bmo.dev
  • Why are Go modules in my node_modules?

    Let’s dissect this developer pattern that leads to arbitrary code execution across languages.

  • Dodging a Critical CVE with ZTA

    Let’s discuss tenants of Zero Trust Architecture, Go, gRPC, and why everyone dodged CVE-2026-33186, right?

  • Padding Oracle Attacks & Rubik’s Cow

    In this thought experiment, you’ll learn about cryptographic primitives, combinitorical group theory, and along the way, gain a deeper appreciation for 1999’s film, The Matrix. Oh yeah, and a Cow!

  • make version

    Here is how I went about implementing a simple versioning system for my Go project using Conventional Commmits, awk, and make.

  • Conventional Commit Caveats

    The Conventional Commmits spec aims to bring structure to commit messages so that we write succint yet meaningful commits. That sounds great, but let’s examine some potential drawbacks.

  • Mixed Output Streams with Log4perl Screen Appender

    Log4perl provides a powerful logging framework, but how can we dynamically and meaninfully use stdout and stderr?

  • Tracing Signals in Linux

    Signals, or software interrupts, are used to communicate with a process. They could be used to kill a process, restart, or signal a segmentation fault, but how can we know where that signal came from?

select
navigate
esc close
Latest Posts
Why are Go modules in my node_modules?

Let’s dissect this developer pattern that leads to arbitrary code execution across languages.

Dodging a Critical CVE with ZTA

Let’s discuss tenants of Zero Trust Architecture, Go, gRPC, and why everyone dodged CVE-2026-33186, right?

Padding Oracle Attacks & Rubik’s Cow

In this thought experiment, you’ll learn about cryptographic primitives, combinitorical group theory, and along the way, gain a deeper appreciation for 1999’s film, The Matrix. Oh yeah, and a Cow!

make version

Here is how I went about implementing a simple versioning system for my Go project using Conventional Commmits, awk, and make.

Conventional Commit Caveats

The Conventional Commmits spec aims to bring structure to commit messages so that we write succint yet meaningful commits. That sounds great, but let’s examine some potential drawbacks.

Mixed Output Streams with Log4perl Screen Appender

Log4perl provides a powerful logging framework, but how can we dynamically and meaninfully use stdout and stderr?

Tracing Signals in Linux

Signals, or software interrupts, are used to communicate with a process. They could be used to kill a process, restart, or signal a segmentation fault, but how can we know where that signal came from?