Java’s Swing is allegedly in “maintenance mode”, so I doubt it’s a good idea to use it for new programs. For example, I very much doubt that it will ever support Wayland.
The replacement is supposed to be JavaFX, but that’s not included in JREs – anymore! It used to be, now it’s not, even though it’s well over 15 years old now.
This whole thing (“Java GUIs”) appears to have stagnated a lot. Probably because everything is web stuff these days …
https://www.oracle.com/java/technologies/javafx/faq-javafx.html#6
Security Doesn’t Have to Hurt
Do you ever wish security would stop blocking the tools you need to do your job? Surprise: your security team wants the same. There you are, just trying to get your work done, when… You need an AI to translate documentation, but all the AI services are blocked by a security web monitoring tool. You… ⌘ Read more
Web Cache Deception Attack – A Hidden Threat in Today’s Web Applications ⌘ Read more
↳
In-reply-to
»
There are no really good GUI toolkits for Linux, are there?
⤋ Read More
@movq@www.uninformativ.de Yeah, give it a shot. At worst you know that you have to continue your quest. :-)
Fun fact, during a semester break I was actually a little bored, so I just started reading the Qt documentation. I didn’t plan on using Qt for anything, though. I only looked at the docs because they were on my bucket list for some reason. Qt was probably recommended to me and coming from KDE myself, that was motivation enough to look at the docs just for fun.
The more I read, the more hooked I got. The documentation was extremely well written, something I’ve never seen before. The structure was very well thought out and I got the impression that I understood what the people thought when they actually designed Qt.
A few days in I decided to actually give it a real try. Having never done anything in C++ before, I quickly realized that this endeavor won’t succeed. I simply couldn’t get it going. But I found the Qt bindings for Python, so that was a new boost. And quickly after, I discovered that there were even KDE bindings for Python in my package manager, so I immediately switched to them as that integrated into my KDE desktop even nicer.
I used the Python KDE bindings for one larger project, a planning software for a summer camp that we used several years. It’s main feature was to see who is available to do an activity. In the past, that was done on a large sheet of paper, but people got assigned two activities at the same time or weren’t assigned at all. So, by showing people in yellow (free), green (one activity assigned) and red (overbooked), this sped up and improved the planning process.
Another core feature was to generate personalized time tables (just like back in school) and a dedicated view for the morning meeting on site.
It was extended over the years with all sorts of stuff. E.g. I then implemented a warning if all the custodians of an activitiy with kids were underage to satisfy new the guidelines that there should be somebody of age.
Just before the pandemic I started to even add support for personalized live views on phones or tablets during the planning process (with web sockets, though). This way, people could see their own schedule or independently check at which day an activity takes place etc. For these side quests, they don’t have to check the large matrix on the projector. But the project died there.
Here’s a screenshot from one of the main views: 
This Python+Qt rewrite replaced and improved the Java+Swing predecessor.
How to Disable Safari Color Tinting on MacOS Tahoe
The latest versions of Safari use an aggressive tinting feature by default that changes the color the Safari window and titlebars to whatever color is detected on the top of a particular webpage. This can cause some visually jarring experiences when browsing the web with Safari on the Mac, and if the colorful windows and … Read More ⌘ Read more
Launch HN: Propolis (YC X25) – Browser agents that QA your web app autonomously
Comments ⌘ Read more
↳
In-reply-to
»
@lyse LOLz! Way to destroy @prologic's newest playground! :-P
⤋ Read More
@lyse@lyse.isobeef.org To be fair, I’m not convinced of the web design / user interface decisions either. I just hacked this together over a couple of days. I’m not sold on any of the UI/UX thus far. Open to suggestions, improvements, hell even a complete CSS rewrite 🤣 UI/UX nor CSS is my strong suite 😂
The $2,000 Bug That Changed My Life: How a Tiny URL Parameter Broke Web-Store Pricing !! ⌘ Read more
↳
In-reply-to
»
@lyse LOLz! Way to destroy @prologic's newest playground! :-P
⤋ Read More
@bender@twtxt.net Kaboom! Hahaha, I did not think of that at all, thanks for pointing it out, mate! :‘-D
But let me clarify just in case: I honestly do not want to bash this project. In fact, it’s a great little invention. It’s just that I’m not conviced by the current user interface decisions. Anyway, web design isn’t right up my alley. I just wanted to add some fun. And luckily, at least someone liked it so far. :-)
‘Most of it is good’: Tim Berners-Lee on the state of the web now
The man who invented the web is aware of the many issues it faces, from problematic social media use to the rise of unfettered AI. He also has a plan to remedy the situation ⌘ Read more
↳
In-reply-to
»
@aelaraji tell us all about it, without omitting details!
