Безопасность подов: взгляд пользователя K8s

Про информационную безопасность Kubernetes-кластеров много пишут с позиции специалистов ИБ. Но полезно взглянуть на эту тему глазами обычных пользователей K8s — инженеров и разработчиков. Тех, кто много работает со своими приложениями в подах, но не управляет служебными частями кластера. Большинство стандартов безопасности описывает лучшие практики настройки управляющих компонентов — control plane. Нечасто встречаются рекомендации по грамотной настройке рабочих единиц — подов. В статье попробуем восполнить этот пробел. Выполним обзор источников, рассмотрим хорошие практики работы с образами. Изучим, как ограничить привилегии контейнера и почему это важно. Поговорим о инструментах автоматической проверки манифестов и разберем примеры GItlab CI пайпланов.

https://habr.com/ru/companies/raiffeisenbank/articles/901142/

revive v1.9.0 is out

Hello, everyone

version 1.9.0 of revive, the fast, configurable, extensible, flexible, and beautiful linter for Go, is available

What's new:
support for more struct tags, some important bug fixes and better doc.

Thanks to all the contributors!

Your feedback is essential for making revive even better, feel free to reach out if you run into any issues or have suggestions.

https://github.com/mgechev/revive

BREAKING NEWS: #JavaScript is weird! Who would've thought? An article reveals the shocking truth that #eval is a #nightmare, #loops are #sneaky, and #ASI is quirkier than your uncle's dance moves at a wedding. But hey, don't worry, just slap a #linter on it and pretend everything's fine.
https://stack-auth.com/blog/on-javascripts-weirdness #Weirdness #Quirks #Solutions #HackerNews #ngated

De la difficulté que peut représenter la migration de ESLint 8 vers ESLint 9.

https://www.neoxs.me/blog/migration-to-eslint-v9

Une sorte de linter pour PHP. Cet outil analyse votre code et vous permet de détecter certains problèmes sans même avoir à l'exécuter.

L'un des aspects intéressant c'est l'approche par niveaux (*levels*) qui permet de choisir son niveau d'*agressivité*. Vous pouvez commencer au level 0, corriger les soucis "faciles", puis augmenter à mesure que votre code gagne en qualité et en robustesse.

https://phpstan.org/

Je découvre le Linter : #Biome

https://notes.sklein.xyz/2025-03-10_1802/

Using a #python #linter and I'm surprised how quickly I raised my expectations. It only took lile 10 minutes to go from being impressed by how many issues it caught to being disappointed that it didn't catch more

ESLint permet maintenant de *linter* le code CSS.

https://eslint.org/blog/2025/02/eslint-css-support/

#Development #Launches
ESLint now supports CSS linting · The @eslint/css plugin is based on CSSTree https://ilo.im/162ex6

_____
#CSS #Code #Maintainability #Linter #Plugin #ESLint #CSSTree #Npm #WebDev #Frontend

ah, yes, thank you golangci-lint

#cicd #github_actions #linter Zizmor has reached v1.0.0 and is now stable/semver.

This is a (written in Rust) tool which lints workflows (and repos with workflows) to catch common potential security issues.

It's already highlighted some ... embarrassments which I've flagged at $employer.

If I want to create a Linter/Fixer to enforce some rules like class/file naming, folder structure, code formatting for Laravel, what would be the best tool to built upon? PHP-CS-Fixer, Rector, Pest? I feel like they all have some overlapping features for this.

I know Tighten's Tlint but seems like they wrote their tool from scratch instead of using an existing library.

Wow, the most extensive review of #Regal I've seen so far, and it's a great read! In Japanese, but Google Translate did a good job.

Original: https://tech.dentsusoken.com/entry/2024/12/05/Regal_%E3%82%92%E4%BD%BF%E3%81%A3%E3%81%A6_Rego_%E3%82%92_Lint_%E3%81%99%E3%82%8B

English: https://tech-dentsusoken-com.translate.goog/entry/2024/12/05/Regal_%E3%82%92%E4%BD%BF%E3%81%A3%E3%81%A6_Rego_%E3%82%92_Lint_%E3%81%99%E3%82%8B?_x_tr_sl=auto&_x_tr_tl=en&_x_tr_hl=en&_x_tr_pto=wapp

Reading the conclusion at the end made my day.

It's surprising to acknowledge the lack of a reliable #yaml #linter despite the huge amount of yaml we deal with

Выжимаем максимум из Scalafix

Обнаружил, что на Хабре нет статьи про Scalafix. Это мощный инструмент для анализа и рефакторинга Scala кода. В статье расскажу о его возможностях и как он может упростить работу с кодом. Читать статью

https://habr.com/ru/articles/864842/

I'll be once again live streaming some #HyperCard programming this Saturday, Dec 7th at 9am Eastern. I'll be working on a #Linter for #HyperTalk.

https://youtube.com/live/Pzk5WmODzbE?feature=share

Calling all #BlindProgrammers using #VSCode! I'm looking for accessible #linter options to catch coding errors. What linters do you use, and how do you make them work with screen readers? Any tips for making #ESLint more accessible?

@blindprogrammers @mastoblind @main

#Development #Announcements
Towards language-agnostic source code linting · ESLint now supports checking JSON and Markdown https://ilo.im/160b2b

_____
#Linter #Coding #CodeQuality #JavaScript #JSON #Markdown #OpenSource #WebDev #Frontend #Backend

I was so happy a few days ago because I received my first #GitHub issue for my small open-source project, https://buff.ly/4ej2jrQ. I fixed it and received positive feedback. It was very motivating. Issues, pull requests, and comments are for developers. #Detekt #Kotlin #Dev #Android #Linter #Programming #Dev