Profile avatar
roland.zone
go (the language) security team 🔥💻🔥
71 posts 999 followers 128 following
Regular Contributor
Active Commenter
Posts 27 Comments 23

I suspect "I'm gonna open source it on a Chinese server" is going to be a permanent addition to my lexicon

submitted 6 days ago • 0 comments

i choose to believe this is performance art github.com/openssl/open...

submitted 6 days ago • 4 comments

go birds

submitted 21 days ago • 0 comments

very cool to see the team continuing to push boulder to new heights, I don’t think any of us could’ve predicted it’d be responsible for issuing millions of certs a day in 2015 letsencrypt.org/2025/01/30/s...

submitted 30 days ago • 0 comments

getting faded off that NIST Reference Material 8210 shop.nist.gov/ccrz__Produc...

submitted 31 days ago • 0 comments

submitted 42 days ago • 0 comments

submitted 46 days ago • 1 comment

perhaps slightly jumping the gun here, but excited to see support for this finally getting rolled out github.com/letsencrypt/...

submitted 46 days ago • 1 comment

the number of xiaohongshu screenshots people are posting of comments they think are from people in china marked "美国" is extremely funny

submitted 47 days ago • 0 comments

nice

submitted 48 days ago • 0 comments

“people familiar with the matter” doing so much heavy lifting, china allowing a technology transfer here seems so incredibly implausible

submitted 48 days ago • 1 comment

where did i get this? i have zero memory of its origin

submitted 58 days ago • 2 comments

i've been thinking about writing a blog post about the Go Security team approach to (lack of) severity labeling for vulnerabilities, probably with an aside about the (non) utility of CVSS scores. would people actually find this useful/interesting, or would i just be posting into the security void

submitted 70 days ago • 3 comments

seems pretty cool tbh

submitted 70 days ago • 0 comments

submitted 71 days ago • 6 comments

uh huh

submitted 79 days ago • 2 comments

good stuff in here, please make sure we didn't completely break anything

submitted 79 days ago • 0 comments

i can’t believe they milkshake duck’d the tsunami

submitted 87 days ago • 0 comments

something i often here from people that is "missing" from go is enums, buts its often unclear why they think they are necessary. most of the time it boils down to wanting enforced exhaustive type switch cases ("match" in some other languages), but is that really it?

submitted 94 days ago • 4 comments

90% of election analysis boils down to "here is this position i personally dislike/like, it was the only reason this person lost/won, i am very smart"

submitted 94 days ago • 0 comments

i’m like 90% sure the reddit person is referring to lunch ninja, a program which sets up cross org lunches so you can talk to people you don’t generally work with. poses a lot of questions about their general understanding of normal human interactions 🫡

submitted 100 days ago • 2 comments

the three big things i worked on for go 1.24 from least cursed to most cursed: * a dit API & runtime mode (minorly cursed) * server-side ECH support for TLS (moderately cursed) * x509 policy validation (unbelievably cursed)

submitted 100 days ago • 0 comments

every six months i swear i won't put off major feature work until the last week of the go dev cycle and i have never learnt my lesson

submitted 104 days ago • 1 comment

damn if only we already had some kind of magical way to "nearly perfectly" add numbers of 100+ digits

submitted 278 days ago • 0 comments

what the last day before the go freeze looks like

submitted 284 days ago • 1 comment

amazing ux, a+ well done

submitted 611 days ago • 0 comments

opinion sections really have just become a place for the most deranged humans imaginable to justify their own neuroses

submitted 619 days ago • 0 comments