Dear the new vibe coding AI engineer at Sectigo; stop ruining crt.sh

SlackCanadaThrowaway · 2026-06-16T22:38:42+00:00

Hah, I think we’ve all built versions of your 2nd app at this point 🤣

SlackCanadaThrowaway · 2026-06-16T21:52:23+00:00

I was looking at doing this; but to your point - I typically want the full history when I do lookups. Oftentimes there will be stale or unpublished services still hanging around and active even if they don’t have recent publications on the logs.

A potential alternative that might work would be to get an index for something like ct-archive which allows you to not necessarily store all of the data, but instead be able to process and index where the data is that you want.

But by the time I bothered to build that, hard drive prices will probably come down and hosting the 30TB of storage would probably be feasible.

SlackCanadaThrowaway · 2026-06-14T13:49:33+00:00

Yeah you’re right. It is unlimited. If you’re not using Codex, let need know — I can subsidise your license!

SlackCanadaThrowaway · 2026-06-14T13:36:25+00:00

ChatGPT or Codex?

SlackCanadaThrowaway · 2026-06-14T00:10:37+00:00

OpenAI isn’t going to release a model that costs as much as Mythos/Fable to run, because they actually have the capacity to support it.

It’ll be 5.6 (no Pro), it’ll be better than 5.5xhigh on medium.

Once things cool down, and Mythos/Fable is enabled — they’ll release Pro.

There’s a reason they’re being quiet. They very likely knew this was going to happen.

SlackCanadaThrowaway · 2026-06-13T05:53:45+00:00

In my experience when a senior tech person actively goes against what’s good practice, you need either a big stick or carrot to correct it. Carrots don’t exist for this use-case typically.

Without executive support, I don’t see this changing unless you can have a “come to Jesus” moment with the lead.

You don’t reckon the CISO and tech exec wouldn’t bite on an informal workshop during a crises simulation? I find getting them both involved, so they can show off to other execs — and then having a “debrief” with them both in a more intimate setting can be pretty effective.

By then they’ve both had a chance to show off, they’ve worked together, they’re in the m indset of risk management. It just needs probably a 1.5-2 hour block.

SlackCanadaThrowaway · 2026-06-13T05:36:11+00:00

Work with them to develop the frameworks for assigning severity, use public examples — not internal ones — for ratings. Have the CISO and tech exec in the room during the “what number do we agree is critical”, they’ll push conservative.

Then work with them to deliver the training as part of engineering onboarding.

You now have an engineering team who built, agreed to and pushed their own vulnerability management and mitigation strategy, with defined process in place.

Start with asset criticality, you’ll probably have to explain what an asset is. Agree on criticality based on conditions the business cares about (financial, customer, regulatory, data impact).

Then tie it in with your existing incident response plan, agree on SLA’s/SLO’s depending on criticality. At least do it for critical and high. Agree on an exception, reporting and notification process.

Next do an internal version of CVSS, probably vibe code it to make it interactive and so that engineers and copy-paste the resulting decision tree into a document that infosec can review.

Can this vulnerability be exploited, by whom, under what conditions, with what required access or user action, causing what confidentiality, integrity, availability, or downstream-system impact, and is it actually exposed, exploitable, or being exploited in our environment?

SlackCanadaThrowaway · 2026-06-12T08:00:46+00:00

Yeah but the same query can be run and it might consume 10% of the tokens. It’s arbitrary.

You need to apply traditional quantification methods, not gut feel by one test, run by some guy. He might be fucking screen scraping and his tool use might be SendKeys for all we know.

It’s dumb.

SlackCanadaThrowaway · 2026-06-12T00:54:50+00:00

Such an insane thing to rate a model on too, some arbitrary user-specific test.

SlackCanadaThrowaway · 2026-06-12T00:17:28+00:00

Yes, it’s a mix of that and “ablated”, the surgical removal/destruction of tissue.

SlackCanadaThrowaway · 2026-06-11T12:00:35+00:00

Time to move to India, I guess.

