3 results found

This guide helps developers understand and implement informal threat modeling. It outlines seven critical questions, from identifying assets and adversaries to documenting assumptions and unaddressed threats, emphasizing that threat models are living documents. Using examples like Matrix's flawed approach and the benefits of passkeys, it demonstrates how this practice leads to more robust and user-friendly software designs.

This guide demonstrates how to self-host an S3-compatible object store using MinIO on your staging server. By leveraging Docker Compose and Traefik for HTTPS, you can significantly reduce cloud storage costs while maintaining a production-like environment for development and testing. It covers setup, application configuration, and secure file interactions.

Dana Lawson, Netlify's CTO, shares insights on building and leading a lean, globally distributed engineering team. Her approach emphasizes a strong written culture, intentional in-person connections, and pragmatic tech choices to power 5% of the internet with only ~50 R&D staff. AI agents play a crucial role in augmenting communication and documentation.