My National Novel Generation Month 2022 Entry

In November of 2022 I took part in the National Novel Generation Month (NaNoGenMo) and had a blast! It was my first time joining this prestigious event after reading about it in the /r/procedural_generation subreddit. I was immediately captivated by its simple premise: “Spend the month of November writing code that generates a novel of 50k+ words.” What constitutes a novel is pretty broad on purpose: Two machine-learning models, one generating nonsensical poems, and the other trying to make sense of them writing in the persona of the distressed poet?...

January 31, 2023 · 7 min · Hauke Jan Lübbers

Timeline of Package Dependency Compromises 2011-2017

Motivation Since the summer of 2019 I have been looking into package dependency compromises, a subset of software supply chain attacks. Today a number of popular programming languages make heavy use of more or less centralized package repositories and come with tools that make it easy to rely on third-party packages, which often come with lots of dependencies of their own. But with each dependency the attack surface for package dependency compromises increases - and malicious actors have already used different vectors to inject their payloads into software applications....

April 21, 2020 · 25 min · Hauke Jan Lübbers