@prologic@twtxt.net Aha, got it. Thanks for looking into it. I’m updating now and we’ll see if that stops it.

@New_scientist@feeds.twtxt.net It’s insane that a single botched software update can have worldwide impact. We’ve messed up badly.

So updated. Seems to duplicate here in the ui. And what is this “Read More” on every twt now?

@prologic@twtxt.net Well ain’t that grand? I’ll get it updated.

@prologic@twtxt.net Well ain’t that grand? I’ll get it updated

On my blog: Free Culture News https://john.colagioia.net/blog/2024/06/09/free-culture-news.html #freeculture #linkdump #update

I think it is a good addition. Similar to how the Fraidycat RSS reader works. Fraidyc.at also support twtxt, but have not seen any updates since 2021…

A policy proposal on our approach to deepfake tools and responsible AI
We’re asking for feedback on a proposed Acceptable Use Policy update to address the use of synthetic and manipulated media tools for non-consensual intimate imagery and disinformation while protecting valuable research.

The post [A policy proposal on our approach to deepfake tools and responsible AI](https://github.blog/2024-04-18-a-policy-proposal-on-our-approach-to-deepfake-tools-and-responsib … ⌘ Read more

Game Bytes · March 2024
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on!

The post Game Bytes · March 2024 appeared first on The GitHub Blog. ⌘ Read more

Game Bytes · February 2024
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on! 🕹️

The post Game Bytes · February 2024 appeared first on The GitHub Blog. ⌘ Read more

@lyse@lyse.isobeef.org its a hierarchy key value format. I designed it for the network peering tools i use.. I can grant access to different parts of the tree to other users.. kinda like directory permissions. a basic example of the format is:

@namespace
# multi
# line
# comment
root :value

# example space comment
@namespace.name space-tag 

# attribute comments
attribute attr-tag  :value for attribute

# attribute with multiple 
# lines of values
foo :bar
      :bin
      :baz

repeated :value1
repeated :value2

each @ starts the definition of a namespace kinda like [name] in ini format. It can have comments that show up before. then each attribute is key :value and can have their own # comment lines.
Values can be multi line.. and also repeated..

the namespaces and values can also have little meta data tags added to them.

the service can define webhooks/mqtt topics to be notified when the configs are updated. That way it can deploy the changes out when they are updated.

Get started with v4 of GitHub Actions Artifacts
We listened to your feedback and released new versions (v4) of actions/upload-artifact and actions/download-artifact. While this version of the actions to upload and download artifacts includes up to 10x performance improvements and several new features, there are also key differences from previous versions that may require updates to your workflows.

The post [Get started with v4 of GitHub Actions Artifacts](https://github.blog/2024-02-12-g … ⌘ Read more

Release Radar · January 2024 Edition
The new year has kicked off, and developers are hard at work. We hope all our open source community members had a lovely holiday break and, we’re looking forward to seeing what you ship this year. 2024 is already off to a great start with open source projects releasing major updates. There’s everything here from […]

The post Release Radar · January 2024 Edition appeared first on The GitHub Blog. ⌘ Read more

Game Bytes · January 2024
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on!

The post Game Bytes · January 2024 appeared first on The GitHub Blog. ⌘ Read more

From migration tools to updates to Enterprise Managed Users, what’s new in GitHub Enterprise
Read a round-up of the exciting, new innovation coming from GitHub Enterprise.

The post From migration tools to updates to Enterprise Managed Users, what’s new in GitHub Enterprise appeared first on [The GitHub Blog](https://githu … ⌘ Read more

Release Radar · Hacktoberfest 2023 Edition
As Hacktoberfest comes to a close, you still have a day or so left to complete and submit your pull requests. If you’re struggling to think of projects to contribute to, our picks below might help you. This edition of the Release Radar covers a few projects that shipped major version updates this August and […]

The post Release Radar · Hacktoberfest 2023 Edition appeared first on [The GitHub Blog](https://github.bl … ⌘ Read more

Finally getting around to cleaning up and updating my todo.txt file. Maybe I should put a task in there to remind me to check it.

Game Bytes · September 2023
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on!

The post Game Bytes · September 2023 appeared first on The GitHub Blog. ⌘ Read more

@adi@twtxt.net I think it is, and one benefit they have is that you can add third-party repositories to the F-Droid app as you discover them. So, for instance, if you know of a developer who pushes builds to an F-Droid compatible repository, you can add that to your F-Droid app and start tracking updates like you would for any other app in there. Can’t do that with Google Play!

