Jamie Tanna's profile image

Hi, I'm Jamie Tanna (he/him/his), and I'm currently a Senior Software Engineer at Elastic.

I currently live in Nottingham with my partner Anna Dodson and our cat Morph and our puppy Cookie.

I use my site as a method of blogging about my learnings, as well as sharing information about projects I have previously, or are currently, working on in my spare time.

I'm an maintainer for a number of Open Source projects, including oapi-codegen, and my most recent passion project, dependency-management-data (DMD) and the SAAS platform behind it, deps.fyi.

I'm a GNU/Linux user, a big advocate for the Free Software Movement, and the IndieWeb movement and I try to self host my own services where possible, instead of relying on other providers.

I have ADHD (Inattentive Type) and am learning how to make my life work better around it.

Drop me an email at hi@jamietanna.co.uk, or using any of the other social links below.

My birthday is on the .

 Listen

Listened to E83: Developer-First Security with Snyk by Open Source Startup Podcast
Post details
Guy Podjarny is the Founder of Snyk, the developer-first security platform that helps companies find and fix vulnerabilities in their code, open source dependencies, containers, and infrastructure as code. Snyk has raised $1.2B from investors including Boldstart, Accel, Tiger Global, and Addition. In this episode, we dig into selling security products to developers, the pros and cons of being open source (Snyk is not!), Snyk's fundraising journey and challenges early on, how Snyk has evolved over the years, the decision to bring in an outside CEO & more!

 Listen

Listened to E43: Building Supabase, the Open Source Firebase Alternative by Open Source Startup Podcast
Post details
Paul Copplestone is Co-Founder & CEO of Supabase the open source Backend-as-a-Service company that provides storage, authentication, edge functions, and a postgres database to users.  Supabase's project, also called supabase, has 36K stars on GitHub and is positioned as the "open source Firebase alternative". Supabase has raised $116M from investors including Coatue, Felicis, and YC. In this episode, we discuss positioning as an open source alternative to "x", the benefits of going through YC as an open source company, how to judge open source momentum, learnings for other early open source founders, and more!

 Listen

Listened to Open Source Security: Syft, Grype, and Grant with Alan Pope
Post details
I chat with Alan Pope about the open source security tools Syft, Grype, and Grant. These tools help create Software Bills of Materials (SBOMs) and scan for vulnerabilities. Learn why generating and storing SBOMs is crucial for understanding your software supply chain and quickly responding to new threats like Log4Shell. The show notes and blog post for this episode can be found at

 Listen

Listened to Who Are You? (with SZA, Dan Erickson, and We Know Severance) by Player FM 
Post details
<p>The second season may be over, but the Severance Podcast is back with an extra special bonus episode, where Ben and Adam look at all of season 2 with some incredible guests. First, they welcome back everyone’s favorite brain-in-a-jar, Severance creator Dan Erickson, to answer your hotline questions and uncover the origin story behind how his brain got in a jar. Then, Ben and Adam are joined by the hosts of the podcast We Know Severance (Josh Wigler, Dr. Melissa Woodward, Dr. Amanda Rabinowitz) to talk about the real-world science of Severance — and two of the hosts are literal doctors, so they know what they’re talking about. Finally, Grammy-winning artist SZA comes on the pod to share how Severance has impacted her life and meditate on one of the central themes of the show: who are you?</p><p>To learn more about listener data and our privacy practices visit: <a href="https://www.audacyinc.com/privacy-policy">https://www.audacyinc.com/privacy-policy</a></p><p>Learn more about your ad choices. Visit <a href="https://podcastchoices.com/adchoices">https://podcastchoices.com/adchoices</a></p>

 Listen

Listened to The 1000x faster financial database with Joran Dirk Greef, creator of TigerBeetle (Changelog Interviews #635)
Post details
In July of 2020, Joran Dirk Greef stumbled into a fundamental limitation in the general-purpose database design for transaction processing. This sent him on a path that ended with TigerBeetle, a redesigned distributed database for financial transactions that yielded three orders of magnitude faster OLTP performance ove...

 Bookmark

Bookmarked What Makes a Great Developer Experience? » Code Simplicity by Max Kanat-Alexander 
Post details
I’ve been working for over 20 years in the field of “developer experience,” where we help developers be more effective, efficient, and happy, by improving tools, systems, and processes. I have been intimately involved in designing key aspects of the developer experience at Google and LinkedIn, have been very involved with the research community in this space, and I’m constantly in touch with developer experience leaders at every major tech company. I’d like to spell out for you the fundamental principles of what makes a great developer experience—the most important things to understand in the space. I’m only going to

 Listen

Listened to Dave Anderson by Gergely Orosz 
Post details
Dave Anderson, formerly Tech Director at Amazon, shares an inside look at Amazon's engineering culture—from hiring and promotions to team autonomy and extreme frugality.

