TypeScript 4.5 adds the `Awaited<T>` utility type. It recursively unwraps Promises. This is extremely helpful when you need to type the result of a library function that returns a Promise, but the library doesn’t export the return value interface.
Read more →Month: December 2021
Mitigating Log4Shell in Azure
If you cannot patch instantly, use WAF. Azure Front Door: Rule set newly updated to block JNDI strings. Azure Firewall: IDPS signatures updated.
Read more →Log4Shell Explained (CVE-2021-44228)
The internet is on fire. A vulnerability in `log4j` allows Remote Code Execution (RCE) via a simple text string. The Exploit If your server logs this string (e.g., in a User-Agent header), it connects to the LDAP server, downloads a Java class, and executes it. Patch Immediately.
Read more →