Adrian Mouat
@adrianmouat.com
Technical community advocate at Chainguard. Bad guitarist. He/him.
Pinned
Adrian Mouat
@adrianmouat.com
· Apr 11
Want to see how secure your container images are? Try out the CHPs scorer. Here's a run on an example Python project that's pretty typical of what you find in the wild.
@danlorenc recently wrote a blog on Gastown, which is Steve Yegge's attempt to build a "workspace manager" for coordinating AI agents.
www.chainguard.dev/unchained/ga...
www.chainguard.dev/unchained/ga...
January 23, 2026 at 11:01 AM
@danlorenc recently wrote a blog on Gastown, which is Steve Yegge's attempt to build a "workspace manager" for coordinating AI agents.
www.chainguard.dev/unchained/ga...
www.chainguard.dev/unchained/ga...
@chainguard.dev Assemble returns!
Chainguard's flagship conference is coming to NYC. Come join us in March for talks & community events on the future of secure software (and especially secure container images).
assemble.chainguard.dev/event/2991fc...
Chainguard's flagship conference is coming to NYC. Come join us in March for talks & community events on the future of secure software (and especially secure container images).
assemble.chainguard.dev/event/2991fc...
January 22, 2026 at 11:00 AM
@chainguard.dev Assemble returns!
Chainguard's flagship conference is coming to NYC. Come join us in March for talks & community events on the future of secure software (and especially secure container images).
assemble.chainguard.dev/event/2991fc...
Chainguard's flagship conference is coming to NYC. Come join us in March for talks & community events on the future of secure software (and especially secure container images).
assemble.chainguard.dev/event/2991fc...
Reposted by Adrian Mouat
Live in LESS THAN AN HOUR
Come learn you some jj 😄
Come learn you some jj 😄
Have you heard all the cool kids talking about #jj and wondered how to get started?
Have you tried #jj and couldn't make it stick?
I've got a live stream JUST FOR YOU! Join @steveklabnik.com and I on Wednesday as we get you up to speed with everything #jj.
I'm very excited for this session
Have you tried #jj and couldn't make it stick?
I've got a live stream JUST FOR YOU! Join @steveklabnik.com and I on Wednesday as we get you up to speed with everything #jj.
I'm very excited for this session
Hands-on Introduction to jujutsu (jj) | Rawkode Live
YouTube video by Rawkode Academy
www.youtube.com
January 21, 2026 at 4:41 PM
Live in LESS THAN AN HOUR
Come learn you some jj 😄
Come learn you some jj 😄
I'm sure some of you use the excellent @renovatebot.com to update dependencies in repos. But if you're calling Renovate from a GitHub action, you probably had to create a Personal Access Token (PAT). And PATs are a form of long-live token, my thoughts on which are summed up by this GIF.
January 21, 2026 at 11:15 AM
I'm sure some of you use the excellent @renovatebot.com to update dependencies in repos. But if you're calling Renovate from a GitHub action, you probably had to create a Personal Access Token (PAT). And PATs are a form of long-live token, my thoughts on which are summed up by this GIF.
Apparently Dijkstra wrote:
"If in physics there's something you don't understand, you can always hide behind the uncharted depths of nature. You can always blame God. You didn't make it so complex yourself."
"If in physics there's something you don't understand, you can always hide behind the uncharted depths of nature. You can always blame God. You didn't make it so complex yourself."
January 16, 2026 at 10:00 AM
Apparently Dijkstra wrote:
"If in physics there's something you don't understand, you can always hide behind the uncharted depths of nature. You can always blame God. You didn't make it so complex yourself."
"If in physics there's something you don't understand, you can always hide behind the uncharted depths of nature. You can always blame God. You didn't make it so complex yourself."
