Oof, LastPass suffered a major breach
On my blog: Real Life in Star Trek, Loud As A Whisper https://john.colagioia.net/blog/2022/12/22/loud-as-whisper.html #scifi #startrek #closereading
How to create a keyboard shortcut to export the current slide in Keynote
Lately I’ve been using Apple Keynote to create graphics for using in videos and blog posts. It’s a quick way to arrange things on a page, copying and pasting most things just works, and there are enough built in shapes and tools to get the point across. However, after spending a full day creating graphics for a video, I found myself frustrated by the number of clicks required to export a single slide at a time. ⌘ Read more
December Extensions Roundup: Improving Visibility for Your APIs and Images
Check out the new Akita and Dive-In Docker Extensions released in December. ⌘ Read more
GitHub Gives 2022: Creating positive, lasting contributions in our communities
This year, we took GitHub Gives, our company-wide giving campaign, to new heights and wanted to share our learnings to provide best practices in programming a successful hybrid giving campaign for employees. ⌘ Read more
Ignite Realtime Blog: New Mastodon service for the Ignite Realtime community!
Some of you might already have followed along with the discussion on this in the open_chat chatroom, but: the Ignite Realtime community now has its own Mastodon service at toot.igniterealtime.org! This service is graciously sponsored by Free Solutions Sàrl - a big thank you to Claude and his team!
 ⌘ Read more
WordPress implemented SQLite support! 😱 (Not merged into Core yet, but you’re able to test it.) ⌘ Read more
Increase developer productivity, save time on developer onboarding, and drive ROI in 2023
Forrester’s Total Economic Impact™ study dives into how GitHub Enterprise Cloud and GitHub Advanced Security help businesses drive ROI, increase developer productivity, and save time on developer onboarding. ⌘ Read more
How we use GitHub to be more productive, collaborative, and secure
Our engineering and security teams have done some incredible work in 2022. Let’s take a look at how we use GitHub to be more productive, build collaboratively, and shift security left. ⌘ Read more
Reduce Your Image Size with the Dive-In Docker Extension
Use the Dive-In Docker Extension to see how to reduce image size in an easy-to-use UI. ⌘ Read more
JMP: Newsletter: Busy Year in 2022
Hi everyone!
Welcome to the latest edition of your pseudo-monthly JMP update!
In case it’s been a while since you checked out JMP, here’s a refresher: JMP lets you send and receive text and picture messages (and calls) through a real phone number right from your computer, tablet, phone, or anything else that has a Jabber client. Among other things, JMP has these features: Your phone number on every device; Multiple phone numbers, one app; Free as in Freedom; Sha … ⌘ Read more
JMP: Newsletter: Busy Year in 2022
Hi everyone!
Welcome to the latest edition of your pseudo-monthly JMP update!
In case it’s been a while since you checked out JMP, here’s a refresher: JMP lets you send and receive text and picture messages (and calls) through a real phone number right from your computer, tablet, phone, or anything else that has a Jabber client. Among other things, JMP has these features: Your phone number on every device; Multiple phone numbers, one app; Free as in Freedom; Sha … ⌘ Read more
[Video] How has open source changed in the last 10 years?
What’s the state of open source and how has it changed over the last decade? GitHub’s VP of Developer Relations, Martin Woodward, tackles that question and more in a 2022 keynote. ⌘ Read more
On my blog: Developer Journal, International Human Solidarity Eve https://john.colagioia.net/blog/2022/12/19/solidarity.html #programming #project #devjournal
Erlang Solutions: GraphQL interfaces in MongooseIM 6.0
MongooseIM is a robust, scalable and highly extensible instant messaging server. Recent releases have improved its configurability and opened new use cases, and the latest version 6.0 continues that trend. By introducing the brand new GraphQL API, we made MongooseIM much easier to integrate with external web services. The entry barrier is also lower than ever because of the automatically generated API documentation, interactive web UI, an … ⌘ Read more
TIL: gwern has met Jürgen Habermas in person: https://www.lesswrong.com/posts/DXcezGmnBcAYL2Y2u/yes-a-blog?commentId=nhpQK5787tMoaYDWp
I have a question: Is there something similar to Telegram channels in Matrix? What should I do when I want to enable people to be notified about new blog posts using Matrix? ⌘ Read more
“AirTags Expose Dodgy Postal Industry”
Last year, YouTuber MegaLag tried to send several AirTag-ged packages from Germany to North Korea with DHL. But instead of arriving there, they were either misrouted to South Korea or ended up in China. In a new video, he further researches the reasons and also takes a look at DHL’s sorting center in Frankfurt at their invitation. Very interesting! ⌘ Read more
On my blog: Free Culture Book Club — R. James Gavreau https://john.colagioia.net/blog/2022/12/17/rjg.html #freeculture #bookclub
On my blog: Tweets from 12/12 to 12/16 https://john.colagioia.net/blog/2022/12/16/week.html #twitter #week #socialmedia #linkdump
Release Radar · November 2022 Edition
We promised we’d be back soon and here we are! There has been an incredible amount of open source projects shipping major version releases before the year wraps up. I can’t believe we are all saying that now. “When the year wraps up!” or “See you next year!” What happened to 2022? Well, we know […] ⌘ Read more
Configure, Manage, and Simplify Your Observability Data Pipelines with the Calyptia Core Docker Extension
Find out how to use the Calyptia Core Docker Extension to build and manage observability pipelines in Docker Desktop. ⌘ Read more
On my blog: Real Life in Star Trek, The Outrageous Okona https://john.colagioia.net/blog/2022/12/15/outrageous-okona.html #scifi #startrek #closereading
Bunny AI
Bunny.net joined the AI hype and created “Bunny AI” (docs), AI images created on the edge. I tried it out, because it’s currently free during the preview, but somehow I don’t find the generated images aesthetic or I’m just to stupid to write better prompts. I guess the Bunny developers also need some distraction from time to time, because they are working hard on S3 support for Bunny Storage for years already. 🐰 ⌘ Read more
My website is powered by GoBlog, a simple and dynamic blogging system that’s open source, actively developed and implements most IndieWeb functionalities. It packages everything in a single binary and I’ve been so over the moon using it and seeing it improve week after week that I’m surprised it isn’t more popular. So I put on my evangelist boots to share how I use this “stupidly-simple” blogging system to power my online presence. ⌘ Read more
Forgejo
A few weeks ago, it came to light that Gitea has been owned by a for-profit Gitea Ltd. for several months. The lack of transparency has disturbed the trust of many contributors and users. That’s why Codeberg (a German based non-profit association - disclaimer: I am a member of the association) has now started a soft fork: Forgejo. ⌘ Read more
Leaked a secret? Check your GitHub alerts…for free
GitHub now allows you to track any leaked secrets in your public repository, for free. With secret scanning alerts, you can track and action on leaked secrets directly within GitHub. ⌘ Read more
GitHub Advanced Security customers can now push protect their custom patterns
With just one click, admins in GitHub Advanced Security organizations can protect their custom patterns on push. ⌘ Read more
I should write better tests or at least create some automatic tests. 😬 (But ActivityPub is so complicated to test!) ⌘ Read more
Should I sell my PC?
I’m not sure yet what I’m going to do with my desktop computer (ASRock Deskmini A300), which I don’t really use anymore since I got my new laptop. ⌘ Read more
I think it was a very wise decision to buy some long merino underwear, a new and warmer jacket and new winter shoes. It’s so cold! The whole week already under 0°C. ⌘ Read more
Raising the bar for software security: next steps for GitHub.com 2FA
GitHub will require all users who contribute code on GitHub.com to enable one or more forms of two-factor authentication (2FA) by the end of 2023. Learn more about our approach, when we’ll begin our rollout, and what you can expect as we begin requiring 2FA. ⌘ Read more
I’m honestly thinking about switching browsers, because this “new feature” where Firefox always downloads PDFs first to display them is annoying me so much. I don’t want my Downloads folder to be cluttered with all those random PDFs. If I open a restaurant’s menu PDF, I just want to take a quick look, but don’t want to have the PDF in my Downloads folder until I manually delete it and then delete it from the Recycle Bin again. There are some work-arounds, but no real solution. ⌘ Read more
Prosodical Thoughts: Prosody 0.12.2 released
We are pleased to announce a new minor release from our stable branch.