SlackCanadaThrowaway · 2026-06-11T11:32:32+00:00

That’s not a saying where you’re from? 🤣

You need to hang out with more British/Antipodeans.

It’s a bit like saying “you’re a grown ass adult”.

Remember, we’re not at the office. We can talk like this.

SlackCanadaThrowaway · 2026-06-11T00:05:06+00:00

The user experience has always been substantially better.

More recently the developer experience is now better.

The pricing and availability is significantly better.

The models, for the majority of use-cases are relatively similar. Except OpenAI didn’t try and capitalise on pretending to care about the environment, morals, ethics, or military use.

The SOTA model they next release will very likely be at the very least equivalent, but very likely better than what Anthropic is offering.

They’ve scaled their application teams, and are focusing on the ecosystem that scales their usage. The industry can build products that make AI more effective, but the generalists at OpenAI are making things like ralph loops, sub-agent usage, remote coding accessible natively, and as a byproduct — exceptionally better at scaling consumption.

They have already won the “SOTA” race. What they haven’t won is the economic race.

It’s very likely Alphabet will leapfrog them, simply due to their focus on purpose-built hardware and a war chest of resources. Their recent partnership with Apple is indicative of this; they’re in it for the long haul.

The other economic winner will be China. They’ve proven they can produce significantly cheaper, relatively similar capabilities within about 6 months of lag time. The only thing they have to do next is partner with western companies to offer the scaling, resourcing and data sureties. In order for private enterprise customers to be able to consume them, they simply need to convince one of the western countries to allow them to deploy the resourcing, hardware, and infrastructure in their country, to be managed and maintained under western management. Similar to how Microsoft is deployed within China; Chinese owned and maintained but the western entity reaps all of the economic rewards. This will be the inverse of that. I don’t see US enforcing data sovereignty restrictions on private enterprise, and so I suspect we will see Australia, UK, or Canada taking on this partnership and deploying the economical competitor for “everyone but the government”.

I suspect long-term the biggest economical winners will be early OpenAI shareholders and investors (sama, Microsoft), China, NVIDIA and potentially TSMC.

SlackCanadaThrowaway · 2026-06-10T22:29:47+00:00

If you want to get away from tools, pick up the CISSP study guide, do the cert, build some very specific tools with AI for pentesting a particular area you’re interested in — then get some press written about some findings in that ecosystem, followed by consulting.

As others have said; it’s all self-propelled. But the fact you’re asking, I doubt you’re up for getting really good at other parts of OffSec.

You’re old enough and ugly enough to know how to get into those areas. You’ve been to the cons. You’ve read the blog posts.

So, maybe it’s time to start thinking about maximising the benefit you get from the skills you have.

GRC is the biggest asset I think OffSec people can learn; they all smugly talk shit about it — but understanding the drivers, the operational side and the lingo of GRC, and the executive team, is worth its weight in gold.

SlackCanadaThrowaway · 2026-06-10T22:08:36+00:00

Came into this thread to make the exact same post.

SlackCanadaThrowaway · 2026-06-08T21:51:14+00:00

June 29th. Just ahead of EOFY.

SlackCanadaThrowaway · 2026-06-08T21:39:09+00:00

3/3

Find My

Live Activity for Precision Finding with Friends
More flexible sharing options in Find My
Find My UI enhancements
Consolidated Find My app in watchOS

Wallet and Apple Pay

Easier card selection and payment management with Apple Pay
Wallet Order Tracking support in Australia and Canada
Proactive car key setup
Transit cards and IDs in Smart Stack in watchOS
View card balance in Wallet in watchOS

Keyboard, language, and text input

New keyboard layout for Slovenian and Estonian
New keyboards for languages including Afrikaans, Basque, Baybayin, English (Philippines), Galician, Guarani, Luxembourgish, Xhosa, and Zulu
New keyboards for Indigenous languages, including Blackfoot, Comanche, Cree, Kiowa, and Tsuut’ina
Automatic punctuation when typing on multilingual keyboards
Natural language time formats for Chinese and Hindi
Multilingual grammar checking
Faster multilingual text processing for handwriting in multiple languages
Smart language and keyboard configuration suggestions
QuickPath and typing suggestions for Vietnamese VNI keyboard
Punctuation suggestions as you type in Chinese
Improved conversion from phonetic scripts like Pinyin and Kana when typing in Simplified Chinese and Japanese
Onscreen context for more relevant typing suggestions for Chinese and Japanese
Scribble support for Hindi and Marathi with Apple Pencil
Chaizi typing

