Tutorials & Guides

Hands-on DevOps, Cloud, and Kubernetes tutorials - from setup to production.

All AI CI/CD Cloud DevOps Docker eBPF Go Journal Kubernetes Linux Networking Python Security Terraform

Python

Python File Handling - Day - 09

Python program stores disappears the moment it stops running. File handling changes that. Today you learn to read, write, and append files - the skill …

GayatriCommunity · Apr 08, 2026 · 6 min read

Security

Docker Model Runner SSRF - OCI Registry Realm Hijack Exposes Internal Network & Cloud Credentials

Docker Model Runner's OCI token exchange follows the WWW-Authenticate: realm URL without validating scheme, hostname, or IP range. A malicious registry sets the realm to …

mrcloudbookOG · Apr 05, 2026 · 10 min read

Python

Python Strings & String Methods - Day - 8

Almost every Python program you write will deal with text. Reading names, processing messages, cleaning data, calling APIs, formatting output - strings are everywhere. Today …

GayatriCommunity · Apr 04, 2026 · 6 min read

Security

terminal-prettier npm Malware - RC4 Obfuscation and Anti-Analysis Hiding in dist/logger.js

Package masquerading as a terminal formatting utility. Under a legitimate-looking name sat an intentionally obfuscated dist/logger.js with an RC4-like cipher, base64 decoding, anti-analysis loops, and …

mrcloudbookOG · Apr 03, 2026 · 10 min read

Security

axios npm Supply Chain Attack - Malicious 1.14.1 & 0.30.4 Drop RAT via plain-crypto-js

StepSecurity and Socket identified two malicious releases of axios - the HTTP client with over 100 million weekly npm downloads - published using the compromised …

AaradhyaCommunity · Mar 31, 2026 · 10 min read

Python

Python Dictionaries - Day - 7

Dictionaries are one of Python's most powerful built-in data structures. Used in APIs, JSON data, config files, automation scripts, and databases - once you understand …

GayatriCommunity · Mar 31, 2026 · 7 min read

Security

SQL Expressions to SSH on Your Host - CVE-2026-27876

Liad Eliyahu, Head of Research at Miggo Security, discovered that Grafana's sqlExpressions feature - designed to transform query data with SQL syntax - also permitted …

mrcloudbookOG · Mar 31, 2026 · 9 min read

Security

CVE-2026 OpenAI Codex GitHub Token Theft - Command Injection via Branch Name Explained

OpenAI Codex - the AI coding agent embedded in ChatGPT - was vulnerable to command injection via the branch parameter during task creation. Codex runs …

mrcloudbookOG · Mar 30, 2026 · 12 min read

DevOps

Modernizing Legacy Cloud Infrastructure with Terraform

Standardized approach to convert existing cloud infrastructure and CloudFormation templates into Terraform, using visual design, infrastructure discovery, and CLI-based tools for safe and efficient IaC …

vishnu saiCommunity · Mar 30, 2026 · 4 min read

Tutorials & Guides

Stay in the loop