Hacker Newsnew | past | comments | ask | show | jobs | submit | woodruffw's submissionslogin
1.
Some Flexibility with Go's Sumdb (yossarian.net)
1 point by woodruffw 10 days ago | past | discuss
2.
Serde's borrowing can be treacherous (yossarian.net)
6 points by woodruffw 15 days ago | past
3.
Moving Beyond the NPM Elliptic Package (soatok.blog)
8 points by woodruffw 50 days ago | past | 1 comment
4.
Python's splitlines does more than just newlines (yossarian.net)
33 points by woodruffw 3 months ago | past | 3 comments
5.
Safari has built-in WebDriver support (yossarian.net)
2 points by woodruffw 3 months ago | past
6.
Supply chain attacks are exploiting our assumptions (trailofbits.com)
9 points by woodruffw 3 months ago | past
7.
Dear GitHub: no YAML anchors, please (yossarian.net)
178 points by woodruffw 3 months ago | past | 151 comments
8.
Fun with Finite State Transducers (yossarian.net)
45 points by woodruffw 4 months ago | past | 7 comments
9.
Show HN: Zizmor, static analysis for GitHub Actions (zizmor.sh)
3 points by woodruffw 6 months ago | past
10.
Bypassing GitHub Actions policies in the dumbest way possible (yossarian.net)
247 points by woodruffw 7 months ago | past | 119 comments
11.
Preserving old GitHub Pages URLs while migrating a repo (yossarian.net)
1 point by woodruffw 8 months ago | past
12.
Making PyPI's test suite 81% faster (trailofbits.com)
11 points by woodruffw 8 months ago | past | 2 comments
13.
A New ASN.1 API for Python (trailofbits.com)
171 points by woodruffw 8 months ago | past | 124 comments
14.
Any program can be a GitHub Actions shell (yossarian.net)
282 points by woodruffw 9 months ago | past | 101 comments
15.
Open Tech Fund vs. Kari Lake [pdf] (opentech.fund)
4 points by woodruffw 9 months ago | past | 1 comment
16.
Benchmarking OpenSearch and Elasticsearch (trailofbits.com)
3 points by woodruffw 10 months ago | past
17.
When NULL isn't null: mapping memory at 0x0 on Linux (disconnect3d.pl)
5 points by woodruffw 10 months ago | past | 1 comment
18.
Don't Recurse on Untrusted Input (trailofbits.com)
3 points by woodruffw 10 months ago | past
19.
Homebrew's new Git signing key (brew.sh)
3 points by woodruffw 11 months ago | past
20.
PyPI Now Supports Project Archival (pypi.org)
36 points by woodruffw 11 months ago | past
21.
GitHub Actions is surprisingly case-insensitive (yossarian.net)
2 points by woodruffw 11 months ago | past
22.
Zizmor 1.0 (yossarian.net)
2 points by woodruffw on Jan 2, 2025 | past
23.
Auditing RubyGems (trailofbits.com)
2 points by woodruffw on Dec 11, 2024 | past
24.
Zizmor would have caught the Ultralytics workflow vulnerability (yossarian.net)
4 points by woodruffw on Dec 6, 2024 | past
25.
Zizmor: Static Analysis for GitHub Actions (woodruffw.github.io)
1 point by woodruffw on Nov 26, 2024 | past
26.
Workbrew makes open-source package manager Homebrew enterprise-friendly (techcrunch.com)
14 points by woodruffw on Nov 19, 2024 | past | 2 comments
27.
Security means securing people where they are (yossarian.net)
11 points by woodruffw on Nov 18, 2024 | past
28.
Attestations: A new generation of signatures on PyPI (trailofbits.com)
5 points by woodruffw on Nov 14, 2024 | past | 1 comment
29.
Show HN: Zizmor, static analysis for GitHub Actions (woodruffw.github.io)
2 points by woodruffw on Nov 1, 2024 | past
30.
Zizmor: A static analysis tool for GitHub Actions (yossarian.net)
6 points by woodruffw on Oct 27, 2024 | past

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: