Animated Creativity | Animate your life. Don't be static.

Microsoft and OpenAI’s amicable divorce: what changes for the rest of us?

April 27, 2026 by admin

Close-up of two people in business suits shaking hands — corporate partnership/agreement context (photo: Bia Limova / Pexels)

Late on Sunday, Bloomberg reported that Microsoft and OpenAI have ended their exclusive cloud-and-revenue-sharing arrangement — the deal that made Azure the de facto home for OpenAI’s models since 2019 and gave Microsoft a percentage of OpenAI’s revenue in return …

pgBackRest is no longer maintained: a calm migration plan for production Postgres operators

April 26, 2026 by admin

Close-up of an open mechanical hard drive showing the spinning platter and read/write actuator arm — physical-storage context for backup discussion (photo: Amalia Digital / Pexels)

The pgBackRest GitHub repository was archived this week — the maintainer announced that the project is no longer being actively developed. For anyone running production PostgreSQL backups via pgBackRest (and that’s a lot of people; it’s been the de facto …

GitHub Copilot moves to usage-based billing: what changes on your team’s invoice

April 25, 2026 by admin

Hands using a calculator next to a printed invoice — usage-based billing context (photo: Kindel Media / Pexels)

GitHub Copilot is moving to usage-based billing — announced this week on the GitHub blog. The flat $10 / $19 / $39 per-seat pricing isn’t going away entirely, but each tier now comes with a “premium request” budget, and once …

The networking changes coming in macOS 27 — and which workflows might quietly break

April 24, 2026 by admin

Hands typing on a MacBook displaying a web browser — typical macOS development context (photo: Cottonbro / Pexels)

Howard Oakley’s eclectic-light blog flagged this week that the upcoming macOS 27 release brings a non-trivial reshuffle of how the OS handles networking — specifically the deprecation of a few long-standing low-level APIs and a tightening of how routing tables, …

The ‘fake plugin’ WordPress malware family: how to spot random-named directories in bulk

April 22, 2026 by admin

One of the most common WordPress malware patterns I’ve cleaned in the last two years isn’t a webshell or a credential stealer — it’s a “fake plugin” or “fake theme.” The attacker creates a directory in wp-content/plugins/ or wp-content/themes/ with …

The hard problem of sanitizing user-uploaded SVGs (and why most libraries get it wrong)

April 22, 2026 by admin

Close-up of HTML and CSS code on a computer screen — markup-parsing context for an SVG security article (photo: Pixabay / Pexels)

The Scratch team’s blog post on SVG sanitization (linked from Hacker News this week) is one of those technical write-ups that really should be required reading for anyone who lets users upload images to a web app. The author’s account …

SSH ProxyJump: reach private servers through a bastion without copying keys to it

March 1, 2026 by admin

Close-up of fiber optic patch panel with yellow and white connectors plugging into blue ports — visual metaphor for ProxyJump tunneling traffic through one server to reach another (photo: Brett Sayles / Pexels)

You have a private server in a VPC that’s only reachable through a bastion host. The “obvious” way to SSH there is the wrong way: copy your private key onto the bastion, then SSH from bastion to the private box. …

Time Machine to a Linux Samba share: the smb.conf that actually works (vfs_fruit, EA, posix locking)

December 3, 2025 by admin

Apple wants you to buy a Time Capsule, an iCloud subscription, or at minimum a Thunderbolt-attached SSD. None of that helps if you already have a Linux box sitting on your network with a few terabytes of free space. Time …

The one SQL query that catches almost every backdoor admin in WordPress

November 24, 2025 by admin

Close-up of WordPress JavaScript source code displaying themes:update functions and wp.updates handlers — typical view when auditing WordPress code (photo: Markus Spiske / Pexels)

If a WordPress site of yours has been compromised — even briefly, even silently — there’s a very good chance it now has at least one administrator account that you didn’t create. Most WP malware families plant one as part …

Block xmlrpc.php and hide wp-login.php server-wide on OpenLiteSpeed

November 21, 2025 by admin

Rack of running 1U servers in a data center, multi-color network cables

Every WordPress site running with default config is being hammered right now by brute-force scripts hitting xmlrpc.php and wp-login.php. If you run multiple sites on a single OpenLiteSpeed (LSWS) box, dropping a per-site .htaccess rule on each one is …