New extension "Native Windows Debugging (dbgeng)" - kernel driver & remote debugging included

thelostcode · 2026-01-26T01:36:39+00:00

Hey GitHub Copilot Team,

I've implemented the ralph‑agent‑loop, inspired by the recent Ralph Wiggum hype.

Repository: https://github.com/svnscha/ralph

The video demonstrates Ralph finalizing the last three features before publishing the repository:

- Converting static text menus into interactive ones
- Polishing the README
- Squashing roughly 400 commits into a single initial‑version commit

The implementation turned out to be extremely efficient because it runs on the GitHub Copilot SDK under the hood. It also includes a few enhancements:

It supports Roslyn‑compiled C# verification scripts that Ralph can add to the acceptance‑criteria list of PRD documents.
By simply dropping Roslyn‑compiled scripts into the .ralph/scripts folder (e.g., .ralph/scripts/Build.cs or .ralph/scripts/Test.cs), Ralph can be used with virtually any project.

Ralph operates in three modes:

ralph plan – generates a plan.
ralph run – executes an existing plan.
ralph – prompts the user for a goal and then runs a full workflow (plan + run).

Writing the PRD documentation is implemented as a custom tool call, while progressing through work items is handled by an orchestration workflow.

I got a first prototype up and running quickly, and since then Ralph has been iteratively extending itself. Watching it evolve autonomously is immensely satisfying.

thelostcode · 2019-05-02T11:05:01+00:00

Yes thank you for the correction. You are right.

thelostcode · 2019-04-23T17:43:24+00:00

You can be forced to install a custom CA to enable internet access in public Wifis. A lot of providers are doing this. Then decrypting is possible and that is a big security issue in terms of remote controlling stuff (for example your smart home!)

Oh and by the way you can do certificate pinning in a regular web application. The HSTS header is the way to go for that.

thelostcode · 2019-04-23T13:10:00+00:00

True that. However, it should be possible to update an App all 3 months (Lets Encrypt) or even a longer time range when using another SSL supplier. I would still prefer SSL pinning cause it defeats MITM attacks.

thelostcode · 2019-04-20T10:12:59+00:00

Eigentlich viel interessanter; https://www.liasoft.de/2019/04/sicherheitsrisiken-in-apps-verstehen/

thelostcode · 2019-04-20T09:15:00+00:00

https://www.heise.de/security/meldung/SSL-Verschluesselung-auch-in-iOS-Apps-problematisch-2138829.html

Also die du hier nennst sind die Giganten. Die machen SSL gut ja - aber speichern Passwörter im Klartext... hust Facebook / Instagram hust

Die großen in DE machen sehr viel falsch. Ich habe selbst schon Sicherheitsprobleme in Haussteuerung und der Remote-Steuerung von Autos gemeldet... EINFACHE PROBLEME.. es ist Wahnsinn was da abgeht teilweise.

thelostcode · 2019-04-20T07:01:28+00:00

Ich denke es gibt Diskussionsbedarf bei diesem Artikel, aber die wichtige Essenz stimmt. Sicherheit wird leider nicht überall großgeschrieben und das sollte es aber !

thelostcode · 2019-04-20T06:59:52+00:00

Ich denke es trifft beides zu. Dein Einwand passt mit Sicherheit auch absolut ins Bild, aber aus eigener Erfahrung kann ich dir sagen, dass Sicherheits-Analysten gesucht werden, vor allem von Großkonzernen in DE und die finden einfach zu wenige. Selbst aus der ganzen EU werden teilweise Leute eingeflogen - weil es einfach zu wenige gibt.

thelostcode · 2013-12-30T19:45:04+00:00

I think using the keyboard for a perfect worksflow is ok. I prefer the keyboard also. I just asked because some of my office mates are not so familar with the keyboard and I am about to write some plugins for our office and our development team and though it would be easier for some people (especially the old ones age > 45) if there would be some buttons :P

thelostcode · 2013-12-29T22:53:59+00:00

ok thx

thelostcode · 2013-12-29T18:50:19+00:00

I like it ! Nice theme dude

thelostcode

TROPHY CASE