** Pull Requests **
Never has a pull request made me actually cry. This one did that. ⌘ Read more

4 steps to building a natural language search tool
Empowering humanitarian action with open source: A natural language search tool for UN Resolutions.

The post 4 steps to building a natural language search tool appeared first on The GitHub Blog. ⌘ Read more

(#i6dmvuq) So glad I decided to move my project’s off GitHub 🤣
So glad I decided to move my project’s off GitHub 🤣 ⌘ Read more

[ANN] Proposed changes to the Code of Conduct

I would love to hear your feedback on these proposed changes to the Code of Conduct.

Link: https://github.com/monero-project/monero/pulls?q=is%3Apr+is%3Aopen+in%3Atitle+CoC

tobtoht (Github) ⌘ Read more

TKey SSH CA
I wrote a stupidly simple SSH certificate authority that can you can
use directly over SSH to buy new certificates. It can be used with a
Tillitis TKey both for the private key of the CA itself and for the
user authentication to get a SSH certificate:

https://github.com/tillitis/tkey-ssh-ca

SSH certificates, as you my know, is a way of using not just key pairs
for user authentication, but also solving the problem of public key
distribution … ⌘ Read more

TKey SSH CA
I wrote a stupidly simple SSH certificate authority that can you can
use directly over SSH to buy new certificates. It can be used with a
Tillitis TKey both for the private key of the CA itself and for the
user authentication to get a SSH certificate:

https://github.com/tillitis/tkey-ssh-ca

SSH certificates, as you my know, is a way of using not just key pairs
for user authentication, but also solving the problem of public key
distribution … ⌘ Read more

Cybersecurity researchers: Digital detectives in a connected world
Discover the exciting world of cybersecurity research: what researchers do, essential skills, and actionable steps to begin your journey toward protecting the digital world.

The post Cybersecurity researchers: Digital detectives in a connected world appeared first … ⌘ Read more

[ANN] Gupaxx dev will be live coding at 30 January 14:30 UTC

You will see me in direct coding on Gupaxx. We can see your messages and tips with xmrchat! It will fund the development of Gupaxx.

Links:

• https://peertube.wtf/w/gfhxc2e7qSFrQouGcQ4yJv
  
• https://github.com/Cyrix126/gupaxx
  
• https://xmrchat.com/gupaxx
  
• [MO report](/xmrvsbeast-proposes-bounty-gupax-fork-integrated-xmrvsbeast-bonus-hashrate-raffle-p2pool- … ⌘ Read more

Considerations for making a tree view component accessible
A deep dive on the work that went into making the component that powers repository and pull request file trees.

The post Considerations for making a tree view component accessible appeared first on The GitHub Blog. ⌘ Read more

Open source AI is already finding its way into production
Open source AI models are in widespread use, enabling developers around the world to build custom AI solutions and host them where they choose.

The post Open source AI is already finding its way into production appeared first on The GitHub Blog. ⌘ Read more

My take on the discussion to introduce an ? operator in Go 👈 No. For so many reasons.

My take on the discussion to introduce an ? operator in Go 👈 No. For so many reasons.
My take on the discussion to introduce an ? operator in Go 👈 No. For so many reasons. ⌘ Read more

@prologic@twtxt.net Or databag self-hosted on a RaspberryPi you can throw on a corner of your basement (or a small vps if one is willing to pay for threema) and never look back. The hardest part is getting others to at least test anything other than the already mainstream apps.

[ANN] Cuprate has achieved full verification sync in under 24 hours!

Cuprate, the upcoming Rust-written monero node has achieved full verification sync in 20 hours. An official development update is coming soon.