I found a "modern unix tool" list on a blog by @billmill.org recently. Quite a few I already knew about, but it's definitely a helpful list. In particular it's good for recommending improved versions of existing utils e.g. bat vs cat, dust vs du, eza vs ls.
notes.billmill.org/computer_usa...
notes.billmill.org/computer_usa...
notes.billmill.org
For the purposes of this list, a tool is "modern" if it replaces a tool that you're likely to find in a base debian install.
notes.billmill.org
January 14, 2026 at 10:01 AM
I found a "modern unix tool" list on a blog by @billmill.org recently. Quite a few I already knew about, but it's definitely a helpful list. In particular it's good for recommending improved versions of existing utils e.g. bat vs cat, dust vs du, eza vs ls.
notes.billmill.org/computer_usa...
notes.billmill.org/computer_usa...
My talk from Kubernetes Community Days is up!
I go into details about what we can learn from various security incidents in recent years (yes, including Shai Hulud).
www.youtube.com/watch?v=-WOT...
I go into details about what we can learn from various security incidents in recent years (yes, including Shai Hulud).
www.youtube.com/watch?v=-WOT...
January 13, 2026 at 12:57 PM
My talk from Kubernetes Community Days is up!
I go into details about what we can learn from various security incidents in recent years (yes, including Shai Hulud).
www.youtube.com/watch?v=-WOT...
I go into details about what we can learn from various security incidents in recent years (yes, including Shai Hulud).
www.youtube.com/watch?v=-WOT...
Reposted by Adrian Mouat
Been working on this one for a while — it's a little bit of history of a key foundation of internet technology, and a little bit of an explainer about how people _actually_ invent things. This is the amazing (true!) story of how Markdown took over the world. www.anildash.com/2026/01/09/h...
How Markdown took over the world - Anil Dash
A blog about making culture. Since 1999.
www.anildash.com
January 9, 2026 at 4:17 PM
Been working on this one for a while — it's a little bit of history of a key foundation of internet technology, and a little bit of an explainer about how people _actually_ invent things. This is the amazing (true!) story of how Markdown took over the world. www.anildash.com/2026/01/09/h...
Evaluating risk and focusing on actual problems is key to security. Quantum risks are real, but does it matter when you leave long-lived tokens accessible?
As Bruce Schneier said "More people are killed every year by pigs than by sharks, which shows you how good we are at evaluating risk."
As Bruce Schneier said "More people are killed every year by pigs than by sharks, which shows you how good we are at evaluating risk."
January 9, 2026 at 11:16 AM
Evaluating risk and focusing on actual problems is key to security. Quantum risks are real, but does it matter when you leave long-lived tokens accessible?
As Bruce Schneier said "More people are killed every year by pigs than by sharks, which shows you how good we are at evaluating risk."
As Bruce Schneier said "More people are killed every year by pigs than by sharks, which shows you how good we are at evaluating risk."
There was a recent post that hit Hacker News about a server getting hacked and running Monero.
blog.jakesaunders.dev/my-server-st...
I wanted to call out a few points...
blog.jakesaunders.dev/my-server-st...
I wanted to call out a few points...
I got hacked, my server started mining Monero this morning.
I got hacked, my server started mining Monero this morning.
blog.jakesaunders.dev
December 24, 2025 at 10:00 AM
There was a recent post that hit Hacker News about a server getting hacked and running Monero.
blog.jakesaunders.dev/my-server-st...
I wanted to call out a few points...
blog.jakesaunders.dev/my-server-st...
I wanted to call out a few points...
Reposted by Adrian Mouat
via The New Yorker, Ellis Rosen cartoon
December 23, 2025 at 5:31 AM
via The New Yorker, Ellis Rosen cartoon
We've just added support for "Custom Certificates" to @chainguard.dev's Custom Assembly tool.
