🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

We just published the first security vulnerability fix for PullRequest from our public bug bounty program on HackerOne! The depth and thoroughness that went into its discovery, triage and escalation were very impressive. Thank you Bugra Eskici! hackerone.com/reports/1558010

How to Catch Injection Security Vulnerabilities in Code Review by @willbarrettdev - member of HackerOne’s network of expert code review engineers helping teams catch security issues before they reach production. hackerone.com/vulnerability-…

Learning TypeScript by Josh Goldberg 🦋 is available on O'Reilly! Josh is maintainer of TypeScript ESLint and member of HackerOne’s network of expert code review engineers helping teams catch issues before they reach production. oreilly.com/library/view/l…

HackerOne LHE in Vegas is coming up…

Secure code review is an extremely effective attack resistance management strategy. At HackerOne we're able to get proposed updates to the PullRequest platform reviewed by vetted engineers in our reviewer community like Graham Campbell 🐘 in every PR. #PHP #Security

#SecurityAt2022 will be here before you know it! Get early-bird pricing now through 8/05! From networking and workshops to panel discussions and keynote speakers, you won’t want to miss our 2022 conference in San Diego! securityat.hackerone.events/2022/2167693?r… HackerOne #CyberSec #ARMyourteam

Penetration tests are versatile and easy to launch. You can use them for source code review:

Despite proving incredible value, and a near unanimous consensus that OSS warrants commercial support, “we as an industry have not figured out how to make open source financially sustainable for the vast majority of maintainers.” (Josh Goldberg 🦋) blog.joshuakgoldberg.com/six-months-of-…

Reminder that naming recommendations in pull request reviews are nitpicky until they’re not nitpicky.

PHP security releases landing tomorrow. If you are on a PHP version older than 7.4, get upgraded to 7.4. If you are on 7.4 or higher, upgrade to the latest patch when it comes out tomorrow. The new releases will be 7.4.32, 8.0.24, 8.1.11 and 8.2.0RC3.

I'm honored to be co-presenting at HackerOne's 2022 Security@ livestream event Oct 13th with Tranzito's Head of Engineering, @willbarrettdev! Come watch us talk about security + code review securityat.hackerone.events/2022/2167693?r…

Exciting news. 🎉 StyleCI now supports Python 3.11. styleci.io

Today I'm thrilled and honored to transition 같이 놀아주세요 to its new owners Jonathan Doyle, Damon Jackman, and Dan Green. It's bittersweet to play a smaller role in the community, but this is amazing news for Moonlight's customers and developer community... 🧵 1/6

We're excited to announce that Moonlight has been acquired by its largest customer! There's no better home for this incredible community than with Jonathan Doyle, Damon Jackman and Dan Green 🎉

go-gpt3 v1.1.9 has been released 🚀 go-gpt3 is an OpenAI GPT-3 API client enabling Go/Golang programs to interact with gpt3 APIs. Thank you Derek Abdine for contributions 🙏 github.com/PullRequestInc… #golang #GPT3 #openai

CISQ's 2022 report on cost of poor software quality highlights cybercrime as the top focus area for the year - with losses rising 64% in 2021. Remember this when you hear folks on your eng team talk about readability, maintainability, and refactoring. it-cisq.org/the-cost-of-po…

.HackerOne has rolled out new AI that supports hackers finding the same vulnerability in other H1 customers! Today, we're announcing our first milestone: enabling hackers to find and validate CVEs (cve.mitre.org) at scale. 🧵

Motorhead is a memory and information retrieval server for LLMs by @Metal_io written in #rustlang (e.g., build a CLI tool to talk to an LLM). I haven't messed with it yet but looks pretty slick👌 github.com/getmetal/motor…

Beta: HackerOne customers can now request code reviews for security fixes straight from H1 reports without having to connect their code repository! In a H1 report, select "Request code review" and paste the code patch you'd like reviewed.

How @Brose_Karriere uses a microservice architecture to scale horizontally and cost efficiently to handle data for 2M+ e-bikes. raynigon.de/architecture/2… #IoT #Cloud