I have recently been frustrated by one thing: there is practically no library for caching singleton values. The thing is most caches are designed to keep a lot of things in one caching container. What if I did not need the key-value generic map? So I have decided to create one myself. This was not very painful, but I feel strange that practically no-one has done this before. Sincerely, I am writi
In Q3 2024, our 12-person platform team slashed log ingestion spend by 35% in 90 days, moving from a brittle Elasticsearch-based pipeline to a tuned Vector 0.30 and Loki 3.0 stack—without losing a single log or breaking our 99.95% SLA. GameStop makes $55.5B takeover offer for eBay (279 points) Talking to 35 Strangers at the Gym (144 points) Newton's law of gravity passes its biggest test (15
A common problem with a familiar shape: a process can dial outbound to the internet, but nothing on the internet can dial it back. Your dev server on a laptop. A service in a private VPC. A homelab app behind your router. A container in a pod with no ingress. Same shape every time — outbound works, inbound doesn't. rift is a small Go binary I built to solve that. Run it as a server on a VPS you ow
We Cut Compliance Costs by 40% Using Pulumi 3.140 and Chef 18 for Multi-Cloud AWS and GCP Modern multi-cloud environments offer unmatched flexibility, but they also introduce complex compliance challenges. For our team managing hybrid infrastructure across AWS and GCP, manual policy enforcement and fragmented tooling were driving up compliance costs by 22% year-over-year. By integrating Pulumi 3
TL;DR. golang.org/x/net/idna.Lookup.ToASCII runs UTS-46 NFKC mapping 0-9. A pre-IDNA net.ParseIP check rejects the NO_PROXY lists, TLS-SNI routers, and cookie-domain validators that TrimRight + ParseAddr golang.org/x/net/http/httpproxy, the canonical safe pattern, and two I ran into this one while writing a Go HTTP client for a private project. I idna.Lookup.ToASCII canonicalising the host The sha
Israel national security minister served gold death penalty noose birthday cake
This isn't an anti-Go post. Go is a great language. This is about what I want to understand. I just finished building an L7 HTTP load balancer in Go. It accepts connections. It parses HTTP headers. It forwards requests to backend servers using round-robin. It handles concurrent connections with goroutines. It has health checks. It works. And somewhere in the middle of it working, I realized I didn
In Q3 2024, our 12-person platform engineering team reduced confirmed security incidents by 41.7% (from 72 to 42 per quarter) after rolling out Trivy 0.50 for pre-deployment scanning and Falco 0.40 for runtime detection across 142 production microservices. We didn’t rewrite our CI/CD pipeline, we didn’t hire a dedicated security team, and we didn’t spend a dime on enterprise security tools. Here’s