Latest Blog Posts and Talks
Hey folks, I wrote two new blog posts since my last newsletter:
First, I wrote about how I am finding all these CVEs in popular Hex packages that break your CI all the time (sorry!)
What the CVE?
How I'm using Claude Opus 4.7 to find and report CVEs in popular Hex packages to make the BEAM ecosystem safer.
Next, I just published a tiny post about how to store your SSH keys more securely by keeping them in your password manager instead.
Store your SSH keys in a Password Manager
Your SSH keys are sitting in ~/.ssh as plain text exactly where malware looks first. Move them to a password manager instead.
Recent Talks and Appearances
I spoke at ElixirConf EU about my Map the Cloud project in which I ran tiny Elixir applications on 120+ datacenters on AWS, GCP, and Azure. The recording isn’t out yet, but should be released in the next few months, so keep an eye out for that one.
I spoke on two podcasts in the last 2 weeks about my AI security research and collaboration with the EEF on reporting all these vulnerabilities:
Beam There, Done That
Elixir Mentor
Next Talks
Meetup Braga
I’ll speak at the Elixir meetup in Braga tomorrow (Tuesday, 9th of June)
BBUG #9 - Elixir in the age of AI, Tue, Jun 9, 2026, 6:00 PM | Meetup
Another edition of your favorite meetup is coming up, and you don't want to miss it! **📅 Schedule** 18:00 \| Doors open 18:45 \| Don't get pwned by Mythos 19:30 \| When y
Goatmire
My proposal Texting Lora was accepted by the Goatmire conference and I’ll speak there in September:
Texting Lora by Peter Ullrich
These are only the officially announced talks, but I have 2 more meetups and 1 more conference talk lined up for this year, so stay tuned :)
Until next time, happy BEAM-ing!
Peter