filesystem Archives

Tech Optimizer

May 3, 2026

TigerFS Mounts PostgreSQL As Transactional Filesystem

TigerFS is an open-source project introduced on April 4, 2026, by Michael Freedman, the CTO of TigerData. It allows users to mount a PostgreSQL database as a POSIX-like filesystem, storing database rows as individual files while ensuring ACID guarantees. Key features include an MIT license, support for both file-first and data-first workflows, mounting options using FUSE on Linux and NFS on macOS, and integration with standard Unix tools.

Tech Optimizer

April 26, 2026

CanisterSprawl: pgserve Compromised on npm: Malicious Versions Harvest Credentials and Exfiltrate to a Decentralized ICP Canister

On April 21, 2026, compromised versions of pgserve (1.1.11, 1.1.12, and 1.1.13) were published on npm, containing a 1,143-line credential-harvesting script that executes during the postinstall phase of npm install. The malware functions as a supply-chain worm, reinjecting itself into other packages if it finds an npm publish token. Stolen credentials are encrypted using RSA-4096 and AES-256 and exfiltrated to a decentralized Internet Computer Protocol (ICP) canister. The last legitimate release was v1.1.10, published on April 17, 2026. The malware was detected by StepSecurity AI Package Analyst and Harden Runner, which flagged the compromised versions as Critical / Rejected and confirmed live exfiltration during analysis. The injected script performs operations such as harvesting environment variables, collecting filesystem secrets, encrypting payloads, and propagating to other npm packages and Python packages if a PyPI token is detected. The exfiltration domains have been added to a global block list.

Winsage

April 18, 2026

RedSun: Windows 0day when Defender becomes the attacker

A vulnerability has been discovered in Windows Defender that allows standard users to exploit a logic error in the file remediation process, enabling code execution with elevated privileges without administrative access. This flaw, identified by security researcher Chaotic Eclipse, occurs because Windows Defender does not verify if the restoration location of flagged files has been altered through a junction point. The exploit, named RedSun, takes advantage of a missing validation in the MpSvc.dll file, allowing attackers to redirect file restoration to the C:WindowsSystem32 directory. RedSun operates by chaining together four legitimate Windows features: Opportunistic Locks (OPLOCKs), Cloud Files API, Volume Shadow Copy Service (VSS), and Junction Points. The execution of the exploit involves monitoring shadow copies, triggering Defender's detection, synchronizing OPLOCKs, and ultimately writing malicious binaries to the System32 directory. The root cause is the lack of reparse point validation in the restoration process, and currently, no patch or CVE has been assigned for this vulnerability. It affects Windows 10, Windows 11, and Windows Server 2019 and later, and organizations are advised to implement behavioral detection strategies until a fix is available.

Tech Optimizer

April 11, 2026

Database Branching in Postgres: Git-Style Workflows with Databricks Lakebase

Database branching is a modern approach that addresses the limitations of traditional database management in development workflows. Unlike conventional database copies, which require significant time and resources to duplicate data and schema, database branching allows for the creation of isolated environments that share the same underlying storage. This method utilizes a copy-on-write mechanism, enabling branches to be created in seconds regardless of database size, with storage costs tied only to the changes made. Key features of database branching include: - Branch creation time: Seconds, constant regardless of database size. - Storage cost: Proportional to changes only, not the total data size. - Isolation: Each branch has its own Postgres connection string and compute endpoint. - Automatic scaling: Idle branches can scale compute to zero, incurring costs only when active. The architecture supporting this approach separates compute from storage, allowing multiple branches to reference the same data without conflict. This design facilitates time travel capabilities, enabling branches to be created from any point in the past for instant recovery and inspection. Database branching unlocks new workflows, such as: - One branch per developer, providing isolated environments for each engineer. - One branch per pull request, automating branch creation and deletion tied to PRs. - One branch per test run, provisioning fresh databases for each CI pipeline execution. - Instant recovery from any point in time within a designated restore window. - Ephemeral environments for AI agents, allowing programmatic database provisioning. Databricks Lakebase offers this database branching capability, transforming the database from a bottleneck into a streamlined component of the development process.

