@postmodern-mod3.bsky.social
Software Engineer, Open Source Developer/Maintainer. Ruby, Crystal, Bash. Sometimes I do security stuff.
GitHub: https://github.com/postmodern
Mastodon:
https://ruby.social/@postmodern
https://infosec.exchange/@postmodern
GitHub: https://github.com/postmodern
Mastodon:
https://ruby.social/@postmodern
https://infosec.exchange/@postmodern
Success! The two duplicates have been removed.
Although, I'm still not convinced that this omniauth-saml advisory needs to exist, since it only references advisories for ruby-saml, which is a dependency. Thoughts?
github.com/github/advis...
Although, I'm still not convinced that this omniauth-saml advisory needs to exist, since it only references advisories for ruby-saml, which is a dependency. Thoughts?
github.com/github/advis...
Remove umbrella `omniauth-saml` advisory in favor of linked `ruby-saml` advisories. by postmodern · Pull Request #5625 · github/advisory-database
GHSA-hw46-3hmr-x9xv claims to affect omniauth-saml, however it only mentions three other ruby-saml advisories and recommends upgrading ruby-saml. I see no evidence that there is a vulnerability in ...
github.com
May 28, 2025 at 7:26 PM
Success! The two duplicates have been removed.
Although, I'm still not convinced that this omniauth-saml advisory needs to exist, since it only references advisories for ruby-saml, which is a dependency. Thoughts?
github.com/github/advis...
Although, I'm still not convinced that this omniauth-saml advisory needs to exist, since it only references advisories for ruby-saml, which is a dependency. Thoughts?
github.com/github/advis...
hmm, I'll have to look into creating my own feed.
February 15, 2025 at 2:17 AM
hmm, I'll have to look into creating my own feed.
Er Feeds.
February 15, 2025 at 2:02 AM
Er Feeds.
Also a little peeved about how simply mapping a finite set of String values from the DB to a finite set of Symbols is so error prone in ActiveRecord. It should not be this difficult. ಠ_ಠ
February 12, 2025 at 12:15 AM
Also a little peeved about how simply mapping a finite set of String values from the DB to a finite set of Symbols is so error prone in ActiveRecord. It should not be this difficult. ಠ_ಠ
I am still looking for an ERD generating gem that can be used in a gem containing ActiveRecord models. Every single ERD generator assumes you're using it within a proper Rails app with a models/ directory, etc.
February 9, 2025 at 6:23 AM
I am still looking for an ERD generating gem that can be used in a gem containing ActiveRecord models. Every single ERD generator assumes you're using it within a proper Rails app with a models/ directory, etc.
External being hosted on a different host or in a different environment, possibly by a different cloud provider. I.e. outside of the main app itself.
February 5, 2025 at 6:29 PM
External being hosted on a different host or in a different environment, possibly by a different cloud provider. I.e. outside of the main app itself.
I assume JWT for authentication? Or is there a Java web service framework also called JWT? :)
February 5, 2025 at 10:34 AM
I assume JWT for authentication? Or is there a Java web service framework also called JWT? :)
I was going to say dry-rb, but I've definitely found edge-case bugs in it's libraries before (a few are still open). I'm *almost* to zero bugs with ronin-rb, but I'm sure there's probably a few more bugs still lurking in there.
github.com/issues?q=is%...
github.com/issues?q=is%...
github.com
February 4, 2025 at 11:24 PM
I was going to say dry-rb, but I've definitely found edge-case bugs in it's libraries before (a few are still open). I'm *almost* to zero bugs with ronin-rb, but I'm sure there's probably a few more bugs still lurking in there.
github.com/issues?q=is%...
github.com/issues?q=is%...
Metasploit's Exploit API is not the greatest. Checkout ronin-exploits which is simpler and cleaner.
github.com/ronin-rb/ron...
github.com/ronin-rb/ron...
February 4, 2025 at 9:27 PM
Metasploit's Exploit API is not the greatest. Checkout ronin-exploits which is simpler and cleaner.
github.com/ronin-rb/ron...
github.com/ronin-rb/ron...