Haproxy

Critical Starlette vulnerability CVE-2026-48710 (BadHost) enables Host header-based path auth bypass in Starlette <1.0.1, affecting thousands of AI infra apps; fix by upgrading to 1.0.1+, adopting endpoint-based security, and placing a reverse proxy in front of ASGI servers.

A detailed, data-rich guide for self-hosting a static website from a Raspberry Pi Zero entirely in RAM, using Alpine in diskless mode with TLS termination offloaded to a small VPS and a lightweight web server.

Kernel vulnerability reports have exploded (2–3 per week years ago to 5–10 per day now), driving more maintainers and prompting a likely shift away from embargoed disclosures toward continuous security maintenance.