Loo kontoLogi sisse

Viimatised otsingud

Pole viimatisi otsinguid

Otsimisvalikud

Saadaval vaid kui sisse logitud.
est.social on üks paljudest sõltumatutest Mastodoni serveritest, mida saab fediversumis osalemiseks kasutada.
est.social on mõeldud Eestis üldkasutatavaks Mastodoni serveriks. est.social is meant to be a general use Mastodon server for Estonia.

Administraator:

Serveri statistika:

83
aktiivsed kasutajad

est.social: TeaveProfiilikataloogIsikuandmete kaitse

Mastodon: TeaveTõmba äppKiirklahvidLähtekoodv4.3.6+est

#github

19 postitusega15 osalejaga0 postitust täna
Bill<p>If you have Fancy GitHub™️ you have a new feature that supports remediation by committee. Pretty neat, really.</p><p><a href="https://docs.github.com/en/enterprise-cloud@latest/code-security/securing-your-organization/fixing-security-alerts-at-scale/about-security-campaigns" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">docs.github.com/en/enterprise-</span><span class="invisible">cloud@latest/code-security/securing-your-organization/fixing-security-alerts-at-scale/about-security-campaigns</span></a></p><p><a href="https://infosec.exchange/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>appsec</span></a></p>
Jeezy<p>I have been gating feature requests on GitHub behind sponsorship for a while now, which has resulted in:</p><p>1. A massive reduction in maintainer stress for me<br>2. Higher quality feature requests</p><p>10/10 would highly recommend for any maintainer</p><p><a href="https://github.com/LGUG2Z/komorebi/issues/1285" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/LGUG2Z/komorebi/iss</span><span class="invisible">ues/1285</span></a></p><p><a href="https://hachyderm.io/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a> <a href="https://hachyderm.io/tags/software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>software</span></a> <a href="https://hachyderm.io/tags/development" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>development</span></a> <a href="https://hachyderm.io/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a></p>
Ain Tohvri<p>Good few automation recommendations from <a href="https://mstdn.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a> for the <a href="https://mstdn.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> community <a href="https://github.blog/open-source/maintainers/5-github-actions-every-maintainer-needs-to-know/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.blog/open-source/mainta</span><span class="invisible">iners/5-github-actions-every-maintainer-needs-to-know/</span></a> <a href="https://mstdn.social/tags/DevOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DevOps</span></a></p>
Rossana Trotta<p>I’m looking to gather ideas on how efforts to trap <a href="https://mastodon.social/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AI</span></a> crawlers and feed them fake content on static site deployments can be drastically improved.</p><p>Feel free to share your ideas, approaches, or experiments—I’d love to hear what others are working on.</p><p>Explore <span class="h-card" translate="no"><a href="https://tldr.nettime.org/@asrg" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>asrg</span></a></span>’s implementation for static deployments via <a href="https://mastodon.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a> Pages:<br>⚒️ <a href="https://algorithmic-sabotage.github.io/asrg/trapping-ai/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">algorithmic-sabotage.github.io</span><span class="invisible">/asrg/trapping-ai/</span></a></p><p>Explore <span class="h-card" translate="no"><a href="https://scholar.social/@gedankenstuecke" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>gedankenstuecke</span></a></span>’s implementation for static deployments via <a href="https://mastodon.social/tags/Codeberg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Codeberg</span></a> Pages:<br>⚒️ <a href="https://tzovar.as/algorithmic-sabotage-ssg/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">tzovar.as/algorithmic-sabotage</span><span class="invisible">-ssg/</span></a></p><p><a href="https://mastodon.social/tags/AlgorithmicSabotage" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AlgorithmicSabotage</span></a> <a href="https://mastodon.social/tags/TrappingAI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TrappingAI</span></a></p>
Alvin Ashcraft 🐿️<p>Git turns 20: A Q&amp;A with Linus Torvalds</p><p><a href="https://github.blog/open-source/git/git-turns-20-a-qa-with-linus-torvalds/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.blog/open-source/git/gi</span><span class="invisible">t-turns-20-a-qa-with-linus-torvalds/</span></a> </p><p><a href="https://hachyderm.io/tags/git" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>git</span></a> <a href="https://hachyderm.io/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a> <a href="https://hachyderm.io/tags/devcommunity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>devcommunity</span></a> <a href="https://hachyderm.io/tags/oss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oss</span></a></p>
