Eddie Knight
@eddieknight.dev
Securing open source software is good for everyone.
FINOS TOC; OpenSSF Baseline; CNCF TAG Security & Compliance
FINOS TOC; OpenSSF Baseline; CNCF TAG Security & Compliance
It's been a year since we first decided we were going to create the Open Source Project Security Baseline — and it's been a wild ride.
I'll be talking about it during a #OSSummit keynote on Wednesday, but beforehand... let's hang out and celebrate a bit!
www.sonatype.com/event/baseli...
I'll be talking about it during a #OSSummit keynote on Wednesday, but beforehand... let's hang out and celebrate a bit!
www.sonatype.com/event/baseli...
June 16, 2025 at 1:09 PM
It's been a year since we first decided we were going to create the Open Source Project Security Baseline — and it's been a wild ride.
I'll be talking about it during a #OSSummit keynote on Wednesday, but beforehand... let's hang out and celebrate a bit!
www.sonatype.com/event/baseli...
I'll be talking about it during a #OSSummit keynote on Wednesday, but beforehand... let's hang out and celebrate a bit!
www.sonatype.com/event/baseli...
This is one talk you should absolutely skip
June 13, 2025 at 4:23 PM
This is one talk you should absolutely skip
Interestingly, CloudFlare is getting 2x the reports compared to the others I clicked into.
June 12, 2025 at 6:36 PM
Interestingly, CloudFlare is getting 2x the reports compared to the others I clicked into.
Anyone have an explanation for this downtime spike? Reports simultaneously from GCP and AWS, so that's ruled out.
Heatmap from different report pages has major cities reporting from every US region.
Heatmap from different report pages has major cities reporting from every US region.
June 12, 2025 at 6:31 PM
Anyone have an explanation for this downtime spike? Reports simultaneously from GCP and AWS, so that's ruled out.
Heatmap from different report pages has major cities reporting from every US region.
Heatmap from different report pages has major cities reporting from every US region.
Graphs always have a way of reminding me that we literally cannot comprehend what our ancestors were thinking, feeling, experiencing in their lifetimes.
Even such a core human element as "a parent's love" would have different meaning if the context is that 2 in 5 kids die before kindergarten.
Even such a core human element as "a parent's love" would have different meaning if the context is that 2 in 5 kids die before kindergarten.
June 9, 2025 at 4:18 PM
Graphs always have a way of reminding me that we literally cannot comprehend what our ancestors were thinking, feeling, experiencing in their lifetimes.
Even such a core human element as "a parent's love" would have different meaning if the context is that 2 in 5 kids die before kindergarten.
Even such a core human element as "a parent's love" would have different meaning if the context is that 2 in 5 kids die before kindergarten.
Apparently I need to start putting content on my personal website, if ChatGPT is gonna send people to it...
Dislike.
Dislike.
April 17, 2025 at 2:42 AM
Apparently I need to start putting content on my personal website, if ChatGPT is gonna send people to it...
Dislike.
Dislike.
Now we've lost funding for the common vulnerabilities & exposures system that the entire cybersecurity industry relies on.
gg, well played.
gg, well played.
April 15, 2025 at 9:01 PM
Now we've lost funding for the common vulnerabilities & exposures system that the entire cybersecurity industry relies on.
gg, well played.
gg, well played.
This is it, @mikeneeds.rest.
The high water mark. The peak. The climax. The apex. It only goes down from here.
The high water mark. The peak. The climax. The apex. It only goes down from here.
April 14, 2025 at 4:37 PM
This is it, @mikeneeds.rest.
The high water mark. The peak. The climax. The apex. It only goes down from here.
The high water mark. The peak. The climax. The apex. It only goes down from here.
Litmus test... Share your opinions on this:
April 10, 2025 at 11:51 AM
Litmus test... Share your opinions on this:
When the HOA comes to explain why your new mailbox isn't up to code, and why it's very very important that all the mailboxes match.
April 7, 2025 at 11:15 AM
When the HOA comes to explain why your new mailbox isn't up to code, and why it's very very important that all the mailboxes match.
ICYMI: We have four security workshops on the KubeCon next week!
It'll be less than 5min of me introducing projects and maintainers, then 40min of hands-on time with the project's maintainers.
And we have 4 LEGO Star wars prizes for Impact Contributors!
kccnceu2025.sched.com/type/Experie...
It'll be less than 5min of me introducing projects and maintainers, then 40min of hands-on time with the project's maintainers.
And we have 4 LEGO Star wars prizes for Impact Contributors!
kccnceu2025.sched.com/type/Experie...
March 29, 2025 at 2:48 PM
ICYMI: We have four security workshops on the KubeCon next week!
It'll be less than 5min of me introducing projects and maintainers, then 40min of hands-on time with the project's maintainers.
And we have 4 LEGO Star wars prizes for Impact Contributors!
kccnceu2025.sched.com/type/Experie...
