Fabian Iwand mootari

Security Advisories / Bulletins / vendors Responses linked to Log4Shell (CVE-2021-44228)

Errors, typos, something to say ?

If you want to add a link, comment or send it to me
Feel free to report any mistake directly below in the comment or in DM on Twitter @SwitHak

Other great resources

Royce Williams list sorted by vendors responses Royce List
Very detailed list NCSC-NL
The list maintained by U.S. Cybersecurity and Infrastructure Security Agency: CISA List

CUSTOM GAME ENGINES: A Small Study

A couple of weeks ago I played (and finished) A Plague Tale, a game by Asobo Studio. I was really captivated by the game, not only by the beautiful graphics but also by the story and the locations in the game. I decided to investigate a bit about the game tech and I was surprised to see it was developed with a custom engine by a relatively small studio. I know there are some companies using custom engines but it's very difficult to find a detailed market study with that kind of information curated and updated. So this article.

Nowadays lots of companies choose engines like Unreal or Unity for their games (or that's what lot of people think) because d

Concise Unicode character names in JavaScript

J. S. Choi, 2022

⚠️ Warning: This article is not finished. The code will not yet run without errors.

All programmers must manipulate text; JavaScript programmers are no exception. Text manipulation often refers to specific characters, usually by their code points in hexadecimal – or by embedding the characters directly in source code.

Exposed headers

Service	SSL	status	Response Type	Allowed methods	Allowed headers

Strictly Frameworks

Mobiledoc - github.com/bustle/mobiledoc-kit - framework to build editors with a standardized JSON structure
ShareDB - github.com/share/sharedb - framework to sync any JSON document using operational transforms, add real-time collaborative editing to anything else
Bangle.dev - github.com/bangle-io/bangle.dev - toolkit built for building editors, based on prosemirror

Abstracted Editors

These use separate document structures instead of HTML, some are more modular libraries than full editors

What forces layout / reflow

All of the below properties or methods, when requested/called in JavaScript, will trigger the browser to synchronously calculate the style and layout*. This is also called reflow or layout thrashing, and is common performance bottleneck.

Generally, all APIs that synchronously provide layout metrics will trigger forced reflow / layout. Read on for additional cases and details.

Element APIs

Getting box metrics

elem.offsetLeft, elem.offsetTop, elem.offsetWidth, elem.offsetHeight, elem.offsetParent

	// Copyright (c) 2023 Tomasz Stachowiak
	//
	// This contribution is dual licensed under EITHER OF
	//
	// Apache License, Version 2.0, (http://www.apache.org/licenses/LICENSE-2.0)
	// MIT license (http://opensource.org/licenses/MIT)
	//
	// at your option.

	#include "/inc/frame_constants.hlsl"

	APB: Ansible Playbook Bundle (Ansible, Framework)
	FCOS: Fedora CoreOS (Red Hat, Host/Container OS)
	CRD: Custom Resource Definition (Kubernetes, Concept)
	CDK: Red Hat Container Development Kit (Red Hat, Tooling)
	DC: DeploymentConfig (Kubernetes, Concept, Tooling)
	OKD: Kubernetes distribution that powers Openshift Origin
	CNS: Container Native Storage (https://keithtenzer.com/2017/03/29/storage-for-containers-using-container-native-storage-part-iii/)
	PVC: PersistentVolumeClaim (https://kubernetes.io/docs/concepts/storage/persistent-volumes/)
	CSI: Container Storage Interface (Standard, Concept)
	RC: ReplicationController (Kubernetes, Framework)

	{
	"ignition": {
	"version": "2.0.0",
	"config": {}
	},
	"storage": {
	},
	"systemd": {},
	"networkd": {},
	"passwd": {