In a C.I. / C.D. pipeline is very a common task to use environment variables as a way to store service credentials (like AWS Secret keys or database user/password). Most used and well-known automation systems have specific features to manage sensitive information. In this post, I’ll cover the four most…

Today I’ll talk about an old-new attack that can affect your production systems: a Zip bomb. This concept is not new. Following Wikipedia first time Zip Bomb concept was mentioned was in 2001. TL;DR The idea of the Zip bomb is very simple. An attacker can create a special version of…

A lot of was written about Docker security and how to create secure Dockefiles. You can reach on Google about security tips and best practices. This is nice but still there’s a big problem to solve: how to automate the security checking. Steps for building a Docker image Create a docker image have two steps: Write…

This is the first post of a serie about DevSecOps. We’ll discuss about (in)security in DevSecOps process. Today we’ll check security in building process when you need external GIT. GIT in the CI process Cloning GIT repositories is an usual task for a CI pipeline when you’re building artefacts. Some programming languages do more use…

Every week we publish a Python quiz in my twitter account. Only for fun! The summary of question for this weed was: Subject: Dictionaries Difficulty: 2/5 You can reach the question at the original tweet: Correct answer Ok. Spoiler here. Correct answer is Option C. But, why…? A brief explanation Before all, the question…

When we need to serialize data we must consider different types of serializers. Python developers have some of them build in but, what’s more efficient? JSON vs Pickle Python standard library includes JSON and Pickle mechanisms for serializing data. …

lxml is a nice Python library for parsing XML files. Very efficient and powerful but it has C binary dependencies that are a bit complicated install some times. The problem with lxml and Docker is that we need the compiled binary dependencies in the final image. …

I’m Python developer and Docker user. I like Python. It’s simple and developing process is very fast, but usually it’s not the best choice if you want a small distributable software. It’t very common that a Python project is packaged as Docker Image with some hundreds of MB. Even for…