 Listen

Listened to Open Source Security: Episode 456 - What if XZ happened to a company? The openness of open source
Post details
and embark on a thought experiment to discuss how a commercial entity would handle something like the xz incident. It was very specific and difficult to understand. It's easy to claim just because source code being available doesn't matter. But the reality is when source code is needed, it can make a huge difference for everyone working together, just like we saw with xz. Show Notes

 Listen

Listened to Open Source Security: Episode 454 - The state of open source with Brian Fox from Sonatype and Donald Fischer from Tidelift
Post details
and talk to Brian Fox from Sonatype and Donald Fischer from Tidelift about their recent reports as well as open source. There are really interesting connections between the two reports. The overall theme seems to be open source is huge, everywhere, and needs help. But all is no lost! There's some great ideas on what the future needs to look like. Show Notes

 Repost

Reposted Kat Marchán (@zkat.tech)
Post details
Idk who needs to hear this but tech workers who have to have high salaries are still working class and should act (and be treated) accordingly. Tech workers have much more in common with miners and factory workers and secretaries and baristas than with management and executives.

 Listen

Listened to S2E9: The After Hours (with Sydney Cole Alexander) by Player FM 
Post details
<p>If you did a word cloud of this week’s podcast episode, the number one word would be PENULTIMATE. Because this week, we’re talking all about Season 2 Episode 9 — that’s right, it’s the penultimate episode of the season. For this momentous occasion, Ben and Adam are joined by Sydney Cole Alexander, who plays Natalie, conduit to the Board and conduit to our fan hotline. They discuss Natalie’s infamous smile, the different way she handles Milchick and Cobel, and how corporate “friendly feedback” can feel like getting stabbed in the heart. Plus, Sydney sticks around to give some Lumon-approved answers to your hotline questions.</p><p>To learn more about listener data and our privacy practices visit: <a href="https://www.audacyinc.com/privacy-policy">https://www.audacyinc.com/privacy-policy</a></p><p>Learn more about your ad choices. Visit <a href="https://podcastchoices.com/adchoices">https://podcastchoices.com/adchoices</a></p>

 Listen

Listened to S2E8: Sweet Vitriol (with Patricia Arquette and Jimmy Kimmel) by Player FM 
Post details
<p>For Season 2 Episode 8 of Severance, it’s the Harmony Cobel Show. And there’s no one better to break it down with Ben and Adam than Cobel herself — Patricia Arquette! They talk all about how she built Cobel’s backstory and how Newfoundland became the perfect Salt’s Neck. Then, Ben and Adam are joined by Severance superfan Jimmy Kimmel to answer some of the your burning hotline questions, including: would you rather be a fetid moppet or a shambolic rube?</p><p>To learn more about listener data and our privacy practices visit: <a href="https://www.audacyinc.com/privacy-policy">https://www.audacyinc.com/privacy-policy</a></p><p>Learn more about your ad choices. Visit <a href="https://podcastchoices.com/adchoices">https://podcastchoices.com/adchoices</a></p>

 Listen

Listened to S2E7: Chikhai Bardo (with Dichen Lachman and Jessica Lee Gagné) by Player FM 
Post details
<p>This week, it’s finally time to take the elevator down to the testing floor. To break down all the revelations in Season 2 Episode 7, Ben and Adam are joined by Dichen Lachman, who plays Gemma / Ms. Casey. She shares what it was like filming in a brand new location with a new cast of characters, how she and Adam built out the relationship between Gemma and Mark, and the origin story of Ms. Casey’s iconic wig. Then, Ben sits down with Jessica Lee Gagné, Severance’s main cinematographer and director of the episode, to talk about why she chose this episode as her directorial debut. Plus: why you should never offer up your own house as a filming location.</p><p>To learn more about listener data and our privacy practices visit: <a href="https://www.audacyinc.com/privacy-policy">https://www.audacyinc.com/privacy-policy</a></p><p>Learn more about your ad choices. Visit <a href="https://podcastchoices.com/adchoices">https://podcastchoices.com/adchoices</a></p>

 Listen

Listened to Open Source Security: CVE for EOL with Aaron Frost
Post details
Aaron Frost explores the overly complex world of vulnerability identifiers for end of life software. We discuss how incomplete CVE reporting creates blind spots for users while arming attackers with knowledge. The conversation uncovers the ethical tensions between resource constraints and security transparency, highlighting why the "vulnerable until proven otherwise" approach is the best path forward for end of life software. The show notes and blog post for this episode can be found at

