DeveloPassion's Newsletter 068 - Boomerang

# DeveloPassion's Newsletter 68 - Boomerang Hello everyone! I’m [Sébastien Dubois](https://dsebastien.net), your host. You’re receiving this email because you signed up for DeveloPassion’s Newsletter. Thank you for being here with me ✨ If you enjoy this, please forward it to your friends 👍. If this email was forwarded to you, then don’t forget to subscribe and become a supporter. You can also follow me on [X](https://x.com/dSebastien), [Bluesky](https://bsky.app/profile/dsebastien.net), and [Mastodon](https://pkm.social/@dsebastien). ![[DeveloPassion's Newsletter Logo.png|DeveloPassion's Newsletter logo: lightbulb sprouting colorful idea nodes]] ## Welcome Another week, another newsletter! I hope that you all had a great one 🤩 This week has come and gone so quickly! I didn’t have much time to work on side projects this week. I participated in [SecAppDev](https://secappdev.org/) in Leuven (Belgium), a conference dedicated to IT security. As some of you know, I ❤️ all things ITSEC, so participating in such a conference was a real blast. I’ve learned quite a few things. ![[DeveloPassion's Newsletter 68 - Boomerang - secappdev ext.png]] Caption: The rest area outside the conference rooms. Delightful! It’s always fun to discover all the ways systems can get hacked… In particular, a really fascinating talk by [Abhay Bhargav](https://x.com/abhaybhargav) focused on [Server-Side Request Forgery (SSRF)](https://portswigger.net/web-security/ssrf) and explored how to turn [Webhooks](https://en.wikipedia.org/wiki/Webhook) into dangerous boomerangs. In this case, the attacker controlled a Webhook target and replied to the Webhook request with a redirect, leading to data exfiltration and ultimately AWS account compromise (woops 😂). I’ve also participated in two whole-day workshops that were really *fun*. It’ll take me a while to publish my notes, but those will ultimately become part of my [Dev Concepts books](https://dev-concepts.dev/). While I was there, I also took the opportunity to visit the wonderful city of [Leuven](https://en.wikipedia.org/wiki/Leuven) ![[DeveloPassion's Newsletter 68 - Boomerang - leuven view.png]] Caption: Refreshing sights in Leuven If you come to Europe and/or Belgium, then do consider visiting the city. ![[DeveloPassion's Newsletter 68 - Boomerang - market.png]] ![[DeveloPassion's Newsletter 68 - Boomerang - leuven at night.png]] Caption: The city is even more beautiful at night Alright, let's gooooo 🚀 ## The Lab 🧪 Since I was at the conference for a part of the week, I didn’t have much time left to work on my side projects. Although, I did write a few more guides for the [Obsidian Starter Kit](https://www.store.dsebastien.net/product/obsidian-starter-kit): - Iterative and Incremental note-taking - How to capture information - How to capture quotes - How to capture information about persons of interest Those start completing the picture of how to take smart(er) notes in practice. Here’s a small update on the $ for those who like numbers: - Obsidian Starter Kit: 58 sales in the last 30 days ($910, down from ~$960 last week) - [Personal Knowledge Library](https://www.store.dsebastien.net//product/pkm-library): 20 sales in the last 30 days ($395, up from $380 last week) I’ve started developing a plugin for Obsidian called [Obsidian Publisher](https://github.com/dsebastien/obsidian-publisher). The goal of the plugin is to help me publish my notes on the Web more easily. Currently, I manually copy my notes to my blog, and fiddle with pictures/metadata. Then I manually import articles from [my blog](https://www.dsebastien.net/) to [Medium](https://dsebastien.medium.com/). And sometimes to other sites as well (e.g., DEV.to, HashNode, etc). This takes quite some time and effort and is “dumb” work. Moreover, whenever I need to fix typos, it’s a nightmare as I need to edit n different places. With the plugin, it will be possible to publish/update as many articles as I want, all in one go. ## Things I've learned this week ![[DeveloPassion's Newsletter 68 - Boomerang - new notes.png]] Caption: A few of the things I've learned this week Here are some ideas I found interesting (apart from everything at the SecAppDev conference): - The opposite of distraction is traction - Increase cold outreach success by providing scenarios - Impostor Syndrome - Meetings need to be designed - … ## Recent articles No new articles this week. ## Quotes of the week - [[Doubt kills more dreams than failure ever will]] - [[Everything will be okay in the end. And if it's not okay, it's not the end]] - [[Negotiations are won by whoever cares less]] ## How cool is that?! LINK: [The Human Genome Is Finally Fully Sequenced](https://www.thesciverse.com/2022/06/the-human-genome-is-finally-fully.html) LINK: [Internet Explorer 11 has retired and is officially out of support—what you need to know](https://blogs.windows.com/windowsexperience/2022/06/15/internet-explorer-11-has-retired-and-is-officially-out-of-support-what-you-need-to-know/) ## Thinking and learning links of the week LINK: [The Road Not Taken by Robert Frost - Poems | Academy of American Poets](https://poets.org/poem/road-not-taken) LINK: [The Kool Aid Factory](https://koolaidfactory.com/) LINK: [🌠 Breaking Changes & Dataview API Upgrades](https://www.obsidianroundup.org/2022-06-18/) LINK: [PKM Weekly June 19 – Issue 023 – Curtis McHale](https://curtismchale.ca/2022/06/19/pkm-weekly-june-19-issue-023/) LINK: [PKM Weekly June 12 2022 – Issue 022 – Curtis McHale](https://curtismchale.ca/2022/06/12/pkm-weekly-june-12-2022-issue-022/) ## Tech links of the week LINK: [Tech Notes: Notes on WebAssembly](http://neugierig.org/software/blog/2022/06/wasm-notes.html) LINK: [Function Declarations and Expressions](https://jsfunctions.io/) LINK: [Clean Architectures in Python - Introduction](https://www.thedigitalcatbooks.com/pycabook-introduction/) LINK: [Permissions Reference for AWS IAM | aws.permissions.cloud](https://aws.permissions.cloud/) LINK: [JWT.one - Online JSON Web Token Encoder / Decoder](https://jwt.one/) LINK: - [[10 Essential Knowledge Management Methods Every Professional Should Master (Article)]] - https://www.dsebastien.net/10-essential-knowledge-management-methods-every-professional-should-master/-every-professional-should-master// LINK: - [[Why Obsidian is All You Need - From Simple Notes to Complete Productivity (Article)]] - https://www.dsebastien.net/why-obsidian-is-all-you-need-from-simple-notes-to-complete-productivity// LINK: - [[The Ultimate Beginner's Guide to Obsidian (Article)]] - https://www.dsebastien.net/the-ultimate-beginners-guide-to-obsidian// LINK: - [[Knowii Community]] - https://www.store.dsebastien.net//product/knowii-community