Links:

• https://farside.link/libreddit/r/Monero/comments/1ibq7rb/
  
• https://github.com/Cuprate/cuprate/issues/195
  

u/Swimming-Cake-2892 (Reddit) ⌘ Read more

(#pvjzfnq) Just run FrakenPHP or Road Runner 😀
Just run FrakenPHP or Road Runner 😀 ⌘ Read more

FINALLY!! Got #Caddy server up and running and got rid of nginx proxy manager and Mysql database containers 🥳🥳🥳

Cake Wallet adds XMR/WOW passphrase restore support
Cake Labs1 has released Cake Wallet v4.23.0-RC2 with support for Zano wallets, and passphase restore for Monero and Wownero:

The latest version of Cake Wallet is now live for public beta testing here on Github as well as on Google Play (testers channel) and Apple TestFlight. This release of Cake Wallet brings support for Zano, a privacy-preserving cryptocurrency with additional alias and token functionality to Cake Wal … ⌘ Read more

[ANN] Lighting up the quantum computing horizon with Aurora

Referencing Xanadu’s blog post released on 22nd Jan 2025 about their implementation of fault-tolerant, networked, scaleable quantum computing at room temperature that if i am understanding the post correctly could be used to efficiently build a quantum computer that is resourceful enough to threaten the monero’s cryptography.

Link: [https://github.com/monero-project/research-lab/issues/131#issuecomment-2613839657](https://github.com/monero-project/research-lab/issues/131#i … ⌘ Read more

New to open source? Here’s everything you need to get started
Explore our simple guide to finding projects, understanding guidelines, and making an impact.

The post New to open source? Here’s everything you need to get started appeared first on The GitHub Blog. ⌘ Read more

[LFH] Revuo Monero is looking for python and golang (hugo) contributors!

There are a handful of open issues in Revuo Monero’s repositories: Calc and main. Feel free to take a peek and help if you are capable of and got the volunteering enthusiasm in you!

Links:

• https://github.com/rottenwheel/revuo-weekly/issues
  
• https://github.com/rottenwheel/moner.ooo/issues
  

rottenwheel.com ⌘ Read more

That’s a wrap: GitHub Innovation Graph in 2024
Discover the latest trends and insights on public software development activity on GitHub with the release of Q2 & Q3 2024 data for the Innovation Graph.

The post That’s a wrap: GitHub Innovation Graph in 2024 appeared first on The GitHub Blog. ⌘ Read more

Für heute reicht es dann auch mal. Neue Funktionen:

• Login-Bereich
  
• Wechsler zwischen Zeitachse und Unterhaltung
  
• Paginierung nur noch, wenn benötigt
  
• Twtxt-Parsing optimiert (Parser-Plugins für: Youtube, iFrames, Bilder, Erwähnungen, kaputtes HTML, …)
  
• unter der Haube aufgeräumt
  

Die bisher verwendeten ext. Bibliotheken sind:

• josantonius/session - Sessionverwaltung
  
• typo3fluid/fluid - Templating
  
• phpfastcache/phpfastcache - Caching
  
• erusev/parsedown - Markdown

Attacks on Maven proxy repositories
Learn how specially crafted artifacts can be used to attack Maven repository managers. This post describes PoC exploits that can lead to pre-auth remote code execution and poisoning of the local artifacts in Sonatype Nexus and JFrog Artifactory.

The post Attacks on Maven proxy repositories appeared first on The GitHub Blog. ⌘ Read more

Modernizing legacy code with GitHub Copilot: Tips and examples
Learn how to modernize legacy code with GitHub Copilot with real-world examples.

The post Modernizing legacy code with GitHub Copilot: Tips and examples appeared first on The GitHub Blog. ⌘ Read more

@aelaraji@aelaraji.com I’ve been noticing the same, so I opened an issue now (https://github.com/sorenpeter/timeline/issues/55) and then we will have to look into it.

Seven years of open source: A more secure and diverse ecosystem
Explore insights into open source community growth, innovation, and inclusivity with an updated survey dataset.

