5 iCloud Security Features You Should Be Using
iCloud is packed full of features that make using devices in the Apple ecosystem super easy and fluid, but there are some security features and capabilities offered by iCloud that literally everyone should be using because of their added benefits to security, convenience, and capabilities. While itâs generally a good idea to basically use every ⊠Read More â Read more
Workshop in Rotterdam: How to Build a Bike Generator
Afbeelding: Low-tech Magazine workshop in Rotterdam, the Netherlands. Poster: Marie Verdeil. Image: Sara Vercauteren
The workshop takes place on behalf of the âHous ⊠â Read more
The SAG/AFTRA people being so hard on generative models is a bad look for labor unions globally. â Read more
A developerâs guide to open source LLMs and generative AI
Open source generative AI projects are a great way to build new AI-powered features and apps.
The post A developerâs guide to open source LLMs and generative AI appeared first on The GitHub Blog. â Read more
Introducing a New GenAI Stack: Streamlined AI/ML Integration Made Easy
At DockerCon 2023, with partners Neo4j, LangChain, and Ollama, we announced a new GenAI Stack. We have brought together the top technologies in the generative artificial intelligence (GenAI) space to build a solution that allows developers to deploy a full GenAI stack with only a few clicks. â Read more
Australia watching England smoking ban âwith interestâ, as government reforms tobacco laws
Australia will closely monitor a UK plan to ban cigarette sales for future generations, as the government progresses plans to prevent young people from picking up a smoking habit. â Read more
Announcing Docker Scout GA: Actionable Insights for the Software Supply Chain
We are excited to announce that Docker Scout General Availability (GA) now allows developers to continuously evaluate container images against a set of out-of-the-box policies, aligned with software supply chain best practices. These new capabilities also include a full suite of integrations enabling you to attain visibility from development into production. These updates strengthen Docker Scoutâs position as integral to the software s ⊠â Read more
British PM announces plan to ban cigarettes for younger generations
Prime Minister Rishi Sunak said the smoking age would be raised by one year every year beginning in 2027, meaning the younger generation would grow up âsmoke freeâ. â Read more
Announcing Docker Compose Watch GA Release
Docker Compose Watch, a tool to improve the inner loop of application development, is now generally available. We built Docker Compose Watch to smooth away these workflow papercuts. We have learned from many people using our open source Docker Compose project for local development. Now we are natively addressing common workflow friction we observe, like the use case of hot reload for frontend development. â Read more
Docker Desktop 4.24: Compose Watch, Resource Saver, and Docker Engine
With the release of Docker Desktop 4.24, we announce the official General Availability of Docker Compose Watch and Resource Saver. Combined with our new enhancements to managing Docker Engine in Docker Desktop, these updates will help you be more efficient and make your software development experience more enjoyable. â Read more
How I used GitHub Copilot Chat to build a ReactJS gallery prototype
GitHub Copilot Chat can help developers create prototypes, understand code, make UI changes, troubleshoot errors, make code more accessible, and generate unit tests.
The post How I used GitHub Copilot Chat to build a ReactJS gallery prototype appeared first on The GitHub Blog. â Read more
Passkeys are generally available
All GitHub.com users can now register a passkey to sign in without a password.
The post Passkeys are generally available appeared first on The GitHub Blog. â Read more
Announcing general availability of GitHub Advanced Security for Azure DevOps
GitHub Advanced Security for Azure DevOps is now generally available. Enable secret scanning, dependency scanning, and code scanning on your organization directly in Azure DevOps configuration settings.
The post [Announcing general availability of GitHub Advanced Security for Azure DevOps](https://github.blog/2023-09-20-announcing-general-availability-of-github-advanced-security-for- ⊠â Read more
How Google Authenticator made one companyâs network breach much, much worse | Ars Technica
đ€Šââ
WHY are these big companies treated as though they are the be all and end all of infosec? These are rookie mistakes Googleâs making, at scale.
Unfortunately Google employs dark patterns to convince you to sync your MFA codes to the cloud, and our employee had indeed activated this âfeatureâ. If you install Google Authenticator from the app store directly, and follow the suggested instructions, your MFA codes are by default saved to the cloud. If you want to disable it, there isnât a clear way to âdisable syncing to the cloudâ, instead there is just a âunlink Google accountâ option.
