Author: drweb

The business case for smart contracts is building fast. Major financial institutions are using programmable, code-based agreements to underpin financial workflows, supply chain operations, and tokenization initiatives. Developers are being asked to prove the value.But there’s a problem most organizations don’t fully see until they’re already stuck: privacy.Public blockchains are transparent by design. Every transaction is visible. That’s the feature that makes them trustworthy—and the reason enterprises can’t simply deploy business logic on one without first addressing confidentiality. If your competitors can see your contract terms, you don’t have a business case. You have a liability.“B2B transactions operate with a…

Read More

If your Bash prompt still feels like it belongs in 2005, with no syntax highlighting, no fuzzy history search, and just a blinking cursor, Flyline can modernize it in about 30 seconds. I’ve used Readline for as long as I’ve used Bash, which is most of my adult life. It always worked, so I never really thought about replacing it. That changed when a colleague shared his terminal during a screen-sharing session. I noticed his shell highlighted a broken pipe in red before he even pressed Enter, and he could fuzzy-search through his command history as easily as searching messages…

Read More

A security flaw found in six popular AI coding agents can let attackers abuse a decades-old feature in Unix to trick an AI agent into giving them control of a developer’s system.Researchers with Google-owned Wiz said the vulnerability, dubbed “GhostApproval,” relies on symbolic links – or symlinks – a file system feature that has been a security problem for years and one in which a file path secretly points to another. Writing to the symlink actually means writing to the target rather than the actual intended file.Wiz found that the same technique – which over the years has been exploited…

Read More

If you run multiple AI coding agents at the same time, you’ve probably faced this problem: too many terminal tabs, no clear way to know which agent is waiting for your input, and constantly switching between tabs just to check their status. A few months ago, I started running Claude Code in one terminal and Codex in another, and within a week, I had five tabs open. Some were idle and waiting for me, but I couldn’t tell which ones without opening each tab individually. I tried using tmux status bars with custom scripts to track idle panes, and it…

Read More

Infrastructure reliability has always been central to enterprise success, yet traditional automation methods often fall short in handling complex, dynamic environments. With the rise of large language models (LLMs), a new paradigm of cognitive automation is emerging — where intelligent agents help infrastructure not only detect failures but also recommend or implement remediations in real-time. This article explores how integrating LLMs with Ansible creates a practical foundation for self-healing infrastructure, especially in mission-critical middleware environments such as Apache, WebLogic and Tomcat.The Case for Cognitive AutomationTraditional automation relies on rigid scripts that require constant human maintenance. While effective for routine tasks,…

Read More

The North Korean-sponsored threat groups behind the long-running fake interview scams targeting developers are expanding the PolinRider supply chain campaign that has escalated over the past several months.Reports from cybersecurity vendors Socket and Rescana found that two groups linked to the Democratic People’s Republic of Korea (DPRK) have published at least 108 malicious packages and browser extensions across a range of open source ecosystems, from npm and Packagist to Go modules and Google’s Chrome Store.The attackers aim to compromise legitimate developer accounts and repositories by placing malware loaders into popular packages that establish command-and-control (C2) systems and then deploy payloads…

Read More

As AI coding agents become a larger part of software development, a new startup founded by former GitHub CEO Thomas Dohmke is introducing infrastructure built to address the growing pressure on centralized Git hosting.The new company, Entire, has launched a preview of a distributed Git network that allows developers to mirror GitHub repositories across multiple geographic regions, enabling AI coding agents to clone and access code from nearby mirrors instead of repeatedly querying a single centralized repository.The company says the approach is intended to reduce latency, avoid rate limits and improve reliability as software development faces the greater computing demand…

Read More

I am happy to announce that my latest book, Python Typing, is now available on all platforms. You can get your copy on Gumroad or Leanpub or Amazon Python has had type hinting support since Python 3.5, over TEN years ago! However, Python’s type annotations have changed repeatedly over the years. In Python Typing: Type Checking for Python Programmers, you will learn all you need to know to add type hints to your Python applications effectively. You will also learn how to use Python type checkers, configure them, and set them up in pre-commit or GitHub Actions. This knowledge will give…

Read More
SQL

A customer was trying to compare two tables and capture a state as a performance metric. In this case, they were wanting to use Redgate Monitor and custom metrics, but since the tables were in a Memory-Optimized table, they couldn’t as Redgate Monitor runs inside a transaction. Note, there are workarounds, but they’re clunky. Fortunately, I had a quick solution, which involved SQL Server User Settable Objects. This post looks at how this works. The Scenario Let’s take the transaction out of the equation by using my own metric. SQL Server includes a few procedures that fall into a pattern.…

Read More