Alex Gough
@quidity.bsky.social
Reformed Relapsed Physicist. Chrome security improver. ACSC(j) survivor. Kiwi. Cyberblahblah. All opinions mine or three times your money back.
AI safety/security Senior PM role in Chrome Security www.google.com/about/career... - help make AI features safe and use AI to promote safety in the rest of Chrome
Product Manager, Chrome AI Security — Google Careers
www.google.com
November 19, 2025 at 5:55 PM
AI safety/security Senior PM role in Chrome Security www.google.com/about/career... - help make AI features safe and use AI to promote safety in the rest of Chrome
Going to start all my blogs with "The issue was not caused, directly or indirectly, by a cyber attack or malicious activity of any kind."
November 19, 2025 at 4:23 AM
Going to start all my blogs with "The issue was not caused, directly or indirectly, by a cyber attack or malicious activity of any kind."
Reposted by Alex Gough
Good news #Kawaiicon friends! Slides are now up on my site:
garden.errbufferoverfl.me/soapbox/bull...
Keep your eyes out for raw data, zines and recordings! Which should be there 🔜
garden.errbufferoverfl.me/soapbox/bull...
Keep your eyes out for raw data, zines and recordings! Which should be there 🔜
Is My Job Even Real? Bullshit Jobs in Infosec – errbufferoverfl, enthusiastic zinester & artist, reluctant security engineer
Notes about society, microfarming, and sometimes security engineering.
garden.errbufferoverfl.me
November 8, 2025 at 5:29 AM
Good news #Kawaiicon friends! Slides are now up on my site:
garden.errbufferoverfl.me/soapbox/bull...
Keep your eyes out for raw data, zines and recordings! Which should be there 🔜
garden.errbufferoverfl.me/soapbox/bull...
Keep your eyes out for raw data, zines and recordings! Which should be there 🔜
Reposted by Alex Gough
It's con week! Ahh!
Whether you have been coming since we were Kiwicon, or are a hacker con newbie, there's probs new stuff happening around the venue that you haven't heard of.
Take a look! 🧵
Whether you have been coming since we were Kiwicon, or are a hacker con newbie, there's probs new stuff happening around the venue that you haven't heard of.
Take a look! 🧵
Cute Happy GIF
ALT: Cute Happy GIF
media.tenor.com
November 3, 2025 at 10:29 PM
It's con week! Ahh!
Whether you have been coming since we were Kiwicon, or are a hacker con newbie, there's probs new stuff happening around the venue that you haven't heard of.
Take a look! 🧵
Whether you have been coming since we were Kiwicon, or are a hacker con newbie, there's probs new stuff happening around the venue that you haven't heard of.
Take a look! 🧵
Reposted by Alex Gough
We derestricted crbug.com/382005099 today which might just be my favorite bug of the last few years: bad interaction between WebAudio changing the CPU's handling of floats and V8 not expecting that. See crbug.com/382005099#co... for a PoC exploit. Also affected other browsers
October 29, 2025 at 2:27 PM
We derestricted crbug.com/382005099 today which might just be my favorite bug of the last few years: bad interaction between WebAudio changing the CPU's handling of floats and V8 not expecting that. See crbug.com/382005099#co... for a PoC exploit. Also affected other browsers
My sexy baked potato costume just got a whole lot sexier
The Jacket Potato Jacket. “Supermarket chain Aldi has teamed up with London fashion brand Agro Studio to create a puffer coat that resembles a giant baked potato.” [dezeen.com]
Aldi unveils jacket potato jacket complete with silver foil poncho
Supermarket chain Aldi has teamed up with London fashion brand Agro Studio to create a puffer coat that resembles a giant baked potato.
www.dezeen.com
October 22, 2025 at 5:34 PM
My sexy baked potato costume just got a whole lot sexier
Ah! A house of heavenly peace!
October 17, 2025 at 5:10 AM
Ah! A house of heavenly peace!
Hollywood Nights & Don't Stop Believing must occupy the same cinematic universe
October 5, 2025 at 11:02 PM
Hollywood Nights & Don't Stop Believing must occupy the same cinematic universe
Come help Chrome security do the best security for several billion people through operational excellence
Chrome is hiring for our Product Security team! These are the folks that support Chrome's growth by figuring out how to manage more bugs, in more areas, on more aggressive timelines, with less human toil.
www.google.com/about/career...
www.google.com/about/career...
www.google.com/about/career...
www.google.com/about/career...
www.google.com/about/career...
www.google.com/about/career...
Staff Software Engineer, Chrome Product Security, Core — Google Careers
www.google.com
September 29, 2025 at 10:02 PM
Come help Chrome security do the best security for several billion people through operational excellence
You've got four more hours to see The Visitors at SF MOMA if you're at a lose end today
September 28, 2025 at 8:00 PM
You've got four more hours to see The Visitors at SF MOMA if you're at a lose end today
Attention Wellington: I am doing a talking!
Two con updates that will make you go: Σ(°ロ°)
- Our schedule is live! Take a gander at all the amazeballs speakers, and the exciting events happening in the hallway this year!
- Our merch orders close 1 October! Get your orders in now, or miss out
More details over at kawaiicon.org/news/!
- Our schedule is live! Take a gander at all the amazeballs speakers, and the exciting events happening in the hallway this year!
- Our merch orders close 1 October! Get your orders in now, or miss out
More details over at kawaiicon.org/news/!
a cartoon cat with its mouth open and the word shhh written above it
ALT: a cartoon cat with its mouth open and the word shhh written above it
media.tenor.com
September 19, 2025 at 12:49 AM
Attention Wellington: I am doing a talking!
