Black duck down?

Understand access package visibility in the My Access portal - Microsoft Entra ID Governance A conceptual article describing access package visibility in the My Access portal.

learn.microsoft.com/en-us/entra/... the planned change to package visibility has been cancelled. Yay! @nathanmcnulty.com

@r00tveg.bsky.social could you drop me a shout or allow my DMs? Have a very off the wall music related question for you.

I think that's what lots of our users would do, and it also makes it harder for them to find the right package

Understand access package visibility in the My Access portal - Microsoft Entra ID Governance A conceptual article describing access package visibility in the My Access portal.

@nathanmcnulty.com this change in access package visibility seems like a big step backwards in terms of usability. Are there any ways to reduce the impact of it on users as it will cause lots of support overhead? learn.microsoft.com/en-us/entra/...

That's ok, I'm sure they've got the support contract sorted now 😉

Good morning everyone. It is finally time for the party we've been planning for for the last ten years.

Happy birthday to us!

And we're off, steelcon 2025 #steelcon

Hexen was very pretty and well designed for it's time

The early issues of the 16k speccy were not compatible with most of the ram upgrades. I had one second hand and this meant I couldn't upgrade it. Ended up getting an Electron instead, so no complaints from me.

Yay!

While we've got your attention, we need more talks and especially workshops. If you'd like to present your work to your avid peers, submit it here.

docs.google.com/forms/d/e/1F...

Hope he makes a full recovery

#AppSecThursday Banner

What advice would you give to someone just starting in Application Security?

#AppSecThursday #TalkAppSecToMe

Write a basic web app

Merry Christmas 🎁

Very pleasantly surprised how easy it was to get my email domains up and running with fastmail. A pity you can't interact with the file storage via ash though.

It looks like you're writing a letter... 📎

Introducing Supply-Chain Firewall: Protecting Developers from Malicious Open Source Packages | Datadog Security Labs Release of Supply-Chain Firewall, an open source tool for preventing the installation of malicious PyPI and npm packages

We are happy to introduce our latest tool "Supply Chain Firewall" 🎉 by @ikretz.bsky.social
The tool detects & prevents installation of malicious packages in local development environment.

Read more
securitylabs.datadoghq.com/articles/int...

And give it a try github.com/DataDog/supp...

'The City and the Stars' fits that quite well

Securing AI in a High Stakes Environment: Insights from the FinServ and Healthcare Industries

I did a fireside chat about securing the use of GenerativeAI tools. Some insights we've found from implementing these controls. www.prompt.security/events/secur...

Autumn

UK squirrels

SYN