Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

Open Source Software Supply Chain Security: A Half-Century of Challenges

2025-09-21

From the 1974 Honeywell Multics system security review highlighting concerns about 'backdoors' to the 2024 XZ attack targeting Debian systems, open source software supply chain security remains a persistent problem. This article explores the complexity of the issue, extending beyond simple dependency graphs to encompass all stages of software building and distribution, including human factors. It proposes solutions such as software authentication, reproducible builds, rapid vulnerability detection and patching, and the use of safer programming languages. Crucially, it emphasizes the importance of funding open source development, as underfunding makes projects vulnerable to malicious takeover. The XZ attack serves as a stark warning: seemingly innocuous 'free help' can conceal significant risks.

Read more
(cacm.acm.org)
Development XZ attack

The Future of Coding: Anxiety, Hope, and the Rise of the AI-Augmented Developer

2025-07-03
The Future of Coding: Anxiety, Hope, and the Rise of the AI-Augmented Developer

A young programmer's anxiety sparks a reflection on the future of coding careers in the age of AI. The author, drawing on 28 years in tech, addresses the anxieties surrounding AI-driven job displacement. The argument posits that AI will not replace programmers, but rather augment their abilities, freeing them to focus on creative problem-solving. The future programmer will need to master context, effectively guide AI tools, and remain a lifelong learner to avoid stagnation. The core value of a programmer – problem-solving, critical thinking, and uniquely human ingenuity – remains irreplaceable by AI.

Read more
(jonmagic.com)
Development

Europe's Missing Tech Titans: Regulation, Innovation, and Power

2025-04-11
Europe's Missing Tech Titans: Regulation, Innovation, and Power

Critics argue that Europe's over-regulation, red tape, and high taxes stifle the creation of trillion-dollar companies like Amazon, Google, or Tesla. However, Europe's lack extends beyond mere size. The continent also lacks the powerful tech oligarchs who control these behemoths, whose influence often surpasses reality. There are no European equivalents of tech executives wielding vast political influence, or boasting on social media about abusing state resources. While European unicorns are scarce and innovation lags, this absence may also signal a different approach, avoiding some of the negative consequences associated with unchecked tech power.

Read more
(www.economist.com)
Tech

Tinshemet Cave: Neanderthals and Homo Sapiens Shared Culture

2025-03-15
Tinshemet Cave: Neanderthals and Homo Sapiens Shared Culture

New research from Tinshemet Cave in Israel reveals a surprising level of interaction between Neanderthals and Homo sapiens during the Middle Paleolithic. The findings, published in Nature Human Behavior, show evidence of shared technologies, lifestyles, and even burial customs. These interactions fostered cultural exchange and led to innovations such as formal burial practices and the symbolic use of ochre. This challenges previous assumptions about competition and highlights the Levant as a crucial hub for early human interaction and cultural development.

Read more
(phys.org)
Tech Homo Sapiens Cultural Exchange

Satchmo's Chicago Debut: A Night That Changed Jazz

2025-02-07
Satchmo's Chicago Debut: A Night That Changed Jazz

This article recounts the legendary night in 1922 when Louis Armstrong arrived in Chicago to join King Oliver's Creole Jazz Band. Ricky Riccardi, in his new book "Stomp Off, Let's Go: The Early Years of Louis Armstrong," vividly describes Armstrong's journey from New Orleans, his anxious arrival, and his electrifying debut at the Lincoln Gardens. This night marked a turning point in Armstrong's career, showcasing not only his immense talent but also his humility and respect for his mentor. The excerpt details the vibrant atmosphere, the personalities he encountered, and the unique collaborative style he developed with Oliver.

Read more
(www.honest-broker.com)
Misc Jazz Louis Armstrong Music Biography

Putin's 'Project Russia': A Stealth War Against Western Democracy

2025-01-13
Putin's 'Project Russia': A Stealth War Against Western Democracy

A Washington Spectator article exposes 'Project Russia,' a plan distributed to high-ranking Russian officials and thought leaders between 2005 and 2010. This plan details a program of spiritual warfare aimed at weakening Western democracies, culminating in a 'controlled global collapse' and the establishment of a supranational state headed by a 'Prince-Monk.' The plan's chilling alignment with current events, its links to FSB-connected groups, and its exploitation of societal divisions within the US are highlighted. The article warns of potential catastrophic consequences, including a US debt default and attacks on the dollar, fueled by figures like Elon Musk. It urges Americans to be vigilant and defend democratic values.

