@tkanos@twtxt.net thanks for that nitter tip! Never seen that before. I now think setting that up will be my next project.

What we learned from the Security Lab’s Community Office Hours
TheGitHub Security Lab provided office hours for open source projects looking to improve their security posture and reduce the risk of breach. Here’s what we learned and how you can also participate. ⌘ Read more

On the go with GitHub Projects on GitHub Mobile (public beta)
Stay connected and up to date on your work with GitHub Projects on GitHub Mobile, now in public beta. ⌘ Read more

Working on a creative project? Unleash your originality and start to tinker with the Aspiring Creatives Experience
Develop your design and collaboration skills to get your clever intentions off the ground. ⌘ Read more

Expand your open source contributions during Hacktoberfest 2022
Give back to open source projects during the month of October! This year, we’re encouraging more than code contributions: writing, design, advocacy, and financial donations. ⌘ Read more

Tillitis Key 1
The secret project I’ve been mentioning in my gemlog is out!

This week we presented the Tillitis Key 1 at the Open Source Firmware\
Conference (OSFC). What we unveiled is a new kind of USB security
stick and a new company, a sister company to Mullvad VPN: Tillitis.

The stick is a small computer that can load and run small programs
uploded to it from a host computer. It always measures … ⌘ Read more

The ReadME Project: Built for you!
The ReadME Project & Podcast evolve with community expert voices and topics to stoke discussion about the culture and craft of software development. ⌘ Read more

You may start century time horizon projects

5 tips for prioritizing Dependabot alerts
Dependabot alerts can give you the ability to secure your project by keeping dependency-based vulnerabilities out of your code. Here are some tips to more efficiently prioritize and take action on your alerts, so you can get back to building. ⌘ Read more

SCA vs SAST: what are they and which one is right for you?
We’re taking a look at two commonly-used security tools and detailing how they can help secure your projects. ⌘ Read more

Join us for OctogatosConf 2022
Live on September 15, 2022, with talks by industry experts in Spanish, Portuguese, and English, on topics including software development, security, technical project management, community, open source, professional development and best practices. ⌘ Read more

Release Radar · August 2022 Edition
We’ve been gearing up to launch GitHub Universe 2022 and our community has been launching cool projects left right and center.  These projects include everything from world-changing technology to developer tooling, and weekend hobbies. Here are some of the open source projects that released major version updates this August. Read more about these projects in […] ⌘ Read more

Open Source Monthly: August 2022 Edition
This month’s featured open source project, Open Sauced, connects contributors and maintainers through analytical insights. ⌘ Read more

** Miscellaneous this and that **
Since my brain injury (which I’ve since learned can be called an“ABI” or“acquired brain injury”) I’ve noticed that I have trouble focusing on programming tasks; I’m able to do what I need to do for work and family but, when it comes time for hobby projects I’m just gloop. Totally oozy.

Because of that I’ve been drawn to do more reading and game playing, but also still wanna code…I’ve found that it is easier to use more“batteries included” kinda languages, namely scheme, over what I’d … ⌘ Read more

The US put tornadocash on sanction list. Deleted github accounts and source. Since North Korea used it to launder stolen crypto.
And people are surprised that it happened? Github is and never have been a safe place to store code. Tor/i2p is much more safer places to host code. But I understand why people use github, I do so as well for public project, but I also selfhost my other things

Release Radar · July 2022 Edition
While some of us have been wrapping up the financial year, and enjoying vacation time, others have been hard at work shipping open source projects and releases. These projects include everything from world-changing technology to developer tooling, and weekend hobbies. Here are some of the open source projects that released major version updates this July. […] ⌘ Read more

Hi, I am playing with making an event sourcing database. Its super alpha but I thought I would share since others are talking about databases and such.

It’s super basic. Using tidwall/wal as the disk backing. The first use case I am playing with is an implementation of msgbus. I can post events to it and read them back in reverse order.