The post Seven years of open source: A more secure and diverse ecosystem appeared first on The GitHub Blog. ⌘ Read more

I updated the specification with base64, Curve25519 and more examples: https://github.com/tanrax/twtxt-direct-message-extension

[ANN] Unique 0-click deanonymization attack targeting Signal, Discord and hundreds of platform
Link: https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117

@basses:matrix.org ⌘ Read more

my first thought is that encrypting messages with Elliptic keys is not as easy as with RSA, although I tried doing something similar a few months ago with ECIES
https://github.com/eapl-gemugami/owl/blob/main/src/app/controller/ecies_demo.php

interesting idea. I’m not personally interested on having DM conversations on twtxt (for now), although I see the community could be interested in.

I’d suggest to enable the Discussion section in your Github repo to receive comments, as we did for timeline https://github.com/sorenpeter/timeline/discussions

I want to share a little idea for a new extension with the goal of adding direct messages in #twtxt https://github.com/tanrax/twtxt-direct-message-extension

Tolle Wurst: vTuner hat den Support für das Küchenradio (Sagem - My Dual Radio 700) eingestellt. Die Subdomain sagem.vtuner.com ist nicht mehr.
Mal gucken, wie ich mit einer DNS-Umleitung und YCast wieder Klang in die Kiste kriege. Es wäre schade um das Gerät, welches einwandfrei funktioniert.

How we evaluate models for GitHub Copilot
We share some of the GitHub Copilot team’s experience evaluating AI models, with a focus on our offline evaluations—the tests we run before making any change to our production environment.

The post How we evaluate models for GitHub Copilot appeared first on The GitHub Blog. ⌘ Read more

Supporting the next generation of developers
Here’s your opportunity to empower the teen in your life to get a start in open source development.

The post Supporting the next generation of developers appeared first on The GitHub Blog. ⌘ Read more

Go 語言主流安全庫使用指南
Secure Middleware - Secure—————————–secure 是一個 HTTP 中間件，提供了多種安全相關的特性。1.1 基礎使用secure 中間件提供了多個重要的安全選項，每個選項都針對特定的安全威脅：package mainimport (    ”net/http”    ”github.com/unrolled/secure ⌘ Read more

GitHub Availability Report: December 2024
In December, we experienced two incidents that resulted in degraded performance across GitHub services.

The post GitHub Availability Report: December 2024 appeared first on The GitHub Blog. ⌘ Read more

Documenting and explaining legacy code with GitHub Copilot: Tips and examples
Learn how to document and explain legacy code with GitHub Copilot with real-world examples.

The post Documenting and explaining legacy code with GitHub Copilot: Tips and examples appeared first on The GitHub Blog. ⌘ Read more

How we built the GitHub Skyline CLI extension using GitHub
GitHub uses GitHub to build GitHub, and our CLI extensions are no exception. Read on to find out how we built the GitHub Skyline CLI extension using GitHub!

The post How we built the GitHub Skyline CLI extension using GitHub appeared first on [The GitHub Blog](https:/ … ⌘ Read more

Thx @sorenpeter@darch.dk. Yepp, Yellow CMS is great! I stumbled across your extension and became aware of Twtxt and Timeline. Now I’m onto building my own little TwtxtReader.

(#nm5tj6a) @andros Created. Can you try logging in via Github? I had to take a stab/guess at your Email address, which is very clearly wrong, bu …
@andros @twtxt.andros.dev Created. Can you try logging in via Github? I had to take a stab/guess at your Email address, which is very clearly wrong, but hopefully you an just update it when you login 🤣🤣 ⌘ Read more

(#nm5tj6a) Actually. it’s probably fine if you just drop your Github username/profile here. They’re all public info anyway 🤣🤣
Actually. it’s probably fine if you just drop your Github username/profile here. They’re all public info anyway 🤣🤣 ⌘ Read more

(#nm5tj6a) @andros I believe I disabled new registrations by default due to increase in levels of “spam accounts”. If you could email me, or D …
@andros @twtxt.andros.dev I believe I disabled new registrations by default due to increase in levels of “spam accounts”. If you could email me, or DM me (IRC) your Github username, I’ll add an account for you that matches your Github profile and you can sign-in that way.

