Skip to main content

Posts tagged with #Security

Recent Posts (Page 1)

Choose a key

How to handle key issues with apt on Ubuntu

For some time now, I was receiving the following warnings after an otherwise successful run of apt update: plain 1W: http://linux.dropbox.com/ubuntu/dists/disco/Release.gpg: 2Key is stored in legacy trusted.gpg keyring (/etc/apt/trusted.gpg), 3see the DEPRECATION section in apt-key(8) for details. 4W: http://prerelease.keybase.io/deb/dists/stable/InRelease: 5Key is stored in legacy trusted.

Introducing safe npm

Safe npm commands

Socket’s “safe npm” is a command-line tool that wraps the npm command transparently and protects developers from malware, typo squats, install scripts, protestware, telemetry, and more. It works with all npm commands that can install new third-party code, including npm install, npm update, npm uninstall, npm rm, npm exec, and npx.

Screenshot of sandworm.dev

Sandworm security audit

Sandworm Audit is a free and open source command-line tool designed to scan your project and dependencies for security vulnerabilities, license compliance issues, and other metadata problems. It works with any modern JavaScript package manager and supports custom license policies. With Sandworm Audit, you can generate easy-to-read reports that include JSON issue and license usage reports, CSV files of all dependencies and license information, and SVG dependency tree and treemap visualizations.

A hacker hacking away doing mischievous stuff.

Google's new OSV scanner

Google recently published a security scanner named OSV Scanner, that checks your files for vulnerabilities that hide in your code. It connects and checks for all issues collected on the OSV database. It is a great tool for developers to quickly check their code for vulnerabilities before they are released to the public.

Photo by Stefan Steinbauer via Unsplash

Protected .dotfile files with Keybase

For reasons I don’t want to go too deep into (I once again violated my rule to NOT install Ubuntu versions without a LTS in their name and ended up without eyes or ears) I had to reinstall my workstations and computers last week.

Back to top
Back Forward