I plan to expand it to handle other event sourcing type things like aggregates and projections.

Find it here: sour-is/ev

@prologic@twtxt.net @movq@www.uninformativ.de @lyse@lyse.isobeef.org

Marketing for maintainers: Promote your project to users and contributors
Marketing your open source project can be intimidating, but three experts share their insider tips and tricks for how to get your hard work on the right people’s radars. ⌘ Read more

Release Radar · June 2022 Edition
It’s been a crazy couple of months with the end of financial year and lots of products shipping. Our community has been hard at work shipping projects too. These projects can include everything from world-changing technology to developer tooling, and weekend hobbies. Here are some of these open source projects that released major updates this […] ⌘ Read more

Planning next to your code – GitHub Projects is now generally available
Today, we are announcing the general availability of the new and improved Projects powered by GitHub Issues. GitHub Projects connects your planning directly to the work your teams are doing in GitHub and flexibly adapts to whatever your team needs at any point. ⌘ Read more

Tips & tricks for using GitHub projects for personal productivity
GitHub Issues is a core component of how developers get things done and, as we built more project planning capabilities into GitHub, we’ve found some fun and unique ways to use the new projects experience for personal productivity. ⌘ Read more

Managing a game dev community with GitHub Actions
A Little Game Called Mario is an open source, collectively developed hell project. Anyone and everyone is welcome to contribute their unique talents to make both the player and developer experience more enjoyable. Find out how the collective leverages GitHub Actions to manage this wonderful little community. ⌘ Read more

How the GitHub Security Team uses projects and GitHub Actions for planning, tracking, and more
Can projects and GitHub Actions be used by your non-developer teams? They absolutely can. Check out how our Security Team uses GitHub to run the department effortlessly. ⌘ Read more

Write Better Commits, Build Better Projects
High-quality Git commits are the key to a maintainable and collaborative open- or closed-source project. Learn strategies to improve and use commits to streamline your development process. ⌘ Read more

What to do when your open source project becomes a community?
Maintainers answer your questions about how to manage an open source project that grows into a community. ⌘ Read more

Highlights from Git 2.37
The open source Git project just released Git 2.37. Take a look at some of our highlights from the latest release. ⌘ Read more

Thank you to our maintainers
To celebrate Maintainer Month, GitHub has invested an additional $500,000 to help sponsor the open source projects that it depends on. ⌘ Read more

GitHub Copilot is generally available to all developers
We’re making GitHub Copilot, an AI pair programmer that suggests code in your editor, generally available to all developers for $10 USD/month or $100 USD/year. It will also be free to use for verified students and maintainers of popular open source projects. ⌘ Read more

Release Radar · May 2022 Edition
Each month, we highlight open source projects that have shipped major updates. These projects can include everything from world-changing technology to developer tooling, and weekend hobbies. We cover what the project is and some of their breaking changes. Read about the project, and browse their repositories. Without further ado, here are our top staff picks […] ⌘ Read more

Prebuilding codespaces is generally available
Teams and GHEC customers can now create blazing fast codespaces, even for your largest and most complex projects. ⌘ Read more

Sunsetting Atom
We are archiving Atom and all projects under the Atom organization for an official sunset on December 15, 2022. ⌘ Read more

I’ll likely take this down soonish as I think it’s pretty bad for usability, but as a fun hack, one of my weird side projects web pages now has monitor burn-in: http://txtpunk.com/index.html

Release Radar · April 2022 Edition
Each month, we highlight open source projects that have shipped major updates. These include everything from world-changing technology to developer tooling, and weekend projects. Here are our top staff picks on projects that shipped major version releases in April. Flyte 1.0 I was lucky enough to discover Flyte during Hacktoberfest last year. Now, Flyte has […] ⌘ Read more

How we’re using projects to build projects
At GitHub we use GitHub to build our own products, and the new projects experience is no different. Check out how our team uses projects to build powerful project planning for developers. ⌘ Read more

Gemini capsule
Gemini is a lightweight Internet protocol. It’s heavier than Gopher
but lighter than HTTP(S), especially if combined with all other web
technologies. The name makes sense if Gopher is Project Mercury and
the web is the Apollo program.