Respectfully, I will not move any of my proje … ⌘ Read more

@prologic@twtxt.net I can’t register with GitHub, nor make Pull Requests. Would it be possible to enable this? Maybe this repository could be on GitHub to promote it and increase collaboration.

oh also out of boredom i hosted glance even though i have no need for a dashboard lol. it’s really cute though

Image

i self hosted the soft serve git server cuz i felt like it. it’s sooo cute i love everything charm CLI does

ssh -p 24010 soft.git.girlonthemoon.xyz

Image

Git security vulnerabilities announced
A new set of Git releases were published to address a variety of security vulnerabilities. All users are encouraged to upgrade. Take a look at GitHub’s view of the latest round of releases.

The post Git security vulnerabilities announced appeared first on The GitHub Blog. ⌘ Read more

selsta posts December 2024 Monero dev report
selsta1 has posted a monthly CCS progress report2 for December 2024, which includes several Monero dev updates.

Milestone 1:
-Continued work on v0.18.4.0 with over 70 PRs merged
-Handled more new HackerOne reports [..] fixes being scheduled for the next release
-Repo related organization work

Note that misc work is not explicitly mentioned in these updates. The full list of changes can be found on Github3’[4](#fn:4 … ⌘ Read more

[LFF] [5K EUR] XMRpos app development

This crowdfunding campaign aims to further develop a Free and Open Source Android app (XMRpos), which is designed for use by merchants on a dedicated Point of Sale (POS) device with thermal printer.

Links:

• https://pay.monerokon.org/apps/4P3tCgWYEB73Pu35H2F5cnVhwzd7/crowdfund
  
• /monerokon-proposes-bounty-monero-pos-android-app/
  

ajs-xmr (Github) ⌘ Read more

@kat@yarn.girlonthemoon.xyz To improve you shell programming skills, I highly recommend to check out shellcheck: https://github.com/koalaman/shellcheck It points out common errors and gives some suggestions on how to improve the code. Some details in shell scripting are very tricky to get right at first. Even after decades of shell programming, I run into “corner cases” every now and then.

E.g. in getlyr’s line 7 it warns:

echo -e $(gum style --italic --foreground "#f4b8e4" "'$artist', '$song'")
        ^-- SC2046: Quote this to prevent word splitting.

For more information:
  https://www.shellcheck.net/wiki/SC2046 -- Quote this to prevent word splitt...

Most likely not all that problematic in this application, but it’s good to know about this underlying concept. Word splitting is basically splitting tokens on whitespace, this can lead to interesting consequences as illustrated by this little code:

$ echo $(echo "Hello   World")
Hello World

$ echo "$(echo "Hello   World")" 
Hello   World

In the first case the shells sees two whitespace-separated tokens or arguments for the echo command. This basically becomes echo Hello World. So, echo joins them by a single space. In the second one it sees one argument for the echo command, so echo simply echos this single argument that contains three spaces.

Game Off 2024 winners
Secrets spilled, discovered, and hidden again—Game Off 2024 brought over 500 jaw-dropping submissions that redefined creativity in gaming. From cult quests for free furniture to spellbinding mysteries, these games will have you hooked. Ready to uncover the winners?!?

The post Game Off 2024 winners appeared first on The GitHub Blog. ⌘ Read more

Highlights from Git 2.48
The open source Git project just released Git 2.48. Here is GitHub’s look at some of the most interesting features and changes introduced since last time.

The post Highlights from Git 2.48 appeared first on The GitHub Blog. ⌘ Read more

How to secure your GitHub Actions workflows with CodeQL
In the last few months, we secured 75+ GitHub Actions workflows in open source projects, disclosing 90+ different vulnerabilities. Out of this research we produced new support for workflows in CodeQL, empowering you to secure yours.

