mstdn.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A general-purpose Mastodon server with a 500 character limit. All languages are welcome.

Administered by:

Server stats:

14K
active users

#cloudnative

23 posts19 participants5 posts today

New Open-Source Tool Spotlight 🚨🚨🚨

Falco offers real-time runtime security for Linux, designed to detect malicious activity via kernel-level monitoring. It tracks syscalls & integrates with Kubernetes metadata while supporting analysis in SIEM systems. #SecOps #CloudNative

Falco's modular repos streamline its ecosystem. Core ones include `libs` (drivers/libraries), `rules` (predefined threat detection rules), and `plugins` (external integrations). Check out `falcoctl` for CLI management. #DevSecOps #OpenSource

Why is Falco in C++? Its low-level, high-throughput needs require precise control over memory and performance—traits Go can't fully address. Plus, C++ enables kernel-level integration and cross-language plugin compatibility. #Programming #CloudSecurity

🔗 Project link on #GitHub 👉 github.com/falcosecurity/falco

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

✨
🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️

My Aurora desktop 😊

Ptyxis terminal is great for toolbox container integration. I'm used to a Quake-style dropdown terminal, so I'd like to find a way to hide/show the terminal window with a keyboard shortcut (alt+z). There is possibly a way to do it by writing a kwin script.

I'm eventually going to build my own custom image with the ublue-os/image-template repository.

Day 5
TL;DR: Continued work on backend security — role-based access is now fully wired up.

✅ Got fine-grained role-based access control fully working today.

• Roles loaded from PostgreSQL
• Injected into JWT during login
• Validated via custom `@Roles()` + `RolesGuard`
• Authenticated via `@UseGuards(JwtAuthGuard)` globally
• Introduced `@Public()` decorator to bypass guards for public endpoints
• Swagger supports Bearer token for testing

Took a while to get the role propagation into the token right — the key was enriching the `validateUser()` result, not just fetching data from DB.

Modular, clean, and no magic. Feels good. 👌

more on: write.as/bmariusz/continuation
#CloudNative #TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo
#codingdays #swagger #jwt #jwt_auth #programming

Mariusz Balewski · Continuation: Securing Routes with JWT and Role-Based Access ControlTL;DR: Continuing development on the backend platform — this time focusing on securing routes with JWT, implementing @Roles decorators, h...

Liqo is an open-source project designed to enable dynamic and seamless Kubernetes multi-cluster topologies, supporting heterogeneous on-premise, cloud, and edge infrastructures. It facilitates automatic peer-to-peer establishment of resource and service consumption relationships between independent and heterogeneous clusters, eliminating the need for complex VPN configurations and certification authorities: github.com/liqotech/liqo

Enable dynamic and seamless Kubernetes multi-cluster topologies - liqotech/liqo
GitHubGitHub - liqotech/liqo: Enable dynamic and seamless Kubernetes multi-cluster topologiesEnable dynamic and seamless Kubernetes multi-cluster topologies - liqotech/liqo

Day 4

TL;DR: Full Swagger docs + JWT auth with registration and login are live.

Today’s work focused on two key improvements.

1. Swagger documentation was extended across all API layers. DTOs, entities, and controllers were enriched with `@ApiTags`, `@ApiOperation`, `@ApiResponse`, and detailed `@ApiBody` annotations — including real-life examples for request bodies.

2. JWT-based authentication was implemented. A secure registration flow was added, with password hashing via bcrypt. A login endpoint now issues access tokens containing user ID, email, and roles. All logic is encapsulated using Passport strategies (local and JWT). The next step will be protecting routes with guards and role-based access.

#CloudNative #TypeScript #NestJS #Nextjs #InsuranceTech #Microservices #monorepo
#codingdays #swagger #jwt #jwt_auth #programming

What does it mean to monitor a Kubernetes cluster? What all is involved?

It’s not just about collecting data—it’s about choosing the right signals, knowing where to find them, and using that insight to fix issues faster and make better decisions.

In this 🌩️ Thunder episode, Pete Wall, MCS walks through how components like kube-state-metrics, node exporter, and Kubernetes-native metrics and logs all contribute to the bigger picture of observability.

☆彡 Full episode: youtu.be/AwwhHW4Ev38