The Rietta Blog

09/06/2019

Ruby Gems Supply Chain Vulnerability

by Frank Rietta

Learn 5 practical steps to protect yourself from malicious backdoors in Ruby Gems.

08/22/2019

The Case for 2FA, Post Rest-client Gem CVE

by Christopher Choi

On 08/19/2019, a CVE was discovered on a popular Ruby gem called Rest-client. Although caught quickly, this could raise the case of 2FA being a requirement for Package Manager accounts like Rubygems and NPM.

06/07/2019

What's the Difference Between the 3 Github Merge Methods?

by Christopher Choi

Github's interface makes merging in commits versatile to suit your style of maintaining a clean Git history. The three different styles are Create Commit, Squash, and Rebase.

06/04/2019

Best Data Type to store Money in MySQL?

by Alex Piechowski

When handling currency in MySQL, use DECIMAL(13,2) for general use and DECIMAL(13,4) if GAAP Compliance is needed.

05/30/2019

Account Protection Policies to Cover Business Assets

by Frank Rietta

Utilizing two factor authentication, strong passphrases, password managers, and NIST standards; private company accounts can remain secure. Cover your assets!

05/28/2019

Writing Abuser Stories

by Lore Hamilton

When writing user stories, user stories are written; but what about malicious actors? Writing Abuser Stories pushes developers to care about security.

05/23/2019

Manually Editing Git Hunks: The Easy Way

by Christopher Choi

Git add --patch can help keep code changes relevant with their commits. When changes are unsplittable, we can use Manual-Hunk to split changes line by line.

05/21/2019