HPKE (RFC 9180) was made to be simple, reusable, and future-proof by building upon knowledge from prior PKE schemes and software implementations. It is already in use in a large assortment of emerging Internet standards and has a large assortment of interoperable implementations. This article provides an overview of this new standard, going back to discuss its motivation, design goals, and development process.

My Inspirations Now as a Director of Engineering at Docker, I’ve been doing some type of engineering leadership for the last decade. I have learned from the best over the years, and many resources have shaped who I am and philosophies for how I lead....

Learn how to secure your GitHub Actions with these best practices! From controlling credentials to using specific action version tags, this cheat sheet will help you protect against supply-chain attacks. Don't let a malicious actor inject code into your repository - read now!

macOS and Linux VMs on Apple Silicon to use in CI and other automations - cirruslabs/tart

Manage multiple runtime versions with a single CLI tool

Nobl9 has released an open specification for defining SLOs and, in addition, has defined a repeatable SLO methodology.

A REST client for the Web

Distributed systems runtime daemon written in Rust. - aurae-runtime/aurae

What is EKS-D Amazon EKS Distro (EKS-D) is a Kubernetes distribution based on and used by Amazon Elastic Kubernetes Service (Amazon EKS). It provides latest upstream updates as well as extended security patching support…

There is a need to evaluate the effectiveness of non-pharmacological treatment options to guide Australian clinicians and people with ADHD when choosing appropriate evidence-based intervention options.

Introducing Dastardly - a free, lightweight web application security scanner for your CI/CD pipeline, from the makers of Burp Suite. Secure web development ain't easy Ensuring your code is written sec

Open-source infrastructure and data orchestration platform for risk decisioning - ballerine-io/ballerine

Explore how GitHub Advanced Security can help address several of the OWASP Top 10 vulnerabilities

We started developing our vulnerability management platform (VMP) at Spotify in Q2, 2020, and now that we’ve implemented it and use the system in our day-to-day work, we wanted to take a moment to share our journey to help reduce security risks in an efficient and scalable manner.

Spotify recently introduced its security vulnerability management platform, Kitsune. Right from vulnerability detection to providing insights based on metrics, Kitsune manages the overall security vul