F-Droid tends to focus on open source applications that can be built in a reproducible way, which limits the inventory (though of course tends to mean the apps are safer and don’t spy on you). There are non-free apps in there as well but they come with warnings so you’re informed about what you might be sacrificing by using them.

That said if you have a favorite app you get through Google Play, there’s a decent chance it won’t be in F-Droid. Many “big corporate” apps aren’t, and vendor-specific apps tend not to be either. But for most of the major functions you might want, like email clients, calendar apps, weather apps, etc etc, there are very good substitutes now in F-Droid. You’re definitely making a trade-off though.

What I did was go through the apps I had installed on my last phone, found as many substitutes in F-Droid as I could, started using those instead to see how they worked, and bit by bit replaced as much as I could from Google Play with a comparable app from F-Droid. I still have a few apps (mostly vendor-specific things that don’t have substitutes) that come from Google Play but I’m aiming to be rid of those before I need to replace this phone.

Game Bytes · August 2023
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on!

The post Game Bytes · August 2023 appeared first on The GitHub Blog. ⌘ Read more

A faster way to manage version updates with Dependabot
Now, you can group multiple version updates in a single pull request.

The post A faster way to manage version updates with Dependabot appeared first on The GitHub Blog. ⌘ Read more

Release Radar · July 2023 Edition
After the last Release Radar, I promised the next one wouldn’t be far away, so here it is. This is the low down on some of the best open source projects that shipped major version updates in July. There’s lots of cool stuff from natural language processing, to APIs, money, and SDKs. I won’t spoil […]

The post Release Radar · July 2023 Edition appeared first on The GitHub Blog. ⌘ Read more

Smarter, more efficient coding: GitHub Copilot goes beyond Codex with improved AI model
We’re thrilled to announce two major updates to GitHub Copilot Code Complete’s AI capabilities that will help developers work even more efficiently and effectively. ⌘ Read more

Closing vulnerabilities in Decidim, a Ruby-based citizen participation platform
This blog post describes two security vulnerabilities in Decidim, a digital platform for citizen participation. Both vulnerabilities were addressed by the Decidim team with corresponding update releases for the supported versions in May 2023. ⌘ Read more

Game Bytes · July 2023
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on! ⌘ Read more

My home ISP has had a few prefixes allocated. They haven’t rolled of out yet because their custom CRM system needs to be updated to be able to allocate/bill for it. Along other reasons they gave when I asked last.

Google Says It’ll Scrape Everything You Post Online for AI

Google updated its privacy policy over the weekend, explicitly saying the company reserves the right to scrape just about everything you post online to build its AI tools.

Google can eat shit.

Funny.. I would never buy an iPhone again. My wife switched back this last phone update and I can’t stand the interface.

Game Bytes · June 2023
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on! ⌘ Read more

“give access to repair and maintenance information and spare parts to professional repairers and end-users for at least 7 years after retiring a product […] Software updates will also have to be made available for at least 5 years after retiring a product from the market”
“give access to repair and maintenance information and spare parts to professional repairers and end-users for at least 7 years after retiring a product […] Software updates will also have to be made available for at least 5 years afte … ⌘ Read more

GitHub’s revamped VIP Bug Bounty Program
GitHub’s VIP Bug Bounty Program has been updated to include a clear and accessible criteria for receiving an invitation to the program and more. Learn more about the program and how you can become a Hacktocat, and join our community of researchers who are contributing to GitHub’s security with fun perks and access to staff and beta features! ⌘ Read more

Unlocking inclusive design: how Primer’s color system is making GitHub.com more inclusive
How Primer’s updated light and dark theme color contrast strategy resolved hundreds of color-contrast-related accessibility issues over one thousand use cases. ⌘ Read more

Game Bytes · May 2023
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on! ⌘ Read more

**Speaking of supervillains…

I was expecting the twitter game bots to stop updating after meeting the new policy threshold or something… I did not expect them to be banned.

Well, finally I have one less reason to peek on twitter so often.**
Speaking of supervillains…

I was expecting the twitter game bots to stop updating after meeting the new policy threshold or something… I did not expect them to be banned.

Well, finally I have one less reason to peek on twitter so often.

[nitter.net/EmojiPrincess … ⌘ Read more

@movq@www.uninformativ.de

twtxt, as I believe it was originally intended, are short little status updates – that’s it.

So, basically a .plan file for finger. But, on the web. like a *web*finger. We have come full circle on this loop!