AppWizard

April 9, 2026

Intent redirection vulnerability in third-party SDK exposed millions of Android wallets to potential risk

Version 5.2.1 of the EngageSDK was released to address security vulnerabilities related to third-party SDKs, particularly affecting digital asset management applications. Although no exploitation of this vulnerability has been reported, developers are urged to upgrade to the latest version. The Android operating system's security model provides some protections against these vulnerabilities, and the Android team has updated user protections during the transition to the secure version. The vulnerability, classified as severe, allows unauthorized access to protected components and sensitive data through intent redirection. Affected applications, particularly in the cryptocurrency and digital wallet sectors, account for over 30 million installations. The vulnerability was first identified in version 4.5.4 of the EngageLab SDK, reported in April 2025, and was addressed in version 5.2.1 released on November 3, 2025, which set the vulnerable activity to non-exported. Developers are advised to regularly review their Android manifests and upgrade to the latest SDK version to maintain application security.

Winsage

March 6, 2026

Windows Server 2025 Native NVMe: Storage Stack Overhaul and Benchmark Results

On December 15, 2025, Microsoft announced native NVMe support in Windows Server 2025, marking a significant evolution in data management and access. The new architecture replaces Disk.sys with NVMeDisk.sys, allowing direct communication from the filesystem to hardware via StorMQ, eliminating latency and enhancing performance. Testing revealed increased read speeds, particularly in random 4K and 64K benchmarks, with significant reductions in average read latency and lower CPU usage during sequential operations. Write operations showed modest improvements. A registry modification is required to enable this feature, and caution is advised due to potential complications with NVMe drives when deduplication is enabled.

Winsage

March 4, 2026

OpenAI’s Codex is now on Windows

OpenAI has launched its Codex agentic coding application for Windows, expanding its reach beyond the Mac platform. The Mac version received over 1 million downloads in its first week and currently has 1.6 million weekly active users, with over 500,000 developers awaiting the Windows version. The Windows version is designed for real-world usage, featuring native sandboxing capabilities and OS-level controls for secure operation. It includes a WinUI skill for Windows application development and mirrors the Mac version in functionality while introducing Windows-specific features. Codex emphasizes managing the agent over just coding, providing a unique interface described as a "command center for agents." It operates on OpenAI’s latest coding model, GPT-5.3-Codex, with options to switch to earlier versions and adjust reasoning levels. Codex for Windows is available to users across various tiers, including ChatGPT Free, Go, Plus, Pro, Business, Enterprise, and Edu.

Winsage

January 30, 2026

I found a Linux user who switched to Windows 11 after 8 years of distros — and he actually prefers it. Here’s why.

Windows 11 is often criticized for being overly restrictive, bloated, and focused on AI features, while Linux is praised for its control and transparency. A former Linux user who switched to Windows 11 after eight years found that Windows 11 improved workflows and offered better compatibility and hardware support, despite acknowledging its shortcomings like data harvesting and mandatory account creation. The user appreciated tools like Scoop and Windows Subsystem for Linux (WSL) for enhancing their experience. The narrative emphasizes that the choice between operating systems is personal, with Windows 11 appealing to users for its convenience and compatibility, while Linux remains valued for its flexibility and control.

Winsage

January 30, 2026

I found a Linux user who switched to Windows 11 after 8 years of distros — and he actually prefers it. Here’s why.

Critics describe Windows 11 as overly restrictive and bloated, with a focus on AI and Copilot features, while Linux is seen as an ideal alternative for developers prioritizing control and transparency. A former Linux user switched to Windows 11 after eight years with various distributions, finding that Windows embraced workflows that suited their needs. They discovered tools like Scoop, which functions as a package manager, and appreciated the Windows Subsystem for Linux (WSL) for its integration without the challenges of desktop Linux. Despite acknowledging criticisms of Windows 11, such as data privacy concerns and unwanted interface changes, the user found Windows 11's compatibility and user-friendliness appealing. The narrative emphasizes that operating system choices are personal and depend on individual workflows and needs.

AppWizard

January 29, 2026

I turned my phone into a Linux desktop with this free app

Smartphones can function as desktop replacements, exemplified by the Steam Deck and the introduction of Local Desktop, which allows users to install a full Arch Linux environment on Android devices. Users can run applications like VS Code and Firefox by connecting a keyboard, with installation taking about ten minutes and not requiring root access. However, the installation process may require multiple attempts for stability due to various errors. Once set up, users can enhance their experience with the yay package manager, although some applications may not perform optimally. Local Desktop operates by installing an Arch Linux ARM64 filesystem within the app's internal storage and using proot to create a chroot-like environment. The display mechanism employs a minimal Wayland compositor for improved responsiveness. While it offers a portable Linux environment, performance can vary, and it is not suited for heavy workloads. The experience may appeal to tech enthusiasts willing to navigate its challenges.