"History of the browser user-agent string"
https://webaim.org/blog/user-agent-string-history
#browsers #history #useragent #web
"Websites Are Tracking You Via Browser Fingerprinting"
https://engineering.tamu.edu/news/2025/06/websites-are-tracking-you-via-browser-fingerprinting.html
You can have an idea about your case by using: https://www.amiunique.org/
#privacy #security
"Optimizing Django Docker Builds with Astral’s `uv`"
https://rob.cogit8.org/posts/optimizing-django-docker-builds-with-astrals-uv/
#python #uv #docker
"Mac Contacted 63 Different Apple Owned Domains in One Hour - While Not is Use"
A Pi-hole (or similar setup) is definitely a must in this day and age.
#tech #privacy #localsoftware
"Breaking down ‘EchoLeak’, the First Zero-Click AI Vulnerability Enabling Data Exfiltration from Microsoft 365 Copilot"
https://www.aim.security/lp/aim-labs-echoleak-blogpost
#security #cybersecurity #ai #infosec #microsoft #copilot
"CVE-2025-49091: Konsole: Code execution from web browser using URL schemes handled by KDE's KTelnetService"
https://seclists.org/oss-sec/2025/q2/242
#security #netsec #kde #konsole
"CVE-2025-47934 – Spoofing OpenPGP.js signature verification"
https://codeanlabs.com/blog/research/cve-2025-47934-spoofing-openpgp-js-signatures/
#security #cybersecurity #infosec #openpgp #openpgpjs
"Django security releases issued: 5.2.2, 5.1.10, and 4.2.22"
CVE-2025-48432: Potential log injection via unescaped request path
https://www.djangoproject.com/weblog/2025/jun/04/security-releases/
#django #python #security
"Disclosure: Covert Web-to-App Tracking via Localhost on Android"
or
Meta and Yandex "native Android apps receive browsers' metadata, cookies and commands from the Meta Pixel and Yandex Metrica scripts embedded on thousands of web sites."
#security #android #browsers #privacy
Django: Deferred constrain enforcement
Another Friday, another Django related post. I guess this blog is becoming a bit monothematic. I promise the next ones will bring the much-needed diversity of contents, but today let’s explore a very useful feature of the Django’s ORM.
Ok… Ok… it’s more of a feature of PostgreSQL that Django supports, and it isn’t available on the other database backend. But let’s dive in any way. […]
https://blog.ovalerio.net/archives/3160
#Django #djangofridaytips #postgresql #Python
"Why are 2025/05/28 and 2025-05-28 different days in JavaScript?"
https://brandondong.github.io/blog/javascript_dates/
🤯
#javascript
"Remote Prompt Injection in GitLab Duo Leads to Source Code Theft"
https://www.legitsecurity.com/blog/remote-prompt-injection-in-gitlab-duo
#security #ai #gitlab
"Loading Pydantic models from JSON without running out of memory"
https://pythonspeed.com/articles/pydantic-json-memory/
#python #pydantic
"Django Security Best Practices: A Comprehensive Guide for Software Engineers"
https://corgea.com/Learn/django-security-best-practices-a-comprehensive-guid-for-software-engineers
#python #django #security
"The 18-point secrets management checklist"
https://www.hashicorp.com/en/blog/the-18-point-secrets-management-checklist
#security #cybersecurity #secrets #secretmanagement
"Security Vulnerabilities fixed in Firefox 138.0.4"
https://www.mozilla.org/en-US/security/advisories/mfsa2025-36/
* CVE-2025-4920: Out-of-bounds access when resolving Promise objects
* CVE-2025-4921: Out-of-bounds access when optimizing linear sums
#firefox #security
"The cryptography behind passkeys"
https://blog.trailofbits.com/2025/05/14/the-cryptography-behind-passkeys/
#authentication #security #passkeys
Node.js Security Release
https://nodejs.org/en/blog/vulnerability/may-2025-security-releases
* Improper error handling in async cryptographic operations crashes process
* Improper HTTP header block termination in llhttp
* Corrupted pointer in node::fs::ReadFileUtf8(const FunctionCallbackInfo
#nodejs #security
"Passkeys for Normal People"
https://www.troyhunt.com/passkeys-for-normal-people/
#authentication #passkeys #webauthn #mfa #security