This is a regularly delayed release containing a number of fixes for
issues that we have come across since the last release of the 0.12
series.
A summary of changes in this release:
Fixes and improvementsCreating an accessible search experience with the QueryBuilder component
GitHub’s search inputs have several complex accessibility considerations. Let’s dive into what those are, how we addressed them, and talk about the standalone, reusable component that was ultimately built. ⌘ Read more
Erlang Solutions: Change data capture with Postgres & Elixir
CDC is the process of identifying and capturing data changes from the database.
With CDC, changes to data can be tracked in near real-time, and that information can be used to support a variety of use cases, including auditing, replication, and synchronisation.
A good example of a use case for CDC is to consider an application which inserts a record into the database and pushes an event to a message queue after the record has … ⌘ Read more
Ignite Realtime Blog: Spark 3.0.1 Released
The Ignite Realtime community is happy to announce the release of Spark 3.0.1 version.
This release contains mostly fixes. macOS now uses the default FlatLaf LaF. The user can also choose the type of tabs “scroll” as in Spark 3.0.0 or “wrap” as in Spark 2.X. See screenshot below. And also for some users, Spark not saved history.
… ⌘ Read more
Highlights from Git 2.39
Another new release of Git is here to end the year! Take a look at some of our highlights on what’s new in Git 2.39. ⌘ Read more
On my blog: Developer Journal, Kanji Day https://john.colagioia.net/blog/2022/12/12/kanji.html #programming #project #devjournal
Snikket: F-Droid security update
Last week, Snikket Android users who installed the Snikket app via F-Droid
started receiving a warning that it contained a
security vulnerability. This wasn’t entirely accurate, as the problem wasn’t
with the Snikket app itself but specifically F-Droid’s own build of the app
that was using an outdated version of the WebRTC library.
Like many communication apps, Snikket uses WebRTC for audio and video calls.
We’ve been working on finding a … ⌘ Read more
On my blog: Free Culture Book Club — Colossal Cave Adventure https://john.colagioia.net/blog/2022/12/10/colossal-cave.html #freeculture #bookclub
I use Firefox as my preferred web browser both on PCs and my phone. One extension is always installed: uBlock Origin. The web is so much nicer with all the ads and tracking removed. But today I also retried an extension that will probably join the “must install” list: DarkReader. Especially when I’m browsing the web on my phone in the early morning, I don’t like to be blinded by white websites. Since March DarkReader has finally an option to detect if a website already has a dark theme and only apply it’s color chan … ⌘ Read more
On my blog: Tweets from 12/05 to 12/09 https://john.colagioia.net/blog/2022/12/09/week.html #twitter #week #socialmedia #linkdump
Release Radar · October 2022 Edition
Before you say it, yes, the October Release Radar was supposed to be shared in November. But with Hackatoberfest, GitHub Universe, Turkey Day, and in real life (IRL) conferences returning to their pre-COVID frequency, we’ve all been so busy. And our community has been hustling to ship all kinds of open source projects. We wanted […] ⌘ Read more
On my blog: Real Life in Star Trek, Elementary, Dear Data https://john.colagioia.net/blog/2022/12/08/dear-data.html #scifi #startrek #closereading
Experiment: The hidden costs of waiting on slow build times
How much does it really cost to buy more powerful cloud compute resources for development work? A lot less than you think. ⌘ Read more
Git Commit Uruguay: Lowering barriers to make software development more inclusive and diverse
We delivered two different courses specifically designed to help students in the lowest-income neighborhood of Montevideo, Uruguay learn how to use GitHub and understand the value of open source. ⌘ Read more
Hello from GitHub’s new Chief Product Officer
GitHub is in an exciting phase of our journey as the developer community grows significantly every day, and the needs of the community grow and change with it. Today we’re introducing our new Chief Product officer. ⌘ Read more
Implement User Authentication Into Your Web Application Using SuperTokens
Find out how to set up SuperTokens, an open source authentication solution, using its Docker Extension. ⌘ Read more
Snikket: Notes on the F-Droid security warning
Snikket Android users who installed the app via F-Droid may receive a warning
from F-Droid telling them that the app has a vulnerability and that they
“recommend uninstalling immediately”. First of all - don’t panic! This is a
