Tootfinder

Ich habe ein Mega-Update mit einer Tonne neuer @… -Snippets und verbesserten Snippets online gestellt:
https://gitlab.kit.edu/uhrhr/zettlr-ressourcen/

I was trying to package #FlexiBLAS for #Gentoo, and to be honest, it doesn't look that good.
The first red flag is lack of an open bug tracker. Apparently, there is the tracker on GitLab that's limited to "members of their group and selected external contributors", but it doesn't seem to be used much. So it's "send us an email", and wonder how many people sent us the same bug report before.
The git repository is currently at something tagged 3.4.80 that seems to be prerelease, and its build system is quite broken. Not exactly the best path to verify that the bugs you are hitting are still there.
Now, upstream seems to insist on either using vendored netlib #LAPACK, or statically linking to the system library (we don't install the static libraries). Apparently I can specify the shared libraries instead, but it doesn't work — and it's unclear to me whether it doesn't work because I'm using the shared libraries, or because it doesn't support my LAPACK version. If I build LAPACK without deprecated symbols, it refuses to load it at runtime because of missing symbols. And if I build it with deprecated symbols, it fails to find some symbols at CMake time.
Honestly, I feel like I've spent too much time on this project already, especially given that its future is entirely unclear to me — the current git is quite broken, I have no clue how many issues were reported already and whether my bug reports will receive any reply. It definitely doesn't fare well for a package that we might start to rely heavily on. We don't want a cathedral there.
https://www.mpi-magdeburg.mpg.de/projects/flexiblas
https://gitlab.mpi-magdeburg.mpg.de/software/flexiblas-release

personally i'm not planning to migrate from github any time soon. the people who i'd've lost on ethical grounds have self-selected out long ago, i have basically no lock-in besides very heavy reliance GH Actions (which have no viable replacement besides gitlab maybe) and i'm counting on the process of corporate death to take a few years until it starts to cause actual immediate problems

Próbowałem dodać #FlexiBLAS do #Gentoo, i szczerze mówiąc, nie wygląda to dobrze.
Na dobry początek niepokoi brak otwartego systemu zgłaszania błędów. Jest GitLab, ale ograniczony do "członków ich grupy i wybranych osób z zewnątrz", ale nie wygląda na to, żeby go za bardzo używano. Jest tylko…

Noch einige der zuletzt hier besonders häufig geteilten #News:
Attacke auf Red-Hat-GitLab-Instanz, Kundendaten kopiert

Anyone having issues with Tor for the past few days?
It seems one of the Snowflake bridge is down (but should not impact obfs4):
https://gitlab.torproject.org/tpo/anti-censorship/pluggable-transports/snowflake/-/issues/40475…

Installing DarkPAN #Perl modules via the #GitLab generic packages repository #devops

#LB É o Arlindo Cruz, é o astronauta da Apollo 13. O dia tš pesado, hein?
https://mstdn.social/@GottaLaff/114994759827905120

On the Security of SSH Client Signatures
Fabian B\"aumer, Marcus Brinkmann, Maximilian Radoy, J\"org Schwenk, Juraj Somorovsky
https://arxiv.org/abs/2509.09331 https:/…

On the Security of SSH Client Signatures
Administrators and developers use SSH client keys and signatures for authentication, for example, to access internet backbone servers or to commit new code on platforms like GitHub. However, unlike servers, SSH clients cannot be measured through internet scans. We close this gap in two steps. First, we collect SSH client public keys. Such keys are regularly published by their owners on open development platforms like GitHub and GitLab. We systematize previous non-academic work by subjecting the…

Today I fought with Containerfiles, Makefiles and GitLab (mostly GitLab...).