The post How to secure your GitHub Actions workflows with CodeQL a … ⌘ Read more

My client is twet which i grabbed at https://github.com/jdtron/twet

**Ahhh orgalorg Love it 😍

$ orgalorg -u root -o au.proxy -o eu.proxy -o us.proxy -C apk --no-cache -U add consul

Parallel SSH comma …**
Ahhh orgalorg Love it 😍

$ orgalorg -u root -o au.proxy -o eu.proxy -o us.proxy -C apk --no-cache -U add consul

Parallel SSH commands runner and file synchronization tool

Good for when you have to many a small cluster of similar/identical machines. ⌘ Read more

[ANN] Happy 7th Birthday to PiNodeXMR
Links:

• https://farside.link/libreddit/r/Monero/comments/1hxaqqy/
  
• https://github.com/shermand100/PiNodeXMR
  
• https://pinode.co.uk/
  

u/shermand100 (Reddit) ⌘ Read more

I just used screego to help a family member with their Windows PC. Flawless experience! 💚

How to use GitHub Copilot: What it can do and real-world examples
Real-world examples show you how Copilot can generate unit tests, refactor code, create documentation, perform multi-file edits, and much more

The post How to use GitHub Copilot: What it can do and real-world examples appeared first on The GitHub Blog. ⌘ Read more

StackExchange/dnscontrol: Infrastructure as code for DNS! 👈👈 Now this looks might interesting… I might look into this for managing my own domains and DNS. I note that my current registrar isn’t on the list of supported registrars, oh well, I don’t like OnlyDomains™ much anyway. Anyone familiar with these regisrars?

• AWS Route 53
  
• CSC Global
  
• CentralNic Reseller (formerly RRPProxy)
  
• DNSOVERHTTPS
  
• Dzynadot
  
• easyname
  
• Gandi
  
• HEXONET
  
• hosting.de
  
• Internet.bs
  
• INWX
  
• Namecheap
  
• Name.com
  
• OpenSRS
  
• OVH
  
• Realtime Register

StackExchange/dnscontrol: Infrastructure as code for DNS! 👈👈 Now this looks might interesting… I might look into this for managing my …
StackExchange/dnscontrol: Infrastructure as code for DNS! 👈👈 Now this looks might interesting… I might look into this for managing my own domains and DNS. I note that my current registrar isn’t on the list of supported registrars, oh well, I don’t like OnlyDomains™ much anyway. Anyone familiar with these regisrars?

• AWS Route 53

• CSC Global

• C … ⌘ Read more

ever heard of our lord and savior nb ? 😇

@kat@yarn.girlonthemoon.xyz https://github.com/klaudiosinani/taskbook

Building LATAM’s future tech workforce with AI
Git Commit 2024 and our new AI course in Spanish

The post Building LATAM’s future tech workforce with AI appeared first on The GitHub Blog. ⌘ Read more

(#3djis6a) Fucking hell. This was me trying to figure out why I was getting a 403 Forbidden from my own Edge proxy and waf 🤦‍♂️ See T …
Fucking hell. This was me trying to figure out why I was getting a 403 Forbidden from my own Edge proxy and waf 🤦‍♂️ See This Issue for details 🤣

Solution:

Add this to the WAF:

”`
SecRuleRemoveById 932370

”` ⌘ Read more

Synthesizing Music from JSON
tl;dr: pl_synth is a tiny music synthesizer for C & JS and an editor (“tracker”) to create instruments and arrangements.

You can try it out at [phoboslab.org/synth/](https://phoboslab.org/synth/#eJytk9mNwCAMRBuaD8xhoBaU/tvYGSCH9pKyWpDBNiaYZzJaboYxRgWbRYNhqt2Q6AhBzohSLMEocFjnkkIdHKAtsR8YnHAKTo3+YanBcsGcS8B72287t7e2Ukvl4an4m5227W/t4xCGhbgLixPwqUcdwyPYYG6FahbT3iJaF+TCoVYhTXCRvujScfWLNGUfHDC/dbUJhrIJreUTD2Xn/XXbt8vSKNpPVIrL+9aaywxTKlkH0r0jPgcmkdBAM0puWoLDDQ91vk … ⌘ Read more

