Regex for secret detection
If you are building some kind of system that is supposed to detect secrets you can approach the problem in different ways. Regex is a good approach after all...
Fix your failed uploads in Nextcloud or Immich due to CrowdSec
A failed upload in my self-hosted stack could be due to multiple reasons : Cloudflare, Caddy, CrowdSec or the service configuration. Let's go through each potential issue one-by-one to resolve these failed upload notifications !
Collect Caddy logs securely using Prometheus: restrict admin API access
Caddy exposes a metrics API which also gives admin access. Let's see how to secure Caddy-Prometheus integration taking this into account.
How to whitelist AppSec WAF rules in CrowdSec to avoid false positives?
I realized the fix last described in part #1 might not work with the Application Security Component (AppSec Component). The previous blog post only worked with the classic remediation component. Let's figure out why !
How to run Trivy scans on your selfhosted Forgejo code repositories?
I have wanted for a long time to integrate container scanning and SAST into my CI/CD pipeline. Let's use Trivy to increase the security of my CICD !