Learn More

iCR detects the latest PyPI repository poisoning attempt

**Image courtesy of Cyber Kendra) Open source libraries lay the foundations for modern applications. Polluting the libraries opens up opportunities to create security backdoors at a massive scale. There have been several recent incidents to pollute open source repositories. Here is a story from last

Read More »

GitHub Copilot: Coding by Numbers?

When I was a kid, I found it fun to create “art” using a Paint by Numbers kit. Maybe you also played with it as well. Paint by numbers was a way to take a person with minimal skill (that would be me) and have

Read More »

Tools: Love ’em or Leave ’em

Hi. My name is Charlie and I am an Engineer. I have been an Engineer all of my life. I have written thousands of lines of code in dozens of languages, some of which you have never heard of. I have worked with and managed

Read More »

A Simple Rounding Error

Sometimes simple errors may bubble up and produce something big. A classic example of this is rounding off with floor() or ceil() methods in an arithmetic operation too early. In that case the off-by-one error propagates and may lead to a significant deviation. While preparing

Read More »

Bug Journal – KeePassDroid, Dec. 2020

KeePass is a free, open source, light-weight and easy-to-use password manager that allows users to manage their passwords across multiple accounts and applications in a secure way. It supports a password database that is locked with a single master key. KeePassDroid is a port of

Read More »

Recent Posts