**(#cmttsmq) This is how I build my caddy:

proxy-1:~# cat build.caddy.sh
#!/bin/sh

xcaddy build \
	--with github.com/caddy-dns/cloudflare \
 ...**
This is how I build my caddy:

proxy-1:~# cat build.caddy.sh
#!/bin/sh

xcaddy build

--with github.com/caddy-dns/cloudflare \
--with github.com/caddyserver/cache-handler \
--with git.mills.io/prologic/caddy-ratelimit \
--with git.mills.io/prologic/caddy-waf

proxy-1:~#

⌘ [Read more](https://twtxt.net/twt/dokh7ca)

I was looking for an #mpd/#rofi script and stumbled upon this repo adi1090x/rofi, it is just 🤤 DELICIOUS! … and a great reference/kick starter for making my own.

@prologic@twtxt.net mediacms! it’s janky yeah but it does the job ultimately (even if sometimes videos don’t encode and i gotta do some weird python venv shit to force the encode lol…)

everoddandeven releases ‘Monero Daemon GUI’ v1.1.0
everoddandeven1 has released Monero node manager monerod-gui 2 version 1.1.0 Toughness 3 with various UI and daemon fixes and improvements:

UI fixes and improvements
Daemon settings fixes
Minor code reorganization
Upgrade dependencies

Consult the Github repository2 for the complete changelog4, a demo and usage instructions.

To support further developmen … ⌘ Read more

使用 Go 構建基於時間的一次性密碼 -TOTP- 生成器
前言–現在很多網站都開啓了 2FA（Two-Factor Authentication，雙因素認證），如 GitHub、Google、微軟等。這種額外的安全層顯著提高了賬戶的安全性。本文將深入探討如何使用 Go 語言實現 TOTP 生成器，並詳細解釋其工作原理和安全考慮原理解析—-兩步驗證要求用戶提供兩種不同形式的身份驗證：知識因素：用戶知道的信息（如密碼） 所有權因素：用戶擁有的設 ⌘ Read more

i like this little ideas utility i’ve been using like i keep pulling up the idea table to see what i’ve added and it makes me wanna start one of them like the CLI app i wanna write in golang with charmbracelet’s bubbletea even though i only have a vague idea of what i want in a CLI app

如何使用 Golang 進行 Kafka 的監控
Kafka 是一個高吞吐量、可擴展的分佈式消息系統，廣泛應用於實時數據流處理場景。監控 Kafka 是確保其平穩運行和及時處理問題的關鍵。本文將介紹如何使用 Golang 來執行 Kafka 的監控任務。前置準備—-安裝依賴庫: 安裝 Sarama，用於 Kafka 的操作$ go get github.com/Shopify/sarama 安裝 Kafka 管理擴展$ go get g ⌘ Read more

i had ideas for my fancy new idea table list (https://github.com/IonicaBizau/idea) that i’ve fallen in love with but i forgot what they were…

@kat@yarn.girlonthemoon.xyz this is that telnet zine cms by the way, it’s epic https://github.com/caraesten/dial_a_zine

really wanna make an ssh zine app inspired by a telnet zine cms i found on github. i’m gonna probably go ahead with the telnet zine idea i have if i can get people for it but if i could build my own ssh mirror for it with golang and the charmbracelet wish library that’d be epic

this is sooo cute and so fun i got it for timer stuff bc lord knows i need a timer on my computer and now i’m staring at animated ASCII cats that kiss https://github.com/poetaman/arttime

i’ve transitioned text editors from nano (yeah i know) to micro and god micro is just so much better i did not know there was a CLI text editor i could use with sensible keyboard shortcuts that did not leave me feeling like i’m typing nuclear codes to do simple tasks like saving and editing

GitHub’s top blogs of 2024
Explore GitHub’s top blogs of 2024, featuring new tools, AI breakthroughs, and tips to level up your developer game.

