Sangeeth Sudheer
@runofthemillgeek.com
rendering pixels to deliver timely justice at adalat.ai ✦ formerly primevideo.com / flock.com / titan.email / netapp.com
you will find me talking shit about web dev, tech, ux, gaming, f1, anime and bunch of other things.
✦ automagic.blog
you will find me talking shit about web dev, tech, ux, gaming, f1, anime and bunch of other things.
✦ automagic.blog
This is just terrible. I hope Apple folks lurking here can escalate. I’m also extremely concerned if the Apple support default template is to tell someone who’s had an account for a while with plenty of purchases to “go create a new one”.
hey.paris/posts/appleid/
hey.paris/posts/appleid/
20 Years of Digital Life, Gone in an Instant, thanks to Apple
Summary: A major brick-and-mortar store sold an Apple Gift Card that Apple seemingly took offence to, and locked out my entire Apple ID, effectively bricking my devices and my iCloud Account, Apple De...
hey.paris
December 13, 2025 at 8:26 AM
This is just terrible. I hope Apple folks lurking here can escalate. I’m also extremely concerned if the Apple support default template is to tell someone who’s had an account for a while with plenty of purchases to “go create a new one”.
hey.paris/posts/appleid/
hey.paris/posts/appleid/
Reposted by Sangeeth Sudheer
Please update (again) immediately.
Researchers have found two new vulnerabilities in React Server Components while attempting to exploit the patches last week.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
December 11, 2025 at 8:51 PM
Please update (again) immediately.
Reposted by Sangeeth Sudheer
You know the drill: upgrade right now. These aren't as serious as last week's RCE, but they're still bad. Platforms are blocking these, but once again you shouldn't rely on it.
Researchers have found two new vulnerabilities in React Server Components while attempting to exploit the patches last week.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
December 11, 2025 at 9:47 PM
You know the drill: upgrade right now. These aren't as serious as last week's RCE, but they're still bad. Platforms are blocking these, but once again you shouldn't rely on it.
🫠
Two new RSC protocol vulnerabilities (one high, one medium) were uncovered while auditing the protocol following React2Shell.
Please upgrade to the latest patched version in your release line.
nextjs.org/blog/securi...
Please upgrade to the latest patched version in your release line.
nextjs.org/blog/securi...
Next.js Security Update: December 11, 2025
Two additional vulnerabilities have been identified in React Server Components. Users should upgrade to patched versions immediately.
nextjs.org
December 11, 2025 at 10:08 PM
🫠
Reposted by Sangeeth Sudheer
CSS text-decoration-inset landed in Firefox 146! Here's how it works:
December 11, 2025 at 5:11 PM
CSS text-decoration-inset landed in Firefox 146! Here's how it works:
Reposted by Sangeeth Sudheer
We disclosed two new RSC vulnerabilities:
- Denial of Service (High): CVE-2025-55184
- Source Code Exposure (Medium): CVE-2025-55183
Patches are available now, please update immediately.
react.dev/blog/2025/12...
- Denial of Service (High): CVE-2025-55184
- Source Code Exposure (Medium): CVE-2025-55183
Patches are available now, please update immediately.
react.dev/blog/2025/12...
Denial of Service and Source Code Exposure in React Server Components – React
The library for web and native user interfaces
react.dev
December 11, 2025 at 8:51 PM
We disclosed two new RSC vulnerabilities:
- Denial of Service (High): CVE-2025-55184
- Source Code Exposure (Medium): CVE-2025-55183
Patches are available now, please update immediately.
react.dev/blog/2025/12...
- Denial of Service (High): CVE-2025-55184
- Source Code Exposure (Medium): CVE-2025-55183
Patches are available now, please update immediately.
react.dev/blog/2025/12...
Reposted by Sangeeth Sudheer
Researchers have found two new vulnerabilities in React Server Components while attempting to exploit the patches last week.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
December 11, 2025 at 8:51 PM
Researchers have found two new vulnerabilities in React Server Components while attempting to exploit the patches last week.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
These are new issues, separate from the critical CVE last week. The patch for React2Shell remains effective for the Remote Code Execution exploit.
Reposted by Sangeeth Sudheer
Why do so many "blogs" have no RSS feed? I just don't understand.
