Security
How We Think About Zero-Day Response
A practical outline for triage, communication, patching, and follow-up when a serious vulnerability appears.
In preparation
Practical notes on building, testing, securing, and operating software. The first posts are being prepared.
A practical outline for triage, communication, patching, and follow-up when a serious vulnerability appears.
Why finding bugs earlier makes releases easier to plan, fix, and explain to stakeholders.
Patterns and anti-patterns for building services that are easier to operate and change.
How OWASP guidance helps teams structure application-security reviews without turning the work into checkbox theater.
How teams can keep framework evidence, code changes, and security follow-up closer together.
Practical lessons for planning load tests before performance issues reach users.