web-devel

Switching nvidia off

$ sudo apt install gcc make linux-headers-amd64
$ sudo apt-get install dkms bbswitch-dkms
$ sudo modprobe bbswitch load_state=0
$ sudo tee /proc/acpi/bbswitch <<<OFF
$ sudo tee /proc/acpi/bbswitch <<<ON

web-devel

• Clone the gist / Download as ZIP
• In Chrome go to chrome://extensions
• Enable developer mode
• Press load unpacked, select folder with repo

web-devel

Problem

NPM is very popular / widespread. Typically JS developers run npm install/yarn install on dev machines and CI servers many times per day. Modern npm-based project usually brings thousands of packages. There are two types of threats:

• Vulnerable packages targeting runtime of your app - can harvest user data / perform mining etc.
• Vulnerable packages targeting your environment - can harvest ssh keys / auth tokens etc.

Threat #1 can be mitigated by npm audit / lockfiles / caches as typically there is some time span between dependency installation and go live.

Threat #2 is more dangerous as it takes place immediately after npm install is executed.

web-devel

<link rel="import" href="../bower_components/polymer/polymer.html">
<link rel="import" href="../bower_components/cuba-app/cuba-app-aware-behavior.html">

<dom-module id="cuba-user-info">
  <template>
    <style>
      :host {
        display: block;
      }
    </style>

web-devel

<link rel="import" href="../bower_components/polymer/polymer.html">
<link rel="import" href="../bower_components/cuba-app/cuba-app-aware-behavior.html">

<!--
Polymer element for displaying image from CUBA app file storage.

    <myapp-fd-img file-descriptor="[[car.photo]]"></myapp-fd-img>

-->