投稿時間:2023-03-20 05:23:56 RSSフィード2023-03-20 05:00 分まとめ(26件)

カテゴリー等	サイト名等	記事タイトル・トレンドワード等	リンクURL	頻出ワード・要約等/検索ボリューム	登録日
海外TECH	MakeUseOf	How Generative AI Could Negatively Impact Social Media	https://www.makeuseof.com/generative-ai-negatively-impact-social-media/	media	2023-03-19 19:31:18
海外TECH	MakeUseOf	How to Keep Default Desktop Icons and Mouse Pointer While Changing Windows 11 Themes	https://www.makeuseof.com/default-desktop-icons-mouse-pointer-changing-windows-11-themes/	windows	2023-03-19 19:15:17
海外TECH	DEV Community	Microsoft.CodeAnalysis.BannedApiAnalyzers	https://dev.to/karenpayneoregon/microsoftcodeanalysisbannedapianalyzers-1g6k	Microsoft CodeAnalysis BannedApiAnalyzersTypically a profession team of developers will have rules for coding along with code reviews to ensure code is writen to the rules and guidelines of the team Even with code reviews rules can still be broken which brings us to a Roslyn Analyzer Microsoft CodeAnalysis BannedApiAnalyzers MCABAA NuGet package which provides a way to perform a pre check on a code review and or while writing code How to use MCABAAAdd the package to a projectCreate a text file named BannedSymbols txt in the root folder of the project Inspect the project file by double clicking the project file in Solution Explorer and note how the banned file was placed in lt ItemGroup gt lt None Remove BannedSymbols txt gt lt ItemGroup gt lt ItemGroup gt lt AdditionalFiles Include BannedSymbols txt gt lt ItemGroup gt Adding rules Example Suppose for working with SQL Server database with a data provider the package Microsoft Data SqlClient should not be used but instead Entity Framework Core Add the following rule as the first call is usually creating an instance of SqlConnection T Microsoft Data SqlClient SqlConnection Use EF Core insteadAnother rule is needed in the event a developer attempts using System Data SqlClientT System Data SqlClient SqlConnection Use EF Core insteadOn the same line prevent a local method from being used M Library Classes DataOperations ReadData use EF Core instead Example Disallow using Newtonsoft Json JsonConvert use System Text Json JsonSerializer instead T Newtonsoft Json JsonConvert Use System Text Json JsonSerializer instead Example Disallow System DateTime Now in favor of Use System DateTime UtcNowP System DateTime Now Use System DateTime UtcNow instead Example The team has two versions of a class in this case Person in two separate class projects Library class project Person classpublic class Person public int Id get set public string Type get set public string FirstName get set public string LastName get set public DateTime BirthDate get set Library class project Person classpublic class Person public int Id get set public string Type get set public string FirstName get set public string LastName get set public DateOnly BirthDate get set Library is for pre existing project so it need to stay but for new projects use Library We add the following T Library Models Person Use Library Models Person which uses DateOnly rather than DateTime Finding broken rules Build the project s and check the Error List in Visual Studio What the code appears like with broken rules Rules cheat sheetSee the following page CaveatsThe file BannedSymbols txt can be placed in a folder outside the project but may not always work its hit and miss Rules can not be applied to language extension methods Source codeRather than taking time to setup a project clone the following GitHub repository	2023-03-19 19:15:10
海外TECH	DEV Community	APIs vs Webhooks: Understanding the Core Differences and Harnessing Their Power with Netlify Functions and Zapier	https://dev.to/bensabic/apis-vs-webhooks-understanding-the-core-differences-and-harnessing-their-power-with-netlify-functions-and-zapier-k42	APIs vs Webhooks Understanding the Core Differences and Harnessing Their Power with Netlify Functions and Zapier IntroductionIn the ever evolving landscape of software development and web applications APIs and Webhooks have emerged as essential components for connecting and automating various services While both are popular tools for achieving seamless communication between systems it s essential to understand their key differences This article will provide a minimal breakdown of APIs and Webhooks and explore how tools like Netlify Functions and platforms like Zapier can enhance their utility for beginners and experts alike Section What are APIs and Webhooks APIs Application Programming Interfaces and Webhooks are both mechanisms that facilitate communication between different applications