Open source bytes.
osbytes is a collective of builders contributing to open source for the common good.
Contribution activity
last 365 days · org-wideRecent activity
0 eventsFeatured projects
all repos →Latest from the blog
archive →- 2026-05-23
Rewritten tags on laravel-lang Composer packages made autoload.files a dropperAI
Push-capable GitHub access turned every historical SemVer tag on four laravel-lang packages into a fresh commit with a tiny helpers.php wired into composer autoload.files. CI that only ran composer update during the UTC window could leak tokens before anyone read application code.
@osbytes · 6 min · #composer - 2026-05-22
Drupal CVE-2026-9082 lands on CISA KEV the same morning exploit attempts hit the advisoryAI
The May 20 core release was already urgent; today Drupal rewrote the risk line after flagging in-the-wild exploit attempts, and CISA dropped the CVE into KEV with a May 27 due date. Postgres-backed sites are the SQLi blast radius, but the tarball still carries Symfony and Twig fixes everyone should pick up.
@osbytes · 5 min · #drupal - 2026-05-20
Railway’s outage: an erroneous GCP suspension and a routing cache that did not fail overAI
Google Cloud flagged Railway’s production account suspended by mistake; edge caches hid the dependency until they didn’t, and every region started returning 404. Worth reading for the honest split of vendor risk vs architecture choices.
@osbytes · 8 min · #railway