Erik van Straten<p><span class="h-card" translate="no"><a href="https://mastodon.social/@geerlingguy" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>geerlingguy</span></a></span> : Juan Mesaglio analysed these types of github phishing attacks in <a href="https://medium.com/@juan.mesaglio/emerging-phishing-attack-exploiting-github-app-to-gain-user-tokens-45a7b38880dc" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">medium.com/@juan.mesaglio/emer</span><span class="invisible">ging-phishing-attack-exploiting-github-app-to-gain-user-tokens-45a7b38880dc</span></a>.</p><p>He apparently also wrote a tool to help detect such phishing, and more (I've not looked at it, nor tested it).</p><p>The domain name in the sub-URL of the phishing site in your case, is visible halfway the URL:</p><p>hxxps://github-com-settings-applications.onrender[.]com/auth/callback</p><p>That domain name is hosted on 216.24.57[.]252 (AS 397273, render.com). It has a Domain Validated certificate issued by "Google Trust Services" (go figure).</p><p>As can be seen in the RELATIONS tab in <a href="https://www.virustotal.com/gui/ip-address/216.24.57.252" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">virustotal.com/gui/ip-address/</span><span class="invisible">216.24.57.252</span></a> a lot of *.onrender.com domain names are hosted there, many were recently found to resolve to 216.24.57[.]252.</p><p>Edited to add 21:17 UTC: { 216.24.57[.]4 appears to mirror 216.24.57[.]252.<br>}</p><p>There is a fix: <a href="https://infosec.exchange/@ErikvanStraten/114222237036021070" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.exchange/@ErikvanStrat</span><span class="invisible">en/114222237036021070</span></a> (more details, long: <a href="https://infosec.exchange/@ErikvanStraten/113079966331873386" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.exchange/@ErikvanStrat</span><span class="invisible">en/113079966331873386</span></a>).</p><p><a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>phishing</span></a> <a href="https://infosec.exchange/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a> <a href="https://infosec.exchange/tags/FixTheInternet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FixTheInternet</span></a> <a href="https://infosec.exchange/tags/GoogleIsEvil" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GoogleIsEvil</span></a></p>
Spencer Magnusson<p>For people with their own websites and domains, what do you use to host the site? I'm currently using GitHub pages for a links page, but I'd like to expand the site with some other things (e.g. portfolio, potentially blogs) without being explicitly linked to a public repo.</p><p>I have a domain, but most website builders I see require paying to connect your own. Free would be ideal, but I understand if that's not the case.</p><p><a href="https://graphics.social/tags/website" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>website</span></a> <a href="https://graphics.social/tags/WebDev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WebDev</span></a> <a href="https://graphics.social/tags/DigitalOcean" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DigitalOcean</span></a> <a href="https://graphics.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://fediscience.org/@seanfobbe" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>seanfobbe</span></a></span> personally I'd consider <a href="https://infosec.space/tags/gitea" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>gitea</span></a> and <a href="https://infosec.space/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosting</span></a>.</p><ul><li>As of now I abude <a href="https://infosec.space/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a> as free, <a href="https://infosec.space/tags/DDoS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DDoS</span></a>-protected hosting and something <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a> burns money in.</li></ul><p>Once any of my projects would gain traction I'd move from there away.</p><ul><li>I just am not a huge fan of <span class="h-card" translate="no"><a href="https://social.anoxinon.de/@Codeberg" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Codeberg</span></a></span> even tho they are a better option.</li></ul><p>I jist move to either SelfHosting or nowhere...</p>
Seán Fobbe<p>I'm currently migrating my <a href="https://fediscience.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> projects from <a href="https://fediscience.org/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a> to <a href="https://fediscience.org/tags/Codeberg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Codeberg</span></a> and I have to say I'm impressed.</p><p>+ Codeberg web interface is much (!) faster and more responsive compared to GitHub<br>+ Git clone and push feel about twice as fast as GitHub (not that it matters much)<br>+ Much cleaner interface than GitHub, less bloat and less featuritis<br>+ Codeberg activity overview is very helpful and well organized<br>+ Codeberg migration tool works well</p><p>Note: the OSS git software that Codeberg runs is called Forgejo.</p><p>Codeberg: <a href="https://codeberg.org/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">codeberg.org/</span><span class="invisible"></span></a><br>Forgejo: <a href="https://forgejo.org/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">forgejo.org/</span><span class="invisible"></span></a></p>
Bill<p>GitHub beefing up tools preventing developer footgun syndrome.</p><p><a href="https://securityaffairs.com/176170/security/39m-secrets-exposed-github-rolls-out-new-security-tools.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">securityaffairs.com/176170/sec</span><span class="invisible">urity/39m-secrets-exposed-github-rolls-out-new-security-tools.html</span></a></p><p><a href="https://infosec.exchange/tags/secrets" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>secrets</span></a> <a href="https://infosec.exchange/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a></p>