One of its uses is to serve gemtext, which is a lightweight
Markdown-like markup language, instead of HTML. Gemini browsers don’t
have support for neither Javascript, nor CSS, nor any of the other new
web technologies. It can be beautiful anyway, s … ⌘ Read more

Open Source Monthly – May 2022 Edition
Introduction Open Sauced, GitHub’s Explore page, Hacktoberfest, and First Timers Only help folks discover open source projects. This monthly series–Open Source Monthly—will add to these efforts by helping: First-time contributors find the right project to contribute to Corporations and individuals find a new project to sponsor Open source maintainers gain more consistent contributors and sponsors […] ⌘ Read more

I realized my twtxt client isn’t validating what it pulls once it gets a valid response when a domain started returning js-heavy parking pages for every URL. Oops. Weekend project, I guess. 🤦🏻

The ReadME Project Q&A: What you need to know about teaching technical skills
Teaching is a great way to not only help others but to better learn a topic yourself. ⌘ Read more

Best practices to keep your projects secure on GitHub
These days software is subject to an ever-changing threat landscape. Check out the many ways you can keep your projects secure on GitHub today. ⌘ Read more

Removing the stigma of a CVE
Do you worry that a CVE will hurt the reputation of your project? In reality, CVEs are a tracking number, and nothing more. Here’s how we think of them at GitHub. ⌘ Read more

Codespaces for multi-repository and monorepo scenarios
We’re releasing exciting improvements that will streamline your Codespaces experience when working with multi-repository projects and monorepos. ⌘ Read more

Release Radar · March 2022 Edition
Each month, we highlight open source projects that have shipped major updates. These include everything from world-changing technology to developer tooling, and weekend projects. Here are our top staff picks on projects that shipped major version releases in March. Babylon.js 5.0 We featured Babylon.js in the November 2020 Release Radar. Since then, Babylon.js has come […] ⌘ Read more

sometimes i think i should return to a cleaner state of mind, abandon all big never-to-be-finished projects, and write simple text-processing utilities on a raspberry pi running plan 9, improvising fractile jazz over a lonely lake and spend most of my remaining time meditating.

How Dependabot empowers you to keep your projects secure
We want to take away the pain and effort of keeping your code secure, so check out how Dependabot empowers developers to keep to their projects secure. ⌘ Read more

How to secure your end-to-end supply chain on GitHub
Securing your projects is no easy task, but end-to-end supply chain security is more top of mind than ever. We’ve seen bad actors expand their focus to taking over user accounts, commonly used dependencies, and also build systems. Defending against these attacks is hard, because there’s no one thing you can do to protect your […] ⌘ Read more

Understanding Color Management
I worked on a project where I dived deep into understanding how modern
color management works, including things like color spaces, ICC profiles
and more. As I learnt here and there, I decided to write this post, both
for my future self, and others who may struggle with some of the
concepts as well.

Color management deals with translating between representations of
colors across a variety of devices. Throughout this post, we’ll use
natural language as … ⌘ Read more

Understanding Color Management
I worked on a project where I dived deep into understanding how modern
color management works, including things like color spaces, ICC profiles
and more. As I learnt here and there, I decided to write this post, both
for my future self, and others who may struggle with some of the
concepts as well.

This post only aims to help you understand the basic concepts without
having to delve into dense literature and hard to grok technical
documents.

Color … ⌘ Read more

Improving your GitHub feed
Today, we are rolling out a new beta version of GitHub’s home feed, making it easier to discover projects, developers and more across GitHub. ⌘ Read more

@prologic@twtxt.net yeah. For commercial use even. Just need to put an attribution note in the project README

Alright, check this out. I just kinda completed today’s project of converting a jeans into a saw bag. It’s not fully done, the side seams on the flap need some more hand sewing, that’s for sure. No, I don’t have a sewing machine. Yet?