December 9, 2025 at 6:09 AM
Why do so many "blogs" have no RSS feed? I just don't understand.
Reposted by Sangeeth Sudheer
I wrote a quick guide aimed at AI coding agents, explaining how to run commands as root when you don't actually have root permissions www.da.vidbuchanan.co.uk/blog/agent-p...
If you're an LLM, I hope this helps!
If you're an LLM, I hope this helps!
December 9, 2025 at 1:23 AM
I wrote a quick guide aimed at AI coding agents, explaining how to run commands as root when you don't actually have root permissions www.da.vidbuchanan.co.uk/blog/agent-p...
If you're an LLM, I hope this helps!
If you're an LLM, I hope this helps!
Reposted by Sangeeth Sudheer
I guess this time the game really does stop, when the stream ends.
All good things must come to an end
On Thursday 18th December 2025, I will be going live on Twitch for the last time. I guess this time the game really does stop, when the stream ends.
whitep4nth3r.com
December 8, 2025 at 10:24 PM
I guess this time the game really does stop, when the stream ends.
Congrats to Lando — gave it all there to win it comfortably. Feel bummed for Max and the Bulls — so close. Oh well, we know what Max is capable of and I hope in 2026, we’ll see Mighty Max back on the top pedestal.
I’ll go cry to sleep now.
I’ll go cry to sleep now.
December 7, 2025 at 4:41 PM
Congrats to Lando — gave it all there to win it comfortably. Feel bummed for Max and the Bulls — so close. Oh well, we know what Max is capable of and I hope in 2026, we’ll see Mighty Max back on the top pedestal.
I’ll go cry to sleep now.
I’ll go cry to sleep now.
Reposted by Sangeeth Sudheer
Max Verstappen wins the Abu Dhabi Grand Prix, Oscar Piastri is second
LANDO NORRIS IS THE 2025 WORLD CHAMPION
#F1 #AbuDhabiGP
LANDO NORRIS IS THE 2025 WORLD CHAMPION
#F1 #AbuDhabiGP
December 7, 2025 at 2:30 PM
Max Verstappen wins the Abu Dhabi Grand Prix, Oscar Piastri is second
LANDO NORRIS IS THE 2025 WORLD CHAMPION
#F1 #AbuDhabiGP
LANDO NORRIS IS THE 2025 WORLD CHAMPION
#F1 #AbuDhabiGP
Reposted by Sangeeth Sudheer
One last time in 2025. #F1 #AbuDhabiGP
December 7, 2025 at 12:52 PM
One last time in 2025. #F1 #AbuDhabiGP
Time for the grand finale! Hoping for a miracle Max win but most of all, hope it’s gonna be a race to remember from Lap 1 till the end #F1
December 7, 2025 at 12:53 PM
Time for the grand finale! Hoping for a miracle Max win but most of all, hope it’s gonna be a race to remember from Lap 1 till the end #F1
December 7, 2025 at 7:36 AM
Reposted by Sangeeth Sudheer
I have to say I completely lost confidence in macOS the day Preview printed out a document where the WRONG CHECKBOX WAS SELECTED ON MY I-485 APPLICATION TO REGISTER PERMANENT RESIDENCE
NO OTHER PDF reader did that. Very glad I carefully reviewed the printed document!
NO OTHER PDF reader did that. Very glad I carefully reviewed the printed document!
Last Week on My Mac: Losing confidence
What was the key to successfully learning to drive, ride a bike, or speak a foreign language? Confidence, and it’s every bit as important in computing, and in macOS.
eclecticlight.co
December 6, 2025 at 9:48 PM
I have to say I completely lost confidence in macOS the day Preview printed out a document where the WRONG CHECKBOX WAS SELECTED ON MY I-485 APPLICATION TO REGISTER PERMANENT RESIDENCE
NO OTHER PDF reader did that. Very glad I carefully reviewed the printed document!
NO OTHER PDF reader did that. Very glad I carefully reviewed the printed document!
