Announcing CodeQL Community Packs
We are excited to introduce the new CodeQL Community Packs, a comprehensive set of queries and models designed to enhance your code analysis capabilities. These packs are tailored to augment…
The post Announcing CodeQL Community Packs appeared first on The GitHub Blog. ⌘ Read more
How researchers are studying the impact of GitHub Copilot on the nature of work for open source maintainers
An interview with economic researchers analyzing the causal effect of GitHub Copilot on how open source maintainers work.
The post [How researchers are studying the impact of GitHub Copilot on the nature of work for open source maintainers](https://github.blog/news-insights/policy-news-and-insig … ⌘ Read more
OpenAI’s latest o1 model now available in GitHub Copilot and GitHub Models
The December 17 release of OpenAI’s o1 model is now available in GitHub Copilot and GitHub Models, bringing advanced coding capabilities to your workflows.
The post OpenAI’s latest o1 model now available in GitHub Copilot and GitHub Models appeared first on The GitHub Blog. ⌘ Read more
[ANN] Serai’s status as 2024 wraps up
This is an update on where the Serai project is. While I wish I could keep this professional, parts of it will be fundamentally intertwined with my personal life. Apologies to anyone who just wants a short, professional brief. [..] I am happy and relieved to announce an anonymous donor has enabled Serai’s upcoming audits. The donations themselves have been facilitated by MAGIC Grants.
Links:
Enhance build security and reach SLSA Level 3 with GitHub Artifact Attestations
Learn how GitHub Artifact Attestations can enhance your build security and help your organization achieve SLSA Level 3. This post breaks down the basics of SLSA, explains the importance of artifact attestations, and provides a step-by-step guide to securing your build process.
The post [Enhance build security and reach SLSA Level 3 with GitHub Artifact Attest … ⌘ Read more
Introducing Annotated Logger: A Python package to aid in adding metadata to logs
We’re open sourcing Annotated Logger, a Python package that helps make logs searchable with consistent metadata.
The post [Introducing Annotated Logger: A Python package to aid in adding metadata to logs](https://github.blog/developer-skills/programming-languages-and-frameworks/introducing-annotated-logger-a-python-package-to-aid-in-a … ⌘ Read more
↳
In-reply-to
»
For Example:
⤋ Read More
@prologic@twtxt.net Well I just mirrored yarnd’s JSON in my webfinger endpoint and lookup, so not much else to do for standardization.
And for people who don’t like PHP you can always just go with Added WebFinger support to my email address using one rewrite rule and one static file. or simply putting a static JSON in place for .well-know/webfinger
Announcing 150M developers and a new free tier for GitHub Copilot in VS Code
Come and join 150M developers on GitHub that can now code with Copilot for free in VS Code.
The post Announcing 150M developers and a new free tier for GitHub Copilot in VS Code appeared first on The GitHub Blog. ⌘ Read more
One benefit with bluesky is your username is also a website. And not a clunky URL with slashes and such. I wish twtxt adopted that. I have advocated for webfinger to for twtxt to let us do something like it with usernames. Nostr has something like it
By default the bsky.social urls all redirect to their feeds like: hmpxvt.bsky.social
Many custom urls will redirect to some kind of linktree or just their feed cwebonline.com or la.bonne.petite.sour.is or if you are a major outlet just to your web presence like https://theonion.com‬ or https://netflix.com
Its just good SEO practice
Do all nostr addresses take you to the person if typed into a browser? That is the secret sauce.
No having to go to some random page first. no accounts. no apps to install. just direct to the person.
Uncovering GStreamer secrets
In this post, I’ll walk you through the vulnerabilities I uncovered in the GStreamer library and how I built a custom fuzzing generator to target MP4 files.
The post Uncovering GStreamer secrets appeared first on The GitHub Blog. ⌘ Read more
GitHub Availability Report: November 2024
In November, we experienced one incident that resulted in degraded performance across GitHub services.
The post GitHub Availability Report: November 2024 appeared first on The GitHub Blog. ⌘ Read more
So many tokens, so little time: Introducing a faster, more flexible byte-pair tokenizer
We released a new open source byte-pair tokenizer that is faster and more flexible than popular alternatives.