over-simplified generic warning that is scary, but the actual situation is
not quite so scary and has an explanation. Here goes…
When an app is developed and ready for release, it must be compiled and built,
to produce the fina … ⌘ Read more
GitHub Copilot is generally available for businesses
GitHub Copilot for Business is officially here with simple license management, organization-wide policy controls, and industry-leading privacy—all for $19 USD per user per month. ⌘ Read more
GitHub Availability Report: November 2022
In November, we experienced two incidents that resulted in degraded performance across GitHub services. This report also sheds light into an incident that impacted Codespaces in October. ⌘ Read more
Thinking about chat apps again…
Lately, I’ve been thinking about chat apps more often again. Actually, I’ve always been a fan of Telegram, and it’s still a good messenger, but I’m a bit suspicious about the latest developments (such as the Fragment platform, with which Telegram is now implementing its crypto plans again). ⌘ Read more
New npm features for secure publishing and safe consumption
Now you can create tokens with fine-grained permissions for automating your publishing and organization management workflows. And a new code explorer allows you to view content of a package directly in the npm portal. ⌘ Read more
ICYMI: A look back at GitHub Universe 2022
Catch up on everything we announced and see what else happened during this year’s GitHub Universe conference that took place November 9-10. ⌘ Read more
On my blog: Developer Journal, Repeal Day https://john.colagioia.net/blog/2022/12/05/repeal.html #programming #project #devjournal
Near my new home. 🍂 ⌘ Read more
On my blog: Pejoratives and Specificity https://john.colagioia.net/blog/2022/12/04/specificity.html #blog #harm #rant #terminology
GPT-3 is crazy 🤯
Do you want to read why Go is a great programming language? ⌘ Read more
GPT-3 is crazy 🤯
Do you want to read why Go is a great programming language? ⌘ Read more
Ignite Realtime Blog: Denial of Service Vulnerability in Smack 4.4 if XMPPTCPConnection is used with StAX
The fantastic folks behind Jitsi have discovered a Denial of Service (DoS) vulnerability in Smack ( JSA-2022-0002, [JSA-2022-0003](https://github.com/jitsi/security-advisories/blob/master/advisories/JSA-2022-00 … ⌘ Read more
On my blog: Free Culture Book Club — Superflu https://john.colagioia.net/blog/2022/12/03/superflu.html #freeculture #bookclub
On my blog: Tweets from 11/28 to 12/02 https://john.colagioia.net/blog/2022/12/02/week.html #twitter #week #socialmedia #linkdump
GitHub, accessibility, and the disability divide
We just published our vision for GitHub accessibility at accessibility.github.com. Here’s the TL;DR: the prime directive of the GitHub accessibility program is to empower people with disabilities to build cool technology. ⌘ Read more
Introducing Mona Sans and Hubot Sans
Learn how to use and express yourself with GitHub’s open source variable fonts, Mona Sans and Hubot Sans. ⌘ Read more
How to Monitor Container Memory and CPU Usage in Docker Desktop
Find out how to track the CPU, memory, network, and disk usage of docker containers and docker compose projects using the Resource Usage Docker Extension. ⌘ Read more
On my blog: Real Life in Star Trek, Where Silence Has Lease https://john.colagioia.net/blog/2022/12/01/silence-lease.html #scifi #startrek #closereading
How empowering developers helps teams ship secure software faster
AppSec expert Niroshan Rajadurai says putting developers at the center of everything will enable you to meet your security goals. ⌘ Read more
My November ‘22 in Review
November is now over and it’s December and the Christmas season begins. But first a short review of November… ⌘ Read more
An enterprise account is coming to all Enterprise customers
Administrators, or enterprise owners, have the increased responsibility of managing their account and keeping it secure. We are excited to introduce what is new with enterprise accounts and what is coming soon. ⌘ Read more
New in Docker Desktop 4.15: Improving Usability and Performance for Easier Builds
Docker Desktop 4.15 is here, packed with usability upgrades to help you find the images you want, manage your containers, discover vulnerabilities, and more. ⌘ Read more
Find and Fix Vulnerabilities Faster Now that Docker’s a CNA
Docker is now officially a CNA under MITRE, which means you should get better notifications and documentation when we publish a vulnerability. ⌘ Read more
Hey everyone, we are Martin Weinelt and Janne Heß,
the release managers for this stable release and we are very proud to announce the public availability of NixOS 22.11 “Raccoon”.