The post GitHub’s top blogs of 2024 appeared first on The GitHub Blog. ⌘ Read more

woodser releases haveno-ts v0.0.32
woodser1 has released haveno-ts 2 (Haveno3 TypeScript library) version 0.0.324 with a few fixes and updates:

NodeJS environment support by @everoddandeven in #338
Pack all dist assets for npm install

The full changelog is available on Github5.

This is an ongoing story and the report will be updated when new information is available.

1. https://github.com/woodser/ [↩](#fnref:1)

2. htt … ⌘ Read more

I’ve implemented Use only nick as handle if nick and domain is the same · sorenpeter/timeline@8c12444

See it live at:

• nick = domain: https://darch.dk/timeline/profile?url=https://eapl.me/tw.txt
  
• nick ≠ domain: https://darch.dk/timeline/profile?url=https://twtxt.net/user/prologic/twtxt.txt
  
• no nick, use domain: https://darch.dk/timeline/profile?url=https://akkartik.name/twtxt.txt
  

I’m not sure I like the leading @ thou…

Why not nostr way? https://github.com/nostr-protocol/nips/blob/master/05.md#showing-just-the-domain-as-an-identifier

Announcing CodeQL Community Packs
We are excited to introduce the new CodeQL Community Packs, a comprehensive set of queries and models designed to enhance your code analysis capabilities. These packs are tailored to augment…

The post Announcing CodeQL Community Packs appeared first on The GitHub Blog. ⌘ Read more

How researchers are studying the impact of GitHub Copilot on the nature of work for open source maintainers
An interview with economic researchers analyzing the causal effect of GitHub Copilot on how open source maintainers work.

The post [How researchers are studying the impact of GitHub Copilot on the nature of work for open source maintainers](https://github.blog/news-insights/policy-news-and-insig … ⌘ Read more

OpenAI’s latest o1 model now available in GitHub Copilot and GitHub Models
The December 17 release of OpenAI’s o1 model is now available in GitHub Copilot and GitHub Models, bringing advanced coding capabilities to your workflows.

The post OpenAI’s latest o1 model now available in GitHub Copilot and GitHub Models appeared first on The GitHub Blog. ⌘ Read more

[ANN] Serai’s status as 2024 wraps up

This is an update on where the Serai project is. While I wish I could keep this professional, parts of it will be fundamentally intertwined with my personal life. Apologies to anyone who just wants a short, professional brief. [..] I am happy and relieved to announce an anonymous donor has enabled Serai’s upcoming audits. The donations themselves have been facilitated by MAGIC Grants.

Links:

• [https://gist.github.com/kayabaNerve/5867d08025dcd329a8d44085122686fe](https://gist.github.com/ … ⌘ Read more

Enhance build security and reach SLSA Level 3 with GitHub Artifact Attestations
Learn how GitHub Artifact Attestations can enhance your build security and help your organization achieve SLSA Level 3. This post breaks down the basics of SLSA, explains the importance of artifact attestations, and provides a step-by-step guide to securing your build process.

The post [Enhance build security and reach SLSA Level 3 with GitHub Artifact Attest … ⌘ Read more

Introducing Annotated Logger: A Python package to aid in adding metadata to logs
We’re open sourcing Annotated Logger, a Python package that helps make logs searchable with consistent metadata.

The post [Introducing Annotated Logger: A Python package to aid in adding metadata to logs](https://github.blog/developer-skills/programming-languages-and-frameworks/introducing-annotated-logger-a-python-package-to-aid-in-a … ⌘ Read more

@prologic@twtxt.net Well I just mirrored yarnd’s JSON in my webfinger endpoint and lookup, so not much else to do for standardization.