⤋ Read More
@aelaraji@aelaraji.com yeah, it looks tedious because it is. LOL. I can twt no matter where I am because a) with Yarn is as easy as opening a web browser, and b) with jenny is as easy at SSHing to my VPS. But, the keyword is fun. That’s what matters!
I built a web app that generates configuration files for you ⌘ Read more
This is how much Anthropic and Cursor spend on Amazon Web Services
I can exclusively reveal today Anthropic’s spending on Amazon Web Services for the entirety of 2024, and for every month in 2025 up until September, and that that Anthropic’s spend on compute far exceeds that previously reported. Furthermore, I can confirm that through September, Anthropic has spent more than 100% of its estimated revenue (based on reporting in the last year) on Amazon Web Services … ⌘ Read more
Why I Still Use jQuery
jQuery is a household name among web developers who have been around the block. Initially released in 2006, it took the web development world by storm with its easy and intuitive syntax for navigating a document, selecting DOM elements, handling events, and making AJAX requests. At its peak in 2015, jQuery featured on 62.7 percent… ⌘ Read more
How I bypassed Amazon’s Kindle web DRM
Article URL: https://blog.pixelmelt.dev/kindle-web-drm/
Comments URL: https://news.ycombinator.com/item?id=45610226
Points: 507
# Comments: 154 ⌘ Read more
Mastering Host Header Injection: Techniques, Payloads and Real-World Scenarios
Learn How Attackers Manipulate Host Headers to Compromise Web Applications and How to Defend Against It
[Continue re … ⌘ Read more
FFUF Mastery: The Ultimate Web Fuzzing Guide
Practical techniques, wordlists, and templates to fuzz every layer of a web app.
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/ffuf-mastery-the-ultimate-web-fuzzing-guide-f7755c396b92?source= … ⌘ Read more
How I Mastered Blind SQL Injection With One Simple Method
Transforming my web security skills by learning to listen to a silent database
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/how-i-mastered-blind-sql-injection-w … ⌘ Read more
How to add MCP Servers to Gemini CLI with Docker MCP Toolkit
In the rapidly evolving landscape of AI-assisted development, most developers continue to struggle with clunky web interfaces, resource-intensive IDEs, and fragmented toolchains. But what if we told you there’s a combination that pairs Google’s 76.3K-star Gemini CLI (in just 5 months) with Docker’s innovative MCP Toolkit, quietly revolutionizing how modern AI developers work? Enter the… ⌘ Read more
Master Web Fuzzing: A Cheat‑Sheet to Finding Hidden Paths
Hey there, back again with another post! 😄
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/master-web-fuzzing-a-cheat-sheet-to-finding-hidden-paths-6c2bcf5 … ⌘ Read more
lavandula: A fast, lightweight web framework in C for building modern web applications
Comments ⌘ Read more
↳
In-reply-to
»
🤔 💭 🧐 What if, What if we built our own self-hosted / small-web / community-built/run Internet on top of the Internet using Wireguard as the underlying tech? What if we ran our own Root DNS servers? What if we set a zero tolerance policy on bots, spammers and other kind of abuse that should never have existed in the first place. Hmmmm
⤋ Read More
@movq@www.uninformativ.de I wouldn’t consider this a “dark web”, no. It’d just be a new web on top of an already existing “physical” infrastructure, where the web that grew out of that is total garbage.