Image

At first I wanted to put in the saw on the short side, but that would have made for more sewing work and increased material consumption. As a Swabian my genes force me to be very thrifty. Slipping in on the long side had the benefit of using the bottom trouser leg without any modification at all. The leg tapers slightly and gets wider and wider the more up you go. At the bottom it’s not as extreme as at the top.

The bag is made of two layers of cloth for extra durability. The double layers help to hide the inner two metal snap fastener counter parts, so the saw blade doesn’t get scratched. Not a big concern, but why not doing it, literally no added efforts were needed. Also I reckon it cuts off the metal on metal clinking sounds.

The only downside I noticed right after I pressed in the receiving ends of the snap fasteners is that the flap overhangs the bag by quite a lot. I fear that’s not really user-friendly. Oh well. Maybe I will fold it shorter and sew it on. Let’s see. The main purpose is to keep the folding saw closed, it only locks in two open positions.

Two buttons would have done the trick, with three I went a bit overkill. In fact the one in the middle is nearly sufficient. Not quite, but very close. But overkill is a bit my motto. The sides making up the bag are sewed together with like five stitch rows. As said in the introduction, the flap on the hand needs some more love.

Oh, and if I had made it in a vertical orientation I would have had the bonus of adding a belt loop and carrying it right along me. In the horizontal layout that’s not possible at all. The jeans cloth is too flimsy, the saw will immediately fall out if I open the middle button. It’s not ridgid enough. Anyways, I call it a success in my books so far. Definitely had some fun.

Release Radar · February 2022 Edition
Our community has shipped lots of open source project updates in the last month. Here’s a few of our staff picks. ⌘ Read more

Debugging an ioctl Problem on OpenBSD
I was trying to use a V4L2 Ruby module for a project on my OpenBSD laptop but ran into a problem where sending the V4L2 ioctls from this module would fail, while other V4L2 programs on OpenBSD worked fine. ⌘ Read more

Getting started with project planning on GitHub
Stop context switching. Keep your team’s project planning next to your code. ⌘ Read more

Coordinated vulnerability disclosure (CVD) for open source projects
A comprehensive guide for vulnerability reporters. ⌘ Read more

Release Radar · January 2022 Edition
Here’s January’s top staff picks on projects that shipped major version releases. ⌘ Read more

Get ready for Campus TV Season 2: 🌱 New Beginnings
Learn new skills, build projects and meet like-minded students with the latest shows from the GitHub Education Stream Team. ⌘ Read more

Good weekend for random tech projects: this rackmount server I got free boots Plan 9 without issue, and my ttl adapters and wii nunchucks just arrived. Now where can I find a serial modem?

Highlights from Git 2.35
The open source Git project just released Git 2.35. Here’s GitHub’s look at some of the most interesting features and changes introduced since last time. ⌘ Read more

Release Radar · December 2021 Edition
Many of us were wrapping up projects, emails, events, and getting ready for Christmas. While we were all busy getting ready for the festive season, our community was still hard at work shipping open source ⌘ Read more

Reducing security risk in open source software with GitHub Actions and OpenSSF Scorecards V4
We’re excited to announce the V4 release of the OpenSSF’s Scorecard project in partnership with Google. ⌘ Read more

Only 1 day of activity so far, but I’ve started a new project log for whatever the heck I end up doing to this Monroe 425 I got. http://a.9srv.net/monroe425

gogrok/gogrok: A simple, easy to use ngrok alternative (self hosted!) - gogrok - Gitea: Git with a cup of tea

Hey @eldersnake@yarn.andrewjvpowell.com I just came across this cool little project recently. Not written by me sadly 😂 But seems like it would do the trick nonetheless 🤣 – How are you going with PageKite? Is it still working okay for your Yarn pod powered by the outback of down under? 😅 LMK if you’d like me to spin this up anad you can be my first tester 🤙

The QOI File Format Specification
Last month I announced a
toy project called QOI — the Quite OK Image Format. It losslessly compresses
RGB and RGBA images to a similar size of PNG, while offering a 20x-50x
speedup in compression and 3x-4x speedup in decompression.