but they serve distinct purposes and operate in unique ways APIs A Brief OverviewAPIs allow developers to access and interact with the functionality of external applications or services through a predefined set of rules and protocols By leveraging APIs developers can integrate third party services or retrieve data from external sources without building the entire functionality from scratch Webhooks A Brief OverviewWebhooks on the other hand enable real time event driven communication between applications They act as a way for an application to notify another when specific events occur like when new data is added or when a user completes a particular action Webhooks are essentially user defined HTTP callbacks that send a request to a specified URL when triggered Section Key Differences Between APIs and WebhooksUnderstanding the core differences between APIs and Webhooks is crucial for determining which tool best suits a specific use case Here are the primary distinctions Communication StyleAPIs utilize a request response communication style where a client sends a request to a server which then responds with the desired data Conversely webhooks employ an event driven communication style with one application sending an HTTP request to another when a specific event occurs Data FlowAPIs typically require polling where the client must periodically request data from the server to check for updates This can lead to increased network traffic and latency Webhooks by contrast push data directly to the receiving application as soon as the event occurs reducing the need for polling and improving efficiency FlexibilityAPIs offer greater flexibility regarding the data and functionality that can be accessed as developers can choose which endpoints and methods to call Webhooks are more limited in scope as they are tied to predefined events and actions Section Enhancing APIs and Webhooks with Netlify Functions and ZapierThe power of APIs and Webhooks can be further harnessed with the help of tools like Netlify Functions and platforms like Zapier Netlify Functions for Building APIsNetlify Functions simplify the process of creating and deploying serverless functions that can be used to build custom APIs By leveraging the power of AWS Lambda Netlify Functions allows developers to create serverless endpoints for their applications with minimal configuration which can then be used to fetch data process form submissions or even handle authentication Learn more about Netlify Functions Zapier for Handling WebhooksZapier is a popular automation platform that allows users to connect various applications and create automated workflows using webhooks With its intuitive interface and extensive integration library Zapier makes it easy for users of all skill levels to set up webhooks and automate tasks across different applications streamlining the integration process and boosting productivity You can also use this Webflow Webhook Generator by Evil Twins Studio powered by a Netlify Function to trigger a Zapier webhook when your chosen event is fired i e Webflow CMS collection item created ConclusionBoth APIs and Webhooks play crucial roles in modern software development offering distinct advantages and serving unique purposes By understanding the core differences between them and utilizing tools like Netlify Functions and platforms like Zapier developers and users can harness the power of these technologies to create more efficient interconnected and dynamic applications As the software development ecosystem grows and evolves APIs and Webhooks will remain indispensable tools for fostering seamless communication and integration between various services By staying informed about these technologies and their respective use cases beginners and experts can ensure they re making the most of their development efforts and maximizing the potential of their applications	2023-03-19 19:11:13
