Aleksa Sarai
Aleksa Sarai
Recently, Netflix stopped making the name of the current video easily available, resulting in every downloaded file using the video ID as a filename. Luckily we can construct a filename...
Fedora changed the file modes of /etc/pki/ca-trust to 000 which means that during our unprivileged tests, trying to delete /etc doesn't work (root can bypass the DAC rules but we...
So we don't need to use `github.com/pkg/errors` anymore. Unfortunately this'll mean we can't get stack traces anymore but I don't think that'll be the end of the world.
We need a `make cross` and we should cross-compile for releases.
It would be interesting to see if we can auto-apply AppArmor profiles if we are running as a privileged user (after all, we are only ever going to be modifying...
This is the last step necessary to complete umoci's inclusion in the OCI -- to move validation into a more widely-known project so it can be used by more people....
Currently umoci (especially `umoci unpack`) is less sprightly than would be ideal. Some of this is a natural result of working with tar archives (which disallow parallelism during extraction) but...
Right now, `hugo-theme-learn` uses trivial inline JS and CSS which means we have to enable `unsafe-inline` in our `Content-Security-Policy` which reduces the benefit of CSPs. It might be necessary to...
[There is a Go-native fuzzing tool](https://github.com/dvyukov/go-fuzz) which we can use to embed `Fuzz` functions in each package. This is needed for CII gold-level badging. Ideally we could also generate a...