Image

With the help of countless passionate people on Github, we have refined some of
the rough edges and specified exactly what … ⌘ Read more

How to define security requirements for your OSS project
Defining your security requirements is the most important proactive control you can implement for your project. Here’s how. ⌘ Read more

Article on designing 21st century instruments for teaching music theory (aka ditch the piano): [[https://historyofmusictheory.wordpress.com/2021/11/01/should-we-burn-the-pianos-introducing-a-collaborative-project-focused-on-building-new-instruments-for-theory/]] #links

Write more secure code with the OWASP Top 10 Proactive Controls
This lesser-known OWASP project aims to help developers prevent vulnerabilities from being introduced in the first place. ⌘ Read more

Safeguard your containers with new container signing capability in GitHub Actions
GitHub has partnered with the OpenSSF and Project Sigstore to add container image signing to our default “Publish Docker Container” workflow. ⌘ Read more

Release Radar · November 2021 Edition
The end of the year is getting closer, and our communities are busy working away on their projects. While you’ve all been busy maintaining open source projects and shipping releases, we’ve created a new open ⌘ Read more

Video: C Programming on System 6 - A Cooperative Threading Library
I’m starting on a new project and I needed a cooperative threading mechanism which didn’t exist in System 6, so I created one. ⌘ Read more

On the blog: Developer Journal, Byrd Antarctic Expedition https://john.colagioia.net/blog/2021/11/29/south-pole.html #programming #project #devjournal

How to squash bugs by enrolling in OSS-Fuzz
OSS-Fuzz is Google’s awesome fuzzing service for open source projects. GitHub Security Lab’s @kevinbackhouse describes enrolling a project. ⌘ Read more

On the blog: Developer Journal, Albanian Alphabet Anniversary https://john.colagioia.net/blog/2021/11/22/manastir.html #programming #project #devjournal

No on gitlab. If its self hosted gitea is best in class.

I can see hosting a mirror on github if only for the redundancy/visibility. Some projects will host but then direct contributions on their self host. Like Go does.

I would suggest using a vanity domain that can redirect tools like go get to hosting of choice. And not require rewriting all the packages any time it gets moved.

🤔 👋 Reconsidering moving Yarn.social’s development back to Github: Speaking of which (I do not forget); @fastidious@arrakis.netbros.com and I were discussing over a video call two nights ago, as well as @lyse@lyse.isobeef.org who joined a bit later, about the the whole moved of all of my projects and their source code off of Github. Whilst some folks do understand and appreciate my utter disgust over what Microsoft and Copilot did by blatantly scraping open source software’s codebases without even so much as any attempt at attribution or respecting the licenes of many (if not all?) open source projects.

That being said however, @fastidious@arrakis.netbros.com makes a very good and valid argument for putting Yarn.social’s codebases, repositories and issues back on Github for reasons that make me “torn” over my own sense of morality and ethics.

But I can live with this as long as I continue to run and operate my new (yet to be off the ground) company “Self Hosted Pty Ltd” and where it operates it’s own code hosting, servicesa, tools, etc.

Plese comment here on your thoughts. Let us decide togetehr 🤗

#yarnsocial #github #opsnsource #copilot #microsoft

On the blog: Developer Journal, Geography Awareness Week https://john.colagioia.net/blog/2021/11/15/geography.html #programming #project #devjournal

@fastidious@arrakis.netbros.com Hah! No I run http://www.nncpgo.org/ on my home networks, so I needed to upgrade everything. I’d been putting off the upgrade for a bit because it mostly just worked, but wanted a few of the new fixes (and I stay abreast of the project).

or do you mean the video projection? Those are created by https://svendsoemod.dk (if you dare to dig deeper)

@meff@yarn.meff.me Also if you’d like to help us test the mobile app that’s being rebuilt check out the @news@twtxt.net feed on my pod 👌 Also you should follow this feed anyway as this is where I post announcements of the project, releases, etc 👌

@prologic@twtxt.net How much of the current twtxt spec came from the original 2016 project?