And for people who don’t like PHP you can always just go with Added WebFinger support to my email address using one rewrite rule and one static file. or simply putting a static JSON in place for .well-know/webfinger

BTW I’m watching that darch has already worked on that, interesting https://github.com/sorenpeter/timeline/blob/main/_webfinger-endpoint/.well-known/webfinger/index.php

Announcing 150M developers and a new free tier for GitHub Copilot in VS Code
Come and join 150M developers on GitHub that can now code with Copilot for free in VS Code.

The post Announcing 150M developers and a new free tier for GitHub Copilot in VS Code appeared first on The GitHub Blog. ⌘ Read more

Go 源碼是如何解決測試代碼循環依賴問題的？
最近我寫了一篇講解 context 包源碼的文章《Go 併發控制：context 源碼解讀》，在閱讀源碼的過程中，我在 context 包測試代碼中發現了一個解決循環依賴的小技巧，在此分享給大家。xtest.go 解決循環依賴context 包源碼目錄結構如下： https://github.com/golang/go/tree/go1.23.0/src/context$ tree contex ⌘ Read more

One benefit with bluesky is your username is also a website. And not a clunky URL with slashes and such. I wish twtxt adopted that. I have advocated for webfinger to for twtxt to let us do something like it with usernames. Nostr has something like it

By default the bsky.social urls all redirect to their feeds like: hmpxvt.bsky.social
Many custom urls will redirect to some kind of linktree or just their feed cwebonline.com or la.bonne.petite.sour.is or if you are a major outlet just to your web presence like https://theonion.com‬ or https://netflix.com

Its just good SEO practice

Do all nostr addresses take you to the person if typed into a browser? That is the secret sauce.
No having to go to some random page first. no accounts. no apps to install. just direct to the person.

One benefit with bluesky is your username is also a website. And not a clunky URL with slashes and such. I wish twtxt adopted that. I have advocated for webfinger to for twtxt to let us do something like it with usernames. Nostr has something like it

By default the bsky.social urls all redirect to their feeds like: hmpxvt.bsky.social
Many custom urls will redirect to some kind of linktree or just their feed cwebonline.com or la.bonne.petite.sour.is or if you are a major outlet just to your web presence like https://theonion.com‬ or https://netflix.com

Its just good SEO practice

Do all nostr addresses take you to the person if typed into a browser? That is the secret sauce.
No having to go to some random page first. no accounts. no apps to install. just direct to the person.

Uncovering GStreamer secrets
In this post, I’ll walk you through the vulnerabilities I uncovered in the GStreamer library and how I built a custom fuzzing generator to target MP4 files.

The post Uncovering GStreamer secrets appeared first on The GitHub Blog. ⌘ Read more

How AI Assistants Can Decode GitHub Repos for UI Writers
Exploring AI-assisted tools for UI writers, we demonstrate how to enhance GitHub PR review workflows to identify user-facing text changes, and offer a step-by-step guide and insights into leveraging LLMs effectively. ⌘ Read more

GitHub Availability Report: November 2024
In November, we experienced one incident that resulted in degraded performance across GitHub services.

The post GitHub Availability Report: November 2024 appeared first on The GitHub Blog. ⌘ Read more

So many tokens, so little time: Introducing a faster, more flexible byte-pair tokenizer
We released a new open source byte-pair tokenizer that is faster and more flexible than popular alternatives.

The post So many tokens, so little time: Introducing a faster, more flexible byte-pair tokenizer appeared first on [The GitHub Bl … ⌘ Read more

[ANN] Discussion: Post-quantum security and ethical considerations over elliptic curve cryptography
Link: https://github.com/monero-project/research-lab/issues/131

@s​yntheticbird:monero.social (Matrix) ⌘ Read more

CodeQL zero to hero part 4: Gradio framework case study
Learn how I discovered 11 new vulnerabilities by writing CodeQL models for Gradio framework and how you can do it, too.

The post CodeQL zero to hero part 4: Gradio framework case study appeared first on The GitHub Blog. ⌘ Read more

Have this bbs in my bookmarks. Live instance available in ssh://lowlife@45.79.250.220. Password is hightech