golang 每日一庫之工作流引擎 cadence
Cadence 是由 Uber 開發並開源的分佈式工作流編排引擎,旨在幫助開發者構建可擴展、可靠且具備容錯能力的分佈式應用程序。這個 Uber 當前給我發了好多打車券,還是很厚道的。特點–1. 容錯的有狀態工作流Cadence 的工作流是 “容錯的有狀態工作流”,即使在進程崩潰或服務重啓的情況下,工作流的狀態(包括局部變量、調用棧、定時器等)也能自動恢復,確保業務流程不中斷。2. 異步任務與自動 ⌘ Read more
golang 每日一庫之工作流引擎 cadence
Cadence 是由 Uber 開發並開源的分佈式工作流編排引擎,旨在幫助開發者構建可擴展、可靠且具備容錯能力的分佈式應用程序。這個 Uber 當前給我發了好多打車券,還是很厚道的。特點–1. 容錯的有狀態工作流Cadence 的工作流是 “容錯的有狀態工作流”,即使在進程崩潰或服務重啓的情況下,工作流的狀態(包括局部變量、調用棧、定時器等)也能自動恢復,確保業務流程不中斷。2. 異步任務與自動 ⌘ Read more
理清 Mysql 的行鎖、意向鎖、記錄鎖、間隙鎖和臨鍵鎖
在日常開發工作中,Mysql 是常用的數據庫之一,突然某天 Mysql 數據庫告警提示出現了死鎖問題,爲了解決死鎖問題,我們就需要掌握一些關於 Mysql 的鎖的知識。1、行鎖 在 InnoDB 存儲引擎中行級鎖每次操作鎖住對應的行數據,鎖定粒度最小,發生鎖衝突的概率最低,併發度最高。InnoDB 的數據是基於索引組織的,行鎖是通過對索引上的索引項加鎖來實現的,而不是對記錄加的鎖。在 ⌘ Read more
Top File Read Bug POCs that made $20000
Learning & Methodology to find File Read from top 5 POCs by Elite hackers
JWT the Hell?! How Weak Tokens Let Me Become Admin with Just a Text Editor ️
Hey there!😁
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/jwt-the-hell-how-weak-to … ⌘ Read more
分佈式事務解決方案—事務消息
普通消息難以保證生產者的事務操作與消息發送的原子性,所以可能會導致數據不一致;RocketMQ 提供了一種在普通消息基礎上支持二階段的提交能力事務消息,事務消息可以支持在分佈式場景下保障消息生產和本地事務的最終一致性。1、事務消息基本概念(1)半消息 生產者發送的消息首先作爲 “半消息” 存儲在 Broker 中,對消費者不可見。Broker 等待生產者確認消息狀態(提交或回滾), ⌘ Read more
分佈式事務的解決方案—Seata AT 模式
Seata 是一款開源的分佈式事務解決方案的框架,它致力於在微服務架構下提供高性能和簡單易用的分佈式事務服務,Seata 爲用戶提供了 AT、TCC、SAGA 和 XA 事務模式。其中 AT 模式(auto transaction)是一種無侵入的分佈式事務解決方案,AT 模式的核心思想是基於二階段提交實現的。1、二階段提交 兩階段提交協議 (Two-Phase Commit,2PC) ⌘ Read more
🧮 USERS:1 FEEDS:2 TWTS:1361 ARCHIVED:87458 CACHE:2681 FOLLOWERS:22 FOLLOWING:14
“AI” coding chatbot funded by Microsoft were Actually Indians
London-based Builder.ai, once valued at $1.5 billion and backed by Microsoft and Qatar’s sovereign wealth fund, has filed for bankruptcy after reports that its “AI-powered” app development platform was actually operated by Indian engineers, said to be around 700 of them, pretending to be artificial intelligence. The startup, which raised over $445 million from investors including Microsoft and the Qatar Investm … ⌘ Read more
Fvwm3 1.1.3 released, completes transition from autotools to meson
Fvwm3, the venerable, solid, configurable, no-nonsense window manager for X, has been updated: fvwm3 1.1.3 has been released. While the version number indicates that this is a minor release, there’s one reason why 1.1.3 is actually a much bigger deal than the version number suggests: it switches the build system from autotools to meson. Fvwm is very old, and has been using autotools since 1996 (befor … ⌘ Read more
V Trenčianskych Stankovciach odhalili pamätnú tabuľu Jánovi Branislavovi Mičátkovi
V nedeľu 1. júna 2025 v Trenčianskych Stankovciach odhalili pamätnú tabuľu Jánovi Branislavovi Mičátkovi (1837, Trenčianske Stankovce – 1905, Kysáč). Odhaleniu tabule predchádzali Služby Božie. Slávnostným kazateľom Božieho slova bol biskup Slovenskej evanjelickej a. v. cirkvi v Srbsku d.p. Jaroslav Javorník. Na bohoslužbách sa zúčastnil aj evanjelický … ⌘ Read more
