Show more

Are you experienced with GTK and Rust ? :gnome: ❤️ :rust:

We are looking to contract someone to work on the new GNOME Password Manager 🔑

We want it to become a core/default app and help secure millions of users.

You'll be working with the GNOME Foundation, a non-profit dedicated to building emancipatory technologies for everyone.

Please send resume / portfolio to stf@gnome.org

Boosts welcome :boost_love:

#GTK #Rust #rustlang #GNOME #Linux #Ubuntu #Linux #Fedora #OpenSUSE #Debian

“This is really just a high-tech way of gathering intelligence on people exercising their First Amendment rights under the pretext of public safety: it snoops on everyone, regardless of any connection to a crime,” EFF’s Dave Maass told the @WIExaminer. wisconsinexaminer.com/2024/04/

just a PSA to anyone going to watch the eclipse, The American Astronomical Society says under no circumstances should you buy glasses from Amazon aas.org/press/american-astrono

Here's a fun AI story: a security researcher noticed that large companies' AI-authored source-code repeatedly referenced a nonexistent library (an AI "hallucination"), so he created a (defanged) malicious library with that name and uploaded it, and thousands of developers automatically downloaded and incorporated it as they compiled the code:

theregister.com/2024/03/28/ai_

1/

Over the last couple of weeks we migrated Karrot over to @Codeberg - GitHub had been feeling a less and less fitting home for the project.

So our new code home 🏠 is codeberg.org/karrot/

We also took the opportunity to refine our release process, so now our container-first releases are over here codeberg.org/karrot/karrot/rel - being built using Codebergs CI.

Here's to our bright new Codeberg future! ✨

March 31 was already significant to me because that's day in 1998 when I helped #Netscape Navigator become #OpenSource.

Now this day has a whole new meaning for me as a #transgender woman. And it's my first #TransDayOfVisibility that I celebrate publicly since coming out to everyone on June 21 of last year.

To all my #trans siblings, I see you. Even if complete visibility isn't possible for you right now. You still matter. You're still loved. And you're still trans. Never doubt that. 🏳️‍⚧️🫂💖

Hello #Forgejo admins

We've published a post regarding the impact of the xz backdoor (CVE-2024-3094) on the Forgejo project.
forgejo.org/2024-03-xz/

#xz #cve20243094

It's fine to have inconsequential kinks. Positioning, spacing, indentation...

But not everyone is into the same stuff. So if you want someone else to participate in them, make it as easy as possible to adjust. Nobody enjoys repetitive, thoughtless manipulation.

Even (or especially) if there's money involved, do you want me to waste my time on something a machine could do?

...

PLEASE, if you enforce a coding style, GIVE ME A FREAKING LINTER.

#coding #programming #OpenSource #contributing

Hey funders,

You know you could just... give... the money... to projects that need it. Like software libraries that ARE IN EVERYTHING.

No grants. Don't make tech nerds write grants.
Don't make the tech nerds hire grant nerds to write grants.

FFS don't fund research into this problem with a budget of double what it would take to SOLVE THE PROBLEM for a significant number of open source projects with code that is, again, IN EVERYTHING.

#xz

US pol / social media 

I'm sorry ya'll, but the people developing this tech are idiots. The people deploying this tech are idiots, and the people trumpeting the power of this tech are, unsurprisingly, also idiots. [NYC AI Chatbot Touted by Adams Tells Businesses to Break the Law]
nakedcapitalism.com/2024/03/ny

Heads up for distro maintainers:

gnome-session 46 dropped support for the `--systemd` option.
(gitlab.gnome.org/GNOME/gnome-s)

So if you want to use #phosh with gnome-session >= 46 make sure to drop that option from `/usr/bin/phosh-session`. A point release fixing this is in preparation: gitlab.gnome.org/World/Phosh/p . Until then the safest thing is to stick with gnome-session << 46.

