Malcolm Fell emarref

Native Secure Enclave backed ssh keys on MacOS

It turns out that MacOS Tahoe can generate and use secure-enclave backed SSH keys! This replaces projects like https://github.com/maxgoedjen/secretive

There is a shared library /usr/lib/ssh-keychain.dylib that traditionally has been used to add smartcard support to ssh by implementing PKCS11Provider interface. However since recently it also implements SecurityKeyProivder which supports loading keys directly from the secure enclave! SecurityKeyProvider is what is normally used to talk to FIDO2 devices (e.g. libfido2 can be used to talk to your Yubikey). However you can now use it to talk to your Secure Enclave instead!

gif-from-tweet

There are so many great GIFs out there and I want to have copies of them. Twitter makes that harder than it should be by converting them to MP4 and not providing access to the source material. To make it easier, I made a bash pipeline that takes a tweet URL and a filename, extracts the MP4 from that tweet and uses ffmpeg to convert back to GIF.

Dependencies

ffmpeg
- macOS: brew install ffmpeg
- Ubuntu/Debian: apt install ffmpeg

Moved to Shopify/graphql-design-tutorial

Exporting your 2FA tokens from Authy to transfer them into another 2FA application

IMPORTANT - Update regarding deprecation of Authy desktop apps

Past August 2024, Authy stopped supported the desktop version of their apps:
See Authy is shutting down its desktop app | The 2FA app Authy will only be available on Android and iOS starting in August for details.

And indeed, after a while, Authy changed something in their backend which now prevents the old desktop app from logging in. If you are already logged in, then you are in luck, and you can follow the instructions below to export your tokens.

If you are not logged in anymore, but can find a backup of the necessary files, then restore those files, and re-install Authy 2.2.3 following the instructions below, and it should work as expected.

A curated list of AWS resources to prepare for the AWS Certifications

A curated list of awesome AWS resources you need to prepare for the all 5 AWS Certifications. This gist will include: open source repos, blogs & blogposts, ebooks, PDF, whitepapers, video courses, free lecture, slides, sample test and many other resources.

	#include <stdio.h>
	#include <stdlib.h>
	#include <string.h>
	#include <ctype.h>
	#include <openssl/sha.h>

	#define TARGET_PREFIX "20250327"
	#define MAX_WORDS 256
	#define MAX_TEXT 2048
	#define MAX_ATTEMPTS (1ULL << 32) // 2^32 attempts (~4.3B, enough for 8-char prefix)

	/*
	Copy this into the console of any web page that is interactive and doesn't
	do hard reloads. You will hear your DOM changes as different pitches of
	audio.

	I have found this interesting for debugging, but also fun to hear web pages
	render like UIs do in movies.
	*/

	const audioCtx = new (window.AudioContext \|\| window.webkitAudioContext)()

	import React from "react";
	import useMutableReducer from "./useMutableReducer";

	const reducer = (draft, action, state) => {
	switch (action) {
	case "increment":
	draft.count++;
	break;
	case "decrement":
	draft.count--;

	// A Declarative Pipeline is defined within a 'pipeline' block.
	pipeline {

	// agent defines where the pipeline will run.
	agent {
	// This also could have been 'agent any' - that has the same meaning.
	label ""
	// Other possible built-in agent types are 'agent none', for not running the
	// top-level on any agent (which results in you needing to specify agents on
	// each stage and do explicit checkouts of scm in those stages), 'docker',

	# finds all .js files that have either `</` or `/>` tags in them and renames them to .jsx
	find ./src -type f -name '.js' -not -name '.jsx' -not -name '*.ejs' -exec bash -c 'grep -l -E "</\|/>" "$0"' {} \; -exec bash -c 'mv "$0" "${0%.js}.jsx"' {} \;