 Listen

Listened to E169: Building New Standards for Observability - Lightstep & OpenTelemetry by Open Source Startup Podcast
Post details
Ben Sigelman is the Co-Founder & CEO of observability platform Lightstep as well as Co-Creator of open source observability frameworks OpenTracing and OpenTelemetry. Lightstep was acquired by ServiceNow in 2021 and OpenTelemetry was released in 2019 and has since become the standard observability framework. In this episode, we dig into:The founding story for Lightstep - including the initial pivot into the ideaThe benefits Lightstep got from open sourcing OpenTracing The OpenTracing and OpenCensus merger into OpenTelemetryWhy OpenTelemetry has been so widely adopted Ben's perspective on the many companies building with OpenTelemetry todayHow their team made the decision to take the ServiceNow acquisition Company building learnings around team building (& more!)

 Listen

Listened to S2E6: Attila (with Christopher Walken and Sarah Bock) by Player FM 
Post details
<p>Legendary actor Christopher Walken, who plays Burt, is on the podcast this week to nerd out about acting with Ben and help break down Season 2 Episode 6. He reflects on the unique energy between him and John Turturro, playing two different sides of Burt, and why Bugs Bunny might be the greatest actor of all time. Then, Ben and Adam discuss the rest of the episode and the relationships growing both inside and outside of Lumon. But wait — there’s even more! The guys also talk with Sarah Bock, who plays Ms. Huang, about how scary Ms. Huang can be and what the first year of college has been like for Sarah.</p><p>To learn more about listener data and our privacy practices visit: <a href="https://www.audacyinc.com/privacy-policy">https://www.audacyinc.com/privacy-policy</a></p><p>Learn more about your ad choices. Visit <a href="https://podcastchoices.com/adchoices">https://podcastchoices.com/adchoices</a></p>

 Listen

Listened to Open Source Security: Open Source Maintenance with Gary Kramlich
Post details
In this episode, Gary Kramlich, the lead developer of Pidgin discusses the challenges and strategies of maintaining a 26-year-old open source messaging client.Gary tell us all about how a small team manages technical debt, handles library dependencies, and makes decisions about rewrites versus incremental improvements while supporting a broader open source ecosystem. The accompaning blog can be found at

 Listen

Listened to S2E5: Trojan's Horse (with Michael Chernus) by Player FM 
Post details
<p>This week, Ben and Adam welcome Michael Chernus — who plays Ricken Hale, the visionary author of “The You You Are” — to help unpack Season 2 Episode 5. And while you might expect Ricken to host a podcast of his own, Michael reveals that Ricken is actually post-podcast, so today’s episode is a really big deal. Together, they discuss Ricken’s writing, his relationship with Devon, and the actorly impulse to be liked. Then, Ben and Adam break down the rest of the episode and the challenges of crafting this soft-reset for the MDR team.</p><p>To learn more about listener data and our privacy practices visit: <a href="https://www.audacyinc.com/privacy-policy">https://www.audacyinc.com/privacy-policy</a></p><p>Learn more about your ad choices. Visit <a href="https://podcastchoices.com/adchoices">https://podcastchoices.com/adchoices</a></p>

 Listen

Listened to S2E4: Woe's Hollow (with Theodore Shapiro) by Player FM 
Post details
<p>For Season 2 Episode 4, Ben and Adam are joined by <em>Severance’s</em> Emmy-winning composer, Theodore Shapiro — or, Teddy Shaps, as his friends call him. He pulls back the curtain on his long-standing collaboration with Ben Stiller, going all the way back to 2004’s Dodgeball; the four chords that unlocked <em>Severance’s</em> ear-worm of a main theme; and the world of Kier folk tunes he discovered while scoring this episode. Then, Ben and Adam talk about filming this monumental episode where the Outties go out-f***ing-side.</p><p>To learn more about listener data and our privacy practices visit: <a href="https://www.audacyinc.com/privacy-policy">https://www.audacyinc.com/privacy-policy</a></p><p>Learn more about your ad choices. Visit <a href="https://podcastchoices.com/adchoices">https://podcastchoices.com/adchoices</a></p>

 Listen

Listened to Open Source Security: Why do we keep ignoring CI security with François Proulx
Post details
François Proulx, a supply chain security researcher at Boost Security, discusses how continuous integration (CI) and build pipeline security represents a critical and overlooked hole in our supply chain security. It seems like most supply chain compromises are actually from CI system breaches rather than direct code compromise, yet we seem to obsess over everything on either side of the CI system. François has a bunch of really good practical suggestions for how we can start to improve our CI security today. &nbsp; The blog post for this episode can be found at