Game Bytes · April 2023
Game Bytes is our monthly series taking a peek at the world of gamedev on GitHub—featuring game engine updates, game jam details, open source games, mods, maps, and more. Game on! ⌘ Read more

Pwning Pixel 6 with a leftover patch
In this post, I’ll look at a security-related change in version r40p0 of the Arm Mali driver that was AWOL in the January update of the Pixel bulletin, where other patches from r40p0 was applied, and how these two lines of changes can be exploited to gain arbitrary kernel code execution and root from a malicious app. This highlights how treacherous it can be when backporting security changes. ⌘ Read more

What’s new with GitHub Sponsors
GitHub Sponsors is now generally available for organizations. Also, new tooling for bulk sponsorships and an update on how we’re ensuring sustainability for GitHub Sponsors. ⌘ Read more

We updated our RSA SSH host key
At approximately 05:00 UTC on March 24, out of an abundance of caution, we replaced our RSA SSH host key used to secure Git operations for GitHub.com. ⌘ Read more

GitHub Enterprise Server 3.8 is now generally available
With updates to GitHub Actions, repositories, and GitHub Advanced Security, this new version of GitHub Enterprise Server is focused on bringing the best developer experience to companies. ⌘ Read more

File editing on GitHub Mobile keeps leveling up
Commit an update to a pull request, or start a new branch to squash a bug at any time, wherever you are using the GitHub Mobile apps. ⌘ Read more

Update on the future stability of source code archives and hashes
A look at what happened on January 30, what measures we’re putting in place to prevent surprises, and how we’ll handle future changes. ⌘ Read more

RT by @mind_booster: This is now 1️⃣ day. As in tomorrow.
And still no update, clarity or response. Irresponsible.
This is now 1️⃣ day. As in tomorrow.

And still no update, clarity or response. Irresponsible.

nitter.net/claesdevreese/status/1622513942433091587#m ⌘ Read more

Action needed for GitHub Desktop and Atom users
Update to the latest version of Desktop and previous version of Atom before February 2. ⌘ Read more

R to @mind_booster: I’ll gladly explain it to them as soon as they make available information about their security updates policies. 2/2
I’ll gladly explain it to them as soon as they make available information about their security updates policies. 2/2 ⌘ Read more

Unlocking security updates for transitive dependencies with npm
How Dependabot integrated with npm to address security vulnerabilities on transitive dependencies and increase the likelihood of success for JavaScript security updates by 40%. ⌘ Read more

@prologic@twtxt.net I have updated to kinda follow this. It now redirects to other webfingers if the resource has a different hostname. I’m still not sure what I should put multiple services with the same domain name. Like if they were to have conflicting properties.

Circling back to the IsPreferred method. A hasher can define its own IsPreferred method that will be called to check if the current hash meets the complexity requirements. This is good for updating the password hashes to be more secure over time.

func (p *Passwd) IsPreferred(hash string) bool {
	_, algo := p.getAlgo(hash)
	if algo != nil && algo == p.d {

		// if the algorithm defines its own check for preference.
		if ck, ok := algo.(interface{ IsPreferred(string) bool }); ok {
			return ck.IsPreferred(hash)
		}

		return true
	}
	return false
}

https://github.com/sour-is/go-passwd/blob/main/passwd.go#L62-L74

example: https://github.com/sour-is/go-passwd/blob/main/pkg/argon2/argon2.go#L104-L133

Here is an example of usage:

func Example() {
	pass := "my_pass"
	hash := "my_pass"

	pwd := passwd.New(
		&unix.MD5{}, // first is preferred type.
		&plainPasswd{},
	)

	_, err := pwd.Passwd(pass, hash)
	if err != nil {
		fmt.Println("fail: ", err)
	}

	// Check if we want to update.
	if !pwd.IsPreferred(hash) {
		newHash, err := pwd.Passwd(pass, "")
		if err != nil {
			fmt.Println("fail: ", err)
		}

		fmt.Println("new hash:", newHash)
	}

	// Output:
	//  new hash: $1$81ed91e1131a3a5a50d8a68e8ef85fa0
}

This shows how one would set a preferred hashing type and if the current version of ones password is not the preferred type updates it to enhance the security of the hashed password when someone logs in.

https://github.com/sour-is/go-passwd/blob/main/passwd_test.go#L33-L59

To infinity and beyond: enabling the future of GitHub’s REST API with API versioning
We’re introducing calendar-based versioning for our REST API, so we can keep evolving our API, whilst still giving integrators a smooth migration path and plenty of time to update their integrations. ⌘ Read more