HackerTrans
TopNewTrendsCommentsPastAskShowJobs

GEBBL

no profile record

comments

GEBBL
·2 bulan yang lalu·discuss
This is quite the sweeping statement
GEBBL
·9 bulan yang lalu·discuss
Strange, the site is run by an Ian Carroll, but the examples show Sam Curry, who is a very famous bug bounty hunter.
GEBBL
·11 bulan yang lalu·discuss
Is it common that folks are going into work at 11am and leaving at 4pm? I thought America had a crazy work hour culture
GEBBL
·tahun lalu·discuss
I feel this was an ‘of it’s time’ thing, but I am so glad we have moved on from this. I wouldn’t enjoy working in a workplace where this was acceptable.
GEBBL
·tahun lalu·discuss
Avalon Emerson is such a great dj and producer. I’d love to see them live sometime - I’ve a great set from 2017 of theirs on SoundCloud that’s really eclectic. Love the style.
GEBBL
·tahun lalu·discuss
Very excited for this - think the age transitions is a great way to spice up the middle game, which often turned into a slog.
GEBBL
·2 tahun yang lalu·discuss
A hape ‘a spuds with a slatherin of real butter is hard til bate,bai!
GEBBL
·2 tahun yang lalu·discuss
How did this pass code review?
GEBBL
·2 tahun yang lalu·discuss
Might be worth considering moving the arch of the site to a SaaS solution like netlify to really benefit from the scaling capabilities of serverless.
GEBBL
·2 tahun yang lalu·discuss
Irish?
GEBBL
·3 tahun yang lalu·discuss
I would love to develop on this, and onboarding looks pretty straightforward and pain free.

However with Googles history of junking projects, I just wouldn’t have the confidence to take this any further than a hobbyist tinkering.
GEBBL
·3 tahun yang lalu·discuss
Is it possible that small bugs or assumptions in a root paper could cascade through referencing papers leading to wildly inaccurate outcomes 5 or 6 papers down the line?
GEBBL
·3 tahun yang lalu·discuss
Would this have impacted on e2e encryption with SaaS apps or mTLS between one micro service to another?
GEBBL
·3 tahun yang lalu·discuss
A good person - may he RIP
GEBBL
·3 tahun yang lalu·discuss
Quite modern thinking when you write ‘for an intelligent human user… what she wants to do’.

Normally ‘he’ would be used, or maybe at that time. Just something interesting I saw.

Very interesting to see the files are still there!
GEBBL
·3 tahun yang lalu·discuss
Dependabot it is good for scanning dependencies of popular languages but it does not pick up ‘code smells’ like sonarqube would.

In addition, some vulnerabilities only appear at build time, so you would need to add in scanning during the pipeline.

It’s hard to get a full picture of the entire build process, and even still, vulns do get through, for example you forget to implement logic to prevent people from seeing the administration section of your app.

Security is part machine, part human effort - hard to catch everything, on top of the millions of projects and repositories out there, not all of them on GitHub.