This means you can provide us with your org's public certs and we will build them into your images. Simple, but it saves a massive amount of time and resources for our customers.
tinyurl.com/vkwvsjsa
This means you can provide us with your org's public certs and we will build them into your images. Simple, but it saves a massive amount of time and resources for our customers.
tinyurl.com/vkwvsjsa
Custom Certificates are now available in Custom Assembly
Custom Certificate support for Custom Assembly allows you to add your enterprise certificate authority certificates directly to Chainguard Containers
www.chainguard.dev
December 23, 2025 at 10:45 AM
We've just added support for "Custom Certificates" to @chainguard.dev's Custom Assembly tool.
This means you can provide us with your org's public certs and we will build them into your images. Simple, but it saves a massive amount of time and resources for our customers.
tinyurl.com/vkwvsjsa
This means you can provide us with your org's public certs and we will build them into your images. Simple, but it saves a massive amount of time and resources for our customers.
tinyurl.com/vkwvsjsa
If you're an AWS user, you can now get @chainguard.dev images directly from ECR.
So now you can get your secure, zero CVE images faster and with less networking costs.
You can try it out right away:
docker pull public.ecr.aws/chainguard/wolfi-base:latest
aws.amazon.com/blogs/contai...
So now you can get your secure, zero CVE images faster and with less networking costs.
You can try it out right away:
docker pull public.ecr.aws/chainguard/wolfi-base:latest
aws.amazon.com/blogs/contai...
Expanding container security and choice with Amazon ECR Public | Amazon Web Services
Today, we're excited to announce that Amazon ECR Public now offers Chainguard Wolfi Images—security-hardened, minimalist base container images that dramatically reduce vulnerabilities in your…
aws.amazon.com
December 22, 2025 at 1:59 PM
If you're an AWS user, you can now get @chainguard.dev images directly from ECR.
So now you can get your secure, zero CVE images faster and with less networking costs.
You can try it out right away:
docker pull public.ecr.aws/chainguard/wolfi-base:latest
aws.amazon.com/blogs/contai...
So now you can get your secure, zero CVE images faster and with less networking costs.
You can try it out right away:
docker pull public.ecr.aws/chainguard/wolfi-base:latest
aws.amazon.com/blogs/contai...
I have found the original inspiration for space invaders
December 22, 2025 at 1:06 PM
I have found the original inspiration for space invaders
Reposted by Adrian Mouat
Unpopular opinion:
Current code review tools just don’t make much sense for AI-generated code
When reviewing code I really want to know:
- The prompt made by the dev
- What corrections the other dev made to the code
- Clear marking of code AI-generated not changed by a human
Current code review tools just don’t make much sense for AI-generated code
When reviewing code I really want to know:
- The prompt made by the dev
- What corrections the other dev made to the code
- Clear marking of code AI-generated not changed by a human
December 14, 2025 at 2:24 PM
Unpopular opinion:
Current code review tools just don’t make much sense for AI-generated code
When reviewing code I really want to know:
- The prompt made by the dev
- What corrections the other dev made to the code
- Clear marking of code AI-generated not changed by a human
Current code review tools just don’t make much sense for AI-generated code
When reviewing code I really want to know:
- The prompt made by the dev
- What corrections the other dev made to the code
- Clear marking of code AI-generated not changed by a human
Top networking tip: do not plug both ends of an ethernet cable into the same switch.
December 14, 2025 at 3:25 PM
Top networking tip: do not plug both ends of an ethernet cable into the same switch.
"Any fool can write code that a computer can understand. Good programmers write code that humans can understand."
I stumbled across this quote from Refactoring by Martin Fowler when looking at dannorth.net/blog/cupid-f... by @tastapod.com .
I stumbled across this quote from Refactoring by Martin Fowler when looking at dannorth.net/blog/cupid-f... by @tastapod.com .
December 12, 2025 at 1:56 PM
"Any fool can write code that a computer can understand. Good programmers write code that humans can understand."
I stumbled across this quote from Refactoring by Martin Fowler when looking at dannorth.net/blog/cupid-f... by @tastapod.com .
I stumbled across this quote from Refactoring by Martin Fowler when looking at dannorth.net/blog/cupid-f... by @tastapod.com .
