Monday, September 8, 2025

Platform

An author shares concerns about secure code generation via AI and ML tools, warning others about a "stealth startup" pitch for using Model-Driven Code servers. The author's own experience of not writing code by hand has led them to question how security will be ensured as AI-generated code becomes more prevalent in business environments.

A massive phishing empire operating on Google Cloud and Cloudflare for over 4 years has been uncovered by Deep Specter Research. The empire features cloned websites of major global brands and serves gambling content, hosted on tens of thousands of domains with 48,000 active virtual hosts, raising questions about Google's responsibility in enabling malicious activities worldwide.

Researchers Norbert Szetei and his team conducted a comprehensive fuzzing test on kernel-mode SMB driver ksmbd to discover bugs and improve its security. They applied various strategies, including grammar-based harnesses and sanitizers like KASAN and UBSAN, detecting 23 bugs, including use-after-frees and type confusions with potential for remote code execution.

A comprehensive guide covers deploying Kubernetes DaemonSets in complex, mixed OS environments, targeting node-specific infrastructure. It explores strategies for heterogeneous clusters with multiple node pools and diverse resource requirements, offering practical solutions like node selectors, tolerations, workload isolation, combined selectors, affinity rules, labeling, and toleration management for precise control over DaemonSet deployments.

This week's "This Week in Plasma" highlights updates for Plasma 6.5.0, now available at Akademy. Improvements include a user-friendly app permissions page and enhanced UI features like AM/PM time input. Bug fixes address focus stealing, screen settings, and keyboard navigation issues, while adding support for Underlays to improve GPU efficiency and making KWin's blur effect per-view.

A Kubernetes web UI that provides a fully-featured, user-friendly, and extensible interface for debugging, monitoring, and managing Kubernetes clusters.

openSUSE Leap and Leap Micro have announced extended support beyond their usual lifecycles. openSUSE Leap 15 will receive updates until April 30, 2026, while openSUSE Leap 16 will benefit from two years of community support starting from October 2025. This move provides a more stable platform for users, with flexibility in future updates.

The Business Rules Movement of the late 1990s and early 2000s aimed to integrate business logic into SQL databases. Despite having a manifesto and thought leaders, it ultimately declined due to cultural shifts and limitations such as Agile's emphasis on flexibility, vendor lock-in concerns, and technical complexities. Its ideas are now being revisited with improved tools and culture.