<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no, interactive-widget=resizes-content" />
این تگ چه میکند؟
به ویژه این:
resizes-content
این تگ چه میکند؟
به ویژه این:
resizes-content
Building Microservices: Using an API Gateway
From nginx blog
https://www.nginx.com/blog/building-microservices-using-an-api-gateway/?trk=comments_comments-list_comment-text
From nginx blog
https://www.nginx.com/blog/building-microservices-using-an-api-gateway/?trk=comments_comments-list_comment-text
NGINX
Building Microservices Using an API Gateway | NGINX
Learn why and how to build microservices using API gateways for communication between clients and applications.
مهندسی داده یکی از فیلداییه که تو دانشگاه به اون صورت کورس تخصصیای نداره که بتونیم عمیق یاد بگیریم، بهشدت گستردهست و buzz wordهای زیادی از لحظهای که آدم شروع به کار کردن میکنه، داره.
ما چند تا از بچههای دانشکده، همراه با چند تا از همکارامون تو شرکتای ایرانی، یه رودمپ واسه مهندسیداده درست کردیم (اسم تیممون هم databurstه)
مثل کاری که سر درس وب با امید عزیز انجام دادیم، این ریپازیتوری هم پابلیکه و دوست داریم بتونیم مشارکت شما رو هم داشته باشیم.
https://github.com/data-burst/data-engineering-roadmap
اگه ستاره بهمون بدین هم که دمتونگرم ❤️
ما چند تا از بچههای دانشکده، همراه با چند تا از همکارامون تو شرکتای ایرانی، یه رودمپ واسه مهندسیداده درست کردیم (اسم تیممون هم databurstه)
مثل کاری که سر درس وب با امید عزیز انجام دادیم، این ریپازیتوری هم پابلیکه و دوست داریم بتونیم مشارکت شما رو هم داشته باشیم.
https://github.com/data-burst/data-engineering-roadmap
اگه ستاره بهمون بدین هم که دمتونگرم ❤️
GitHub
GitHub - data-burst/data-engineering-roadmap
Contribute to data-burst/data-engineering-roadmap development by creating an account on GitHub.
🎉10👍3
https://jailbreakbench.github.io/
Jailbreak attacks cause large language models (LLMs) to generate harmful, unethical, or otherwise unwanted content. Evaluating these attacks presents a number of challenges, and the current landscape of benchmarks and evaluation techniques is fragmented. First, assessing whether LLM responses are indeed harmful requires open-ended evaluations which are not yet standardized. Second, existing works compute attacker costs and success rates in incomparable ways. Third, some works lack reproducibility as they withhold adversarial prompts or code, and rely on changing proprietary APIs for evaluation. Consequently, navigating the current literature and tracking progress can be challenging….
Jailbreak attacks cause large language models (LLMs) to generate harmful, unethical, or otherwise unwanted content. Evaluating these attacks presents a number of challenges, and the current landscape of benchmarks and evaluation techniques is fragmented. First, assessing whether LLM responses are indeed harmful requires open-ended evaluations which are not yet standardized. Second, existing works compute attacker costs and success rates in incomparable ways. Third, some works lack reproducibility as they withhold adversarial prompts or code, and rely on changing proprietary APIs for evaluation. Consequently, navigating the current literature and tracking progress can be challenging….
Forwarded from Yumcoder
Security Headers: Security headers are HTTP response headers that enable web servers to communicate security policies to client browsers. They provide an additional layer of protection against various types of attacks and vulnerabilities by instructing the browser on how to handle certain aspects of the web page.
—>> Content Security Policy (CSP):
- CSP allows website administrators to define a set of rules that control the sources from which a browser can load content. This helps prevent XSS attacks and data injection by specifying which scripts, stylesheets, images, and other resources are allowed to be executed or loaded.
- Example: Content-Security-Policy: script-src 'self' https://example.com;
—>> X-Content-Type-Options:
- This header helps to mitigate MIME type sniffing vulnerabilities by instructing the browser to adhere strictly to the declared content type and not to perform any MIME type sniffing.
- Example: X-Content-Type-Options: nosniff
—>> X-Frame-Options:
- X-Frame-Options header prevents Clickjacking attacks by specifying whether a browser should allow a web page to be displayed in a frame or iframe. It can deny framing altogether or restrict framing to the same origin.