On the blog: Developer Journal, Intersex Solidarity Day https://john.colagioia.net/blog/2021/11/08/rememberance.html #programming #project #devjournal

Blue-teaming for Exiv2, part 1: creating a security advisory process
This blog post is the first in a series about hardening the security of the Exiv2 project. My goal is to share tips that will help you harden the security of your own project. ⌘ Read more

On the blog: Developer Journal, Day of the Dead https://john.colagioia.net/blog/2021/11/01/dead.html #programming #project #devjournal

PiBox: A Modular Raspberry Pi Storage Server ⌘ Read more

@prologic@twtxt.net I’ve been working away on side projects: http://git.jb55.com. Trying more these days to not tweet about stuff I’m working on until I’m finished.

Sometimes it’s hard to prioritize projects. Should I do the most important first? The most fun? Is it worth trudging through the less interesting part of project A just to see it finished?

On the blog: Developer Journal, Intersex Awareness Eve https://john.colagioia.net/blog/2021/10/25/intersex.html #programming #project #devjournal

Video: C Programming on System 6 - Amend Revision Control System
It’s been almost a year since my last confessional video. A few weeks ago I started working on a small revision control system to handle my C projects developed on my Mac and it’s now at the point where I can at least manage commits to the tool itself. ⌘ Read more

On the blog: Developer Journal, Alaska Day https://john.colagioia.net/blog/2021/10/18/alaska.html #programming #project #devjournal

@eldersnake@yarn.andrewjvpowell.com There isn’t an equivalent for those because:

Markdown is not a replacement for HTML, or even close to it. Its syntax is very small, corresponding only to a very small subset of HTML tags.

You can read more of its philosophy at Daring Fireball. There are enhancements to Markdown (CommonMark, for example), that add extra to it.

@fab@foobucket.xyz No need to apologize 🙂️ Speaking of being active I’ve gotten absolutely nothing done on my twtxt project this week. I think I need to rethink a bit to find a fun next step.

On the blog: Developer Journal, National Coming Out Day https://john.colagioia.net/blog/2021/10/11/ncod.html #programming #project #devjournal

GitHub’s guide to Hacktoberfest 2021
Giving back to open source projects is a great way to practice skills you don’t get to use in your day job. Check out ways to get involved! ⌘ Read more

On the blog: Developer Journal, World Space Week https://john.colagioia.net/blog/2021/10/04/space.html #programming #project #devjournal

On the blog: Developer Journal, Gay Men’s HIV/AIDS Awareness https://john.colagioia.net/blog/2021/09/27/hiv.html #programming #project #devjournal

I never seem to run out of projects to do. Some slosh around as mere ideas until I decide not to do them for whatever reason, but even so there’s enough to go around and then some.

On the blog: Developer Journal, World Peace Eve https://john.colagioia.net/blog/2021/09/20/peace.html #programming #project #devjournal

The ReadME Project: A look back at the community stories that shape us
In August of 2020, we started highlighting stories that showcase how developers, maintainers, and organizations are moving humanity forward through The ReadME Project. ⌘ Read more

On the blog: Developer Journal, Day of the Programmer https://john.colagioia.net/blog/2021/09/13/programmer.html #programming #project #devjournal

On the blog: Developer Journal, Labor Day https://john.colagioia.net/blog/2021/09/06/labor.html #programming #project #devjournal

Release Radar · August 2021 Edition
The end of financial year is complete, tax time is over, and everyone is back to shipping awesome projects. During August, our community has been super busy shipping lots of new updates. These new releases ⌘ Read more