September 26, 2025

Platform

Intel launched IGSC 1.0, a licensed library managing firmware updates for its GPUs via the GSC/MEI controller on Windows and Linux. It reads current firmware, improves command‑line reporting, fixes bugs, and notes fwupd does not use IGSC. Available on Intel’s GitHub.

The piece brands Cloudflare as an expanding oligopoly that erodes privacy and competition, citing intrusive CAPTCHAs, Cloudbleed leaks, state‑backed breaches, MITM SSL interception, DHS ties, and poor employment practices, while recommending alternatives like BunnyCDN, Fastly, and Netlify.

Researchers exposed Furbo’s BLE interface, revealing plain‑text Wi‑Fi credentials, writable characteristics, and hidden GATT data. With this information, attackers can force device resets, hijack registration, and hijack video streams, disabling functionality and violating privacy.

WIP.cx converts any Docker‑Compose file into a single‑command, cloud‑agnostic deployment, using a reverse‑proxy and DNS‑encoded hostnames, per‑user Proxmox VMs with WireGuard, safety hooks, and Traefik auto‑HTTPS. $20 beta offers instant, secure production hosting.

Chainguard released a suite of SLSA‑scaffolded JavaScript libraries to tighten npm supply‑chain security. By vetting and reproducing packages, it offers developers safer foundations, lowering exposure to malicious code and supply‑chain attacks.

Cloudflare introduces its Data Platform, a R2‑based bucket that eliminates traditional data lake costs with zero‑cost egress, managed metadata, and built‑in Pipelines, R2 Data Catalog, and R2 SQL, enabling petabyte‑scale, open‑standard analytics at pay‑for‑use beta.

The post shows VBScript's Randomize/Rnd uses Timer() with 15.625‑ms precision, yielding only 65,536 unique seeds and vulnerable token generation. A Python script brute‑forces these seeds in 15‑ms steps, proving VBScript’s PRNG unsuitable for security.

Linux’s upcoming 6.18 kernel will enable atomic writes for md‑linear, linear software RAID, using Device Mapper’s stack. Author John Garry notes the necessary plumbing exists; the change is a single‑line flag activation in the md‑linear code.

Gadget upgraded its 100,000‑plus‑Shopify‑store database from PostgreSQL 13 to 15 without downtime, employing AlloyDB sharding, logical replication, and a coordinated cutover. A Temporal workflow paused PgBouncer, switched the primary to read‑only, incremented sequences, and updated it within three seconds, preserving all client connections.

Redox plans 2025‑26 development: host‑based web services in a VM, secure edge servers, full desktop with COSMIC/Wayland, POSIX‑style APIs, expanded language runtimes, performance boosts, capability‑safety, new hardware support, and community recruitment for contributions, grants, jobs.

Immutable infrastructure replaces servers with fresh images, producing atomic deployments and rollbacks. It requires configuration, centralized logging, and state separation, adding build time, storage costs, and tooling complexity. Gradual adoption, immutable web tiers with mutable databases, balances stability and progress.

PostgreSQL has released version 18, offering new features and improvements. The site gives fast access to download links, documentation, forums, developer resources, support options, and donation pathways, making it the hub for users to engage with the ecosystem.

Kubernetes’ new block‑tracking feature lets CSI‑based storage pinpoint changed blocks between snapshots, eliminating full‑volume scans. It introduces a gRPC SnapshotMetadata API, CRD, and sidecar; providers implement RPCs while backup tools adapt to stream deltas, cutting windows and costs.

Airflow lineage data observability lets teams trace errors, assess downstream impact, and enforce compliance by visualizing DAG run dependencies, revealing blast radius, enabling rapid job fixes, and offering column‑level governance through Datadog integration.

Senior engineers see robust networks vital for job mobility, talent attraction, and peer support. After missing a head‑of‑engineering role because of lacking contacts, the author turned to active networking—meetups, speaking, writing, and maintaining relationships—to build social capital.

A Go developer investigates the behavior of appending to an infinite slice, finding that it leads to minimal memory consumption with a "slow leak" scenario where the entire slice grows indefinitely, while setting `grow` to true reliably causes overflow quickly.