golang 每日一庫之工作流引擎 Temporal
Temporal 是一個開源的分佈式工作流編排系統,旨在簡化構建和運行可靠、可擴展的長時間運行的後端應用程序。它最初是由 Uber 的 Cadence 系統演變而來,現在由 Temporal Technologies 公司主導開發。目前已被 Coinbase、Netflix、Box、Snap 等大規模應用。核心功能—-1. 分佈式工作流編排Temporal 支持在多臺機器上協調執行復雜的業務邏 ⌘ Read more
golang 每日一庫之工作流引擎 Temporal
Temporal 是一個開源的分佈式工作流編排系統,旨在簡化構建和運行可靠、可擴展的長時間運行的後端應用程序。它最初是由 Uber 的 Cadence 系統演變而來,現在由 Temporal Technologies 公司主導開發。目前已被 Coinbase、Netflix、Box、Snap 等大規模應用。核心功能—-1. 分佈式工作流編排Temporal 支持在多臺機器上協調執行復雜的業務邏 ⌘ Read more
404 to $4,000: Exposed .git, .env, and Hidden Dev Files via Predictable Paths”
How Bug Bounty Hunters Can Turn Common 404s Into Critical Information Disclosure Bounties
[Continue reading on InfoSec Write-u … ⌘ Read more
How One Path Traversal in Grafana Unleashed XSS, Open Redirect and SSRF (CVE-2025–4123)
Abusing Client Path Traversal to Chain XSS, SSRF and Open Redirect in Grafana
[Continue rea … ⌘ Read more
**2. Setting Up the Ultimate Hacker’s Lab (Free Tools Only) **
“You don’t need a fortune to break into bug bounty. You just need the right mindset — and the right setup.”
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/2-se … ⌘ Read more
Webhook Vulnerabilities: Hidden Vulnerabilities in Automation Pipelines
How misconfigured webhooks in CI/CD, Slack, and third-party integrations can expose secrets, trigger SSRF, and lead to critical…
[Conti … ⌘ Read more
Exploiting the Gaps in Password Reset Verification
Free Article Link: Click for free!
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/exploiting-the-gaps-in-password-reset-verification-9bb86ec95d29?source=rss—-7b722bfd1b8d– … ⌘ Read more
nginx 代理 WebSocket
配置–HTTP/1.1 協議中 Upgrade 機制可以將 http 升級到 WebSocket,實現客戶端與服務端的雙向通訊。客戶端需要升級協議時在請求頭包含 Upgrade、Connection 字段。如果服務端同意升級連接,就會返回 101 狀態碼和一個 Upgrade 標頭字段,Upgrade 字段內容爲要切換到的協議。如果服務器不能升級連接,返回一個常規響應,如 200 ok。ngin ⌘ Read more
Norway to help Ukraine cover 1 billion euro gas shortfall, Zelensky says ⌘ Read more
🧮 USERS:1 FEEDS:2 TWTS:1360 ARCHIVED:87444 CACHE:2695 FOLLOWERS:22 FOLLOWING:14
FreshRSS 1.26.3 ⌘ Read more
1.26.3 ⌘ Read more
As of version 9.1 vim is supposed to support XDG specification. The below config works correctly on 9.1.1230 but not on 9.1.83. Anybody know why? ⌘ Read more
Harpoom: of course the Apple Network Server can be hacked into running Doom
Of course you can run Doom on a $10,000+ Apple server running IBM AIX. Of course you can. Well, you can now. Now, let’s go ahead and get the grumbling out of the way. No, the ANS is not running Linux or NetBSD. No, this is not a backport of NCommander’s AIX Doom, because that runs on AIX 4.3. The Apple Network Server could run no version of AIX later than 4.1.5 and there are substan … ⌘ Read more
WhisperD: linux voice-to-text using OpenAI whisper-1 transcription
I wrote this as an exercise to learn how to use ioctl & input devices, but I like how it turned out! It does have a hard dependency on pipewire though.
