Links
AddSoftware teams seeking to provide better products and services must focus on faster release cycles.
Learn how to secure your GitHub Actions with these best practices! From controlling credentials to using specific action version tags, this cheat sheet will help you protect against supply-chain attacks. Don't let a malicious actor inject code into your repository - read now!
The unified interface for LLMs. Find the best models & prices for your prompts
Several Phoronix readers have written in this Sunday over concerns of Bitwarden further moving away from open-source
Amazon CloudFront announced support for Amazon Route 53 HTTPS DNS alias record across its global network, enabling clients to discover the optimal HTTP protocol during the initial DNS resolution phase rather than in a subsequent connection step. This helps users improve performance and security, and simultaneously reduce operational expenses. This post explores the implementation details, [β¦]
The AWS Simple Monthly Calculator helps customers and prospects estimate their monthly AWS bill more efficiently. Using this tool, they can add, modify and remove services from their 'bill' and it will recalculate their estimated monthly charges automatically. The calculator also shows common customer samples and their usage, such as Disaster Recovery and Backup or Web Application.
SoTA open-source TTS. Contribute to resemble-ai/chatterbox development by creating an account on GitHub.
skarnet.org: a word about systemd
Critical Unauthenticated RCE Flaw, no Common CVE identifiers have been assigned yet, although experts suggest there should be at least three to six.
Explore GitHubβs top blogs of 2024, featuring new tools, AI breakthroughs, and tips to level up your developer game.
Fun With Pinball small board assembly instructions explanations flipper solenoid stepper video
Streamlining secure communication with ease
Chestnuts roasting on an open command prompt? Why not, with this fun Linux toy.
On April 21, 2026, a major breakthrough in cybersecurity happened: leading standardization initiatives gathered in Washington DC and agreed to begin coordinating collectively on AI security. A personal dream come true. The result: MOSAIC: Multi-Organization Secure AI Coordination. The goal: turn a fragmented landscape into clear, consistent standards and guidelines, to deal with the mounting risks of AI.
This important step was taken at the AI Security Policy Forum, organised and led by the OWASP AI Exchange, with SANS Institute as co-host - convening standard makers and policy stakeholders.
The initiatives at the table included: π BIML (Berryville Institute of Machine Learning) π Center for Internet Security (CIS) π Cloud Security Alliance (CSA) π Coalition for Secure AI (CoSAI) π National Institute of Standards and Technology (NIST) π OWASP AI Exchange (AIX) π OWASP GenAI Security Project π SANS Institute
The group agreed that it is now more important than ever to coordinate around the rapidly evolving possibilities and challenges of AI, as AI security risks mount.
One of the next steps is to provide a standardized map of the participating initiatives and a communication platform to exchange insights on a first list of identified topics (e.g., aligning with other initiatives such as SC42, building on OpenCRE, consensus on definitions), improve consistency, clarity, quality, and prevent unnecessary duplication. The idea is to move fast while maintaining independence and with lightweight coordination - not add more committees.
In addition to the organizations mentioned, the discussion also included journalists, representatives from International Telecommunication Union (ITU), The Aspen Institute, academia, and government β providing valuable perspectives on developments in both policy and industry. This helped prioritize the topics to focus on.
In the picture, from left to right, standing to sitting: Disesdi Shoshana Cox (AIX), Gary McGraw(BIML), Rob van der Veer (AIX), Anonymous, Duncan Sparrell, John Yeoh (CSA), Rock Lambros (GenAI), Norma Krayem, Brian Calkin (CIS), Matt Altomare (Aspen), Omar Santos (CoSAI), Aruneesh Salhotra (AIX), Jonathan Gibson (The Dispatch), Apostol Vassilev (NIST), Rhea Nygard, Ken Huang, Lav Varshney (Stony Brook University), Sounil Yu, and Sharon Goldman (Fortune)
Not in the picture, but involved, in alphabetical order: Rob T. Lee (SANS), Ryan Galluzzo (NIST), Soribel F.
A big thank you to: π Disesdi Shoshana CoxΒ for her idea to bring everybody together in a room to fulfil the connecting mission of the Exchange π The amazing thinktank at the AI Exchange π Spyros Gasteratos for his work on OpenCRE π Violeta Klein, CISSP, CEFA for shaping the story for the Forum π Straiker, Casco (YC X25), AI Security Academy, and SANS for supporting the Forum. π Software Improvement Group for donating the original threat model and initiating the AI Exchange
Letβs make AI a success! | 28 comments on LinkedIn