The post So many tokens, so little time: Introducing a faster, more flexible byte-pair tokenizer appeared first on [The GitHub Bl … ⌘ Read more
[ANN] Discussion: Post-quantum security and ethical considerations over elliptic curve cryptography
Link: https://github.com/monero-project/research-lab/issues/131
@s​yntheticbird:monero.social (Matrix) ⌘ Read more
CodeQL zero to hero part 4: Gradio framework case study
Learn how I discovered 11 new vulnerabilities by writing CodeQL models for Gradio framework and how you can do it, too.
The post CodeQL zero to hero part 4: Gradio framework case study appeared first on The GitHub Blog. ⌘ Read more
Have this bbs in my bookmarks. Live instance available in ssh://lowlife@45.79.250.220. Password is hightech
[ANN] MRL recommendation: Ban spy node IP addresses from connecting to your node
The Monero Research Lab (MRL) has decided to recommend that all Monero node operators enable a ban list of suspected spy node IP addresses. The spy nodes can reduce the privacy of Monero users. cuprate developer Boog900 discovered these spy nodes and created an IP address ban list. Developers and researchers associated with MRL (list names) have indicated their approval of this list by signing it with their PGP keys.
Links:
- [https://github.com/m … ⌘ Read more
What the EU’s new software legislation means for developers
The EU Cyber Resilience Act will introduce new cybersecurity requirements for software released in the EU. Learn what it means for your open source projects and what GitHub is doing to ensure the law will be a net win for open source maintainers.
The post [What the EU’s new software legislation means for developers](https://github.blog/open-source/maintainers/what-the-eus-new-software-legislation-means-fo … ⌘ Read more
@aelaraji@aelaraji.com https://github.com/sorenpeter/timeline/commit/555baefcd0e75e6a281472994e8eb7ae9b5d2a1c
[ANN] Privacy and Anonymity in Monero
I have a written a blog post on how Monero uses Cryptography (ECDH, Pedersen Commitments, Schnorr Signatures, Ring Signatures etc) to add privacy & anonymity on the blockchain. I have covered most of the cryptography used except for RangeProofs (Bulletproofs) which I plan to cover later in a separate post. Do let me know if you find any mistakes or if something isn’t clear.
Link: https://risencrypto.github.io/Monero/
risensteam0 (at) protonmail (do … ⌘ Read more
The top 10 gifts for the developer in your life
Whether you’re hunting for the perfect gift for your significant other, the colleague you drew in the office gift exchange, or maybe (just maybe) even for yourself, we’ve got you covered with our top 10 gifts that any developer would love.
The post The top 10 gifts for the developer in your life appeared first on [The GitHub Bl … ⌘ Read more
[ANN] MAGIC Monero Fund 2025 Election
5 December 2024: Committee and voter nominations open
31 December 2024: Committee and voter nominations close
6 January 2024: Voting opens
20 January 2024: Voting closes
~23 January 2024: Election results announced
31 January 2024: Newly elected members join the committee
Link: https://magicgrants.org/2024/12/05/Monero-Fund-2025-Election.html
u/SamsungGalaxyPlayer (Github) ⌘ Read more
How to generate unit tests with GitHub Copilot: Tips and examples
Learn how to generate unit tests with GitHub Copilot and get specific examples, a tutorial, and best practices.
The post How to generate unit tests with GitHub Copilot: Tips and examples appeared first on The GitHub Blog. ⌘ Read more
Congratulations to the winners of the 2024 Gaady Awards
The Gaady Awards are like the Emmy Awards for the field of digital accessibility. And, just like the Emmys, the Gaadys are a reason to celebrate! On November 21, GitHub was honored to roll out the red carpet for the accessibility community at our San Francisco headquarters.
The post [Congratulations to the winners of the 2024 Gaady Awards](https://github.blog/news-insights/company-news/congratulations-to-the- … ⌘ Read more
[ANN] Community communication about the spy node ban list
The Monero Research Lab (MRL) has decided to recommend that all Monero node operators enable a ban list of suspected spy node IP addresses. The spy nodes can reduce the privacy of Monero users. cuprate developer Boog900 discovered these spy nodes and created an IP address ban list. Developers and researchers associated with MRL (list names) have indicated their approval of this list by signing it with their PGP keys.