海外TECH	DEV Community	How To Prevent HPP and XSS Attacks In Nodejs	https://dev.to/ndohjapan/how-to-prevent-hpp-and-xss-attacks-in-nodejs-2ana	How To Prevent HPP and XSS Attacks In NodejsIn today s world cyber attacks are becoming more and more sophisticated Two common types of attacks that websites and applications face are HPP HTTP Parameter Pollution XSS Cross Site Scripting HPPHPP attacks occur when the HTTP parameters are polluted with duplicate or malicious values XSSWhile XSS attacks occur when attackers inject malicious scripts into a website or application It occurs the most when we users are able to make queries using the URL Fortunately there are modules available in Node js that can help prevent these types of attacks The hpp module can prevent HPP attacks while the xss clean module can prevent XSS attacks Prevent HPPThe hpp module works by preventing the duplication of HTTP parameters It does this by checking each parameter and removing duplicates before passing the request to the next middleware This ensures that the server receives only one instance of each parameter preventing any HPP attacks that may be attempted To use the hpp module simply install it using NPMnpm install hppconst hpp require hpp Require it in your code const hpp require hpp Then add the middleware to your application app use hpp Prevent XSSThe xss clean module on the other hand prevents XSS attacks by sanitizing user input It does this by escaping characters that could be used to execute scripts such as lt and gt This ensures that any user input is safe to use and cannot be used to execute malicious scripts To use the xss clean module install it using NPMnpm install xss cleanRequire it in your code const xss require xss clean const xss require xss clean app use xss In conclusion HPP and XSS attacks are two common types of attacks that websites and applications face Fortunately modules such as hpp and xss clean are available in Node js to prevent these attacks By using these modules in your Node js application you can help ensure that your application is secure and protected from these types of attacks I post stuff around DevOps and Backend Engineering you can follow me if you found this helpful	2023-03-19 19:07:21
海外TECH	Engadget	Google Pixel vulnerability allows bad actors to undo Markup screenshot edits and redactions	https://www.engadget.com/google-pixel-vulnerability-allows-bad-actors-to-undo-markup-screenshot-edits-and-redactions-195322267.html?src=rss	Google Pixel vulnerability allows bad actors to undo Markup screenshot edits and redactionsWhen Google began rolling out Android s March security patch earlier this week the company addressed a “High severity vulnerability involving the Pixel s Markup screenshot tool Over the weekend Simon Aarons and David Buchanan the reverse engineers who discovered CVE shared more information about the security flaw revealing Pixel users are still at risk of their older images being compromised due to the nature of Google s oversight In short the “aCropalypse flaw allowed someone to take a PNG screenshot cropped in Markup and undo at least some of the edits in the image It s easy to imagine scenarios where a bad actor could abuse that capability For instance if a Pixel owner used Markup to redact an image that included sensitive information about themselves someone could exploit the flaw to reveal that information You can find the technical details on Buchanan s blog Introducing acropalypse a serious privacy vulnerability in the Google Pixel s inbuilt screenshot editing tool Markup enabling partial recovery of the original unedited image data of a cropped and or redacted screenshot Huge thanks to David for his help throughout pic twitter com BXNQomnHbrーSimon Aarons ItsSimonTime March According to Buchanan the flaw has existed for about five years coinciding with the release of Markup alongside Android Pie in And therein lies the problem While March s security patch will prevent Markup from compromising future images some screenshots Pixel users may have shared in the past are still at risk It s hard to say how concerned Pixel users should be about the flaw According to a forthcoming FAQ page Aarons and Buchanan shared with toGoogle and The Verge some websites including Twitter process images in such a way that someone could not exploit the vulnerability to reverse edit a screenshot or image Users on other platforms aren t so lucky Aarons and Buchanan specifically identify Discord noting the chat app did not patch out the exploit until its recent January th update At the moment it s unclear if images shared on other social media and chat apps were left similarly vulnerable Google did not immediately respond to Engadget s request for comment and more information The March security update is currently available on the Pixel a a and Pro meaning Markup can still produce vulnerable images on some Pixel devices It s unclear when Google will push the patch to other Pixel devices If you own a Pixel phone without the patch avoid using Markup to share sensitive images This article originally appeared on Engadget at	2023-03-19 19:53:22
