-
Bonus Drop #101 (2025-10-26): Really Random Resources
The weekend Bonus Drop covers Typst 0.14.0 which introduces significant enhancements, including automatic tagging for accessible PDFs, improved HTML export, and character-level justification. We also link to Phil Gyford’s memoir that reflects on his nostalgic first experiences with the internet in 1995. Finally, it covers and provides a Dockerfile for Restring, a SvelteKit web app…
-
Drop #721 (2025-10-23): Atlas? ¯\_(ツ)_/¯
Today’s Drop critiques OpenAI’s new browser, “Atlas,” describing it as an inferior tool that compromises user privacy. It advises against its use, and cites issues with handling prompt injections and a lack of concern for user safety.
-
Drop #715 (2025-10-10): Web-Slinging Friday
Today’s webby Drop highlights the HTML element’s purpose, the Journal of Web Engineering’s efforts to establish web development standards, and the risks of old SSL certificates through BygoneSSL, which can lead to various cybersecurity threats.
-
Drop #713 (2025-09-19): AVAST ME HEARTIES!
Today’s Drop discusses accessing and utilizing U.S. maritime safety data, focusing on Anti-Shipping Activity Messages, while highlighting challenges faced due to changes in data accessibility. It describes a method to retrieve piracy-related datasets using R and DuckDB, emphasizing the need for continual data scraping to maintain a comprehensive dataset.
-
Drop #701 (2025-08-28): Thursday Morning Grab Bag
Today’s Drop discusses advancements in CSS, highlighted by the calc() function, and its surprising applications, particularly regarding infinity in calculations. It also examines vulnerabilities in AI image scaling as reported by Trail of Bits. Lastly, it mentions Yamanotes, a music box featuring JR Yamanote Line melodies.
-
Bonus Drop #95 (2025-08-24): Vibe-less Coding; Vibe-ful Checking
The weekend Bonus Drop emphasizes the importance of security for vibe or vibe-less personal web apps, highlighting key strategies such as SSRF protection, rate limiting, robust CSRF tokens, & more. It also provides a plethora of prompts to help you infuse security into your vibe-coded creations.
-
Drop #695 (2025-08-18): Monday Afternoon Grab Bag
Today’s Drop features Overtype, a lightweight markdown editor, focuses on user-friendly design and minimal size. It further showcases SystemD Service Hardening which provides methods to enhance security for services. And concludes with a GH Migration script to automate moving GitHub repositories to Forgejo, supporting various configurations and strategies.
-
Bonus Drop #94 (2025-08-17): /security
The weekend Bonus Drop discusses current issues in XML security, notably the libxml2 maintainer’s frustrations with unpaid vulnerability triaging, as well as a proposal to remove XSLT, citing its obsolescence and security risks. Additionally, it introduces Slash Pages, a directory for personal web pages, emphasizing concerns about content theft by AI bots.
-
Drop #694 (2025-08-14): Miles & Miles Of CSS Styles
Today’s Drop showcases two CSS frameworks: Missing and Web Awesome. Missing emphasizes semantic HTML and customization through CSS properties, suited for smaller projects. Web Awesome, built on Shoelace, offers framework-agnostic components, Font Awesome support, and accessibility focus. A demo showcases their application in a CVE lookup app, highlighting their effectiveness.
-
Drop #688 (2025-08-04): Keep It [Conveniently] Seekrit [Enough]
Today’s single-topic Drop looks at the integration of Tailscale with Mullvad VPN. The combined service provides a seamless blend of mesh networking and privacy. It enables folks to utilize Mullvad’s VPN exit nodes while maintaining encryption through WireGuard. Although Tailscale manages identity mapping for operational purposes, it offers conditional anonymity by ensuring that Mullvad does…
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
hrbrmstr's Daily Drop 