Links:
My twtAgent.php was turned off, so try again now. I have uploaded the code to: https://github.com/sorenpeter/twtAgent
[LTH] RTL native speaker for Moner.ooo
Programming experience is not required. Translation can be done via Weblate, or Github. I need it not only for the translation, but also for the final feedback. Whether the website is displayed correctly. It doesn’t matter which language, it just has to be an rtl language. (right to left)
Links:
mail@moner.ooo / luke@jabber.ccc.de (XMP … ⌘ Read more
[ANN] Improve Monero guide on Privacyguides
Links:
- https://discuss.privacyguides.net/t/suggestion-elaborate-how-to-get-monero/16817/5
- https://discuss.privacyguides.net/t/suggestion-elaborate-how-to-get-monero/16817/7
- https://github.com/privacyguides/privacyguides.org
@basses:matrix.org ⌘ Read more
Breaking down CPU speed: How utilization impacts performance
The Performance Engineering team at GitHub assessed how CPU performance degrades as utilization increases and how this relates to capacity.
The post Breaking down CPU speed: How utilization impacts performance appeared first on The GitHub Blog. ⌘ Read more
[ANN] Monero Remote Node Monitoring project updates
Since my last post on Reddit in June 2024, there have been some major changes and new features.
* updated the license from GLWTS to a more widely recognized and permissive one (BSD-3-Clause)
* UI: switched from SvelteKit to Templ+HTMX to reduce external dependencies
* added support for monitoring both IPv6 and I2P nodes
* set up a Tor Hidden service for the web UI
Links:
- GitHub repository
- [Website](https://xmr.d … ⌘ Read more
[ANN] [MRL] Summary and statement piece on MAX_INPUTS (and a few related topics)
Link: https://gist.github.com/kayabaNerve/dbbadf1f2b0f4e04732fc5ac559745b7
kayabaNerve (Github) ⌘ Read more
John-Doggett creates public XMR node setup script
John-Doggett1 has created a Bash script2 that helps users to automatically configure public Monero nodes with support for HTTPS on Debian:
It uses Caddy to create a public website on your node, as well as renewing LetsEncrypt certificates. [..] Let me know what you all think
Usage instructions are available on GitHub2.
Note: inspect the code4 before running the script.
- https:/ … ⌘ Read more
Students: Start building your skills with the GitHub Foundations certification
The GitHub Foundations Certification exam fee is now waived for all students verified through GitHub Education.
The post Students: Start building your skills with the GitHub Foundations certification appeared first on [The GitHub Blog](ht … ⌘ Read more
htwtxt maybe, but i can’t built it (broken?)
How to make Storybook Interactions respect user motion preferences
With this custom addon, you can ensure your workplace remains accessible to users with motion sensitivities while benefiting from Storybook’s Interactions.
The post How to make Storybook Interactions respect user motion preferences appeared first on [The GitHub Blog](ht … ⌘ Read more
Announcing GitHub Secure Open Source Fund: Help secure the open source ecosystem for everyone
Applications for the new GitHub Secure Open Source Fund are now open! Applications will be reviewed on a rolling basis until they close on January 7 at 11:59 pm PT. Programming and funding will begin in early 2025.
The post [Announcing GitHub Secure Open Source Fund: Help secure the open source ecosystem for everyone](https://github.blog/news-insights/company-news/announcing-github-sec … ⌘ Read more
everoddandeven releases monerod-gui v1.0.2
everoddandeven1 has released Monero node manager monerod-gui 2 version 1.0.2 Tenacity 3 with multiple fixes and improvements:
UI fixes and improvements
Upgrade/install daemon fixes
Consult the Github repository2 for the complete changelog4, a demo and usage instructions.
To support further development of the Monerod Daemon GUI, transfer any amount of XMR to the projec … ⌘ Read more
Software is a team sport: Building the future of software development together
Microsoft and GitHub are committed to empowering developers around the world to innovate, collaborate, and create solutions that’ll shape the next generation of technology.
The post [Software is a team sport: Building the future of software development together](https://github.blog/news-insights/company-news/software-is-a-team-sport-building-the-future-of-software- … ⌘ Read more
Does GitHub Copilot improve code quality? Here’s what the data says
Findings in our latest study show that the quality of code written with GitHub Copilot is significantly more functional, readable, reliable, maintainable, and concise.
