HackerTrans
トップ新着トレンドコメント過去質問紹介求人

taleodor

no profile record

投稿

CI/CD Security Principles in 2026

worklifenotes.com
2 ポイント·投稿者 taleodor·23 日前·0 コメント

The last line of defense must not be AI

worklifenotes.com
2 ポイント·投稿者 taleodor·29 日前·2 コメント

ReARM: Governing AI Coding Agents Demo [video]

youtube.com
2 ポイント·投稿者 taleodor·先月·0 コメント

ReARM 26.06.5: Agentic Coding Guardrails and DevOps

rearmhq.com
2 ポイント·投稿者 taleodor·先月·0 コメント

When the Paradigm Shifts: A Zero-Trust Model for AI Agents

worklifenotes.com
1 ポイント·投稿者 taleodor·2 か月前·0 コメント

Why QA and Cyber Security Matter More Than Ever [video]

youtube.com
1 ポイント·投稿者 taleodor·3 か月前·0 コメント

Release Management in the Agentic Era

medium.com
2 ポイント·投稿者 taleodor·3 か月前·0 コメント

Time to Start Treating Dev Machines as Untrusted

worklifenotes.com
3 ポイント·投稿者 taleodor·3 か月前·0 コメント

Using Evidence Platform as CI/CD Security Layer

rearmhq.com
4 ポイント·投稿者 taleodor·3 か月前·0 コメント

[untitled]

1 ポイント·投稿者 taleodor·4 か月前·0 コメント

ReARM 26.03.59: More CycloneDX Usage in APIs and Better Bear Enrichment

rearmhq.com
2 ポイント·投稿者 taleodor·4 か月前·0 コメント

New Major ReARM Release Brings Real-Time Widget of Most Vulnerable Components

rearmhq.com
1 ポイント·投稿者 taleodor·4 か月前·0 コメント

Want to Survive Current Tech Era – Learn to Be a Good QA

worklifenotes.com
3 ポイント·投稿者 taleodor·5 か月前·1 コメント

Show HN: ReARM – Release-Level Supply Chain Evidence Platform

rearmhq.com
3 ポイント·投稿者 taleodor·5 か月前·0 コメント

Towards Perfect Vulnerability Management System

worklifenotes.com
1 ポイント·投稿者 taleodor·5 か月前·0 コメント

ReARM 26.01.173: VDR Export, Finding Changelogs, and More

rearmhq.com
1 ポイント·投稿者 taleodor·5 か月前·0 コメント

How to Search Releases by Security Findings Using ReARM [video]

youtube.com
1 ポイント·投稿者 taleodor·6 か月前·0 コメント

Dockerfile.sbom

rearmhq.com
1 ポイント·投稿者 taleodor·6 か月前·0 コメント

Reliza and ShiftLeftCyber Announce Integration of SecureSBOM Signing into ReARM

rearmhq.com
2 ポイント·投稿者 taleodor·7 か月前·0 コメント

How to use ReARM to check if Shai-Hulud 2.0 infiltrated your dependencies [video]

youtube.com
1 ポイント·投稿者 taleodor·8 か月前·0 コメント

コメント

taleodor
·26 日前·議論
Very cool, we're doing similar except we let agents open PRs as well + we track release metadata and agentic sessions via our ReARM system + we've recently launched an option for agents to track helm-based deployments via ReARM - https://docs.rearmhq.com/workflows/devops.html
taleodor
·29 日前·議論
It's not about that we should drop LLM completely from the mix, but something like AI -> LLM control -> old-school classifier control -> script / human oversight is the way. If something has potential to cause millions in damages, it should be subjected to human oversight (likelihood / impact analysis needs to happen early in the system design).
taleodor
·2 か月前·議論
Frankly I don't buy atrophy argument at all. I (and I believe many other people) switched multiple frameworks and languages over the years. I.e., I was an expert in Chef more than 10 years ago, and nowadays I hardly remember anything about it. Calling this a cognitive decline is a significant stretch.

If you're afraid of cognitive decline - try to get to proper orchestration using multiple agents. That's a fun exercise.
taleodor
·8 か月前·議論
If you're looking for practical recommendations how to work with npm maintaining reasonable safety expectations, my post here mostly covers it: https://worklifenotes.com/2025/09/24/npm-has-become-a-russia...
taleodor
·10 か月前·議論
I have completely opposite experience. To me Traefik is the easiest thing to work with on the market. It should be even easier now to setup using Agentic AI.
taleodor
·10 か月前·議論
Packaged version of Verdaccio that includes quarantine filter over npm - https://github.com/relizaio/dockerfile-collection/tree/main/...