It'll be less than 5min of me introducing projects and maintainers, then 40min of hands-on time with the project's maintainers.
And we have 4 LEGO Star wars prizes for Impact Contributors!
kccnceu2025.sched.com/type/Experie...
First time seeing this go mod security feature catch something, and it feels... incorrect.
This taxes my imagination to think of how it would be malicious OR accidental.
Why does this kind of thing only happen when I'm too sleepy to dig in and figure it out 😑
This taxes my imagination to think of how it would be malicious OR accidental.
Why does this kind of thing only happen when I'm too sleepy to dig in and figure it out 😑
March 22, 2025 at 2:42 AM
First time seeing this go mod security feature catch something, and it feels... incorrect.
This taxes my imagination to think of how it would be malicious OR accidental.
Why does this kind of thing only happen when I'm too sleepy to dig in and figure it out 😑
This taxes my imagination to think of how it would be malicious OR accidental.
Why does this kind of thing only happen when I'm too sleepy to dig in and figure it out 😑
For the uninitiated...
March 5, 2025 at 3:47 PM
For the uninitiated...
Terraform + Ansible =
Terr_____ + ___ible ?
Terr_____ + ___ible ?
March 1, 2025 at 3:37 AM
Terraform + Ansible =
Terr_____ + ___ible ?
Terr_____ + ___ible ?
I can help if you're a DOD warehouse manager who is being asked to go around tapping folks on the shoulder to help them find their login and send the DOGE email.
Here's your template:
- unloaded boxes
- put boxes on shelves
- moved boxes from shelves to other boxes
- labeled boxes
- loaded boxes
Here's your template:
- unloaded boxes
- put boxes on shelves
- moved boxes from shelves to other boxes
- labeled boxes
- loaded boxes
February 28, 2025 at 7:08 PM
I can help if you're a DOD warehouse manager who is being asked to go around tapping folks on the shoulder to help them find their login and send the DOGE email.
Here's your template:
- unloaded boxes
- put boxes on shelves
- moved boxes from shelves to other boxes
- labeled boxes
- loaded boxes
Here's your template:
- unloaded boxes
- put boxes on shelves
- moved boxes from shelves to other boxes
- labeled boxes
- loaded boxes
I don't have many internal meetings with colleagues, but every week I have a TON of collaborations with folks from all sorts of organizations all around the world.
If it wasn't for cal.com/knight, I would need a personal assistant— or a different job entirely.
If it wasn't for cal.com/knight, I would need a personal assistant— or a different job entirely.
January 17, 2025 at 4:30 PM
I don't have many internal meetings with colleagues, but every week I have a TON of collaborations with folks from all sorts of organizations all around the world.
If it wasn't for cal.com/knight, I would need a personal assistant— or a different job entirely.
If it wasn't for cal.com/knight, I would need a personal assistant— or a different job entirely.
A job opening was just shared where you could work in a high impact security role alongside some of my favorite people in open source.
jobs.citi.com/job/irving/c...
jobs.citi.com/job/irving/c...
January 8, 2025 at 8:39 PM
A job opening was just shared where you could work in a high impact security role alongside some of my favorite people in open source.
jobs.citi.com/job/irving/c...
jobs.citi.com/job/irving/c...
I'm confused about how to feel.
I got my first ever KubeCon acceptance on the same day that I saw my name on the program beside these heavy hitters.
100% Excited
100% Imposter
I got my first ever KubeCon acceptance on the same day that I saw my name on the program beside these heavy hitters.
100% Excited
100% Imposter
January 8, 2025 at 8:04 PM
I'm confused about how to feel.
I got my first ever KubeCon acceptance on the same day that I saw my name on the program beside these heavy hitters.
100% Excited
100% Imposter
I got my first ever KubeCon acceptance on the same day that I saw my name on the program beside these heavy hitters.
100% Excited
100% Imposter
This is what happened to the Library of Alexandria! The problem wasn't that the building was destroyed— but maintenance slowly ceased and the knowledge it provided was used less and less, with potentially nothing usable remaining inside, until it became just another building destroyed in war.
January 3, 2025 at 5:52 PM
This is what happened to the Library of Alexandria! The problem wasn't that the building was destroyed— but maintenance slowly ceased and the knowledge it provided was used less and less, with potentially nothing usable remaining inside, until it became just another building destroyed in war.
no highly esteemed deed is commemorated here
January 2, 2025 at 5:20 AM
no highly esteemed deed is commemorated here
I watched as thousands of these things (but gold) were filled, sealed, and loaded into trucks every day for months.
Then January hit and the entire facility closed down overnight.
Then January hit and the entire facility closed down overnight.
December 29, 2024 at 10:15 PM
I watched as thousands of these things (but gold) were filled, sealed, and loaded into trucks every day for months.
Then January hit and the entire facility closed down overnight.
Then January hit and the entire facility closed down overnight.
Profile picture checks out
December 19, 2024 at 8:35 PM
Profile picture checks out
December 11, 2024 at 1:35 PM