Andrew Davies
Back to sources
email newsletterJuly 9, 2026

Cloud Security

Clint Gibler

Open original source

Retained excerpt

I really like Minimal’s landing page- nice aesthetic, and it actually has a great level of technical detail. They seem quite sharp, I like it 👍️ Cloud Security udgover/whim By Frederic Baguelin: Throwaway root shells in AWS Lambda Firecracker microVMs. Launch a fresh VM in ~2s, run a command or attach an interactive shell, then let it disappear. Build the image once, launch many — a Go library (microvm) plus a Docker-like CLI: run, exec, ps, gc, put/get. Security defaults include injection-only credentials that never resolve ambient AWS creds, shell tokens never logged, path-traversal guards on file transfers, and shell-quoted remote paths, though id-targeted commands like exec can reach any VM you explicitly name in a shared account, matching ssh semantics where naming the target is authorization. Why Amazon hates 'human-in-the-loop' AI governance Amazon VP Eric Brandwine argues that human-in-the-loop AI governance is not the gold standard it's assumed to be, citing normalization…

This limited excerpt is retained to explain the source trail. Rights remain with the original publisher.