... and the original post: alexplescan.com/posts/2023/0…

Protect against XML External Entity (XXE) attacks by disabling external entity processing. #SecureSoftware #CyberSecurity #DevSecOps #SecureCoding #SoftwareSecurity #AppSec

Part 2 - it’s an EVEN DEEPER DIVE into LINQ with me and @stephentoub youtu.be/W4-NVVNwCWs?si=DSdj… as we continue DEEP @DOTNET

Cognito now lets you secure access to APIs with AWS Verified Permission. But before using it, make sure you understand the pricing for Verified Permissions. It's one of the most expensive AWS services you'll find! Considering that you should call Verified Permissions to authenticate and authorize EVERY user request, the $150/million authorization requests price is 150x the cost of API Gateway HTTP APIs ($1/million requests). That's right. 150$/million... it's not a typo. It's a very powerful service and one that I would love to use. However, its current pricing makes it prohibitive except for the most business-critical, most predictable, and low-throughput environments. Some have argued that you can start with it and then move away when it gets expensive. I'm normally OK with that line of thinking, and it's the same argument I'd use for choosing API Gateway over ALB. But at $150/million requests, your cost will grow very, very quickly as traffic grows. It leaves no room for manoeuvre and no margin for error. Any unexpected spikes in traffic or coding errors (e.g. loops, unnecessary auth requests) will be punished with no mercy. I will be overjoyed with this announcement in an alternate universe where Verified Permissions is reasonably priced. But in this universe, I wonder when we will hear the first horror story of a surprise AWS bill. aws.amazon.com/about-aws/wha…

Software vendors dump open source, go for the cash grab buff.ly/3VLwfXm @computerworld

PR to show dates on Aspire dashboard using the browser local time zone: github.com/dotnet/aspire/pul… Blazor JS interop DI TimeProvider. This was so easy to do it feels like cheating.

What a surreal but incredible morning. Spent a few hours with @_sarahyo and the @msftsecurity team recording their new show on securing AI. From hair and makeup through to fully produced studio recording… this is a brave new world for me. Can’t wait to share it with you

Are you @NDC_Conferences Sydney this week? Come claim the most amazing swag you’ll find at an event. Come visit @safestack and we will plant a real tree, where it’s most needed - just for you!!

Sydney I am in you! Finally made it to NDC after 7 hours travel this morning

With regret we have decided to cancel DevNxt 2024 due to a number of factors that have made it impossible to continue. Thank you for all the support you have given us over the last few years and we hope to cross paths again #devNxt devnxt.nz

Last chance for early bird tickets to DevNxt 2024 at the gorgeous Heritage hotel in Queenstown! Earlybird ends on Waitangi day, Feb 6, so get in quick. #DevNxt devnxt.nz

There seem to be (at least) three factors that drive the need for clarity in naming. buff.ly/3r9VJQK

Thanks to everyone who made this event so enjoyable and successful. Thank you to our wonderful and varied speakers that really made the day! #DevNxt #ChristchurchNZ #Ōtautahi instagram.com/p/CrZZrSDyazQ/

Big shout out to our sponsors Pushpay and Crew Recruitment for helping DevNxt to be so affordable. Get your ticket now at devnxt.nz/purchase #DevNxt #ChristchurchNZ #Ōtautahi linktr.ee/crewtechnology @Pushpay

It's almost GO time! The food is ordered, the t-shirts are printing, and the equipment is ready to go. Thank you to all our amazing suppliers! #DevNxt #ChristchurchNZ #Ōtautahi instagram.com/p/CrHIkjSS-fa/

In just 2 weeks, Rasha Abu-Safieh will share her insights and experiences on how inclusive lens can empower every one of us to lead change #DevNxt #ChristchurchNZ #Ōtautahi linkedin.com/in/rasha-y-abu-… instagram.com/p/Cqw8PBcysiv/

Ian Randall, one-time organiser of our spiritual ancestor CodeMania, will share insights into moving from IC to leadership, and losing the daily “I did a thing” endorphin rewards #DevNxt #ChristchurchNZ #Ōtautahi devnxt.nz instagram.com/p/CqMgiNUSsnp/

Every NZ group needs a couple of good Aussies! Jess Dodson (aka GirlGerms) tells us that tech is easy and people are hard, and Kylie Bragg will be talking about how important workplace happiness can be #DevNxt devnxt.nz instagram.com/p/Cp9NGiYS_9R/

Good news everyone! DevNxt is back on in 2023. Get your early-bird tickets before they're gone!

Hey, Tweeps! Here's a gentle reminder that I'm still hiring. Take a look and see if @Timely could be your next workplace. apply.workable.com/gettimely…