Recently I’ve been learning ESP32 development and made a voice recorder firmware that runs on the Cardputer ADV. Maybe it’s the most powerful recorder firmware for the Cardputer ADV? （Since nobody else seems to have made one XD）

Fri, 19 Jun 2026 11:57:23 GMT

Recently I’ve been learning ESP32 development and made a voice recorder firmware that runs on the Cardputer ADV. Maybe it’s the most powerful recorder firmware for the Cardputer ADV? （Since nobody else seems to have made one XD）

https://github.com/Moskic/cardputer-adv-recorder

GitHub

GitHub - Moskic/cardputer-adv-recorder: A voice recorder and WAV player firmware for the M5Stack Cardputer ADV

A voice recorder and WAV player firmware for the M5Stack Cardputer ADV - Moskic/cardputer-adv-recorder

My global guidance for Codex: LinkInspired by andrej-karpathy-skills

Wed, 17 Jun 2026 08:50:32 GMT

My global guidance for Codex: Link

Inspired by andrej-karpathy-skills

I recently handled a security incident involving an old Nezha Dashboard instance.The root cause was a critical Nezha vulnerability: GHSA-5c25-7vpj-9mqh. My dashboard was running v2.0.7, which was affected.Attack flow:1. Attacker accessed:/dashboard../data/config.yaml2. Dashboard config was exposed3. JWT / agent secrets were leaked4. Attacker forged admin access5. Malicious cron jobs were created through Nezha6. All connected agents started scanning servers for secrets7. Results were sent to external webhook endpointsSuspicious commands looked like:grep -rn 'AKIA|sk-ant|sk-proj|AIzaSy|github_pat_' /root /home /opt /etc /app /var /data /tmpcurl

Tue, 16 Jun 2026 01:10:13 GMT

I recently handled a security incident involving an old Nezha Dashboard instance.

The root cause was a critical Nezha vulnerability: GHSA-5c25-7vpj-9mqh. My dashboard was running v2.0.7, which was affected.

Attack flow:

1. Attacker accessed:


/dashboard../data/config.yaml

2. Dashboard config was exposed

3. JWT / agent secrets were leaked

4. Attacker forged admin access

5. Malicious cron jobs were created through Nezha

6. All connected agents started scanning servers for secrets

7. Results were sent to external webhook endpoints

Suspicious commands looked like:


grep -rn 'AKIA|sk-ant|sk-proj|AIzaSy|github_pat_' /root /home /opt /etc /app /var /data /tmp

curl http://169.254.169.254/...

Impact:

• Nezha JWT and agent secrets should be considered leaked
• All connected nodes should be treated as exposed
• Any API keys, cloud credentials, SSH keys, TLS keys, or tokens on those servers should be rotated

Recommendations:

• Upgrade Nezha immediately, at least to v2.0.13+
• Stop all old agents
• Re-register every node with new secrets
• Do not reuse old config.yaml, SQLite DB, agent secret, or UUIDs
• Do not expose the dashboard directly to the public Internet
• Rotate passwords, SSH keys, API tokens, and TLS certificates

Lesson learned:

A monitoring dashboard with remote command execution is not “just a dashboard”. Treat it like critical infrastructure.

Hello World 🌍

Mon, 15 Jun 2026 12:07:22 GMT

Hello World 🌍

Feed | Moskic

Recently I’ve been learning ESP32 development and made a voice recorder firmware that runs on the Cardputer ADV. Maybe it’s the most powerful recorder firmware for the Cardputer ADV? （Since nobody else seems to have made one XD）

My global guidance for Codex: LinkInspired by andrej-karpathy-skills

Hello World 🌍