Gaining Unauthenticated Access to Google Cloud Partner Registry Information
1d ago · 6 min read · During security research on an internal Google Cloud Platform environment, an unauthenticated API exposure was identified that allowed access to partner registry information without requiring a valid
Join discussion
How Do You Test for Secrets Accidentally Committed in Repositories?
2d ago · 7 min read · Every year, thousands of repositories expose sensitive credentials. Sometimes the leak is obvious. A developer accidentally commits an AWS access key. Sometimes it is subtle, such as a Kubernetes secr
Join discussion
Collect Logs from a Self-Managed Kubernetes Cluster with Tencent Cloud CLS
5d ago · 9 min read · Managed Kubernetes platforms usually make log collection feel like a checkbox. Self-managed Kubernetes clusters are different: you need to define what to collect, how to parse it, where to send it, an
Join discussion
Reduce CLS Log Costs with Index, Retention, and Storage-Tier Controls
5d ago · 8 min read · Log platforms become expensive when teams store too much, retain it too long, index everything, and route every log level into the same high-cost path. Tencent Cloud CLS gives teams several controls f
Join discussion
How I Reduced a Next.js Docker Image from 3.39 GB to 619 MB (82% Reduction)
6d ago · 9 min read · Introduction While working on a Next.js application, I noticed something that immediately caught my attention. The Docker image size was: 3.39 GB For a frontend application, that felt unusually large
VAtul commented
