Linux

So what is going to happen when Linus gets to old to keep on to maintain the kernel ? I know there is a whole team, but he seems to have some kind of executive role in what’s gets released and not.

My friends and I are hosting a Linux and FOSS group chat to have some casual chat, help, and anything related to the topic really. We chose this platform to chat on to keep a privacy preserving way to engage with one another.

https://signal.group/#CjQKIBshKeuikl5HfagdB46bXpGOyQf_4cVvO3vUMs71DiB9EhDEbE8mS3EPYL0e9CQWHBsy

cross-posted from: https://rss.ponder.cat/post/211904

collapsed inline media

Accidentally exposing secrets like API keys, tokens, or credentials in your code opens the door for threat actors to exploit your systems. Such attackers don't stop at one breach; they automate their attacks, move fast, and can potentially compromise entire infrastructure within minutes.

To tackle such scenarios, MongoDB has come up with an open source solution called "Kingfisher".

What's Happening: Launched as an open source tool for detecting secrets in code, file systems, and Git history, Kingfisher was born out of MongoDB's need for a fast, reliable way to identify exposed credentials and prevent security risks before they spiral out of control.

The tool doesn’t just stop there; it can also validate any secrets it finds, as long as they are from supported services, so developers know which keys are still active and risky.

MongoDB has been using Kingfisher internally throughout its development and deployment processes, helping them detect and fix exposed secrets early.

What to Expect: As for how it works, Kingfisher scans code, files, and Git history using various techniques like entropy analysis, real-time validation, pattern matching, and source code parsing for or accurate detection of exposed secrets.

It’s written in Rust and has many handy features like multi-language source parsing with Tree-sitter, high-speed regex matching with Hyperscan, extensible rulesets, cross-platform support, and over 700 built-in detection rules that cover a wide range of cloud services and secret types.

All of this runs on the user’s own systems or infrastructure, ensuring no sensitive data is sent to third-party servers, and there's cross-platform support for Linux, Windows, and macOS. Using Kingfisher also helps security teams stay aligned with SLSA compliance standards.

If you are up for a longer read, then MongoDB has published a detailed blog post explaining how they built Kingfisher.

From It's FOSS News via this RSS feed

https://flathub.org/statistics

I never thought I’d be this upset to a point I’d be writing an article about something this sensitive with a clickbait-y title. It’s simultaneously demotivating, unproductive, and infuriating. I’m here writing this post fully knowing that I could have been working on accessibility in GNOME, but really, I’m so tired of having my mood ruined because of privileged people spending at most 5 minutes to write erroneous posts and then pretending to be oblivious when confronted while it takes us 5 months of unpaid work to get a quarter of recognition, let alone acknowledgment, without accounting for the time “wasted” addressing these accusations.

I beg you, please keep writing banger posts like fireborn’s I Want to Love Linux. It Doesn’t Love Me Back series and their interluding post. We need more people with disabilities to keep reminding developers that you exist and your conditions and disabilities are a spectrum and not absolute.