Like, never ever put your multi-factor tokens into a single cloud storage location! The whole point of this being âmultiâ factor is that there is a separate, independent physical factor involved in the authentication process. If the authenticator app on your phone puts the tokens in the cloud, then it reduces the security that comes from having a second factor. This is basic stuff.
Of course, never ever use Google Authenticator. All it does is generate TOTP and HOTP codes, which you can do with any OTP app, preferably an open source one thatâs been vetted.
Australiaâs earliest garlic harvest has barely finished, but Joe is sowing seeds for the next generation
An Indigenous community harvesting Australiaâs earliest commercial garlic crop is hoping to pass on farming skills to improve the lives of future generations. â Read more
GitHub Enterprise Server 3.10 is now generally available
Customers using GHES can now ensure secure development is a top priority with enhanced security and compliance controls for their repositories.
The post GitHub Enterprise Server 3.10 is now generally available appeared first on The GitHub Blog. â Read more
The Ladybird XHTML bug is fixed. index.xhtml and blog/index.xhtml are now generated with a Makefile, XSLT, and a bit of Python. Feels good!
Docker Hub Registry IPv6 Support Now Generally Available
Docker announces the general availability of IPv6 support for the Docker Hub Registry, Docker Docs, and Docker Scout endpoints. â Read more
@New_scientist@feeds.twtxt.net because of course they have.
Emily Bender, a computational linguistic and excellent critic of this generative AI nonsense, uses an analogy of an oil spill to characterize what is happening as a result of generative AI. Itâs polluting the world with false information, false images, false âacademicâ articles, false books. The companies that create this stuff are not cleaning up their misinformation spill; theyâre letting the mess spread all over. Itâs being used to commit crimes, and thatâll only get worse. Just like an out of control oil spill will destroy entire ecosystems.
Snikket: State of Snikket 2023
This is our first blog post for quite a while, and the last few have all been technical updates of various kinds about the Snikket software. In fact itâs been almost two years since the last post that gave a general progress update on the Snikket project itself, so letâs fix that!
Youâll be pleased to hear that Snikket is very much alive, and although there hasnât been much of a show to see here, a bunch of stuff has been going on backstage.
We plan to catch you up with our progres ⊠â Read more
@prologic@twtxt.net I donât get your objection. dockerd is 96M and has to run all the time. You canât use docker without it running, so you have to count both. docker + dockerd is 131M, which is over 3x the size of podman. Plus you have this daemon running all the time, which eats system resources podman doesnât use, and docker fucks with your network configuration right on install, which podman doesnât do unless you tell it to.
Thatâs way fat as far as Iâm concerned.
As far as corporate goes, podman is free and open source software, the end. docker is a company with a pricing model. It was founded as a startup, which suggests to me that, like almost all startups, they are seeking an exit and if they ever face troubles in generating that exit theyâll throw out all niceties and abuse their users (see Reddit, the drama with spyware in Audacity, 10,000 other examples). Sure you can use it free for many purposes, and the container bits are open source, but that doesnât change that itâs always been a corporate entity, that they can change their policies at any time, that they can spy on you if they want, etc etc etc.
Thatâs way too corporate as far as Iâm concerned.
I mean, all of this might not matter to you, and thatâs fine! Nothing wrong with that. But you canât have an alternate realityâthese things I said are just facts. You can find them on Wikipedia or docker.com for that matter.
@prologic@twtxt.net @jmjl@tilde.green
It looks like thereâs a podman issue for adding the context subcommand that docker has. Currently podman does not have this subcommand, although this comment has a translation to podman commands that are similar-ish.
It looks like thatâs all you need to do to support podman right now! Though Iâm not 100% sure the containers I tried really are running remotely. Details below.
I manually edited the shell script that cas.run add returns, changing all the docker commands to podman commands. Specifically, I put alias docker=podman at the top so the check for docker would pass, and then I replaced the last two lines of the script with these:
podman system connection add cas "host=tcp://cas.run..."
podman system connection default cas
(that ⊠after cas.run is a bunch of connection-specific stuff)
I ran the script and it exited with no output. It did create a connection named âcasâ, and made that the default. Iâm not super steeped in how podman works but I believe thatâs what you need to do to get podman to run containers remotely.