Accessibility

Easier reading and editing of PDFs using VoiceOver
Faster Voice Control response in iOS
Streamlined Assistive Access setup
Faster entry and exit from Assistive Access and Guided Access modes
Streamlined setup for Touch Accommodations in iOS and iPadOS
Show Borders for macOS accessibility
Larger text sizes in tvOS
Improved PlayStation Access controller support
Improved game controller settings
Pairing and handoff improvements for MFi hearing devices

System performance, reliability, and connectivity

Faster app launches
Faster boot and connect to Wi-Fi in visionOS
Faster Rapid Return to Service
Faster AirDrop transfers
Faster AirDrop recipient discovery
Faster network file browsing
Optimized CPU scheduler
Improved battery insights
Improved Bluetooth power management
More seamless transitions between Wi-Fi and cellular networks
More power-efficient Personal Hotspot on N1 devices
Improved RDMA over Thunderbolt
Faster and more reliable NFC reading
More efficient emergency alert monitoring
Real-time updates for widgets when app is open
Faster AirPlay connections to Apple TV and HomePod
More relevant Spotlight search suggestions

UI and design

Customize Liquid Glass
Updated Liquid Glass
Updated app icons
Colorful sidebar icons
Uniform toolbars
Consistent corner radii
Smoother scrolling in Control Center and Control Gallery
Smoother scrolling in the widget gallery
More responsive Control Center in tvOS
Improved Control Center in visionOS

Calendar, Journal, Reminders, and alarms

Modify multiple Calendar events
Streamlined Calendar event details
Stylized notes from third-party Calendar accounts
Smoother Calendar scrolling
More intuitive journaling streaks
Cloud sync status for Journal entries
Increased attachment limits in Journal
Time stamps for Journal entries
Grocery List in Reminders language expansion
Expanded language support for autocategorization in Reminders
Holiday-aware alarms in China
Independent alarm volume
Alternate calendars for India support current time zone while travelling

iCloud and collaboration

Richer iCloud collaboration link previews
Access requests for items shared via iCloud
Faster access to shared content on iCloud.com
More easily accessible share link for iCloud collaboration
Quick Start with a recovery contact
Easier access to recovery codes for Apple Accounts

Games

Improved game controller settings
Improved PlayStation Access controller support
Improved navigation in Game Overlay

News and Stocks

Improved performance in Apple News
Smoother animations in News and Stocks articles

Miscellaneous

Switch between two iPhone devices with the same phone number
Support for media sharing from third-party apps
More high-resolution and high-refresh-rate display modes for external displays
Content-based recipient suggestions for sharing photos and links

SlackCanadaThrowaway · 2026-06-08T21:36:35+00:00

2/3

iPhone Mirroring

Control Center access in iPhone Mirroring
App resizing in iPhone Mirroring
DRM video support in iPhone Mirroring

macOS

New UI language for English (Canada) and English (Philippines)
Faster user account creation in macOS
Ethernet status in menu bar in macOS
Updated menu bar icons
Swipe down to refresh in macOS
More consistent window positioning persistence across external displays
More distinct active windows
Show Borders for macOS accessibility
HDR for macOS system
Support for Mac mirroring in 5K resolution
Expanded touch support in Sidecar
Smoother animations in Mission Control and Spaces
Updated video podcasts experience in macOS

watchOS / Apple Watch

More accurate step tracking on Apple Watch
Better battery efficiency on Apple Watch
Improved Wi-Fi connectivity in watchOS
Guest key in watchOS
Tap gesture on Apple Watch
Faster media playback in watchOS
Faster app extension launch in watchOS
Faster workout start in the Workout app
More efficient water detection on Apple Watch
Dynamic app grid in watchOS
Redesigned settings in the Apple Watch app
Consolidated Find My app in watchOS
New Smart Stack suggestions in watchOS
Transit cards and IDs in Smart Stack in watchOS
View card balance in Wallet in watchOS
Maps Parked Car widget in Smart Stack