- Example: X-Frame-Options: DENY
—>> X-XSS-Protection:
- X-XSS-Protection header enables the built-in XSS filter of modern web browsers. It helps to detect and mitigate reflected XSS attacks by sanitizing or blocking malicious scripts.
- Example: X-XSS-Protection: 1; mode=block
—>> Strict-Transport-Security (HSTS):
- HSTS instructs the browser to only communicate with the server over HTTPS, even if the user attempts to access the site via HTTP. This prevents SSL-stripping attacks and ensures secure connections.
- Example: Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
—>> Referrer-Policy:
- This header controls how much referrer information (the URL of the webpage that linked to the resource being requested) should be included in the HTTP request headers. It helps to prevent sensitive data leakage.
- Example: Referrer-Policy: strict-origin-when-cross-origin
—>> Content Security Policy (CSP):
- CSP allows website administrators to define a set of rules that control the sources from which a browser can load content. This helps prevent XSS attacks and data injection by specifying which scripts, stylesheets, images, and other resources are allowed to be executed or loaded.
- Example: Content-Security-Policy: script-src 'self' https://example.com;
—>> X-Content-Type-Options:
- This header helps to mitigate MIME type sniffing vulnerabilities by instructing the browser to adhere strictly to the declared content type and not to perform any MIME type sniffing.
- Example: X-Content-Type-Options: nosniff
—>> X-Frame-Options:
- X-Frame-Options header prevents Clickjacking attacks by specifying whether a browser should allow a web page to be displayed in a frame or iframe. It can deny framing altogether or restrict framing to the same origin.
- Example: X-Frame-Options: DENY
—>> X-XSS-Protection:
- X-XSS-Protection header enables the built-in XSS filter of modern web browsers. It helps to detect and mitigate reflected XSS attacks by sanitizing or blocking malicious scripts.
- Example: X-XSS-Protection: 1; mode=block
—>> Strict-Transport-Security (HSTS):
- HSTS instructs the browser to only communicate with the server over HTTPS, even if the user attempts to access the site via HTTP. This prevents SSL-stripping attacks and ensures secure connections.
- Example: Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
—>> Referrer-Policy:
- This header controls how much referrer information (the URL of the webpage that linked to the resource being requested) should be included in the HTTP request headers. It helps to prevent sensitive data leakage.
- Example: Referrer-Policy: strict-origin-when-cross-origin
👍3
Forwarded from Hadi Esna
https://cryptocurrencyjobs.co/engineering/chronicle-labs-smart-contract-developer/
اینو یکی از دوستام فرستاد
به نظر میاد فرصت جالبی باشه برا کسی که میخواد تازه شروع کنه کار کردن روی smart contractهارو
اینو یکی از دوستام فرستاد
به نظر میاد فرصت جالبی باشه برا کسی که میخواد تازه شروع کنه کار کردن روی smart contractهارو
Cryptocurrency Jobs
Junior Smart Contract Developer at Chronicle Labs
Chronicle Labs is looking to hire a Junior Smart Contract Developer to join their team. This is a full-time position that can be done remotely anywhere in Africa, Europe or the United Kingdom.
👍1
Forwarded from Hadi Esna
سلام دوستان
یه تسک خیلی کوچیک فرانتی هست
فک کنم در حد سه چهار ساعت زمان ببره
کسی هست اینجا بتونه کمکم کنه امروز یا فردا؟
بودجه هم ۱۰۰ تا ۱۵۰ دلاره
یه تسک خیلی کوچیک فرانتی هست
فک کنم در حد سه چهار ساعت زمان ببره
کسی هست اینجا بتونه کمکم کنه امروز یا فردا؟
بودجه هم ۱۰۰ تا ۱۵۰ دلاره
👍2
GitHub - paradedb/paradedb: Postgres for Search and Analytics
https://github.com/paradedb/paradedb
https://github.com/paradedb/paradedb
GitHub
GitHub - paradedb/paradedb: ParadeDB is a modern Elasticsearch alternative built on Postgres. Built for real-time, update-heavy…
ParadeDB is a modern Elasticsearch alternative built on Postgres. Built for real-time, update-heavy workloads. - paradedb/paradedb