This release will receive bugfixes and security updates for seven months (up until 2023-06-30).
… ⌘ Read more
Erlang Solutions: Advent of Code 2022 – Every Puzzle Solved in Erlang
Day 1Christmas is getting closer and with that, the annual Advent of Code begins. For those who do not know, Advent of Code is a fun and inclusive event which provides a new programming puzzle every day. The fun is that these puzzles can be solved in any programming language and are accessible for varying levels of coding experience and skills. The real test is in your problem-solving. This year, we’ll be solving each of the problems in … ⌘ Read more
Erlang Solutions: RabbitMQ – An Amazing Message Broker
In cloud architectures (or microservices), applications are broken down into smaller independent blocks that can be quickly developed, deployed, and maintained. Imagine you have a cloud architecture that has many services and many requests per second, you have to make sure that no requests are lost and your web service is always ready to receive new requests instead of locked by processing the previous request and must ensure that the servi … ⌘ Read more
JMP: Writing a Chat Client from Scratch
There are a lot of things that go into building a chat system, such as client, server, and protocol. Even for only making a client there are lots of areas of focus, such as user experience, features, and performance. To keep this post a manageable size, we will just be building a client and will use an existing server and protocol (accessing Jabber network services using the XMPP protocol). We’ll make a practical GUI so we can test things, but not spend too much time on p … ⌘ Read more
November 2022 Newsletter ⌘ Read more
Ignite Realtime Blog: HTTP File Upload plugin 1.2.0 released
We have now released version 1.2.0 of the HTTP File Upload plugin!
This plugin adds functionality to Openfire that allows clients to share files, as defined in the XEP-0363 ‘HTTP File Upload’ specification.
This release primarily enhances functionality when running in an Openfire cluster. All changes can be reviewed in [the changelog for this release](https://www.igniterealtime. … ⌘ Read more
November Extensions Roundup: Kubernetes Observability, API Testing, and More
Find out what’s new this month in the Docker Extension Marketplace! ⌘ Read more
To infinity and beyond: enabling the future of GitHub’s REST API with API versioning
We’re introducing calendar-based versioning for our REST API, so we can keep evolving our API, whilst still giving integrators a smooth migration path and plenty of time to update their integrations. ⌘ Read more
Prosodical Thoughts: Bringing FASTer authentication to Prosody and XMPP
As our work continues on modernizing XMPP authentication,
we have some more new milestones to share with you. Until now our work has
mostly been focused on internal Prosody improvements, such as the new roles\
and permissions framework. Now we are starting to extend our
work to the actual client-to-server protocol in XMPP.