Reposted by Alex Gough
I’m really enjoying Silksong so far but I won’t give my final verdict until I’m clear on what political system the game is endorsing
September 8, 2025 at 3:30 AM
I’m really enjoying Silksong so far but I won’t give my final verdict until I’m clear on what political system the game is endorsing
Reposted by Alex Gough
⌨️ Comin’ in hot on a Friday afternoon with a Web Discourse blog post! XSLT, Google, and… flame wars? meyerweb.com/eric/thought...
No, Google Did Not Unilaterally Decide to Kill XSLT
The Web Discourse has been spicy of late, and XSLT is to blame. Well, sort of. It’s complicated.
meyerweb.com
August 22, 2025 at 4:25 PM
⌨️ Comin’ in hot on a Friday afternoon with a Web Discourse blog post! XSLT, Google, and… flame wars? meyerweb.com/eric/thought...
Reposted by Alex Gough
ok so the times witnessed reporters receiving cash from Adams people three times at mayoral events and sat on it for over a month but couldn’t pass up a hot tip from a neonazi about Mamdani’s unsuccessful college application for long enough to check if the neonazi had already been identified
August 22, 2025 at 12:32 AM
ok so the times witnessed reporters receiving cash from Adams people three times at mayoral events and sat on it for over a month but couldn’t pass up a hot tip from a neonazi about Mamdani’s unsuccessful college application for long enough to check if the neonazi had already been identified
In other great news untappd unfucked my login so I could check in a "Johnny Utah" and a "Bodhizafa"
August 13, 2025 at 6:10 AM
In other great news untappd unfucked my login so I could check in a "Johnny Utah" and a "Bodhizafa"
Funniest moment of the weekend was the very wasted guy that dropped ten bucks on a balloon of nitrous then immediately tripped and popped it like Piglet. Immaculate vibes.
August 4, 2025 at 6:50 PM
Funniest moment of the weekend was the very wasted guy that dropped ten bucks on a balloon of nitrous then immediately tripped and popped it like Piglet. Immaculate vibes.
Great day checking out the wildlife of San Francisco. Harbor seals, pelicans, cormorants and sixty thousand deadheads.
August 3, 2025 at 6:02 AM
Great day checking out the wildlife of San Francisco. Harbor seals, pelicans, cormorants and sixty thousand deadheads.
Walk towards the light...
August 2, 2025 at 7:10 AM
Walk towards the light...
Reposted by Alex Gough
Now I've heard there was a secret chord
That David played and it pleased the Lord
But you don't really care for music, do you?
It goes like this, the fourth, the fifth
The minor falls, the major lifts
The baffled king composing Where’s me jumper
Where's me jumper
Where's me jumper
Where's me jumper
That David played and it pleased the Lord
But you don't really care for music, do you?
It goes like this, the fourth, the fifth
The minor falls, the major lifts
The baffled king composing Where’s me jumper
Where's me jumper
Where's me jumper
Where's me jumper
July 24, 2025 at 10:00 PM
Now I've heard there was a secret chord
That David played and it pleased the Lord
But you don't really care for music, do you?
It goes like this, the fourth, the fifth
The minor falls, the major lifts
The baffled king composing Where’s me jumper
Where's me jumper
Where's me jumper
Where's me jumper
That David played and it pleased the Lord
But you don't really care for music, do you?
It goes like this, the fourth, the fifth
The minor falls, the major lifts
The baffled king composing Where’s me jumper
Where's me jumper
Where's me jumper
Where's me jumper
Reposted by Alex Gough
I have the honor of setting down a few thoughts in words about one of the most important musical figures in my life. May he rest in the knowledge that he gave voice to sentiments many struggle to express.
The voice of Ozzy Osbourne was unlike anything before it. John Darnielle of @themountaingoats.bsky.social reflects on the loss of the singular frontman
Ozzy Osbourne Obituary: For the Back Street Kids
John Darnielle of the Mountain Goats reflects on the loss of the singular frontman.
pitchfork.com
July 24, 2025 at 2:12 PM
I have the honor of setting down a few thoughts in words about one of the most important musical figures in my life. May he rest in the knowledge that he gave voice to sentiments many struggle to express.
Reposted by Alex Gough
LLMs need a Security Architecture - I've been trying to articulate a version of this rule and Simon's is a nice approach
If you use "AI agents" (LLMs calling tools in a loop) you need to be aware of the Lethal Trifecta
Combine access to private data, exposure to untrusted content and the ability to externally communicate and an attacker can trick the system into stealing your data simonwillison.net/2025/Jun/16/...
Combine access to private data, exposure to untrusted content and the ability to externally communicate and an attacker can trick the system into stealing your data simonwillison.net/2025/Jun/16/...
The lethal trifecta for AI agents: private data, untrusted content, and external communication
If you are a user of LLM systems that use tools (you can call them “AI agents” if you like) it is critically important that you understand the risk of …
simonwillison.net
June 16, 2025 at 6:27 PM
LLMs need a Security Architecture - I've been trying to articulate a version of this rule and Simon's is a nice approach
www.gov.ca.gov/2025/06/07/1... I expect a lot more from Newsom than this limp tissue of an acknowledgement
Governor Gavin Newsom on the federal government taking over the California National Guard | Governor of California
www.gov.ca.gov
June 8, 2025 at 3:39 AM
www.gov.ca.gov/2025/06/07/1... I expect a lot more from Newsom than this limp tissue of an acknowledgement