New video on updating container images with Renovate.
The demo uses the Renovate GitHub Action but pairs it with Octo-STS so you don't need to create a PAT.
www.youtube.com/watch?v=I0hW...
The demo uses the Renovate GitHub Action but pairs it with Octo-STS so you don't need to create a PAT.
www.youtube.com/watch?v=I0hW...
Updating Container Images with Renovate (and no PATs!)
YouTube video by Chainguard
www.youtube.com
December 11, 2025 at 5:53 PM
New video on updating container images with Renovate.
The demo uses the Renovate GitHub Action but pairs it with Octo-STS so you don't need to create a PAT.
www.youtube.com/watch?v=I0hW...
The demo uses the Renovate GitHub Action but pairs it with Octo-STS so you don't need to create a PAT.
www.youtube.com/watch?v=I0hW...
Just finished @nealstephenson.bsky.social's Baroque Cycle. I'm not a fast reader so it was a bit of an undertaking. Worth it though.
And in relation to recent news, it definitely has an ending and even goes some lengths to wrap up various story arcs. Infinite Jest it is not.
And in relation to recent news, it definitely has an ending and even goes some lengths to wrap up various story arcs. Infinite Jest it is not.
December 11, 2025 at 1:07 PM
Just finished @nealstephenson.bsky.social's Baroque Cycle. I'm not a fast reader so it was a bit of an undertaking. Worth it though.
And in relation to recent news, it definitely has an ending and even goes some lengths to wrap up various story arcs. Infinite Jest it is not.
And in relation to recent news, it definitely has an ending and even goes some lengths to wrap up various story arcs. Infinite Jest it is not.
Please remember a Lewis is for life, not just Xmas.
On the 12th day of Quizmas, my true love gave to me… 12 ugly sweaters and a Lewis Denham-Parry.
We’re giving away limited-edition Edera Holiday Sweaters. It’s punny. It’s festive. It's a-lotl.
How to enter:
1. Reshare this post
2. Register for Runtime Rumble: The Quizmas Clash
edera.link/vev5bsky
We’re giving away limited-edition Edera Holiday Sweaters. It’s punny. It’s festive. It's a-lotl.
How to enter:
1. Reshare this post
2. Register for Runtime Rumble: The Quizmas Clash
edera.link/vev5bsky
December 10, 2025 at 10:24 PM
Please remember a Lewis is for life, not just Xmas.
Reposted by Adrian Mouat
fucking bryan is both very, very good -- again -- and also funny, again. I especially dig the fact that building a solution is about trust built into the future. It's human thing.
December 9, 2025 at 4:18 PM
fucking bryan is both very, very good -- again -- and also funny, again. I especially dig the fact that building a solution is about trust built into the future. It's human thing.
Reposted by Adrian Mouat
I fucking love memes you can understand through the language barrier, holy shit
December 6, 2025 at 3:39 PM
I fucking love memes you can understand through the language barrier, holy shit
A f*"**ng tab just broke my GitHub action. Why do we still have these invisible battles 😭
December 2, 2025 at 1:16 PM
A f*"**ng tab just broke my GitHub action. Why do we still have these invisible battles 😭
What was Matthew's job again?
There was no state. Who does she think crucified him, an anarchist collective?
November 28, 2025 at 3:08 PM
What was Matthew's job again?
At a private event last week Bogomil Balkansky shared his thoughts on what he looks for when investing and advising companies.
The quote that stuck with me was "Velocity is the primary determinate of success for a company".
The quote that stuck with me was "Velocity is the primary determinate of success for a company".
November 28, 2025 at 11:03 AM
At a private event last week Bogomil Balkansky shared his thoughts on what he looks for when investing and advising companies.
The quote that stuck with me was "Velocity is the primary determinate of success for a company".
The quote that stuck with me was "Velocity is the primary determinate of success for a company".