Read more
(washingtonspectator.org)
Tech Putin Geopolitics

Liu Jiakun Wins 2025 Pritzker Architecture Prize

2025-03-14

Liu Jiakun, an architect from Chengdu, China, has been awarded the prestigious 2025 Pritzker Architecture Prize, architecture's highest honor. His work masterfully blends seemingly opposing elements – utopia and daily life, history and modernity, collectivism and individualism – creating buildings that respect cultural history while remaining deeply connected to the lives of ordinary citizens. He prioritizes public spaces, cleverly balancing density and openness in crowded cities, integrating buildings seamlessly into the fabric of urban life as infrastructure, landscape, and public space all at once. His designs demonstrate a reverence for culture, history, and nature, incorporating elements of classic Chinese architecture with modern design sensibilities. Examples include the gently sloping eaves of the Suzhou Museum and the window walls of the Chengdu Egret Gulf Wetland Park, showcasing both tradition and innovation.

Read more
(www.pritzkerprize.com)
Design Pritzker Prize Liu Jiakun Chinese Architecture

Debugging a Full-Viewport HTML Dialog Modal

2025-03-16
Debugging a Full-Viewport HTML Dialog Modal

The author encountered a height issue while using the HTML `` element to create a side panel: a gap appeared at the bottom, preventing it from taking up the full screen height. The debugging process involved various methods, including consulting AI tools like Claude and ChatGPT. The culprit was a default Chrome style applied to the `` element: `max-height: calc(100% - 2em - 6px);`. Adding `max-height: inherit` or `max-height: 100vh` resolved the problem. Further investigation into the HTML specification revealed this default style was added to fix a previous bug, highlighting the ever-evolving nature of web standards.

Read more
(til.simonwillison.net)
Development

From Permissive to Copyleft: A Shift in Open Source Licensing

2025-07-10

The author reflects on their evolution of open-source licensing preferences, shifting from a preference for permissive licenses (like MIT) to prioritize maximal adoption to now favoring copyleft licenses (like GPL). This change stems from three key factors: open source has gone mainstream, making enterprise adoption easier; the crypto space has become more competitive and mercenary, making 'friendly' sharing insufficient; and Glen Weyl's economic arguments suggesting that actively promoting open source is optimal with increasing returns to scale. The author argues that copyleft, by mandating source code sharing of derivative works, effectively promotes knowledge diffusion and technological sharing, preventing resource monopolization by a few.

Read more
(vitalik.eth.limo)
Development copyleft

Redis Returns to Open Source After Licensing Battle with Cloud Giants

2025-05-02
Redis Returns to Open Source After Licensing Battle with Cloud Giants

Popular in-memory data store Redis is back under an open-source license after a year-long experiment with a more restrictive one. The attempt to prevent cloud providers from offering hosted Redis services backfired, leading to the creation of forks like Valkey. Redis 8's release under the AGPL v3 license aims to protect the project while rebuilding bridges with the open-source community. The story highlights the challenges of commercializing open-source software and the complex relationship with cloud giants.

Read more
(thenewstack.io)
Development

Manhattan's Secret Eruv: Maintaining a Nearly Invisible Boundary

2025-06-08
Manhattan's Secret Eruv: Maintaining a Nearly Invisible Boundary

Every Thursday and Friday, Rabbi Moshe Tauber drives 20 miles around Manhattan, inspecting a nearly invisible wire—the eruv—that encircles much of the borough. This wire serves as a symbolic boundary for observant Jews, allowing them to carry objects on Shabbat, a day when carrying between public and private spaces is forbidden. Any break in the line renders the eruv ineffective, making Tauber's early morning patrols crucial. His timely repairs ensure the community can observe religious traditions while maintaining daily life, highlighting community unity and mutual aid. The eruv, a centuries-old tradition, is a modern blend of faith and practicality in the heart of Manhattan.

Read more
(www.atlasobscura.com)
Misc

Long-Term Review: Samsung 870 QVO 4TB SATA SSDs

2025-09-17
Long-Term Review: Samsung 870 QVO 4TB SATA SSDs

This review shares the long-term experience of using four Samsung 870 QVO 4TB SATA SSDs in a home server and backup setup. Manufactured in 2021, these drives have shown excellent performance, maintaining write speeds of 140-170 MB/s even under heavy load. One drive reported 4 bad blocks, but overall, they've written over 170TB of data, far from their 1440TBW endurance limit. While prices have dropped, they remain slightly more expensive than competing drives, but offer consistently reliable performance.