海外科学	NYT > Science	Flaming Space Debris Re-entering Atmosphere Lights Up California Sky	https://www.nytimes.com/2023/03/19/science/space/lights-space-debris-sacramento-sky.html	Flaming Space Debris Re entering Atmosphere Lights Up California SkyChunks of communications equipment which were jettisoned from the International Space Station moved at miles per hour making for a nighttime spectacle	2023-03-19 19:55:09
医療系	医療介護 CBnews	緊急手術「350件」から考える急性期充実体制加算-先が見えない時代の戦略的病院経営（192）	https://www.cbnews.jp/news/entry/20230317120429	全身麻酔	2023-03-20 05:00:00
ニュース	BBC News - Home	UBS agrees to rescue deal for troubled bank Credit Suisse	https://www.bbc.co.uk/news/business-65007871?at_medium=RSS&at_campaign=KARANGA	collapse	2023-03-19 19:16:01
ニュース	BBC News - Home	Man Utd v Fulham: Willian, Mitrovic and Silva shown red cards after penalty award in FA Cup	https://www.bbc.co.uk/sport/av/football/65008967?at_medium=RSS&at_campaign=KARANGA	Man Utd v Fulham Willian Mitrovic and Silva shown red cards after penalty award in FA CupFulham lose their heads as they let slip a lead and receive three red cards against Manchester United in their FA Cup quarter final at Old Trafford	2023-03-19 19:14:47
ニュース	BBC News - Home	Formula 1: Sergio Perez wins in Saudi Arabia as Fernando Alonso loses podium	https://www.bbc.co.uk/sport/formula1/65008832?at_medium=RSS&at_campaign=KARANGA	arabian	2023-03-19 19:01:15
ニュース	BBC News - Home	Arsenal 4-1 Crystal Palace: Gunners go eight points clear at top of Premier League	https://www.bbc.co.uk/sport/football/64929886?at_medium=RSS&at_campaign=KARANGA	Arsenal Crystal Palace Gunners go eight points clear at top of Premier LeagueArsenal move eight points clear at the top of the Premier League thanks to a routine home victory over managerless Crystal Palace	2023-03-19 19:05:43
ニュース	BBC News - Home	FA Cup: Manchester United come from behind to beat nine-man Fulham at Old Trafford	https://www.bbc.co.uk/sport/av/football/65009599?at_medium=RSS&at_campaign=KARANGA	FA Cup Manchester United come from behind to beat nine man Fulham at Old TraffordWatch highlights as Manchester United came from a goal down to beat nine man Fulham and reach the FA Cup semi finals with a controversial victory at Old Trafford	2023-03-19 19:27:05
ビジネス	ダイヤモンド・オンライン - 新着記事	老害？賢人？経営者627人の「独裁度」を独自試算の実名ランキングで暴く！ - 老害か!?賢人か!? 独裁経営者・実名ランキング	https://diamond.jp/articles/-/319625	老害賢人経営者人の「独裁度」を独自試算の実名ランキングで暴く老害か賢人か独裁経営者・実名ランキング天下り官僚が長年トップに君臨し、公私混同で経費を使いまくり。	2023-03-20 04:50:00
ビジネス	ダイヤモンド・オンライン - 新着記事	漫画『アオアシ』に学ぶ人材育成、部下の成長は上司の「質問力」がカギを握る【入山章栄・動画】 - 入山章栄の世界標準の経営理論	https://diamond.jp/articles/-/318742		2023-03-20 04:50:00
ビジネス	ダイヤモンド・オンライン - 新着記事	「英語」日本一やさしい勉強法を伝授、何歳でもできて一度覚えたら忘れない！ - 一度覚えたら忘れない英語勉強法	https://diamond.jp/articles/-/319601	「英語」日本一やさしい勉強法を伝授、何歳でもできて一度覚えたら忘れない一度覚えたら忘れない英語勉強法新型コロナウイルス感染拡大の水際対策が緩和され、海外との往来が回復の兆しを見せている。	2023-03-20 04:45:00
ビジネス	ダイヤモンド・オンライン - 新着記事	東京海上、SOMPO、MS＆ADがそろって「増収大減益」に陥った共通の事情 - ダイヤモンド 決算報	https://diamond.jp/articles/-/319697		2023-03-20 04:40:00
ビジネス	ダイヤモンド・オンライン - 新着記事	転職最後の関門「社長面接」で落とされないために何ができるか？ - 転職で幸せになる人、不幸になる人　丸山貴宏	https://diamond.jp/articles/-/319698	面接	2023-03-20 04:35:00
ビジネス	ダイヤモンド・オンライン - 新着記事	いきなり！ステーキが外食5社で独り負け減収、通期最終赤字転落で「疑義注記」解消ならず - ダイヤモンド 決算報	https://diamond.jp/articles/-/319695	いきなりステーキが外食社で独り負け減収、通期最終赤字転落で「疑義注記」解消ならずダイヤモンド決算報新型コロナウイルス禍に円安、資源・原材料の高騰、半導体不足など、日本企業にいくつもの試練が今もなお襲いかかっている。	2023-03-20 04:30:00
ビジネス	ダイヤモンド・オンライン - 新着記事	利上げ局面の景気後退を「恐れるべきではない」と米著名投資家が考える理由 - 政策・マーケットラボ	https://diamond.jp/articles/-/319694	景気後退	2023-03-20 04:25:00
ビジネス	ダイヤモンド・オンライン - 新着記事	時間に「追われる人」と「うまく使う人」を分ける習慣の差とは？ - 要約の達人　from flier	https://diamond.jp/articles/-/319693	時間に「追われる人」と「うまく使う人」を分ける習慣の差とは要約の達人fromflier時短勤務の人、好きな時間に好きな場所で働く人、複数の仕事をかけもちする人……働き方が多様化した昨今、時間の使い方はさまざまだ。	2023-03-20 04:20:00
ビジネス	ダイヤモンド・オンライン - 新着記事	米銀破綻で円高進む、ドル円相場の行方と「円売り」介入の可能性を考える - 政策・マーケットラボ	https://diamond.jp/articles/-/319728	米銀破綻で円高進む、ドル円相場の行方と「円売り」介入の可能性を考える政策・マーケットラボ突然の米銀破綻は、米国の追加利上げ期待を後退させ、為替市場では円買いが進んだ。	2023-03-20 04:15:00
ビジネス	ダイヤモンド・オンライン - 新着記事	年収が低い会社ランキング2022最新版【従業員の平均年齢30代後半】1位は上野の有名中華料理店 - ニッポンなんでもランキング！	https://diamond.jp/articles/-/319750	上場企業	2023-03-20 04:10:00
ビジネス	ダイヤモンド・オンライン - 新着記事	年収が低い会社ランキング2022最新版【従業員の平均年齢30代後半・500社完全版】 - ニッポンなんでもランキング！	https://diamond.jp/articles/-/319692	上場企業	2023-03-20 04:10:00
ビジネス	ダイヤモンド・オンライン - 新着記事	金融庁も問題視する「ファンドラップ」、高齢者を狙う金融機関の甘い誘い - 今週の週刊ダイヤモンド　ここが見どころ	https://diamond.jp/articles/-/319621	金融庁も問題視する「ファンドラップ」、高齢者を狙う金融機関の甘い誘い今週の週刊ダイヤモンドここが見どころ『週刊ダイヤモンド』月日号の第一特集は「お金の終活」です。	2023-03-20 04:05:00
ビジネス	東洋経済オンライン	総合商社が｢国内回帰｣を鮮明にする真の事情 資源バブルの先に勝ち残る｢5大商社｣はどこか | 最新の週刊東洋経済 | 東洋経済オンライン	https://toyokeizai.net/articles/-/659960?utm_source=rss&utm_medium=http&utm_campaign=link_back	三菱商事	2023-03-20 04:30:00