HackerTrans
TopNewTrendsCommentsPastAskShowJobs

vedhant

no profile record

Submissions

Ask HN: How to track micro changes with coding agent?

1 points·by vedhant·الشهر الماضي·0 comments

comments

vedhant
·قبل 5 أشهر·discuss
The sandboxing pain is real. Sadly, a new VM seems like the most simple and viable solution. I don't think the masses are doing any sandboxing at all. We really need a sandbox solution that is sort of dynamic and doesn't pester the user with allow/deny requests. It has to be intelligent and keep up with the llm agents.
vedhant
·قبل 6 أشهر·discuss
Ofcourse it is not meant as a primary database. What baffles me is that people use it as log storage. As an application scales, storage and querying logs become the bottleneck if elasticsearch is used. I was dealing with a system that could afford only 1 week of log retention!
vedhant
·قبل 7 أشهر·discuss
This actually makes a lot of sense. I have one question though. Why is having 2 microservices depend on a single service a problem?
vedhant
·قبل 8 أشهر·discuss
Even with periodoc rotation of credentials, attacker gets enough time to do sufficient damage. Imo, the best way to solve would be to not handle any sort of credentials at all at the application layer! If at all the application must only handle only very short lived tokens. Let there be a sidecar (for example) that does the actual credential injection.
vedhant
·قبل 8 أشهر·discuss
This is fun! I just posted about my startup and I loved the responses. They were criticizing a lot though, it was fun haha!
vedhant
·قبل 8 أشهر·discuss
This is true. Today its npm, tomorrow it could be some other language. Shouldnt we focus on solving it at the root?
vedhant
·قبل 8 أشهر·discuss
Whats the most full proof way of defending ourselves from such attacks? My opinion is that the applications should never deal with credentials at all. Sidecars can be run which can inject credentials in real time. These sidecars can be under tight surveillance against such attacks. After all, application code is the most volatile in an organization.
vedhant
·قبل 8 أشهر·discuss
Whats the most full proof way of defending ourselves from such attacks? My opinion is that the applications should never deal with credentials at all. Sidecars can be run which can inject credentials in real time. These sidecars can be under tight surveillance against such attacks. After all, application code is the most volatile in an organization.
vedhant
·قبل 8 أشهر·discuss
This looks amazing! I have a question. When we create a branch, are we cloning the entire production data? From what I understood was that neon runs a separate compute layer but the storage is the same.
vedhant
·قبل 8 أشهر·discuss
I am working on a platform that simplifies access control in an enterprise.

A lot of cybersecurity attacks happen because of stolen credentials. One big example is the supply chain attack, Shai Hulud. In a lot of enterprises, credential sprawl is a huge issue and figuring out who (people, services, ai agents) has access to to what systems is a paramount task.

At https://gearsec.io, we are building a platform where accesses are created via policies. The result is that, the enterprise doesnt deal with credentials anymore. They only need to define policies and nothing more.

I would love to know if you faced this problem and how are you solving them at your workplace!