OSWE Web Hacking Tips (IPPSEC): My Study Journey href=”https://we.loveprivacy.club/search?q=%231”>#1** ⌘ Read more
Learning YARA: A Beginner SOC Analyst’s Notes
Learn how to build a YARA-powered malware detection and automation system using n8n, GPT, and hybrid analysis tools. This hands-on guide…
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/learnin … ⌘ Read more
$540 Bounty: How a Misconfigured Warning Endpoint in Apache Airflow Exposed DAG Secrets
CVE-2023–42780: An Improper Access Control Bug That Let Low-Privileged Users View DAG Impo … ⌘ Read more
**From Forgot Password to Forgot Validation: A Broken Flow That Let Me Take Over Accounts **
Hey there!😁
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/from … ⌘ Read more
** From alert(1) to Real-world Impact: Hunting XSS Where Others Don’t Look** ⌘ Read more
Bug Bounty from Scratch | Everything You Need to Know About Bug Bounty
📌Free Article Link
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/bug-bounty-from-scratch-everything-you-need-to-know … ⌘ Read more
🧮 USERS:1 FEEDS:2 TWTS:1359 ARCHIVED:87441 CACHE:2693 FOLLOWERS:22 FOLLOWING:14
What technology to use for a small NGO website?
Hi Lobsters :) hope you’re having a cozy weekend
I’m volunteering to set up and maintain the website of an association/small NGO, and I need to choose the technology we will use. I would appreciate advice from the hive mind on what technologies/setup to use :)
The key constraints are:
- It should be feasible to teach a motivated non-coder how to adjust website content. Most of the content will be text & images describing the organisation and its va … ⌘ Read more
@nghialele@nghia.im Man, I wish I could watch Formula 1 on a regular basis again, but it has become expensive as fuck here. 🫤
↳
In-reply-to
»
I had a lot of fun with my modems these past few days:
⤋ Read More
This is my highlight, really, haven’t seen this in action in a loooooooong time:
Google Dorking: A Hacker’s Best Friend
Hey, hacker friends! Ever wonder why people say Google is a hacker’s best friend? Well, I’m about to show you why.
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/google-dorking-a-hackers-best-friend-716dfb3e9739? … ⌘ Read more
The Hidden Admin Backdoor in Reddit Ads
An Invisibility Cloak for Attackers: How One Admin Created a Stealth Account That Even the Owner Couldn’t See or Remove
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/the-hidden-admin-backdoor-in-reddit-ads … ⌘ Read more
Bypassing Regex Validations to Achieve RCE: A Wild Bug Story
Free Article Lin
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/bypassing-regex-validations-to-achieve-rce-a-wild-bug-story-6476faccbc23?source=r … ⌘ Read more
The Year We Lost Control: How the AI Race Could End Humanity — or Save It
By now, you’ve probably heard whispers of a future shaped entirely by artificial intelligence. From Nobel laureates to the godfather of AI…
… ⌘ Read more
🧮 USERS:1 FEEDS:2 TWTS:1358 ARCHIVED:87395 CACHE:2683 FOLLOWERS:22 FOLLOWING:14