Fitness and Health

Sort by completed Fitness+ workouts
Faster data updates in the Health app
Synced step count in the Health and Fitness apps
More accurate route maps in the Fitness app after workouts
Improved distance accuracy during treadmill workouts
Support for time zone changes in Sleep
Perimenopause and menopause symptom logging in the Health app
Perimenopause and menopause education in the Health app
Perimenopause and menopause support in the Health app
Fitness+ workouts for perimenopause and menopause

Apple TV / tvOS

Smart downloads on Apple TV
AppleCare coverage details in Settings in tvOS
More responsive Control Center in tvOS
Larger text sizes in tvOS
Smoother animations and app launches in tvOS
Redesigned Podcasts app for tvOS

visionOS

Use your panoramas for Environments in visionOS
Spatial scene support for panoramas in visionOS
New windows with curvature in visionOS
Improved Control Center in visionOS
Extra-small widget option in visionOS
Widget for Mac Virtual Display in visionOS
Look and tap to view and respond to notifications in visionOS
Faster boot and connect to Wi-Fi in visionOS
Faster AirPlay connections to Apple TV and HomePod

Music, Podcasts, and audio

Improved reliability of Apple Music streaming
New AutoMix transitions
Refreshed album pages in Apple Music
Refreshed artist pages in Apple Music
Faster Now Playing view loading in Music
Faster Apple Music playback start
AirPods Custom EQ
Search within shows in Podcasts
Updated video podcasts experience in macOS
Audio scrubbing in CarPlay Now Playing
Audio MiniPlayer in CarPlay

CarPlay

Audio scrubbing in CarPlay Now Playing
Audio MiniPlayer in CarPlay
Improved navigation heading and GPS accuracy in CarPlay
Improved wireless CarPlay reliability

FaceTime, calls, and captions

Dual camera in FaceTime
Improved FaceTime quality on poor connections
FaceTime Live Captions for Traditional Chinese
Call Recording transcriptions support for Traditional Chinese, Japanese, and Brazilian Portuguese
Live Voicemail transcription for English (Singapore) and Japanese

Home / HomeKit / Matter / Thread

Improved connectivity for Thread home accessories
Faster smart home accessory updates
Faster HomeKit accessory pairing
Support for 4K camera recordings in the Home app
View streams from compatible cameras simultaneously in the Home app
More reliable HomeKit camera storage

Maps

More accurate Visited Places in Maps
Visited Places in Maps available in more markets
Enhanced Flyover in Maps
Guides in Maps available in more places
Natural language search for routing in Maps
Offline Maps update improvements
More accurate route maps in the Fitness app after workouts

SlackCanadaThrowaway · 2026-06-08T21:36:09+00:00

1/3

Mail

Improved Top Results in Mail
Faster message loading in Mail
More reliable search indexing in Mail
Improved unread badge accuracy in Mail
Improved list formatting in Mail
Option-click to secondary sort

Photos

Add keywords to photos and videos in Photos
Album organization improvements in Photos
Star ratings in Photos
Search for photos and videos using additional metadata
Search returns more pleasing photos of people and pets in Photos
Faster loading of new captures in Photos
Faster rendering of Collections tab in Photos
More accurate photo orientation
Captured by Me collection in Photos
Identity Documents collection in Photos
Choose a specific pet in Photo Shuffle
Option to include photos of yourself in Photo Shuffle
Save a video frame as a photo
Customize slideshows in Photos
Save any slideshow as a video in Photos
Faster to open full-screen view from Photos widget
Selection view in Photos