Read more
(ounapuu.ee)
Hardware Samsung 870 QVO SSD Review

SuperUtilsPlus: A Superior Utility Library Beyond Lodash

2025-05-24
SuperUtilsPlus: A Superior Utility Library Beyond Lodash

SuperUtilsPlus is a powerful JavaScript utility library that surpasses Lodash in performance, TypeScript support, and developer experience. It supports ES2020+, boasts full ESM and CommonJS support, and is tree-shakable, importing only what's needed. Offering more utility functions than Lodash, SuperUtilsPlus is optimized for speed and efficiency and works seamlessly in browsers and Node.js. Its features include array manipulation (chunk, flatten, groupBy), object manipulation (get, deepClone), string manipulation (camelCase), function manipulation (debounce), and type checking, all with full TypeScript type definitions for type safety.

Read more
(github.com)
Development Utility Library

Securely Disposing of Smart Devices: Factory Reset is Key

2025-01-10
Securely Disposing of Smart Devices: Factory Reset is Key

A Rapid7 blog post highlights the importance of securely disposing of old smart devices. The author's experiment of buying used Amazon Echo devices revealed many were not factory reset, retaining user data like WiFi passwords and home addresses. This underscores the need to factory reset devices before disposal or resale, even if seemingly broken. The article emphasizes this applies to businesses as well as consumers, recommending businesses establish comprehensive IoT lifecycle management processes to mitigate security risks.

Read more
(www.rapid7.com)
Tech device disposal

AI Art and Copyright: Hiroshi Kawano's Artificial Mondrian

2025-06-02
AI Art and Copyright: Hiroshi Kawano's Artificial Mondrian

In the 1960s, artist Hiroshi Kawano used a computer program to predict Piet Mondrian's painting style and hand-painted the "Artificial Mondrian" series. This sparked a debate about copyright and artistic creation: did the algorithm infringe on Mondrian's copyright? The article explores the applicability of US and EU copyright law to similar cases, analyzes the "fair use" principle, and delves into data copyright issues in AI model training. The author argues that overly expanding the scope of copyright protection for Mondrian's work poses risks and suggests that the UK adopt an "opt-out" system similar to the EU's for AI model training data copyright, balancing the interests of the creative industry and the development of AI technology.

Read more
(inferencemagazine.substack.com)
AI

Brazil Fights Dengue Fever with Genetically Modified Mosquitoes

2025-08-01
Brazil Fights Dengue Fever with Genetically Modified Mosquitoes

Brazil is employing genetically modified mosquitoes to combat the widespread dengue fever epidemic. These mosquitoes carry Wolbachia bacteria, which prevents dengue virus replication, thereby reducing transmission. In Niterói, this method has reduced dengue cases by 90%. The Brazilian government is now aggressively expanding this technology, aiming to protect 140 million Brazilians from dengue over the next decade, demonstrating the immense potential of technological innovation in public health.

Read more
(www.npr.org)
Tech dengue fever genetically modified mosquitoes Wolbachia

Remembering Jim Boddie, Pioneer of the Single-Chip DSP

2025-07-01
Remembering Jim Boddie, Pioneer of the Single-Chip DSP

James R. "Jim" Boddie, a pioneer of the programmable, single-chip digital signal processor (DSP), passed away on December 2nd at age 74. While at AT&T Bell Labs, he led the development of one of the industry's first successful DSPs, the DSP1, and subsequently five generations of DSPs, enabling countless applications from massive telephone switching systems to tiny hearing aids. His contributions extended beyond technology, encompassing exceptional team leadership; he was a recipient of the IEEE Liebmann Award. Even in retirement, he created a 3D virtual tour of the Alamo. His legacy of innovation will continue to inspire.

Read more
(spectrum.ieee.org)
Tech Digital Signal Processor

BrowserBee: Your In-Browser AI Assistant

2025-05-18
BrowserBee: Your In-Browser AI Assistant

BrowserBee is a privacy-first, open-source Chrome extension that lets you control your browser using natural language. It combines the power of an LLM for instruction parsing and planning with Playwright for robust browser automation. Running entirely in your browser (except the LLM), it safely interacts with logged-in websites without compromising security or needing backend infrastructure. It supports major LLMs like Anthropic, OpenAI, Gemini, and Ollama, and offers a wide range of browser tools for navigation, interaction, observation, and memory management, learning efficient tool sequences for future tasks.