I ran some containers using podman and I think they are running remotely but I donât know the right juju to verify. It looks right though!
This means you could probably make minor modifications to the generated shell script to support podman. Maybe when the check for docker fails, check for podman, and then later in the script use the podman equivalents to the docker context commands.
@prologic@twtxt.net aha, thank you, that got me unjammed.
Turns out I thought I had an SSH key set up in github, but github didnât agree with me. So, I re-added the key.
I also had to modify the command slightly to:
ssh -p 2222 -i PRIVATE_GITHUB_KEY GITHUB_USERNAME@cas.run help
since I generate app-specific keypairs and need to specify that for ssh and I havenât configured it to magically choose the key so I have to specify it in the command line.
Anyhow, that did it. Thanks!
@New_scientist@feeds.twtxt.net hello @prologic@twtxt.net hereâs another feed thatâs spewing multiple copies of the same post. This one above is repeated 8 times. @awesome-scala-weekly@feeds.twtxt.net now has 13 copies of each post every week. This definitely looks like a bug in whatever code is generating these feeds, because the source feeds donât have multiple copies of the original posts:
- Has 8 copies of the above post: https://feeds.twtxt.net/New_scientist/twtxt.txt
- Has only 1 copy of the above post: https://www.newscientist.com/feed/home/
I forget whether I filed an issue on this before, but can you tell me where I should do that?
Erlang Solutions: Ship RabbitMQ logs to Elasticsearch
RabbitMQ is a popular message broker that facilitates the exchange of data between applications. However, as with any system, itâs important to have visibility into the logs generated by RabbitMQ to identify issues and ensure smooth operation. In this blog post, weâll walk you through the process of shipping RabbitMQ logs to Elasticsearch, a distributed search and analytics engine. By centralising and analysing RabbitMQ logs with Elasticsea ⊠â Read more
Largest winery solar panel system in Australia switches on in the Barossa Valley
Almost 6,000 solar panels have been installed by Treasury Wine Estates, with the ability to generate more than 5,000 megawatt-hours of energy per year â the equivalent of powering around 900 homes. â Read more
How to responsibly adopt GitHub Copilot with the GitHub Copilot Trust Center
Weâre launching the GitHub Copilot Trust Center to provide transparency about how GitHub Copilot works and help organizations innovate responsibly with generative AI. â Read more
GitHub Repository Rules are now generally available
Repository rules provide an easy, flexible way to define branch protections and ensure consistency in code across repositories. â Read more
Global Atmospheric Circulation
â Read more
A developerâs guide to prompt engineering and LLMs
Prompt engineering is the art of communicating with a generative AI model. In this article, weâll cover how we approach prompt engineering at GitHub, and how you can use it to build your own LLM-based application. â Read more
GitHub merge queue is generally available
Supercharge pull request merges on your busiest branches by enabling your team to queue. â Read more
GitHub CLI project command is now generally available!
Level up your use of GitHub Projects on the command line and in GitHub Actions with the new project CLI command. â Read more
GitHub Enterprise Server 3.9 is now generally available
GitHub Enterprise Server 3.9 is now generally available. Organizations can now take advantage of more features that enable deeper collaboration, greater observability and faster workflows. â Read more
The economic impact of the AI-powered developer lifecycle and lessons from GitHub Copilot
Today at Collision Conference we unveiled breaking new research on the economic and productivity impact of generative AIâpowered developer tools. The research found that the increase in developer productivity due to AI could boost global GDP by over $1.5 trillion. â Read more
Robots, high-density planting just some of Young Farmer of the Yearâs fresh ideas
Fifth generation apple, pear and stone fruit grower Mitchell McNab says robotics will play a major role in the future to keep production costs down. â Read more
↳
In-reply-to
»
Jordan Peterson likes to mansplain at women when he knows nothing about the subject. Probably because he thinks women should be property of men instead of free individuals.
