Forwarded from Luna's pathway🤗 (Luna)
Being there at the beginning is as noble as being there at the end. True legacy is not measured by witnessing the finish line, but by the effort, sacrifice, and vision poured into the journey. Engineer Simegnew Bekele may not see the completion of the Renaissance Dam, but his hands and heart will forever stand within it.
Congrats all😍
Congrats all
Please open Telegram to view this post
VIEW IN TELEGRAM
❤9
NPM Nightmare 🤯
Josh, the dude running Chalk (300M downloads a week), got tricked big time.
A fake email, looking like it was from npm (“support@npmjs.help”), said his account needed a 2FA reset. It seemed real, so he typed his login and code.
Boom hackers took over!
On Sep 8, they slipped bad code into
Watch Fireship
Josh, the dude running Chalk (300M downloads a week), got tricked big time.
A fake email, looking like it was from npm (“support@npmjs.help”), said his account needed a 2FA reset. It seemed real, so he typed his login and code.
Boom hackers took over!
On Sep 8, they slipped bad code into
chalk and 17 other packages. The code was a crypto thief, swapping real wallet addresses (like for Ethereum) with fakes to steal money from browsers.Watch Fireship
❤1
Forwarded from GebetaMaps
Learn about Ethiopia while having fun. You will see a place for a few seconds and guess where it is on the map.
Check it out at 👉 geo.play.gebeta.app or you can use @gebetaPlayGeoBot
📍 gebeta.app
Check it out at 👉 geo.play.gebeta.app or you can use @gebetaPlayGeoBot
📍 gebeta.app
Highly recommend this if you’re planning on starting a company from the man himself Sam Altman.
https://youtu.be/CBYhVcO4WgI?si=kP-QFUfuoV0B9OeD
https://youtu.be/CBYhVcO4WgI?si=kP-QFUfuoV0B9OeD
YouTube
Lecture 1 - How to Start a Startup (Sam Altman, Dustin Moskovitz)
Lecture Transcript: http://tech.genius.com/Sam-altman-lecture-1-how-to-start-a-startup-annotated
Sam Altman, President of Y Combinator, and Dustin Moskovitz, Cofounder of Facebook, Asana, and Good Ventures, kick off the How to Start a Startup Course. Sam…
Sam Altman, President of Y Combinator, and Dustin Moskovitz, Cofounder of Facebook, Asana, and Good Ventures, kick off the How to Start a Startup Course. Sam…
❤1
If you wanna convince your boss here's github's email template 😂
https://githubuniverse.com/convince
https://githubuniverse.com/convince
GitHub Universe
GitHub's global developer event is back. Join the world's fair of software.
🔥1
Forwarded from Beka (Beka)
Excited to announce the Auth.js project (formerly NextAuth.js) joins Better Auth
https://www.better-auth.com/blog/authjs-joins-better-auth
https://www.better-auth.com/blog/authjs-joins-better-auth
Better-Auth
Auth.js is now part of Better Auth
Auth.js, formerly known as NextAuth.js, is now being maintained and overseen by Better Auth team
Just sent my first-ever PR to the Laravel framework
added except() method to JsonResource class so you can easily exclude fields like:
Taylor Otwell reviewed it (yeah, that Taylor 👀) and said they’ll consider it for Laravel 13.
Didn’t get merged, but still feels awesome seeing my name in a Laravel PR thread 😎
Here's the link - https://github.com/laravel/framework/pull/57426
added except() method to JsonResource class so you can easily exclude fields like:
(new UserResource($user))->except(['email', 'profile.ssn']);
Taylor Otwell reviewed it (yeah, that Taylor 👀) and said they’ll consider it for Laravel 13.
Didn’t get merged, but still feels awesome seeing my name in a Laravel PR thread 😎
Here's the link - https://github.com/laravel/framework/pull/57426
GitHub
feat: Add exclude functionality to JsonResource by kalebalebachew · Pull Request #57426 · laravel/framework
Introduced a new protected property $excludes to hold attributes to be excluded from the resource array.
Added the except method to allow exclusion of specified attributes, supporting dot notation ...
Added the except method to allow exclusion of specified attributes, supporting dot notation ...
🔥8
Ever wondered why we hash JWTs with a secret key if anyone can decode them anyway?
A JWT has three parts:
header.payload.signature
The header and payload are just Base64URL-encoded, not encrypted so yes, anyone can decode and read them. That’s intentional.
When a server receives a JWT, it recomputes the signature using its secret key and compares it to the token’s signature.
If someone changed even one letter in the payload like switching
to
the signatures wouldn’t match and the token would be rejected. so hashing a JWT with a key isn’t about secrecy it’s about authenticity.
It proves the data is real, untampered, and issued by someone who holds the secret.
A JWT has three parts:
header.payload.signature
The header and payload are just Base64URL-encoded, not encrypted so yes, anyone can decode and read them. That’s intentional.
When a server receives a JWT, it recomputes the signature using its secret key and compares it to the token’s signature.
If someone changed even one letter in the payload like switching
"role":"user"
to
"role":"admin"
the signatures wouldn’t match and the token would be rejected. so hashing a JWT with a key isn’t about secrecy it’s about authenticity.
It proves the data is real, untampered, and issued by someone who holds the secret.
🔥5