Prosody and [Snikket](https://snik … ⌘ Read more
On my blog: Developer Journal, Lā Kūʻokoʻa https://john.colagioia.net/blog/2022/11/28/kalahui.html #programming #project #devjournal
DeepL Write
I’m a big fan of DeepL for translations. Before trying to write more blog posts directly in English to improve my skills, I wrote many blog posts in German and then translated them. The texts were probably better than my non-native English. ⌘ Read more
“Bloggers, Dump Your Twitter Card Tags”
It’s crazy to think how much bandwidth is being used by metadata tags. Every company wants to invent it’s own new system. Wouter Groeneveld gives a brief overview and recommends getting rid of them (for the most part). I agree with him completely. The only one of these systems that my blog supports is Microformats, which is quite popular among the IndieWeb community. ⌘ Read more
My websites have finally favicons again. And I can update them using a simple web interface. 😄 ⌘ Read more
On my blog: Things That Worked (and Didn’t Work) in 2022 https://john.colagioia.net/blog/2022/11/27/worked.html #advice #rant
Sideloading Android apps on Windows 11
It’s really impressive how easy it is to sideload apps on the WSA (Windows Subsystem for Android). ⌘ Read more
On my blog: Free Culture Book Club — Redmine, part 2 https://john.colagioia.net/blog/2022/11/26/redmine-2.html #freeculture #bookclub
On my blog: Tweets from 11/21 to 11/25 https://john.colagioia.net/blog/2022/11/25/week.html #twitter #week #socialmedia #linkdump
On my blog: Real Life in Star Trek, The Child https://john.colagioia.net/blog/2022/11/24/child.html #scifi #startrek #closereading
Jérôme Poisson: Libervia progress note 2022-W45
Hello, it’s time for a long overdue progress note.
I’ll talk here about the work made on ActivityPub (AP) gateway and on end-to-end encryption around pubsub.
Oh, and if everything goes well, this blog post should be accessible from XMPP and ActivityPub (and HTTP and ATOM feed), using the same identifier goffi@goffi.org.
The work made on the AP gateway has been possible thanks to a NLnet/NGI0 grant (w … ⌘ Read more
I reworked the current ActivityPub implementation of GoBlog, fixed ActivityPub replies to posts and also added support for reply updates and deletions. Under the hood it’s using the comment system. 🥳 Using the go-ap/activitypub library, working with ActivityPub is much easier (but still more complicated than I wish it would be). ⌘ Read more
Ignite Realtime Blog: Openfire Monitoring Service plugin 2.4.0 release
Earlier today, we have released version 2.4.0 of the Openfire Monitoring Service plugin. This plugin adds both statistics, as well as message archiving functionality to Openfire.
In this release, compatibility with future versions of Openfire is added. A bug that affects MSSQL users has been fixed, and the dreaded “Unable to save XML properties” error message has been resolved. A few other minor tweaks h … ⌘ Read more
Exciting New GitHub Features Powering Machine Learning
Discover the exciting enhancements in GitHub that empower Machine Learning practitioners to do more. ⌘ Read more
Enable Cloud-Native Log Observability With Parseable
Traditionally, logs are text heavy and relatively difficult to visualize or observe. Learn how Parseable displays rich, clear log data within Docker Desktop — helping you manage data more easily. ⌘ Read more
In reply to: chreke’s blog - Little Languages Are The Future Of Programming
The idea is that as you start to find patterns in your application, you can encode them in a little language—this language would then allow you to express these patterns in a more compact manner than would be possible by other means of abstraction. Not only could this buck the trend of ever-growing applications, it would … ⌘ Read more
Today was already the 4th day that I worked using a mobile hotspot with a speed limit of 10 mbps down and upload. This is definitely doable. I’m glad I didn’t have to transfer any larger files. Faster internet is coming in two days. But I chose wisely when I signed my mobile contract last year without a data cap. ⌘ Read more
On my blog: Developer Journal, Mayflower Compact https://john.colagioia.net/blog/2022/11/21/mayflower.html #programming #project #devjournal
How Rapid7 Reduced Setup Time From Days to Minutes With Docker
Learn how Rapid7 — a security analytics and automations provider — used Docker to streamline developer onboarding through containerization. ⌘ Read more