Weekly news | 2025-03-26

news

• Claude can now search the web
• OpenAI Audio models available
• CVE-2024-54471: Password leaking vulnerability on macOS
• Oxidizing Ubuntu: adopting Rust utilities by default
• Tencent’s 'Hunyuan-T1': The First Mamba-Powered Ultra-Large Reasoning Model
• Italy demands Google poison DNS under strict Piracy Shield law
• German parliament votes as a Git contribution graph
• Kubernetes Ingress-nginx CVE-2025-1974
• Cloudflare opensources OpenPubkey SSH (OPKSSH): integrating single sign-on with SSH
• Spammers are better at SPF, DKIM, and DMARC than everyone else
• OpenAI adds MCP support to Agents SDK
• Open source devs say AI crawlers dominate traffic, forcing blocks on entire countries
• Oracle customers confirm data stolen in alleged cloud breach is valid

• Malware found on npm infecting local package with reverse shell

• New releases:

  • Next.js v15.2.3 to address a security vulnerability CVE-2025-29927
  • Qwen2.5-VL-32B
  • Gemini 2.5
  • OpenAI introduces 4o Image Generation

• AWS:
  • Amazon Nova expands Tool Choice options for Converse API
  • Bedrock Guardrails policy based enforcement for responsible AI
  • Bedrock
    • Model Evaluation LLM-as-a-judge | GA
    • RAG Evaluation | GA
  • Braket IonQ Forte Enterprise
  • Clean Rooms PySpark is available
  • Client VPN increases authorization rules and route quotas
  • CloudWatch Application Signals Manage SLO exclusion time windows
  • CloudWatch RUM
    • JavaScript source maps for easier error debugging
    • monitoring multiple domains with a single App Monitor
  • Connect Contact Lens capture agent acknowledgements of performance evaluations
  • Connect Next-Generation, AI Powered
  • Connect Salesforce Contact Center | GA
  • Connect Tasks durations up to 90 days
  • Console Mobile App expanded service support
  • Deadline Cloud IPv6 support
  • DynamoDB Accelerator (DAX)
    • SDK for Go version 2
    • SDK for JavaScript version 3
  • Network Firewall new flow management feature
  • Payment Profiles currency selection
  • Q Business browser extension upgrades
  • Q in Connect Connect Admin Website configuration
  • RDS Custom for SQL minor version in February 2025
  • Redshift Serverless Current and Trailing Tracks for release updates
  • Research and Engineering Studio v 2025.03
  • Transfer Family AS2 certificate management capabilities
  • WAF URI fragment field matching
  • For a full list of AWS announcements, be sure to keep an eye on AWS’s What’s New Feed page.

tooling

• Tencent's Hunyuan3D-2-Turbo: fast high-quality shape generation in ~1s on a 4090
• GREASE: An Open-Source Tool for Uncovering Hidden Vulnerabilities in Binary Code
• IronRDP: Rust implementation of the Microsoft Remote Desktop Protocol (RDP)
• screen: A terminal renderer written in pure PHP
• landrun: Run any Linux process in a secure, unprivileged sandbox using Landlock LSM. Think firejail, but lightweight, user-friendly, and baked into the kernel
• FastOpenAPI: automated docs for many Python frameworks
• argp: GNU-style command line argument parser for Go
• MCP Node.js Debugger: An MCP server that gives Cursor or Claude Code access to Node.js at runtime to help you debug
• triforce: a beamformer for Apple Silicon laptops
• quadlet: Running Podman containers under systemd
• deduce: A proof checker meant for education
• osgint: OSINT tool to find informations about a github user (email2username, username2email, creation date ...)
• searchMySite: open-source search engine for personal and independent websites
• Polypane: The browser for ambitious web devs
• xan: The CSV magician
• GhidraMCP: MCP Server for Ghidra
• aws-mcp: MCP server for AWS
• infralog: A tool that monitors your Terraform state files and emits resource-level events when changes are detected
• kaniuse: Kubernetes features by version
• KubeDiagrams: Generate Kubernetes architecture diagrams from Kubernetes manifest files, kustomization files, Helm charts, and actual cluster state

blogs

• The Frontend Treadmill
• Diagrams AI Can, and Cannot, Generate
• Build a Container Image from Scratch
• Wheel reinventor's principles
• PyTorch internals
• Use Long Options in Scripts to make it easier for readers to understand what the script does
• How NixOS and reproducible builds could have detected the xz backdoor for the benefit of all
• Tailscale subnet router on Kubernetes with ArgoCD and Tailscale Operator
• Learning Go:
  • Part 1: A new beginning
  • Part 2: Loops and Conditionals
• Devtron + Argo CD: Enhancing GitOps Without Disruption
• How Netflix Stores 140 Million Hours of Viewing Data Per Day
• Best Practices for Multi-Tenant Authorization
• Integration Challenges in Multi-System HIPAA Compliance
• One giant Kubernetes cluster for everything
• Unveiling Amsterdam License: A New Frontier for Fair Code
• Platform building antipatterns: Slow, low, and just for show
• Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
• The Missing Piece in Platform Engineering: Recognizing Producers
• Whose code am I running in GitHub Actions?
• Sell yourself, Sell Your Work ...
• The role of developer skills in agentic coding

• Better Shell History Search

• CNCF On demand webinar:

  • An introduction to Crossplane - from managed services to claims