I write about TypeScript, Node.js, React, security and privacy.

Cargo, Docker and mtime

25 January 20210

The perils of premature optimisation in detecting modified source files when building Docker images for Rust.

The Security of GitHub Actions

24 February 20200

GitHub Actions are a great way to build powerful customised CI/CD workflows using the power of community-driven resources, but they can be tricky to get right in terms of security.