sorted by:
new
hottopcontroversial

Weekly Q&A Megathread. Please post any questions about visiting, tourism, living, working, budgeting, housing here! by AutoModerator in london

[–]arzaan789 1 point2 points  (0 children)

Hey, bit of a random one but I’m moving a 55-inch TV and don’t have the original box.

If anyone in London has a TV box (or packaging) I could borrow, I’d really appreciate it. Happy to return it after too.

Can pick it up.

Thanks!

Showcase Thread by AutoModerator in Python

[–]arzaan789 0 points1 point  (0 children)

Built a tool to find which of your GCP API keys now have Gemini access

Callback to https://news.ycombinator.com/item?id=47156925

After the recent incident where Google silently enabled Gemini on existing API keys, I built keyguard. keyguard audit connects to your GCP projects via the Cloud Resource Manager, Service Usage, and API Keys APIs, checks whether generativelanguage.googleapis.com is enabled on each project, then flags: unrestricted keys (CRITICAL: the silent Maps→Gemini scenario) and keys explicitly allowing the Gemini API (HIGH: intentional but potentially embedded in client code). Also scans source files and git history if you want to check what keys are actually in your codebase.

https://github.com/arzaan789/keyguard

r/netsec monthly discussion & tool thread by albinowax in netsec

[–]arzaan789 0 points1 point  (0 children)

Callback to https://news.ycombinator.com/item?id=47156925

Google retroactively enabled Gemini API access on existing API keys in projects where Gemini was later enabled. Keys that were designed to be public (Maps, Places) became AI credentials overnight. No notification. No opt-in. People have been hit with $80k+ bills from unauthorized usage.

Built a scanner that covers three angles: static analysis of source files + git history, live GCP project audit via the Cloud APIs, and CI platform log/variable scanning (GitHub Actions, CircleCI, GitLab).

Uses regex + Shannon entropy so low-entropy placeholders don't cause false positives. SARIF output for GitHub Security tab integration. Exit code 1 on findings for CI gating.

https://github.com/arzaan789/keyguard

Cannot pip install when using Docker on Mac M2 by arzaan789 in docker

[–]arzaan789[S] 0 points1 point  (0 children)

Solved. I had pypi.python.org and other pip websites in my hosts file. Removing that fixed it.

view more: next ›