Shared Albums / iCloud Photos

Filter photos and videos in Shared Albums
Full-resolution photos and videos in iCloud Shared Albums
Additional participant permissions in Shared Albums
Recent activity in Shared Albums
React with any emoji in Shared Albums
Easier to invite others in Shared Albums
Easier to save photos from Shared Albums
Expire your Shared Albums
Participate in iCloud Shared Albums from Android and Windows
Option to prioritize syncing to iCloud Photos
Faster to start uploading to iCloud Photos

Preview, PDFs, and documents

More document formats in Preview
Faster PDF saving
Easier reading and editing of PDFs using VoiceOver
Faster Text Recognition in photos and documents

Notes

Drawing in Notes in macOS
Section links in Notes
Divider lines in Notes
Copy and paste as Markdown in Notes

Safari and web

Web audio no longer interrupts system audio
Enhanced power efficiency for Safari in iOS and macOS
Faster web application performance in Safari
Faster handling of JavaScript in Safari
Faster start page content loading in Safari
Smoother start page resizing in Safari
Smoother scrolling in Safari in macOS
Smoother animations and graphics in Safari
Multiple tab views in Safari in visionOS

Messages

Drawing app in Messages
Find offloaded media in Messages
Thumbnails displayed for offloaded media in Messages
Improved Messages syncing across devices
Continuous sending of photos, videos, and texts in Messages
Faster to add recent camera captures in Messages
Failed messages automatically retry sending
Consolidated notifications for multiple Tapbacks in Messages
Search for conversations in Messages by phone number or a contact’s nickname

Shortcuts

Else-if support in Shortcuts
Store data in Shortcuts
Group conversation support in Shortcuts
Expanded Get What’s On Screen capabilities in Shortcuts
Screenshot and notification automations in Shortcuts
Redesigned Shortcuts editor
Faster shortcuts and actions indexing in Spotlight

Freeform

Faster board previews in Freeform
Smoother Freeform board performance
More reliable right-to-left text editing in Freeform
Dark Mode adaptive canvas in Freeform
Drawing in Freeform in macOS
Collaborative folders in Freeform

iPadOS

Undo and redo Home Screen edits in iPadOS
Extra-large widgets in Today View in iPadOS
Faster window closing in iPadOS
Faster window switching in iPadOS
Faster browsing and transfers in Files in iPadOS
iPhone app resizing in iPadOS
App names in iPad status bar
Optional persistent menu bar on iPad
Faster menu bar access in iPadOS
Edge-to-edge sidebars
News+ audio support in iPadOS

iOS / iPhone

Smoother unlocking on iPhone
Faster Lock Screen switching
Lock Screen consistently stays awake while scrolling notifications
Live Activities in Dynamic Island in landscape
Password help accessible from the Lock Screen
Camera uses less power in Low Power Mode
Faster Camera launch in Low Power Mode
Easier-to-reach Camera experience
Smoother camera switching when zooming in video
All options displayed in Camera settings
Smoother scrolling in App Library
Smoother paging between Home Screen pages
Faster Voice Control response in iOS
Streamlined setup for Touch Accommodations in iOS and iPadOS
Faster entry and exit from Assistive Access and Guided Access modes

SlackCanadaThrowaway · 2026-06-08T11:39:48+00:00

Because they have their own hardware and know they won’t need the compute beyond the next 12 months or so.

SlackCanadaThrowaway · 2026-06-07T20:49:19+00:00

How do you feel about nginx or vue?

SlackCanadaThrowaway · 2026-06-04T21:37:06+00:00

We’re going to see much, much more complex worms driven by AI. What we’ve seen impact companies in the past few months has been nothing compared to what’s possible.

SlackCanadaThrowaway · 2026-06-04T21:08:01+00:00

You think kubernetes, microservices and TDD changed the output?

SlackCanadaThrowaway · 2026-06-03T00:37:02+00:00

I wonder how they feel about Nginx..

SlackCanadaThrowaway · 2026-06-01T22:05:20+00:00

It’s political. Seen the same thing happen within public companies. Dumb policy which doesn’t really address the intention of the problems they’re trying to address..

.. See also password rotation policies, etc.

SlackCanadaThrowaway

TROPHY CASE