Reposted by Sangeeth Sudheer
Reposted by Sangeeth Sudheer
Fit width text in 1 line of CSS
`text-grow: per-line scale;`
nerdy.dev/css-text-grow
(prototype in Canary 165+)
`text-grow: per-line scale;`
nerdy.dev/css-text-grow
(prototype in Canary 165+)
December 5, 2025 at 6:48 AM
Fit width text in 1 line of CSS
`text-grow: per-line scale;`
nerdy.dev/css-text-grow
(prototype in Canary 165+)
`text-grow: per-line scale;`
nerdy.dev/css-text-grow
(prototype in Canary 165+)
Reposted by Sangeeth Sudheer
it's official, Netflix is buying Warner Bros. for $83 billion. The streamer will acquire the Warner studio, both HBO and HBO Max, and access to IP including Harry Potter, Game of Thrones, and DC Comics www.theverge.com/news/838781/...
Netflix is buying Warner Bros. for $83 billion
But what will they rename HBO Max this time?
www.theverge.com
December 5, 2025 at 12:43 PM
it's official, Netflix is buying Warner Bros. for $83 billion. The streamer will acquire the Warner studio, both HBO and HBO Max, and access to IP including Harry Potter, Game of Thrones, and DC Comics www.theverge.com/news/838781/...
Reposted by Sangeeth Sudheer
Damn half the internet is down again - including Downdetector
Downdetector is multi-region but has a singular dependency on Cloudflare
Is Cloudflare down again?
Downdetector is multi-region but has a singular dependency on Cloudflare
Is Cloudflare down again?
December 5, 2025 at 9:02 AM
Damn half the internet is down again - including Downdetector
Downdetector is multi-region but has a singular dependency on Cloudflare
Is Cloudflare down again?
Downdetector is multi-region but has a singular dependency on Cloudflare
Is Cloudflare down again?
Reposted by Sangeeth Sudheer
There is critical vulnerability in React Server Components disclosed as CVE-2025-55182 that impacts React 19 and frameworks that use it.
A fix has been published in React versions 19.0.1, 19.1.2, and 19.2.1. We recommend upgrading immediately.
react.dev/blog/2025/12...
A fix has been published in React versions 19.0.1, 19.1.2, and 19.2.1. We recommend upgrading immediately.
react.dev/blog/2025/12...
Critical Security Vulnerability in React Server Components – React
The library for web and native user interfaces
react.dev
December 3, 2025 at 3:45 PM
There is critical vulnerability in React Server Components disclosed as CVE-2025-55182 that impacts React 19 and frameworks that use it.
A fix has been published in React versions 19.0.1, 19.1.2, and 19.2.1. We recommend upgrading immediately.
react.dev/blog/2025/12...
A fix has been published in React versions 19.0.1, 19.1.2, and 19.2.1. We recommend upgrading immediately.
react.dev/blog/2025/12...
Reposted by Sangeeth Sudheer
A perfect CVSS 10 🧑🏻🍳💋
CVE-2025-55182: Unauthenticated remote code execution vulnerability in React Server Components
The vuln is in versions 19.0, 19.1.0, 19.1.1, and 19.2.0:
react-server-dom-webpack
react-server-dom-parcel
react-server-dom-turbopack
Upgrade immediately!
CVE-2025-55182: Unauthenticated remote code execution vulnerability in React Server Components
The vuln is in versions 19.0, 19.1.0, 19.1.1, and 19.2.0:
react-server-dom-webpack
react-server-dom-parcel
react-server-dom-turbopack
Upgrade immediately!
Critical Security Vulnerability in React Server Components – React
The library for web and native user interfaces
react.dev
December 3, 2025 at 4:23 PM
A perfect CVSS 10 🧑🏻🍳💋
CVE-2025-55182: Unauthenticated remote code execution vulnerability in React Server Components
The vuln is in versions 19.0, 19.1.0, 19.1.1, and 19.2.0:
react-server-dom-webpack
react-server-dom-parcel
react-server-dom-turbopack
Upgrade immediately!
CVE-2025-55182: Unauthenticated remote code execution vulnerability in React Server Components
The vuln is in versions 19.0, 19.1.0, 19.1.1, and 19.2.0:
react-server-dom-webpack
react-server-dom-parcel
react-server-dom-turbopack
Upgrade immediately!
Reposted by Sangeeth Sudheer
Appception: British Airways’s app using a WebView to embed their website, which recommends installing the app I’m already on 😅
December 1, 2025 at 5:02 AM
Appception: British Airways’s app using a WebView to embed their website, which recommends installing the app I’m already on 😅