yash yash1th

Shall i implement it?
No ...

Getting serial on modern Macs

Modern devices default to serial output over DockChannel by default, which is why macvdmtool serial doesn't work. In order to use legacy UART:

On the target device:

Disable SIP
Disable boot-arg filtering
Set the following boot args:

serial=3 (or serial=7 or whatever)

Slop

This collection is limited to only include the reports that were submitted as security vulnerabilities to the curl bug-bounty program on Hackerone.

Several other issues not included here are highly suspcious as well.

Reports

[Critical] Curl CVE-2023-38545 vulnerability code changes are disclosed on the internet. #2199174

PostgreSQL is Enough

See the new site: https://postgresisenough.dev

brew is a bad neighbor

This isn't a guide about locking down homebrew so that it can't touch the rest of your system security-wise.

This guide doesn't fix the inherent security issues of a package management system that will literally yell at you if you try to do something about "huh, maybe it's not great my executables are writeable by my account without requiring authorization first".

But it absolutely is a guide about shoving it into its own little corner so that you can take it or leave it as you see fit, instead of just letting the project do what it likes like completely taking over permissions and ownership of a directory that might be in use by other software on your Mac and stomping all over their contents.

By following this guide you will:

Never have to run sudo to forcefully change permissions of some directory to be owned by your account

	#!/usr/bin/env -S bash -c "docker run -p 8080:8080 -it --rm \$(docker build --progress plain -f \$0 . 2>&1 \| tee /dev/stderr \| grep -oP 'sha256:[0-9a-f]*')"

	# syntax = docker/dockerfile:1.4.0

	FROM node:20

	WORKDIR /root

	RUN npm install sqlite3

	const std = @import("std");
	const assert = std.debug.assert;
	const Allocator = std.mem.Allocator;
	const builtin = @import("builtin");

	const log = std.log.scoped(.flatpak);

	/// Returns true if we're running in a Flatpak environment.
	pub fn isFlatpak() bool {
	return if (std.fs.accessAbsolute("/.flatpak-info", .{})) true else \|_\| false;

	from logging import getLogger, ERROR, Formatter, Filter
	from logging.handlers import WatchedFileHandler

	from wakatime import app
	from wakatime.background import wakaq

	TASK_LOG_FORMAT = '[%(asctime)s] %(hostname)s %(levelname)s in %(task)s args=%(task_args)s kwargs=%(task_kwargs)s retry=%(task_retry)s: %(message)s'

	class TaskFilter(Filter):

	This is free and unencumbered software released into the public domain.

	Anyone is free to copy, modify, publish, use, compile, sell, or
	distribute this software, either in source code form or as a compiled
	binary, for any purpose, commercial or non-commercial, and by any
	means.

	In jurisdictions that recognize copyright laws, the author or authors
	of this software dedicate any and all copyright interest in the
	software to the public domain. We make this dedication for the benefit

	#!/bin/bash

	gdb -p "$1" -batch -ex 'set {short}$rip = 0x050f' -ex 'set $rax=231' -ex 'set $rdi=0' -ex 'cont'