↳
In-reply-to
»
🤔 💭 🧐 What if, What if we built our own self-hosted / small-web / community-built/run Internet on top of the Internet using Wireguard as the underlying tech? What if we ran our own Root DNS servers? What if we set a zero tolerance policy on bots, spammers and other kind of abuse that should never have existed in the first place. Hmmmm
⤋ Read More
@prologic@twtxt.net I’m pretty sure that’s going to happen at some point or has already happened. 😃 Is this “the dark web”? 😅
🤔 💭 🧐 What if, What if we built our own self-hosted / small-web / community-built/run Internet on top of the Internet using Wireguard as the underlying tech? What if we ran our own Root DNS servers? What if we set a zero tolerance policy on bots, spammers and other kind of abuse that should never have existed in the first place. Hmmmm
↳
In-reply-to
»
My open letter, to the European Commission digital markets act team:
⤋ Read More
@movq@www.uninformativ.de I submitted it via the form on their website (https://digital-markets-act.ec.europa.eu/contact-dma-team_en) and got the following response:
Dear citizen,
Thank you for contacting us and sharing your concerns regarding the impact of Google’s plans to introduce a developer verification process on Android. We appreciate that you have chosen to contact us, as we welcome feedback from interested parties.
As you may be aware, the Digital Markets Act (‘DMA’) obliges gatekeepers like Google to effectively allow the distribution of apps on their operating system through third party app stores or the web. At the same time, the DMA also permits Google to introduce strictly necessary and proportionate measures to ensure that third-party software apps or app stores do not endanger the integrity of the hardware or operating system or to enable end users to effectively protect security.
We have taken note of your concerns and, while we cannot comment on ongoing dialogue with gatekeepers, these considerations will form part of our assessment of the justifications for the verification process provided by Google.
Kind regards,
The DMA Team
Ladybird passes the Apple 90% threshold on web-platform-tests
Article URL: https://twitter.com/awesomekling/status/1974781722953953601
Comments URL: https://news.ycombinator.com/item?id=45493358
Points: 501
# Comments: 130 ⌘ Read more
How marine heat waves reshape ocean food webs and slow deep sea carbon transport
New research shows that marine heat waves can reshape ocean food webs, which in turn can slow the transport of carbon to the deep sea and hamper the ocean’s ability to buffer against climate change. ⌘ Read more
TryHackMe Infinity Shell Walkthrough: Web Shell Forensics & CTF Guide ⌘ Read more
↳
In-reply-to
»
@lyse Thanks, I think I fixed it now. Sorry for the spam.
⤋ Read More
@itsericwoodward@itsericwoodward.com No worries, all good, mate! We all have to start somewhere. Other software requests my feed several orders of magnitude more often.
I can confirm, the User-Agent header appears to be fixed. \o/
Two other things I noticed, though:
There’s now an
OPTIONSrequest for my feed coming from something that claims to be Firefox, pointing to your feed URL in the query. No clue what this is about. In any case, it’s rejected with a405 Method Not Allowed.Not that these few requests bother me at all, but you might wanna implement caching next with either the
If-Modified-SinceorIf-None-Matchrequest headers. This way, if the feed hasn’t changed, the web server can reply with a304 Not Modifiedand no body at all, saving unnecessary traffic. But again, this is really not an issue for me at all. I just wanted to make sure you’re aware of it, that’s all. It might be even already on your agenda. Or you might decide to never do anything about it, which is also fine for me. :-)
↳
In-reply-to
»
I think I'm just about ready to go live with my new blog (migrated from MicroPub). I just finished migrating all of the content over, fixing up metadata, cleaning up, migrating media, optimizing media.
⤋ Read More
@prologic@twtxt.net That zs looks pretty cool! I love simple static site generators, and look forward to trying it on my next web site project. Kudos!
Building beyond the browser: Keeley Hammond on Electron, open source, and the future of maintainership
Learn what it really takes to sustain one of the web’s most widely used frameworks on this episode of the GitHub Podcast.
The post [Building beyond the browser: Keeley Hammond on Electron, open source, and the future of maintainership](https://github.blog/open-source/maintainers/building-beyond-the-browser-keeley-hammond-o … ⌘ Read more
I have fully restored my script that posts from CLI to Mastodon, twtxt, and my ichi.city web page.
Working on a project that does Augmented Reality and computer vision object detection and QR code and image recognition inside a Web application. Pretty neat what can be done today with a few thousand lines of JavaScript.