Mastodawn

pwelch Nov 12, 2024

Electronic Frontier Foundation Nov 11, 2024

Now, more than ever, people must be able to hold those in power accountable and inspire others through the act of protest. Protecting your devices and digital assets before, during, and after a protest is vital. https://ssd.eff.org/module/attending-protest

Attending a Protest

For quick reference, we've created a handy guide designed to be printed, folded, and carried in your pocket (PDF download). Now, more than ever, citizens must be able to hold those in power accountable and inspire others through the act of protest. Protecting your electronic devices and digital assets before, during,...

pwelch Sep 26, 2024

Frank Turner & The Sleeping Souls put on an awesome Lost Evenings. Can’t wait until next year 🤘 #FrankTurner #frankturnerthesleepingsouls #lostevenings

pwelch Aug 15, 2024

OpenSSF Aug 14, 2024

📣 Join us for SigstoreCon: Supply Chain Day!
📍Attendees will learn about simplifying signing & verification for digital artifacts using Sigstore, as well as related software supply chain efforts such as SLSA, and more! Learn more: https://openssf.org/blog/2024/08/14/announcing-sigstorecon-supply-chain-day/
#OSSSecurity

Announcing SigstoreCon: Supply Chain Day! – Open Source Security Foundation

pwelch Jul 26, 2024

Happy #SysAdminDay

https://sysadminday.com/

System Administrator Appreciation Day

pwelch Jul 2, 2024

GitHub Jul 2, 2024

NEW: GitHub Artifact Attestations are now generally available! With the power of #sigstore, you can create unforgeable integrity and provenance guarantees for any software you build inside Actions.
https://github.blog/changelog/2024-06-25-artifact-attestations-is-generally-available/

Artifact Attestations is generally available

The GitHub Blog

pwelch Jun 26, 2024

Checkout this great video overview about the new Artifact Attestations feature #github | https://www.youtube.com/watch?v=zTIHb-9c868

Secure your cloud-native deployments with Artifact Attestations

YouTube

pwelch Jun 25, 2024

GitHub Artifact Attestations is generally available #github #sigstore #supplychainsecurity | https://github.blog/changelog/2024-06-25-artifact-attestations-is-generally-available

Artifact Attestations is generally available

The GitHub Blog

pwelch Jun 17, 2024

Stack Overflow Blog: Generative AI Is Not Going To Build Your Engineering Team For You

https://stackoverflow.blog/2024/06/10/generative-ai-is-not-going-to-build-your-engineering-team-for-you

Generative AI is not going to build your engineering team for you - Stack Overflow

pwelch May 14, 2024

Trail of Bits May 14, 2024

Our open source team works with major packaging ecosystems like PyPI and Homebrew to introduce improvements that secure the world’s open source supply chains.

Read about our latest improvement: build provenance for @homebrew!

https://blog.trailofbits.com/2024/05/14/a-peek-into-build-provenance-for-homebrew/

A peek into build provenance for Homebrew

By Joe Sweeney and William Woodruff Last November, we announced our collaboration with Alpha-Omega and OpenSSF to add build provenance to Homebrew. Today, we are pleased to announce that the core o…

Trail of Bits Blog

pwelch May 14, 2024

yossarian (1.3.6.1.4.1.55738)May 14, 2024

For the last 6 months, my team at @trailofbits has been working with Alpha-Omega and @openssf to bring build provenance to @homebrew.

Today, I'm pleased to announce that our work is in public beta! Read about our design and how you can verify homebrew-core’s bottles:

https://blog.trailofbits.com/2024/05/14/a-peek-into-build-provenance-for-homebrew/

A peek into build provenance for Homebrew

Trail of Bits Blog

Web	https://pwelch.dev
GitHub	https://github.com/pwelch
Web	https://pwelch.omg.lol