Wow. I've dealt with various toxic personalities in software development, but a good portion of the time those toxic personalities were at least extremely knowledgeable in their (often, very limited) domain.
AI, however, seems to be enabling toxic personalities *who are completely clueless*. Impressive!
https://github…

Guter Web-Client für Mastodon #bcs18 https://elk.zone/m.webtoo.ls/public/local

webtoo.ls
webtoo.ls is a small server dedicated to Open Source tools in the Web ecosystem and their maintainers, collaborators, and close community members.

And that's a wrap - the newly refreshed laptop has been handed over to teen with most of the packages functional. Thanks for following along on this @… installation journey with me and thanks to all #linux maintainers, forum contributors and FOSS advocates around keeping the system running.
👏 WE REALLY APPRECIATE YOU!👏
The final judgement won't be clear until Monday when the first log in at school happens but hopefully it will be successful, or the IT support is going to have to deal with some very salty comments (from me).
16/16
FIN

Another post on #Quansight PBC blog: "BLAS/LAPACK #packaging"
#BLAS and #LAPACK are the standard libraries for linear algebra. The original implementation, often called Netlib LAPACK, developed since the 1980s, nowadays serves primarily as the origin of the standard interface, the reference implementation and a conformance test suite. The end users usually use optimized implementations of the same interfaces. The choice ranges from generically tuned libraries such as OpenBLAS and BLIS, through libraries focused on specific hardware such as Intel® oneMKL, Arm Performance Libraries or the Accelerate framework on macOS, to ATLAS that aims to automatically optimize for a specific system.
The diversity of available libraries, developed in parallel with the standard interfaces, along with vendor-specific extensions and further downstream changes, adds quite a bit of complexity around using these libraries in software, and distributing such software afterwards. This problem entangles implementation authors, consumer software authors, build system maintainers and distribution maintainers. Software authors generally wish to distribute their packages built against a generically optimized BLAS/LAPACK implementation. Advanced users often wish to be able to use a different implementation, more suited to their particular needs. Distributions wish to be able to consistently build software against their system libraries, and ideally provide users the ability to switch between different implementations. Then, build systems need to provide the scaffolding for all of that.
I have recently taken up the work to provide such a scaffolding for the Meson build system; to add support for BLAS and LAPACK dependencies to Meson. While working on it, I had to learn a lot about BLAS/LAPACK packaging: not only how the different implementations differ from one another, but also what is changed by their respective downstream packaging. In this blog post, I would like to organize and share what I have learned.
"""
#CondaForge #Debian #Fedora #Gentoo

Really nice interview:
https://github.blog/open-source/maintainers/building-beyond-the-browser-keeley-hammond-on-electron-open-source-and-the-future-of-maintainership/
I chose Ele…

Building beyond the browser: Keeley Hammond on Electron, open source, and the future of maintainership
Learn what it really takes to sustain one of the web’s most widely used frameworks on this episode of the GitHub Podcast.

Shrinking the Kernel Attack Surface Through Static and Dynamic Syscall Limitation
Dongyang Zhan (Harbin Institute of Technology), Zhaofeng Yu (Harbin Institute of Technology), Xiangzhan Yu (Harbin Institute of Technology), Hongli Zhang (Harbin Institute of Technology), Lin Ye (Harbin Institute of Technology)
https://arxiv.org/abs/2510.0372…

Shrinking the Kernel Attack Surface Through Static and Dynamic Syscall Limitation
Linux Seccomp is widely used by the program developers and the system maintainers to secure the operating systems, which can block unused syscalls for different applications and containers to shrink the attack surface of the operating systems. However, it is difficult to configure the whitelist of a container or application without the help of program developers. Docker containers block about only 50 syscalls by default, and lots of unblocked useless syscalls introduce a big kernel attack surfa…

For folks forking IdentityServer. It's not "just code". There are decades of understanding specs, working with security teams around the world, ongoing support, and doing all those things continually.
When it comes to security, staying behind, or even worse, standing still, is the worst option.
From a maintainers perspective, think of doing all of the above for FREE to save your employer money for the "atta boys". In the meantime wasting the most precious …

Once again I wonder "Do the authors/maintainers of LibreOffice actually use it?"
For example, I am here on MacOs (Tahoe) and the buttons in LibreWriter to control Bold, Italic, etc are effectively same-color-on-same-color-background, in other words, unreadable. The only time they are actually visible is when the "Dark" theme is used.
Almost every time I use LibreOffice I am reminded why people pay actual $$ for products like Word/Office365.

GCVE-BCP-02 Published - Version 1.3 (2025-12-09)

We’re pleased to announce the publication of GCVE-BCP-02 – Practical Guide to Vulnerability Handling and Disclosure, now available in its version 1.3.
This Best Current Practice document provides actionable guidance for organisations, researchers, and GCVE Numbering Authorities (GNAs) on managing and disclosing vulnerabilities effectively, both within the GCVE ecosystem and beyond

Community-driven alternative to rubygems.org just dropped: #tuby #gems