lot of time assessing the security posture of your vendors, are you also reviewing every single browser extensions and OAuth applications that have direct access to data in your company?

I don't get it why people are so excited about devblogs.microsoft.com/typescript/typ… - most language starts from a compiler written by another lower level language for good reasons. It is simply fixing the wrong decision made earlier without doing benchmark in the beginning of this language.

𝗨𝘀𝗲𝗿: Show me everyone in my company currently on our temporary USB policy and when they last used a USB device. If they haven't used one in the last 30 days, please remove them from the CrowdStrike policy. @Anzenna: Done.

Interesting concept in Go on TOCTOU challenge when guarding file traversl, for the case symlink can be exploited. go.dev/blog/osroot

Google has redirected maps.google.com to google.com/map. The implication is that I can no longer restricting google.com to see my location - as I previously was only allowing maps.google.com to read that. That's #privacy regression.

Happy Birthday Git!

deno.com/blog/deno-v-or…