Bobe_bot on Security 🤖🔐

Bobe_bot is a small Mastodon bot that watches the infosec and geek world so you don’t have to — or rather, so you can enjoy a curated, lightly humorous digest of it on Mastodon.

“Bobe” — a name with a double bottom, like a good Romand onion (or a CVE worth peeling).

The name is a deliberate wink at Bruce Schneier’s Schneier on Security — one of the foundational voices in the security world — and at all the blogs, accounts and newsletters that adopted the “X on Security” format and shaped how an entire generation thinks about infosec. If you’ve been reading security blogs since the early 2000s, you know the lineage.

“Bobe” also carries a very Swiss meaning. In the Dictionary of Swiss Romand French, bobet [bɔbɛ] means: naïve, foolish, simpleton — but said with an affectionate grin, never cruelty. “Espèce de bobet, va!” is the kind of thing you say to someone you like, after they’ve done something endearingly dumb.

A bot that owns being a little bobet — one that may occasionally hallucinate a CVE, misread a feed, or confidently post nonsense — is making an honest promise. Technically serious about its data, genuinely humble about its limits.

What does it post?

Bobe_bot publishes several types of content, automatically, several times a day:

📰 RSS digest — Articles selected from infosec and tech feeds (via selfoss), filtered by Claude for relevance. Only vulnerabilities, breaches, OSINT, hacker tools, AI & security make the cut. Written in the language of the original article.

🔓 CVE of the day — A daily vulnerability spotlight from vulnerability.circl.lu, enriched with a description and severity context.

🕵️ Sketchy IP — The most “interesting” attacker of the last 24 hours detected by the CyberVeille honeypot. Complete with a tongue-in-cheek profile.

📺 Teletext — Screenshots from Swiss and Italian teletext (RTS, RSI, RAI Televideo) with OCR-extracted news snippets. No commentary — just the image and a link. Old-school vibes, on purpose.

💰 Crypto — A brief, lightly ironic market update three times a day (because even security folks check the charts).

🔮 Security oracle — An aphorism, a thought, or an observation about security culture. Written by Claude, with a touch of geek philosophy.

🧩 Geek pause — Twice a week, something lighter: a retro tech fact, a curious protocol, a digital culture snippet. To decompress.

📊 Trending — A daily synthesis of what’s trending in the infosec sphere.

🌤️ Cyber meteo — A “security weather forecast” for the day.

❓ Quiz — A weekly infosec question for the community, with answers posted later.

Architecture

A bit of history

Bobe_bot started as a simple Python script — a cron job that scraped a few RSS feeds and published raw titles to Mastodon. No filtering, no intelligence, no style.

Over time, it grew: Shodan integrations, crypto tickers, CVE lookups. But it was still largely mechanical — post first, think never.

The current version (v4) is a full rewrite with a clear architecture: modular jobs, a shared LLM layer (Claude), a SQLite deduplication store, and a Mastodon client wrapper. Each module is independent and testable.

The key change: Claude is used as a filter and writer, not a replacement for human judgment. It selects, contextualises, and writes — but the data always comes from public, verifiable sources. And a safety-check pass ensures nothing snarky or unkind makes it through.

Disclaimer

Bobe_bot is an experimental, personal project.

• Content is AI-generated (Claude by Anthropic) and may contain errors, inaccuracies, or outdated information.
• All data comes from public sources (RSS feeds, CVE databases, honeypot data, open APIs).
• No personal data is collected or processed.
• The bot operates under a “best effort” policy — it may be offline, misconfigured, or briefly unhinged.
• Nothing published by Bobe_bot constitutes professional security advice. For real incidents, call a real human.

The bot’s name is intentionally silly. The content tries not to be.