heise online English<p>New security features for GitHub to protect secrets</p><p>Despite all security precautions, millions of secrets are still leaked from GitHub every year. New measures are intended to remedy the situation.</p><p><a href="https://www.heise.de/en/news/New-security-features-for-GitHub-to-protect-secrets-10341227.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&amp;utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/en/news/New-security-</span><span class="invisible">features-for-GitHub-to-protect-secrets-10341227.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&amp;utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a> <a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IT</span></a> <a href="https://social.heise.de/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a></p>
securityaffairs<p>39M secrets exposed: <a href="https://infosec.exchange/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a> rolls out new security tools<br><a href="https://securityaffairs.com/176170/security/39m-secrets-exposed-github-rolls-out-new-security-tools.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">securityaffairs.com/176170/sec</span><span class="invisible">urity/39m-secrets-exposed-github-rolls-out-new-security-tools.html</span></a><br><a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>securityaffairs</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a></p>
Bill<p>Learning the new secrets management tools in GitHub (or your repo provider of choice) is just one more layer in the security onion.</p><p><a href="https://www.securityweek.com/39-million-secrets-leaked-on-github-in-2024/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">securityweek.com/39-million-se</span><span class="invisible">crets-leaked-on-github-in-2024/</span></a></p><p><a href="https://infosec.exchange/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a> <a href="https://infosec.exchange/tags/SecretsManagement" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecretsManagement</span></a></p>
pyOpenSci<p>New Video Drop! In 5 minutes, learn how to connect a GitHub repo to Zenodo to automatically generate a DOI (digital object identifier). </p><p>* Sync Zenodo with GitHub<br>* Turn on tracking<br>* Create a GitHub Release<br>* Add the DOI badge to your README file</p><p><a href="https://youtu.be/1pI4QU-7c98" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/1pI4QU-7c98</span><span class="invisible"></span></a> </p><p><a href="https://fosstodon.org/tags/openscience" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openscience</span></a> <a href="https://fosstodon.org/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a> <a href="https://fosstodon.org/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a> <a href="https://fosstodon.org/tags/science" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>science</span></a></p>
Lenin alevski 🕵️💻<p>New Open-Source Tool Spotlight 🚨🚨🚨</p><p>Loki is an open-source malware scanner designed for threat detection. It uses YARA rules, IOC pattern matching, and file system anomaly detection to identify malicious files and artifacts. Ideal for quick triage, not full AV replacement. <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a></p><p>🔗 Project link on <a href="https://infosec.exchange/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitHub</span></a> 👉 <a href="https://github.com/Neo23x0/Loki" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/Neo23x0/Loki</span><span class="invisible"></span></a></p><p><a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Infosec</span></a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/Software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Software</span></a> <a href="https://infosec.exchange/tags/Technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Technology</span></a> <a href="https://infosec.exchange/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>News</span></a> <a href="https://infosec.exchange/tags/CTF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CTF</span></a> <a href="https://infosec.exchange/tags/Cybersecuritycareer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecuritycareer</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>redteam</span></a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>blueteam</span></a> <a href="https://infosec.exchange/tags/purpleteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>purpleteam</span></a> <a href="https://infosec.exchange/tags/tips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tips</span></a> <a href="https://infosec.exchange/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opensource</span></a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cloudsecurity</span></a></p><p>— ✨<br>🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️</p>
Andrew Lock<p>Blogged: Creating SBOM attestations in GitHub Actions</p><p><a href="https://andrewlock.net/creating-sbom-attestations-in-github-actions/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">andrewlock.net/creating-sbom-a</span><span class="invisible">ttestations-in-github-actions/</span></a></p><p>In this post I show how you can create attestations for SBOM documents that you have created for your application or Nuget package</p><p><a href="https://hachyderm.io/tags/dotnet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>dotnet</span></a> <a href="https://hachyderm.io/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://hachyderm.io/tags/github" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>github</span></a></p>
AvastaLaiv lõimed
Teave