Adam Caudill

@[email protected]
705 Followers
124 Following
546 Posts
Security Engineer, Researcher, & Developer. Formerly at 1Password, BSI / AppSec Consulting, Numorian, etc.
Websitehttps://adamcaudill.com/
Githubhttps://github.com/adcaudill
Exposerahttps://exposera.com/u/adamcaudill
Adam CaudillFeb 20
I've been using my Phosphor Notes project for about a month now as a replacement for Loqseq / Obsidian, and I've got to say, building something custom was the right call. This is working out really well. The long-form writing support is so much better than what Logseq offers. https://github.com/adcaudill/phosphor-notes
GitHub - adcaudill/phosphor-notes: A minimal, secure, and focused knowledge studio for the modern thinker.

A minimal, secure, and focused knowledge studio for the modern thinker. - adcaudill/phosphor-notes

GitHub
Adam CaudillFeb 18
Soatok DreamseekerFeb 17

https://soatok.blog/2026/02/17/cryptographic-issues-in-matrixs-rust-library-vodozemac/

#Matrix #infosec #vulnerabiltiy #cryptography #privacy

Cryptographic Issues in Matrix’s Rust Library Vodozemac - Dhole Moments

If you’re reading this after Matrix’s blog post, make sure you read the addendum to this one. Two years ago, I glanced at Matrix’s Olm library and immediately found several side-c…

Dhole Moments
Adam CaudillFeb 15
Show threadWladimir PalantFeb 15

(Not so) fun fact: Ars Technica story on this incident got retracted. I’ve noticed that the article “disappeared” and this got me confused at first: was this story a fake after all? Why would Ars Technica report on it and then pull back?

Turns out, their article contained AI-hallucinated quotes:

“On Friday afternoon, Ars Technica published an article containing fabricated quotations generated by an AI tool and attributed to a source who did not say them.”

https://arstechnica.com/staff/2026/02/editors-note-retraction-of-article-containing-fabricated-quotations/

Yes, way to go for an article on failing of the so-called “AI”…

Editor’s Note: Retraction of article containing fabricated quotations

We are reinforcing our editorial standards following this incident.

Ars Technica
Adam CaudillFeb 15

I was watching a video on Russia rushing to move from Starlink to other satellite internet options, including a Gazprom-owned system using satellites in geosynchronous orbit. I wonder how long it'll be until we start seeing countries de-orbit enemy satellites?

There's an upcoming mission to boost a NASA satellite via a new satellite that'll dock & boost the target, for a fairly cheap $30M. There's no reason I can see that the opposite wouldn't work. Using the same techniques to disturb or de-orbit an enemy satellite.

I would assume that collision avoidance would complicate this, but have to wonder if these communication satellites are manoeuvrable enough to avoid a dedicated satellite built to find and grapple a target. For a country like Ukraine, financing such a mission could have massive ROI. (Though lots of complications for the launching country.)

Adam CaudillFeb 14
I have a bad habit of forgetting about holidays - so I took advantage of the fact that I'm building a PKM app to add a banner to daily journal notes for holidays. Simple & thoughtful touches like this can make software so much more useful.
Adam CaudillFeb 13
For users of YAWAST / yawast-ng: The project has moved to a new location, and will have a major feature update next week, with plugins, new injection testing, automation & performance improvements, and more. It'll be the biggest release in years. https://github.com/adcaudill/yawast-ng
GitHub - adcaudill/yawast-ng: Web Application Security Scanner

Web Application Security Scanner. Contribute to adcaudill/yawast-ng development by creating an account on GitHub.

GitHub
Adam CaudillFeb 9
Rough morning for the GitHub folks. And everyone trying to work.
Adam CaudillFeb 7
For those that enjoy my short stories, here's the latest: "Sweet Dreams" - an exploration of technology & human motivations, and the nature of escapism. https://adamcaudill.com/writing/2026/02/07/sweet-dreams/
Sweet Dreams

This is a short story, an exploration of technology & human motivations, and the nature of escapism. She popped the earbuds in her ears, scrolled through the list on her phone, selected an item, and clicked play. An entirely routine routine, an act utterly relatable, a nightly ritual for countless people around the world. Slowly rising, as if drawing closer, was the sound of rain. A soft & rhythmic pattering, steadily building. Her eyes closed; breathing became slower and deeper. After a few minutes, a soothing voice spoke: “your selected dream will soon begin.”

Adam CaudillFeb 5
Simon WillisonFeb 5

The CIA just stopped publishing their World Factbook and took every page, including the archived copies of previous versions!

This sucks. It was public domain, so I recovered the 2020 edition (the last one published as a zip file) and shared it to GitHub https://simonwillison.net/2026/Feb/5/the-world-factbook/

Spotlighting The World Factbook as We Bid a Fond Farewell

Somewhat devastating news today from CIA: One of CIA’s oldest and most recognizable intelligence publications, The World Factbook, has sunset. There's not even a hint as to why they decided …

Simon Willison’s Weblog
Adam CaudillFeb 3
If you use a PKM tool (Logseq, Obsidian, etc), what do you like? What do you hate? What needs do you have that aren't being met? I'm working on a new PKM, and I want to make sure that I'm hitting the key points early in development.