The post Does GitHub Copilot improve code quality? Here’s what the data says appeared first on [The GitHub Blog]( … ⌘ Read more
woodser releases Haveno v1.0.14
woodser1 has released Haveno2 version 1.0.143 with various bug fixes.
Fix inverted fixed-price crypto offers by @bvcxza in #1411
Fix inverted buy/sell label for crypto offers by @woodser in #1417
Allow re-opening disputes until payout is confirmed by @woodser in #1412
Fix bug getting backup files @woodser in #1413
The full changelog is available on Github4.
Consult the installing.md 5 file for generi … ⌘ Read more
GitHub Availability Report: October 2024
In October, we experienced one incident that resulted in degraded performance across GitHub services.
The post GitHub Availability Report: October 2024 appeared first on The GitHub Blog. ⌘ Read more
How developers spend the time they save thanks to AI coding tools
Developers tell us how GitHub Copilot and other AI coding tools are transforming their work and changing how they spend their days.
The post How developers spend the time they save thanks to AI coding tools appeared first on The GitHub Blog. ⌘ Read more
[ANN] The MAGIC Monero Fund got an application: ‘Build a plugin for embedding dApps into Wordpress websites’
Link: https://github.com/MAGICGrants/Monero-Fund/issues/38
@r​ucknium:monero.social ⌘ Read more
everoddandeven releases monerod-gui v1.0.0 ‘Tenacity’
everoddandeven1 has announced2 the first stable release (v1.0.0 Tenacity 3) of Monero node manager monerod-gui 4:
Changes overviewRPM package now available. Donations are appreciated, including to the bounty5 for this project
Add WOW donations
Get battery level implementation
Optimize rpc traffic
RPM build workflow implementation
Linux fixes [..]
Consult the Github repos … ⌘ Read more
nahuhh releases ‘basicswap-bash’ v0.14.1
nahuhh (ofrnxmr)1 has released basicswap-bash 2 version 0.14.13:
Changes overviewA suite of bash scripts to install and manage BasicSwapDEX on Windows(WSL)/Debian/Ubuntu/Arch/Fedora
* placeorders: use python to check offer size
* setup: update tails
* fix $PATH detection
* fix restore from seed
* install: xfce .profile use in .xsessionrc
Installation instructions are available on the Github release page3.
… ⌘ Read more
[ANN] A faster alternative to blockchain consensus
Instead of confirmation coming from outside of transactions, it would be better for it to come from within them. Ideally, every output would be tied to the input that spends it, so it can’t be double-spent. But, this can’t be done before the input exists, so the output must be tied to an intermediary, which gets tied to the input after it’s created.
Link: https://github.com/monero-project/research-lab/issues/127
… ⌘ Read more
Monerujo adds support for Exolix exchange in v4.1.2
m2049r1 has released Monerujo2 version 4.1.23 with support for crypto exchange platform Exolix 4:
Upgrading to Monero Core to v0.18.3.4
Add support for Exolix exchange
Minor bugfixes
Some refactoring
Before usage it is recommended to back up your seed and verify that you have downloaded the correct file using the SHA256 hash listed on Github3.
If you need help, consult the … ⌘ Read more
Game Off 2024 theme announcement
GitHub’s annual month-long game jam, where creativity knows no limits! Throughout November, dive into your favorite game engines, libraries, and programming languages to bring your wildest game ideas to life. Whether you’re a seasoned dev or just getting started, it’s all about having fun and making something awesome!
The post Game Off 2024 theme announcement appeared first on [The GitHub Blog](https: … ⌘ Read more
[ANN] Discussion: preventing P2P proxy nodes
Link: https://github.com/monero-project/research-lab/issues/126
Boog900 (Github) ⌘ Read more
Celebrating the GitHub Awards 2024 recipients 🎉
The GitHub Awards celebrates the outstanding contributions and achievements in the developer community by honoring individuals, projects, and organizations for creating an outsized positive impact on the community.
The post Celebrating the GitHub Awards 2024 recipients 🎉 appeared first on The GitHub Blog. ⌘ Read more
New from Universe 2024: Get the latest previews and releases
Find out how we’re evolving GitHub and GitHub Copilot—and get access to the latest previews and GA releases.
The post New from Universe 2024: Get the latest previews and releases appeared first on The GitHub Blog. ⌘ Read more