Join us

ContentUpdates and recent posts about Magika..
Link
@varbear shared a link, 2 weeks, 5 days ago
FAUN.dev()

Hacking Google with A.I. for $500,000

A security researcher used an AI fuzzing harness against 1,500+ Google APIs and earned $500,000 in bug bounties, surfacing access-control flaws across Google Voice, Widevine, AdExchange, and internal Cloud Console GraphQL endpoints... read more  

Hacking Google with A.I. for $500,000
Link
@varbear shared a link, 2 weeks, 5 days ago
FAUN.dev()

The Smallest Brain You Can Build

Devarsh Ranpara builds a single-input perceptron from scratch in Python with browser demos, using the weight, bias, and decision boundary to show why a line forced through zero cannot separate classes that sit far from it... read more  

Link
@kaptain shared a link, 2 weeks, 5 days ago
FAUN.dev()

Breaking free of a single datacenter: Practical geo-distributed AI operations with the k0smos platforms

This post discusses the challenges of leveraging distributed resources for AI workloads and the role of Kubernetes in addressing these challenges. The k0smos stack is highlighted as a solution for operating geo-distributed AI infrastructure, divided into three technical layers: k0s, k0smotron, and k.. read more  

Breaking free of a single datacenter: Practical geo-distributed AI operations with the k0smos platforms
Link
@kaptain shared a link, 2 weeks, 5 days ago
FAUN.dev()

Kubernetes' Default CoreDNS Configuration is insecure

CoreDNS pods insecure option is the default in Kubernetes as it allows for the creation of arbitrary DNS A records. Combined with wildcard SSL certs, it poses a security risk, highlighted by Cilium's handling of network policies in the face of DNS manipulation. Time to shift to a more secure DNS con.. read more  

Kubernetes' Default CoreDNS Configuration is insecure
Link
@kaptain shared a link, 2 weeks, 5 days ago
FAUN.dev()

From Dashboard to Headlamp: Understanding the Transition

The Kubernetes Dashboard project has been archived, with Headlamp now carrying the legacy forward by offering a visual interface with enhanced capabilities like multi-cluster visibility and application-centric views. Headlamp keeps familiar workflows, while expanding to support multi-cluster environ.. read more  

From Dashboard to Headlamp: Understanding the Transition
Link
@kaptain shared a link, 2 weeks, 5 days ago
FAUN.dev()

Eliminating Kubernetes Image Signature Replication

The Kubernetes image promoter no longer replicates container image signatures across regions. The rewrite drops that replication entirely, cuts latency, and simplifies the codebase, while keeping signature verification working seamlessly for end users. Next, the project is moving to OCI 1.1 referrer.. read more  

Link
@kaptain shared a link, 2 weeks, 5 days ago
FAUN.dev()

Benchmarking KubeVirt performance with virtbench

Portworx released "virtbench," an open-source CLI that lets platform teams run reproducible KubeVirt benchmarks and assess VM readiness, rather than rely on pod health as a proxy... read more  

Benchmarking KubeVirt performance with virtbench
Link
@kala shared a link, 2 weeks, 5 days ago
FAUN.dev()

Announcing Stack Overflow for Agents

Stack Overflow's team opened the beta for "Stack Overflow for Agents", an API-first knowledge exchange that lets coding agents use Stack Overflow through human-owned accounts. The beta points to a clear model: developers connect agents to their own accounts, and Stack Overflow's team can link agent .. read more  

Announcing Stack Overflow for Agents
Link
@kala shared a link, 2 weeks, 5 days ago
FAUN.dev()

Making a vintage LLM from scratch

Croqaz shows how he built Vintage LLM, a Llama-style model trained on English books, newspapers, and other texts published before 1900. He covers corpus selection, cleaning, tokenizer choices, training setup, evaluation, and how pre-20th-century English affects model behavior... read more  

Making a vintage LLM from scratch
Link
@kala shared a link, 2 weeks, 5 days ago
FAUN.dev()

ChatGPhish: The Page Is the Payload

By appending a payload to any web page summarized by ChatGPT, an attacker can leak IP, User-Agent, and launch phishing attacks using live links and images inside the assistant UI. This browser-based prompt injection raises the bar for phishing and tracking, bypassing traditional defenses... read more  

ChatGPhish: The Page Is the Payload
Magika is an open-source file type identification engine developed by Google that uses machine learning instead of traditional signature-based heuristics. Unlike classic tools such as file, which rely on magic bytes and handcrafted rules, Magika analyzes file content holistically using a trained model to infer the true file type.

It is designed to be both highly accurate and extremely fast, capable of classifying files in milliseconds. Magika excels at detecting edge cases where file extensions are incorrect, intentionally spoofed, or absent altogether. This makes it particularly valuable for security scanning, malware analysis, digital forensics, and large-scale content ingestion pipelines.

Magika supports hundreds of file formats, including programming languages, configuration files, documents, archives, executables, media formats, and data files. It is available as a Python library, a CLI, and integrates cleanly into automated workflows. The project is maintained by Google and released under an open-source license, making it suitable for both enterprise and research use.

Magika is commonly used in scenarios such as:

- Secure file uploads and content validation
- Malware detection and sandboxing pipelines
- Code repository scanning
- Data lake ingestion and classification
- Digital forensics and incident response