-
-
book
A FOSS hackers guide to the CLI, privacy, security, self hosting, and the internet. (by hashbang)
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Some of my clients pay to do double review of all dependencies.
Others go as far as distributed deterministic builds to ensure CI/CD systems themselves are not compromised.
Here are the latest public iterations of my recommendations.
https://github.com/talos-systems/rfcs/blob/main/001-software...
Also here are complimentary practices to ensure the production engineers that must have access to CI/CD systems etc don't themselves become a weak link in the supply chain (which happens a -lot-).
https://github.com/hashbang/book/blob/master/content/docs/se...
Shameless plug: My company Distrust (short for Distributed Trust), offers auditing, consulting, and support so companies can avoid single points of failure in their supply chains from third party libs to the hands of end users. Happy to chat with anyone that wants some outside eyes in this area!
Some of my clients pay to do double review of all dependencies.
Others go as far as distributed deterministic builds to ensure CI/CD systems themselves are not compromised.
Here are the latest public iterations of my recommendations.
https://github.com/talos-systems/rfcs/blob/main/001-software...
Also here are complimentary practices to ensure the production engineers that must have access to CI/CD systems etc don't themselves become a weak link in the supply chain (which happens a -lot-).
https://github.com/hashbang/book/blob/master/content/docs/se...
Shameless plug: My company Distrust (short for Distributed Trust), offers auditing, consulting, and support so companies can avoid single points of failure in their supply chains from third party libs to the hands of end users. Happy to chat with anyone that wants some outside eyes in this area!