Year: 2023
-
Analyzing Webpack bundles
Packaging your software can be done with different tools which bundles libraries and your code to groups of files (called chunks). Sometimes you might wonder why the chunks are so big and why some libraries are included although they are not used in some view (code splitting). There are different tools to analyze and visualize…
-
Short notes on tech 51/2023
This week short notes on tech is full of combination of software development (dev) and operations (ops). DevOps Spoofing Microsoft Entra ID Verified Publisher Status“It was possible to manipulate the consenting process of a legitimate verified publisher application to implant malicious unverified applications within a Microsoft Entra ID tenant.” (from CloudSecList) A Comprehensive Guide to…
-
Short notes on tech 46/2023
CSS Naming Variables In CSS“Jonathan Dallas shares some thoughts related to naming CSS Custom Properties.” Good points and reminders how to write effective CSS. (from CSS Weekly) Using CSS custom properties like this is a waste“Kevin Powell explores how you can make your code a lot more efficient by leveraging pseudo-private custom properties.”… Jatka lukemista…
-
Short notes on tech 40/2023
DevOps Source Code Management Platform Configuration Best Practices“Guide exploring the best practices for securing GitHub and GitLab, covering topics that include user authentication, access control, permissions, monitoring, and logging.” (from CloudSecList) GitHub Actions could be so much better“A good critical review of GitHub Actions, discussing some interesting security challenges, slow debugging cycles, the third party…
-
Developing with Accessibility in mind
Accessibility is often one part of the software development process which is “an additional” feature just like adding unit and integration tests later on which should be taken into account from the start. It’s not enough that it works or that it looks nice if the user doesn’t know how to use it or even…
-
Short notes on tech 37/2023
DevOps and security OWASP Kubernetes Top Ten“When adopting Kubernetes, we introduce new risks to our applications and infrastructure. The OWASP Kubernetes Top 10 is aimed at helping security practitioners, system administrators, and software developers prioritize risks around the Kubernetes ecosystem. The Top Ten is a prioritized list of these risks.… Jatka lukemista →
-
Short notes on tech 24/2023
Software design 365 Days of iOS Accessibility365DaysIOSAccessibility series that Daniel Devesa Derksen-Staats posts to Mastodon and Twitter. (from iOS Dev Weekly) DevOps Using Act to Run Github Actions Locally“Act could be the end of commit messages littering history that say, “Tweaked workflow file, again! Fingers crossed that it works this time!”… Jatka lukemista →
-
AI Forum webinar 13.4.2023
Artificial Intelligence is a hot topic and couple of weeks ago Haaga-Helia organized “AI Forum webinar: Experiences of top companies on artificial intelligence” which had four interesting company representatives, from companies that develop and apply artificial intelligence, sharing their expertise and experiences on today’s topical AI themes. Here’s my short notes from the presentations.… Jatka…
-
Short notes on tech 14/2023
Much snow, wow. Come on, Spring. Short notes for the week 14 of 2023. Web development You can add biometric authentication to your webpage. Here’s how.(from WDRL) Web design Dark patterns in UX design — Which ones are the most deceptive?For those not aware of this concept, dark patterns are tricks used in websites and…
-
Notes from axe-con 2023: Building accessible experiences
Accessibility is an important topic also in software development and nowadays it’s more and more recognized as a real part of software project’s requirements even outside public sector projects. In software development you can start with following Web Accessibility Initiative (WAI) and Web Content Accessibility Guidelines (WCAG) but it’s better to understand accessibility more than…