Read more
(github.com)
Development

Calling Python from C: A Practical Guide

2025-05-29
Calling Python from C: A Practical Guide

This article provides a practical, step-by-step guide on how to call Python functions from within C code. Starting with the basics, it covers setting up the environment on Linux/Mac, including including the Python.h header, compiling C code, and using Py_Initialize and Py_Finalize to initialize and end the Python interpreter. It details how to load Python modules, get function attributes, call functions (both parameterless and with parameters), and clean up memory. Through concrete code examples, readers learn how to integrate Python functions into C programs, enabling seamless interaction between C and Python code.

Read more
(leetarxiv.substack.com)
Development cross-language calls

Intel Reboots 'Intel Inside': 30 Years Later, the Brand Gets a Reboot

2025-04-03
Intel Reboots 'Intel Inside': 30 Years Later, the Brand Gets a Reboot

Thirty years ago, 'Intel Inside' took the world by storm, inextricably linking Intel with the personal computer. Now, at its Vision 2025 event in Las Vegas, Intel has redefined its iconic brand. The new slogan, "That's the power of Intel Inside," not only evokes nostalgia but emphasizes the crucial role Intel, its partners, and customers play in today's world. From its initial focus on processors, to the integrated Centrino platform, and the performance-driven Core series, Intel Inside has evolved alongside technology, ultimately returning to its core brand value: highlighting how Intel technology empowers individuals and the global community. This rebranding reignites the brand's passion.

Read more
(www.tomshardware.com)
Tech

Wikipedia: Fighting for Facts in an Age of Information Warfare

2025-09-05
Wikipedia: Fighting for Facts in an Age of Information Warfare

Wikipedia, the world's largest knowledge base, faces unprecedented challenges from governments, political forces, and individuals like Elon Musk. From the handling of a Nazi salute controversy involving Musk to government interference and harassment of editors worldwide, this article reveals how Wikipedia's unique consensus mechanism and rigorous editing process safeguard factual integrity in a digital world awash in misinformation. Despite immense pressure, Wikipedia and its editors strive to maintain neutrality and reliability, a battle crucial for both the free flow of information and the health of democratic societies.

Read more
(www.theverge.com)
Tech

Curl's .onion Blocking: A Security vs. Usability Tug-of-War

2025-05-16
Curl's .onion Blocking: A Security vs. Usability Tug-of-War

To prevent DNS leaks of .onion domains by Tor users, curl implemented RFC 7686 two years ago, blocking resolution of .onion domains. However, this breaks the new Tor tool oniux, preventing it from using curl to access .onion sites. This highlights a security vs. usability conflict: strict RFC adherence impacts user experience, while relaxing restrictions increases security risks. The curl team is now working to find a solution that balances security and user needs.

Read more
(daniel.haxx.se)
Tech DNS leak

The Herculean Task of a Crewed Mars Mission

2025-02-21

This article delves into the immense challenges of a crewed mission to Mars. Orbital mechanics dictate incredibly long travel times, with no feasible abort options. This necessitates unprecedented reliability, especially in life support systems, a hurdle current technology hasn't overcome. Furthermore, communication delays necessitate high autonomy, increasing complexity and risk. The article weighs the pros and cons of long-duration versus short-duration missions, highlighting uncertainties surrounding the effects of heavy-ion radiation and Martian gravity on astronaut health. The conclusion: a crewed Mars mission, with current technology, demands a protracted and immensely expensive preparation period; prioritizing robotic exploration might be more practical.

Read more
(idlewords.com)
Tech space technology life support

Stack AI Seeking 10x Engineers: Building an AI-Powered App Platform

2025-05-14
Stack AI Seeking 10x Engineers: Building an AI-Powered App Platform

Stack AI, an AI company founded by two MIT PhDs and backed by Y Combinator and Google, is hiring 10x engineers. They've built a no-code platform integrating AI models like OpenAI and Anthropic with various data sources, aiming to democratize AI application building. With over 85,000 users and 300+ paying customers, they need skilled Python, database, AWS, and containerization experts to build scalable backend systems and integrate AI models. Ideal candidates possess strong problem-solving skills, teamwork abilities, and a passion for AI.

Read more
(www.ycombinator.com)
Development AI Hiring No-Code Platform

Doctor Droid: AI-Powered Production Incident Debugging

2025-03-18
Doctor Droid: AI-Powered Production Incident Debugging

Doctor Droid is building a smart assistant to help engineering teams accelerate investigations during production incidents. This open-source platform, backed by Accel and a Y Combinator W23 graduate, aims to reduce downtime and boost developer productivity. Their vision is to empower any team member to debug common production issues without needing senior engineers. They're looking for passionate developers to join their team.

Read more
(www.ycombinator.com)
Development Production Incidents

The Steep Price of Curbing R&D Tax Deductibility

2025-04-10
The Steep Price of Curbing R&D Tax Deductibility

New research reveals the significant negative consequences of limiting the tax deductibility of research and development (R&D) expenditures. Since 2022, US companies have been required to capitalize and amortize R&D expenses rather than deducting them immediately. The study finds that affected US firms experienced an average increase in their cash effective tax rate of 11.9 percentage points (62%). This resulted in decreased R&D investment among domestic-only, research-intensive, and constrained firms. In aggregate, these estimates translate to a $12.2 billion reduction in R&D in the first year among the most research-intensive firms. Furthermore, affected companies also reduced capital expenditures and share repurchases, suggesting that firms reduced other types of investment and shareholder payouts to meet the increased cash tax liability. The paper provides policy-relevant evidence of the substantial real-world effects of limiting innovation tax incentives.

Read more
(papers.ssrn.com)
Tech R&D tax deduction

The PS3's Failure: A Licked Many-Core Cookie

2025-04-11

This post analyzes the failure of the PlayStation 3 from the perspective of a AAA game developer. The Cell processor, while boasting multiple SPE cores, suffered from limitations in usable cores and weak SPE performance compared to the GPU. The SPE's limited local memory, the heterogeneous CPU/GPU architecture, and complex synchronization mechanisms significantly increased development difficulty, hindering developers from fully utilizing the PS3's potential. The author argues that the PS3's many-core architecture ultimately failed, becoming a 'licked cookie' – a concept with great potential but ultimately under-delivered.

Read more
(darkcephas.github.io)
Game Many-Core Architecture

38C3 Conference: Reverse Engineering the ESP32's Wi-Fi Stack to Unlock its Potential

2024-12-28
38C3 Conference: Reverse Engineering the ESP32's Wi-Fi Stack to Unlock its Potential

At the 38C3 conference, Frostie314159 and Jasper Devreker presented a talk on reverse engineering the ESP32's Wi-Fi stack. By reverse engineering the closed-source Wi-Fi stack, they built an open-source alternative, unlocking the full potential of the ESP32. This allows the ESP32 to be used as a penetration testing tool, a B.A.T.M.A.N. mesh router, an AirDrop client, and more. The project highlights the versatility of the ESP32 and provides valuable experience for similar reverse engineering endeavors.

Read more
(media.ccc.de)
Hardware Open Source Wi-Fi

Kanata: Cross-Platform Keyboard Remapper for Enhanced Comfort

2025-02-09
Kanata: Cross-Platform Keyboard Remapper for Enhanced Comfort

Kanata is a cross-platform keyboard remapper for Linux, macOS, and Windows. It allows for multiple layers of key functionality and advanced customization (tap-hold, macros, Unicode). Inspired by kmonad but built with Rust, Kanata offers broader platform support and a more user-friendly interface. It aims to bring the powerful customization of QMK to any keyboard, regardless of hardware, enhancing comfort and productivity.

Read more
(github.com)
Development

Automating Bug Bounty Enumeration with n8n and a Discord Bot

2025-08-30
Automating Bug Bounty Enumeration with n8n and a Discord Bot

This article details automating three bug bounty enumeration steps—subdomain enumeration, directory enumeration, and screenshot capture—using the open-source automation platform n8n and a Discord bot. The author sets up an n8n server and a working server, creates an n8n workflow, writes bash scripts, and configures a Discord bot. The entire process is triggered via the Discord bot, with results output to a designated Discord channel, enabling automation and collaboration.

Read more
(www.lampysecurity.com)
Development
1 2 166 167 168 170 172 173 174 596 597