†Read More
Also, what a douchebag using the title âDr.â in his twitter handle. As a general rule, a white dude who isnât a medical doctor putting âDr.â in their social media title is a gigantic flashing red flag.
Rebuilding a Solar Powered Website
A screenshot of the markdown file for this page.
During the last months we have been working on switching the solar powered website from one static site generator (Pelican) to another (Hugo). Many readers will not notice the changes right away, as we have not made any major adj ⊠â Read more
Russia blowing up the Nova Kakhovka dam is an incomprehensible war crime. Among other things, it drains water from the Zaporizhzhia nuclear power plant, water that is needed for cooling. They are trying to generate a widespread disaster.
They must be stopped, immediately, without hesitation. This is unacceptable behavior, crossing every red line we have no matter our politics, without any doubt.
↳
In-reply-to
»
Dear Stack Overflow, Inc.
†Read More
Seems to me you could write a script that:
- Parses a StackOverflow question
- Runs it through an AI text generator
- Posts the output as a post on StackOverflow
and basically pollute the entire information ecosystem there in a matter of a few months? How long before some malicious actor does this? Maybe itâs being done already đ€·
What an asinine, short-sighted decision. An astonishing number of companies are actively reducing headcount because their executives believe they can use this newfangled AI stuff to replace people. But, like the dot com boom and subsequent bust, many of the companies going this direction are going to face serious problems when the hypefest dies down and the reality of what this tech can and canât do sinks in.
We really, really need to stop trusting important stuff to corporations. They are not tooled to last.
Stack Overflow is being inundated with AI-generated garbage. A group of 480+ human moderators is going on strike, because:
Specifically, moderators are no longer allowed to remove AI-generated answers on the basis of being AI-generated, outside of exceedingly narrow circumstances. This results in effectively permitting nearly all AI-generated answers to be freely posted, regardless of established community consensus on such content.
In turn, this allows incorrect information (colloquially referred to as âhallucinationsâ) and plagiarism to proliferate unchecked on the platform. This destroys trust in the platform, as Stack Overflow, Inc. has previously noted.
It looks like StackOverflow Inc. is saying one thing to the public, and a very different thing to its moderators.
I donât really like the term âgatekeepingâ, especially when itâs used to describe the general concept of a barrier to entry. The term âgatekeepingâ implies to me a âgatekeeperââa person A who is trying to control if person B can interact with person C. It implies active discrimination, perhaps even bigotry, when in reality the barrier might be a passive issue such as scarcity or inherent complexity. âGatekeepingâ seems an intentionally- and needlessly-charged term.
When first grown in Australia, this exotic tropical fruit was little-known. Now farmers canât keep up with demand
In the depths of South Americaâs Amazon Basin, the achachairĂș, a highly prized tropical fruit, has been cultivated for generations. But itâs on the side of the world, in North Queensland, that the fruit is grown on the greatest scale. â Read more
<darch> testing out generating twt-hash using php
Google Bard or BingGPT are actually quite useful to answer simple questions without having to scroll through many pages of clickbait and AI-generated babble blogposts. Iâm currently preparing for the AWS exam (I finally signed up!) and Google Bard explained the differences between Cognito User Pools and Cognito Identity Pools in a simple and understandable way. Even with a tabular overview and examples how to use both services. Now my knowledge is refreshed again. đ â Read more
Why an iPhone makes a terrible general purpose computer
(when Android makes a pretty good one) â Read more
Custard apple growers marketing to next generation
Once common in backyards and suburban streets, the super-sweet fruit has almost disappeared from the landscape â but growers are hoping to change that. â Read more
Siphon
â Read more
Fiji is a tropical fruit paradise for tourists while locals lack nutrition â but protected cropping could help
Many people think of Fiji as a wonderland of tropical fruit and vegetable â but in reality, premium produce on offer at resorts comes from Australia and New Zealand, while many locals suffer from a lack of wholesome food. â Read more
von Neumann: I came up with this new system that generalizes probability theory to consider convex sets instead of point estimates. I think that I could use this to prove regret boundsâŠ
How companies are boosting productivity with generative AI
Explore how generative AI coding tools are changing the way developers and companies build software. â Read more