Small thing that I have found missing in the current discussion around the xz debacle:

If a project that you have an interest in has already a problem with maintainer capacity, probably the worst solution is to just add a maintainer (and even worse doing it in a rush).

You don't need to arm-twist the overworked maintainer in sharing power, you can just start doing non-binding reviews, answering questions and offloading other work from the maintainer(s).

Whenever security incidents happen, you always see certain vendors take part in ambulance chasing: blog posts that talk about how *their* product could have prevented it.

I've come to expect it from commercial vendors, but I didn't expect OpenSSF to do it, especially when their charter is precisely to prevent things like this from happening in exactly these kind of under-resourced-but-important projects.

openssf.org/blog/2024/03/30/xz

At Jacks arraignment, the State dedicated 15 mins to analysis, debate, and denunciations of the Zapatistas, a Mexico-based movement Jack is said to have visited in January. The prosecutor went so far to threaten war with the indigenous group. Who are they and why does GA care?

On Jan 1, 1994, thousands of Maya campesinos and students rose up in arms in Chiapas, MX against the famously corrupt Mexican government and the newly-signed NAFTA agreements which would impoverish and endanger their communities.

After 12 days, the Ejercito Zapatista Liberacion Nacional and the state of Mexico called a ceasefire and initiated peace talks, known as the San Andres, bringing peace, recognition, protection, and land to the indigenous peoples of all of Mexico.

For the past 30 years, thousands of Zapatistas have organized workshops, farms, schools, shops, festivals, and villages in the spirit of communalist, egalitarian, self-rule.

On Jan 1 of this year, thousands of people from around the world convened in Chiapas to celebrate the anniversary of the Zapatista uprising. Jack is alleged to be one of those thousands of students, artists, intellectuals, and empathetic people.

Currently, the Zapatistas face new challenges, as drug traffickers and paramilitaries threaten and kill Zapatista women and youth, who do not permit alcohol, drugs, or violence in their communities. The Mexican government also aims to build a train, the Tren Maya, in their lands.

This project will allow the gov't to place armed forces across the area, violating the San Andres accords, jeopardizing the safety of the region for the purposes of profits, and at the behest of the USA, who hope to push the system of border checkpoints south into the Yucatan.

ince 1994, the Zapatistas have inspired generations of dreamers and activists across the world, representing the new-era of post Cold-War resistance to exploitation, state terrorism, global capitalism, and violence.

The City of ATL and the State of GA are opposed to those movements, because they have dedicated considerable resources to training, arming, and funding counterrevolutionaries, terrorists, narcotraffickers, and paramilitaries in Central America at the School of the Americas.

And that pits them directly against freedom movements like the Zapatistas as well as our movement to stop Cop City, and to defend (as well as rebuild) the Weelaunee Forest. If this is the accusation, Jacks family should be proud of his alleged attendance at their ceremony.

For more info, we recommend "Rebellion in Chiapas" by John Womack Jr., "A Place Called Chiapas," a documentary film available online, and this article, from participants in our very own movement who attended the 2024 encuentro:

crimethinc.com/2024/01/18/the-

Most disturbing about the #BU Dean (a computer scientist) suggesting using #ai for discussion section “feedback” is how it promotes or at least acquiesces to the burgeoning deepfake industry.

The suggestion didn’t mention the need to be honest with our students about it.

This is part of the pyramid of power, which includes who holds knowledge & who doesn’t. We faculty are “granted” agency to use tools without transparency with students, holding power of knowledge over them. 1/2

They say "rights," we say "restrictions" #DRM are not for your digital /rights/, they are /restrictions/ imposed on you. Celebrate your own intellect by staying away from DRM. Learn more about DRM-free living at u.fsf.org/1aj

Coming at you live and direct once again, step through tomorrow at 14:00 (2pm) UTC for another episode of the coopcloudcast #livestream 📺

Join @decentral1se@varia.zone & @3wordchant@social.coop on our (Co-opCloud-hosted) https://cast.coopcloud.tech for some chill Sunday #libresoftware hacking

Show more
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml