Tootfinder

Can’t believe it’s been 16 years since I organised the world’s first virtual web conference (it was called <head>, it took place over 3 days, had 4 simultaneous tracks, over 70 speakers, and local in-world conference hubs in London, Manchester, Brigthon, Fribourg, and San Francisco, as well as as pre-conference party and a separate virtual hub in Second Life).

OpenAI updates ChatGPT with a "read aloud" feature supporting 37 languages, allowing it to read its responses out loud, available on the web and mobile apps (Emilia David/The Verge)
https://www.theverge.com/2024/3/4/24090500/chatgpt-openai-voi…

ChatGPT can read its answers out loud
OpenAI rolled out the Read Aloud feature so ChatGPT users can have the chatbot’s responses verbally read to them in one of 37 languages.

Patreon rolls out a Reddit-like community moderation feature that lets podcasters, artists, writers, and other creators assign community members as moderators (Mia Sato/The Verge)
https://www.theverge.com/2024/4/3/24118984/patreon-…

Patreon is taking Reddit’s approach to content moderation
Creator platform Patreon is expanding community chats, a Discord-like feature first introduced in September. Now chats will be available on the web and to free users.

Why I use Firefox
https://xn--ime-zza.eu/3

"…now, Apple says it’s reversing the decision after it “received requests” to continue supporting the feature. "
https://www.theverge.com/2024/3/1/24087666/apple-disable-iphone-web-apps-eu-reversal

Now Apple says it won’t disable iPhone web apps in the EU
Apple says that iOS 17.4 will continue to support iPhone web apps in the European Union that are “built directly on WebKit.”

Patreon rolls out a Reddit-like community moderation feature that lets podcasters, artists, writers, and other creators assign community members as moderators (Mia Sato/The Verge)
https://www.theverge.com/2024/4/3/24118984/patreon-…

Patreon is taking Reddit’s approach to content moderation
Creator platform Patreon is expanding community chats, a Discord-like feature first introduced in September. Now chats will be available on the web and to free users.

The state of global press freedom and the threats to democracy
Web event: from Washington Post
https://www.washingtonpost.com/washington-post-live/2024/05/03/state-global-press-freedom-threats-democracy/…

The state of global press freedom and the threats to democracy
Journalists around the world are risking their safety and their lives to cover everything from the ongoing threats to democracy to the wars in Gaza and Ukraine to other consequential global stories. On Friday, May 3 at 10:00 a.m. ET, join The Washington Post on World Press Freedom Day for conversations about the role of an independent media in a democracy, what’s at stake as billions of people head to the polls this year and the technological shifts reshaping the industry. We will also reveal…

I just updated https://jws.dev: I added my "Vue Offline Boilerplate" to the projects page
I wrote this app as a common "starter app" for 2-3 other apps that I have kicking around in my head. It uses:
- Vue 3 and the Composition API
- Pinia
- The vite-plugin-pwa plugin

Performance improvements in Safari.
1% here, 0.3% there and six months later you have a 30% boost on a mature codebase.
https://webkit.org/blog/15249/optimizing-webkit-safari-for-speedometer-3-0/

Web-Apps außer Funktion: iOS 17.4 Beta bereitet Entwicklern große Sorge
Mit Beta 2 von iOS 17.4 funktionierten plötzlich Web-Apps nicht mehr auf dem iPhone. Auch Beta 3 bringt keine Besserung. Entwickler fragen sich: Was ist da los?

Eine einflussreiche Lobbyorganisation für das Thema #MitDemRadZurGrundschule ist die #Verkehrswacht. @… hat die Entwicklung ihrer Position ge…

Tadschikistan: Erdbeben vor 4 Tagen 🤔
#haarp 🤡

This https://arxiv.org/abs/2404.14219 has been replaced.
initial toot: https://mastoxiv.page/@arXiv_csCL_…

Phi-3 Technical Report: A Highly Capable Language Model Locally on Your Phone
We introduce phi-3-mini, a 3.8 billion parameter language model trained on 3.3 trillion tokens, whose overall performance, as measured by both academic benchmarks and internal testing, rivals that of models such as Mixtral 8x7B and GPT-3.5 (e.g., phi-3-mini achieves 69% on MMLU and 8.38 on MT-bench), despite being small enough to be deployed on a phone. The innovation lies entirely in our dataset for training, a scaled-up version of the one used for phi-2, composed of heavily filtered web data …

I just updated https://jws.dev: I added my "Vue Offline Boilerplate" to the projects page
I wrote this app as a common "starter app" for 2-3 other apps that I have kicking around in my head. It uses:
- Vue 3 and the Composition API
- Pinia
- The vite-plugin-pwa plugin

Web 3.0 and Quantum Security: Long-Distance Free-Space QSDC for Global Web 3.0 Networks
Yew Kee Wong, Yifan Zhou, Xinlin Zhou, Yan Shing Liang, Zi Yan Li
https://arxiv.org/abs/2402.09108

Web 3.0 and Quantum Security: Long-Distance Free-Space QSDC for Global Web 3.0 Networks
With the advent of Web 3.0, the swift advancement of technology confronts an imminent threat from quantum computing. Security protocols safeguarding the integrity of Web 2.0 and Web 3.0 are growing more susceptible to both quantum attacks and sophisticated classical threats. The article introduces long-distance free-space quantum secure direct communication (LF QSDC) as a method to safeguard against security breaches in both quantum and classical contexts. Differing from techniques like quantum…

While I was initially scared by Canva acquiring Affinity, as it’s what @… and I use, he reminded me that Canva is not a product we hate. If anything this can allow online collaboration functionality.

@… 3. Also related, yet feels somewhat separate: The cool whacky sites out there.
Again, maybe they exist now and we just aren’t sharing them, but I feel like I see a lot less “experiments” on the web. Sites that use HTML, CSS, and JS to just do something cool and unexpected. From playing fart noises to making cool colorful animations. I just don’t see t…

Seems like Reddit isn't quite done sucking. Sometimes I miss aspects of the site, but neither the Web version nor the app are worth using, so it's history to me. Now they are blocking VPN users, because of course they are.
https://news.ycombinator.com/item?id=39883747

“I would argue that in some ways, MT in 2004 was better software than WordPress is TODAY.”
I have done a bunch of freelance work over the years and I’ve always stayed away from WordPress - a WP installation always ends with installing a bunch of plugins that don’t quite work together, and you get a fragile mess that breaks if you look at it wrong.
#WebDev

Enhancing Anomaly Detection in Financial Markets with an LLM-based Multi-Agent Framework
Taejin Park
https://arxiv.org/abs/2403.19735 https://

Enhancing Anomaly Detection in Financial Markets with an LLM-based Multi-Agent Framework
This paper introduces a Large Language Model (LLM)-based multi-agent framework designed to enhance anomaly detection within financial market data, tackling the longstanding challenge of manually verifying system-generated anomaly alerts. The framework harnesses a collaborative network of AI agents, each specialised in distinct functions including data conversion, expert analysis via web research, institutional knowledge utilization or cross-checking and report consolidation and management roles…

gonna tell my kids web 3 was just web 2 with rounder corners

This https://arxiv.org/abs/2403.04074 has been replaced.
initial toot: https://mastoxiv.page/@arXiv_csNI_…

Improving HTTP/3 Quality of Experience with Incremental EPS
With the introduction of QUIC, a modern transport-layer network protocol, HTTP/3 leverages its benefits to enhance web content delivery. This paper proposes a mechanism based on the recently standardized Extensible Prioritization Scheme (EPS) for weighted incremental web content delivery. The mechanism augments the sequential scheduling to provide incremental and weighted incremental resource delivery. An existing HTTP/3 implementation was extended with the proposed mechanism and tested with th…

This https://arxiv.org/abs/2311.03573 has been replaced.
initial toot: https://mastoxiv.page/@arXiv_csCR_…

Smart Blockchain Networks: Revolutionizing Donation Tracking in the Web 3.0
A donation-tracking system leveraging smart contracts and blockchain technology holds transformative potential for reshaping the landscape of charitable giving, especially within the context of Web 3.0. This paper explores how smart contracts and blockchain can be used to create a transparent and secure ledger for tracking charitable donations. We highlight the limitations of traditional donation systems and how a blockchain-based system can help overcome these challenges. The functionality of …

there's probably other DHT-like tables besides the standard XOR metric that torrents use.
like, if you're literally doing web-of-trust stuff, small network stuff applies right?
high clustering coefficient, low path length?
so something that's good at getting you a good-enough path length of the local group is probably fine. Doesn't need to be global.
could probably still have the exponential backoff drop. or maybe faster?
distance tables:
direct friends
friend 1 (store all)
friend 3 (store... half?)
friend 7 (store... a quarter? an eighth?)
friend 15 (there's a lot here, store few)
https://web.stanford.edu/class/cs124/lec/socialnetworks21.pdf

👍 Jack Smith shreds Reagan AG Ed Meese's amicus brief's claim that Smith is an illegal prosecutor
https://www.dailykos.com/stories/2024/3/17

Jack Smith shreds Reagan AG Ed Meese's amicus brief's claim that Smith is an illegal prosecutor
Introduction Two things are certain in Trump’s Mar-a-Lago stolen documents case. One, the evidence that Trump is a thief is overwhelming. Two, knowing that a trial will find Trump guilty, his supporters are desperately filing amicus curiae briefs...

Freshness-aware Block Propagation Optimization in 6G-based Web 3.0: An Evolutionary Game Approach
Jinbo Wen, Jiawen Kang, Zehui Xiong, Hongyang Du, Zhaohui Yang, Dusit Niyato, Meng Shen, Yutao Jiao, Yang Zhang
https://arxiv.org/abs/2403.12807

Freshness-aware Block Propagation Optimization in 6G-based Web 3.0: An Evolutionary Game Approach
Driven by the aspiration to establish a decentralized digital economy, Web 3.0 is emerging as the fundamental technology for digital transformation. Incorporating the promising sixth-generation (6G) technology with large bandwidth and space-air-ground integrated coverage, 6G-based Web 3.0 holds great potential in empowering users with enhanced data control and facilitating secure peer-to-peer transactions, especially in consumer electronics, through the utilization of blockchain technologies. H…

Data to view after voting, see above post
I found lots of websites (¹ ² ³ ⁴) claiming the correct answer is "specced" and only two (Merriam-Webster and Dictionary.com) that referred to the punctuated "spec'd", naming it as an alternative to "specced" with the same pronunciation. (Dictionary.com also named "specking" as a second alternative. I found nothing referring solely to "spec'd".)
However, Google Books Ngram Viewer has "spec'd" as the most common printed form until recently. Continuing the trend past 2019, "specced" should now have a narrow lead. In British English books (not shown), it overtook "spec'd" in 1997 and began a commanding lead in 2010.
Google web searches put "specced" at 3.01M results and "spec'd" at 8.69M, though almost all of the hits refer to "Spec-D" headlights. This is one major advantage of the Ngram Viewer, which doesn't trip over differing punctuation types (it shows "spec-d" at a trickle). It might be more fair to compare "specced out" (348k) with "spec'd out" (739k)

#PhanpySocial changelog ✨
🌪️ Keyword filters UI
📝 Allow ‘Lists’ in Shortcuts (except multi-column view)
🖋️ Edit Profile (only name, bio & extra fields)
🐛 Bug fixes
For upcoming Mastodon v4.3 :
🪣 Filtered notifications

Add notification policies and notification requests in web UI by Gargron · Pull Request #29433 · mastodon/mastodon
Follow-up to #29366 Fixes MAS-39 Peek.2024-02-28.09-16.mp4

https://docs.strapi.io/dev-docs/intro
Nice system for doing headless web content management.
Simple integration to the usual single page application frameworks.
For those enterprises or use cases where is no budget or strategic need for systems like Adobe Experience Manager or…

#Google search results are so shitty lately that, for example, searching for a thing (a keytar named "alesis vortex") it shows 8 ads and, after these, as the 4th result, the web page of the product.
In case you are curious, #Duckduckgo shows, mostly, results involving the web page…

Knapp 3,3 Milliarden Euro will #Microsoft in den kommenden zwei Jahren in #Deutschland investieren, um seine Rechenzentrumskapazitäten für Anwendungen im Bereich künstlicher Intelligenz #KI und beim

Fortbildung und Rechenzentren für KI: Microsoft verspricht Milliardeninvestitionen in Deutschland
Cloudkapazitäten und ein Weiterbildungsprogramm für bis zu 1,2 Millionen Menschen: Microsoft hat Bundeskanzler Scholz versprochen, mehr als drei Milliarden Euro in Deutschlands KI-Zukunft zu investieren.

"A warning posted on the dark web by LockBit 3.0 gave a deadline of 12:47 a.m. Friday. A short time later, the warning disappeared."
Did Fulton County pay off ransomware hackers?
https://www.wsbtv.com/news/local/fulton-county/did-fulton-county-pay-off-ransomware-hackers/ZF7UM7RYWRGSJLPP3GLNOQ2QR4/

I’m very concerned about Apple breaking the web by intentionally removing PWA features in the EU.
If we assume good intentions and the root issue is merely one of regulatory deadlines—an almost $3 trillion (USD) market cap company would make a plan to work with third-party browsers to add that compatibility back in (or at the very least provide APIs for others to do so).
But as far as I can tell they’re just removing the feature (only in the EU??) with no plan at all to add it ba…

Truth.
PHP gets frowned upon a lot but mostly by people who need 3 times the amount of time to ship something with their fancy new tech.
Personally I don't use PHP for bigger stuff but it's a language that's really fun to prototype web stuff in.
https://social.treehouse.systems/@bodi

Google, Apple, Mozilla, and Microsoft release Speedometer 3.0, a benchmark to "create a shared understanding of web performance", after Speedometer 2.0 in 2018 (Abner Li/9to5Google)
https://9to5google.com/2024/03/11/speedometer-3-0/

Google, Apple, and Firefox release new Speedometer 3.0 browser benchmark
Speedometer 3.0 is now available. Speedometer has long been Google's preferred benchmark, previously noting how...

This https://arxiv.org/abs/2402.09108 has been replaced.
initial toot: https://mastoxiv.page/@arXiv_qu…

Web 3.0 and Quantum Security: Long-Distance Free-Space QSDC for Global Web 3.0 Networks
With the advent of Web 3.0, the swift advancement of technology confronts an imminent threat from quantum computing. Security protocols safeguarding the integrity of Web 2.0 and Web 3.0 are growing more susceptible to both quantum attacks and sophisticated classical threats. The article introduces our novel long-distance free-space quantum secure direct communication (LF QSDC) as a method to safeguard against security breaches in both quantum and classical contexts. Differing from techniques li…

This https://arxiv.org/abs/2310.15035 has been replaced.
initial toot: https://mastoxiv.page/@arXiv_mat…

Relative Equilibria of Mechanical Systems with Rotational Symmetry
We consider the task of classifying relative equilibria for mechanical systems with rotational symmetry. We divide relative equilibria into two natural groups: a generic class which we call normal, and a non-generic abnormal class. The eigenvalues of the locked inertia tensor descend to shape-space and endow it with the geometric structure of a 3-web with the property that any normal relative equilibrium occurs as a critical point of the potential restricted to a leaf from the web. To demonstra…

I particularly enjoyed Section 3, explaining all the things characters are not (necessarily): units of aural rendering, units of visual rendering, units of input, units of collation, units of storage.
Character Model for the World Wide Web 1.0: Fundamentals
https://www.w3.org/TR/charmod/#sec-Percept…

Que la web de El Tiempo (punto) es pide 3,99€ al mes por que no comercien con las cookies y tu información revendiéndolas a 897 empresas.

Google, Apple, Mozilla, and Microsoft release Speedometer 3.0, a benchmark to "create a shared understanding of web performance", after Speedometer 2.0 in 2018 (Abner Li/9to5Google)
https://9to5google.com/2024/03/11/speedometer-3-0/

Google, Apple, and Firefox release new Speedometer 3.0 browser benchmark
Speedometer 3.0 is now available. Speedometer has long been Google's preferred benchmark, previously noting how...

Elk is a good example of a mastodon client that has not the most functionality but is just very nice to use. Easy, fast, small.
#Elk

Elk
A Mastodon web client made with 🧡. Elk has 3 repositories available. Follow their code on GitHub.

pretty cool, v1.0 unit tests succeed with a v2.0 3/5 threshold configuration, and the best! very few changes/fixes were necessary: https://github.com/stef/pwdsphinx/commit/2863d6aa2e0dcf5f9849621d756446bf7ec2d205

[enh] all unit tests pass · stef/pwdsphinx@2863d6a
python bindings for libsphinx, a reference client/server and a native backend for web-extensions for Sphinx-based password storage - [enh] all unit tests pass · stef/pwdsphinx@2863d6a

This https://arxiv.org/abs/2402.11994 has been replaced.
initial toot: https://mastoxiv.page/@arXiv_mat…

Rotation invariant webs for three row flamingo Specht modules
We introduce a new rotation-invariant web basis for a family of Specht modules $S^{(d^3, 1^{n-3d})}$, indexed by normal plabic graphs satisfying a degree condition and resembling $A_2$ webs. We show that the $\mathfrak{S}_n$ action on our basis can be understood combinatorially via a set of skein relations. From this basis, we obtain a cyclic sieving result for a $q$-analog of the hook length formula for $λ$. Our construction extends the jellyfish invariants of Fraser, Patrias, Pechenik, and S…

Sorry, but the whole “We’ll make our own browser! With Blackjack & hookers!” crowd feels an awful lot like the Web 3 “DAOs are the Future”, and, well, guess how that went.
Helping write code doesn’t make Firefox rich. It makes the browser better and frees up folk to work on the backlog. Plus management can’t dictate what you work on.
Grab a bug or two. It’ll be just like working on a public fork, because the code is public, and you can fork it.

#PhanpySocial changelog ✨
🌪️ Keyword filters UI
📝 Allow ‘Lists’ in Shortcuts (except multi-column view)
🖋️ Edit Profile (only name, bio & extra fields)
🐛 Bug fixes
For upcoming Mastodon v4.3 :
🪣 Filtered notifications

Add notification policies and notification requests in web UI by Gargron · Pull Request #29433 · mastodon/mastodon
Follow-up to #29366 Fixes MAS-39 Peek.2024-02-28.09-16.mp4

Officially ditched VS Code for Brackets (https://brackets.io). I like it a ton better and it's not Microsoft. Win win.
Switched to LibreOffice (https://lib…

A modern, open source code editor that understands web design
Brackets is a lightweight, yet powerful, modern text editor. We blend visual tools into the editor so you get the right amount of help when you want it. With new features and extensions released every 3-4 weeks, it's like getting presents all year long.

Improving Web Content Delivery with HTTP/3 and Non-Incremental EPS
Abhinav Gupta, Radim Bartos
https://arxiv.org/abs/2404.13460 https://

Improving Web Content Delivery with HTTP/3 and Non-Incremental EPS
HTTP/3 marks a significant advancement in protocol development, utilizing QUIC as its underlying transport layer to exploit multiplexing capabilities and minimize head-of-line blocking. The introduction of the Extensible Prioritization Scheme (EPS) offers a signaling mechanism for controlling the order of resource delivery. In this study, we propose mappings from Chromium priority hints to EPS urgency levels with the goal of enhancing the key web performance metrics. The mappings are evaluated …

Knapp 3,3 Milliarden Euro will #Microsoft in den kommenden zwei Jahren in #Deutschland investieren, um seine Rechenzentrumskapazitäten für Anwendungen im Bereich künstlicher Intelligenz #KI und beim

Fortbildung und Rechenzentren für KI: Microsoft verspricht Milliardeninvestitionen in Deutschland
Cloudkapazitäten und ein Weiterbildungsprogramm für bis zu 1,2 Millionen Menschen: Microsoft hat Bundeskanzler Scholz versprochen, mehr als drei Milliarden Euro in Deutschlands KI-Zukunft zu investieren.

Microsoft launches Copilot Pro worldwide with a one-month free trial; Pro subscribers can use the AI assistant in Office web apps without a Microsoft 365 sub (Tom Warren/The Verge)
https://www.theverge.com/2024/3/14/24100993/microsoft-copilot-pr…

Microsoft launches Copilot Pro worldwide with a one-month free trial
Microsoft is expanding its AI-powered Copilot Pro subscription to 222 countries. Subscribers will also now be able to use Copilot inside Office web apps.

Over the next 15 years we will spend $3 Trillion on highway expansions and maintenance in the United States
With 2.5% of that funding Amtrak will deliver their vision of adding 39 new routes and enhancing 25 routes!
Imagine what Amtrak could do with 5% of the highway budget?

Holi queridos. En la web de Xiaomi tenéis de oferta el Redlmi Note 12 por 99€, en su versión 4g.
No tiene 5g, pero monta una pantalla amoled de 120hz, tiene doble sim, jack de 3'5, NFC, trae funda y cargador de 33W.
Y tiene disponibles custom rom para huir de miui.

Visualizing, Analyzing and Constructing L-System from Arborized 3D Model Using a Web Application
Nick van Nielen, Fons Verbeek, Lu Cao
https://arxiv.org/abs/2403.06638

Visualizing, Analyzing and Constructing L-System from Arborized 3D Model Using a Web Application
In biology, arborized structures are well represented and typically complex for visualization and analysis. In order to have a profound understanding of the topology of arborized 3D biological model, higher level abstraction is needed. We aim at constructing an abstraction of arborized 3D biological model to an L-system that provides a generalized formalization in a grammar to represent complex structures. The focus of this paper is to combine 3D visualization, analysis and L-system abstraction…

chainBoost: A Secure Performance Booster for Blockchain-based Resource Markets
Zahra Motaqy, Mohamed E. Najd, Ghada Almashaqbeh
https://arxiv.org/abs/2402.16095

chainBoost: A Secure Performance Booster for Blockchain-based Resource Markets
Cryptocurrencies and blockchain technology provide an innovative model for reshaping digital services. Driven by the movement toward Web 3.0, recent systems started to provide distributed services, such as computation outsourcing or file storage, on top of the currency exchange medium. By allowing anyone to join and collect cryptocurrency payments for serving others, these systems create decentralized markets for trading digital resources. Yet, there is still a big gap between the promise of th…

This https://arxiv.org/abs/2306.02371 has been replaced.
link: https://scholar.google.com/scholar?q=a

I^3 Retriever: Incorporating Implicit Interaction in Pre-trained Language Models for Passage Retrieval
Passage retrieval is a fundamental task in many information systems, such as web search and question answering, where both efficiency and effectiveness are critical concerns. In recent years, neural retrievers based on pre-trained language models (PLM), such as dual-encoders, have achieved huge success. Yet, studies have found that the performance of dual-encoders are often limited due to the neglecting of the interaction information between queries and candidate passages. Therefore, various in…

Elk is a good example of a mastodon client that has not the most functionality but is just very nice to use. Easy, fast, small.
#Elk

Elk
A Mastodon web client made with 🧡. Elk has 3 repositories available. Follow their code on GitHub.

pretty cool, v1.0 unit tests succeed with a v2.0 3/5 threshold configuration, and the best! very few changes/fixes were necessary: https://github.com/stef/pwdsphinx/commit/2863d6aa2e0dcf5f9849621d756446bf7ec2d205

[enh] all unit tests pass · stef/pwdsphinx@2863d6a
python bindings for libsphinx, a reference client/server and a native backend for web-extensions for Sphinx-based password storage - [enh] all unit tests pass · stef/pwdsphinx@2863d6a

My current take on the #xz situation, not having read the actual source backdoor commits yet (thanks a lot #Github for hiding the evidence at this point...) besides reading what others have written about it (cf. #rustlang for such central library dependencies would maybe (really big maybe) have made it a bit harder to push a backdoor like this because - if and only if the safety features are used idiomatically in an open source project - reasonably looking code is (a bit?) more limited in the sneaky behavior it could include. We should still very much use those languages over C/C for infrastructure code because the much larger class of unintentional bugs is significantly mitigated, but I believe (without data to back it up) that even such "bugdoor" type changes will be harder to execute. However, given the sophistication in this case, it may not have helped at all. The attacker(s) have shown to be clever enough.
6. Sandboxing library code may have helped - as the attacker(s) explicitly disabled e.g. landlock, that might already have had some impact. We should create better tooling to make it much easier to link to infrastructure libraries in a sandboxed way (although that will have performance implications in many cases).
7. Automatic reproducible builds verification would have mitigated this particular vector of backdoor distribution, and the Debian team seems to be using the reproducibility advances of the last decade to verify/rebuild the build servers. We should build library and infrastructure code in a fully reproducible manner *and* automatically verify it, e.g. with added transparency logs for both source and binary artefacts. In general, it does however not prevent this kind of supply chain attack that directly targets source code at the "leaf" projects in Git commits.
8. Verifying the real-life identity of contributors to open source projects is hard and a difficult trade-off. Something similar to the #Debian #OpenPGP #web-of-trust would potentially have mitigated this style of attack somewhat, but with a different trade-off. We might have to think much harder about trust in individual accounts, and for some projects requiring a link to a real-world country-issued ID document may be the right balance (for others it wouldn't work). That is neither an easy nor a quick path, though. Also note that sophisticated nation state attackers will probably not have a problem procuring "good" fake IDs. It might still raise the bar, though.
9. What happened here seems clearly criminal - at least under my IANAL naive understanding of EU criminal law. There was clear intent to cause harm, and that makes the specific method less important. The legal system should also be able to help in mitigating supply chain attacks; not in preventing them, but in making them more costly if attackers can be tracked down (this is difficult in itself, see point 8) and face risk of punishment after the fact.
H/T @… @… @… @… @…

昨日は (今日もだけど) 体調が悪くて、午後帰宅してそのままベッドで横になった。そしたら朝からつけっ放しだった NHKラジオ第1 で阪神 - 中日戦を中継してて。試合は 7回表。戦況をなかなか言わないので Web で速報を見たら、10 - 2 で中日が負けてる！
そこから更に点を取られて、中日ファンのカフェのご主人の SNS を恐る恐る除いたら「なんだこりゃ？」と一行。...胸が痛い。最終的に 15 - 2 で阪神が圧勝。そして今日も 3 - 0 で阪神の勝ち。...で、夕方ちょっと体調が持ち直したので、中日ファンのご主人のカフェへお邪魔して話が盛り上がる。
野球の話しで盛り上がっている自分に我乍ら驚き。そしてラジオの野球中継も、解説は今中慎二だったけど本当に面白かった。阪神の岡田監督も素晴らしい。ちょっとしたチャンスを必ず得点に繋げる感じ。...これから野球ファンになるかも？

This https://arxiv.org/abs/2311.00012 has been replaced.
initial toot: https://mastoxiv.page/@arXiv_qbi…

scX: A user-friendly tool for scRNA-seq exploration
Single-cell RNA sequencing (scRNA-seq) has transformed our ability to explore biological systems. Nevertheless, proficient expertise is essential for handling and interpreting the data. In this paper, we present scX, an R package built on the Shiny framework that streamlines the analysis, exploration, and visualization of single-cell experiments. With an interactive graphic interface, implemented as a web application, scX provides easy access to key scRNAseq analyses, including marker identific…

👀 Looks like the new (upcoming) mute confirmation dialog design on Mastodon also changed the mute durations from "5 mins, 30 mins, 1 hour, 6 hours, 1 day, 3 days, 7 days" to "24 hours, 7 days, 30 days" https://git…

Change mute, block and domain block confirmations in web UI by Gargron · Pull Request #29576 · mastodon/mastodon
Peek.2024-03-13.20-27.mp4

Teleoscope: Exploring Themes in Large Document Sets By Example
Paul Bucci, Leo Foord-Kelcey, Patrick Yung Kang Lee, Alamjeet Singh, Ivan Beschastnikh
https://arxiv.org/abs/2402.06124

Teleoscope: Exploring Themes in Large Document Sets By Example
Qualitative thematic exploration of data by hand does not scale and researchers create and update a personalized point of view as they explore data. As a result, machine learning (ML) approaches that might help with exploration are challenging to apply. We developed Teleoscope, a web-based system that supports interactive exploration of large corpora (100K-1M) of short documents (1-3 paragraphs). Teleoscope provides visual programming workflows that have semantic and computational meaning; help…

Algorithmic Misjudgement in Google Search Results: Evidence from Auditing the US Online Electoral Information Environment
Brooke Perreault, Johanna Lee, Ropafadzo Shava, Eni Mustafaraj
https://arxiv.org/abs/2404.04684

Algorithmic Misjudgement in Google Search Results: Evidence from Auditing the US Online Electoral Information Environment
Google Search is an important way that people seek information about politics, and Google states that it is ``committed to providing timely and authoritative information on Google Search to help voters understand, navigate, and participate in democratic processes''. In this paper, we interrogate the extent to which government-maintained web domains are represented in the online environment of electoral information of the 2022 US midterm elections, as captured through Google Search results in 3.…

Looking at the beautiful standard for "normal-gauge traction vehicles, classification and marking", I'd like to point out one more historical curiosity.
Electric multiple units are classified as designed "for local and suburban traffic, on lines with low and high platforms" (EN) and "for suburban traffic, on lines with high platforms" (EW) [1].
Let's note that the standard dates back to a time when high-floor railcars were a norm. According to Wikipedia, EN57's "floor is 1153 mm above top of rail" [2]. For these EMUs, the difference between "high-platform" and "low-platform" units boiled down to the latter having stairs leading down. So both kinds of units could be used on high-platform lines.
Most of the modern EMUs are low-floor, and are not suitable for high platforms. Therefore, they technically do not meet the definition for "EN" marking. For example, the Newag Impuls trains ordered by SKM Trójmiasto (the urban train operator) had their train floor height specially raised to 960 mm ATR [3].
[1] #rail

Meta rolls out real-time AI image generation, which changes the image as the user types a prompt, in beta on WhatsApp and Meta AI on the web in the US (Emma Roth/The Verge)
https://www.theverge.com/2024/4/18/24134079/meta-real-time-ai-image-…

Meta is adding real-time AI image generation to WhatsApp
Meta is rolling out real-time image generation in beta for WhatsApp users in the US. This lets users watch Meta’s Llama 3 create an image as they type a prompt.

Improving HTTP/3 Quality of Experience with EPS
Abhinav Gupta, Radim Bartos
https://arxiv.org/abs/2403.04074 https://arxiv.org/pdf/24…

Improving HTTP/3 Quality of Experience with EPS
With the introduction of QUIC, a modern transport-layer network protocol, HTTP/3 leverages its benefits to enhance web content delivery. This paper proposes a mechanism based on the recently standardized Extensible Prioritization Scheme (EPS) for weighted incremental web content delivery. The mechanism augments the sequential scheduling to provide incremental and weighted incremental resource delivery. An existing HTTP/3 implementation was extended with the proposed mechanism and tested with th…

My current take on the #xz situation, not having read the actual source backdoor commits yet (thanks a lot #Github for hiding the evidence at this point...) besides reading what others have written about it (cf. #rustlang for such central library dependencies would maybe (really big maybe) have made it a bit harder to push a backdoor like this because - if and only if the safety features are used idiomatically in an open source project - reasonably looking code is (a bit?) more limited in the sneaky behavior it could include. We should still very much use those languages over C/C for infrastructure code because the much larger class of unintentional bugs is significantly mitigated, but I believe (without data to back it up) that even such "bugdoor" type changes will be harder to execute. However, given the sophistication in this case, it may not have helped at all. The attacker(s) have shown to be clever enough.
6. Sandboxing library code may have helped - as the attacker(s) explicitly disabled e.g. landlock, that might already have had some impact. We should create better tooling to make it much easier to link to infrastructure libraries in a sandboxed way (although that will have performance implications in many cases).
7. Automatic reproducible builds verification would have mitigated this particular vector of backdoor distribution, and the Debian team seems to be using the reproducibility advances of the last decade to verify/rebuild the build servers. We should build library and infrastructure code in a fully reproducible manner *and* automatically verify it, e.g. with added transparency logs for both source and binary artefacts. In general, it does however not prevent this kind of supply chain attack that directly targets source code at the "leaf" projects in Git commits.
8. Verifying the real-life identity of contributors to open source projects is hard and a difficult trade-off. Something similar to the #Debian #OpenPGP #web-of-trust would potentially have mitigated this style of attack somewhat, but with a different trade-off. We might have to think much harder about trust in individual accounts, and for some projects requiring a link to a real-world country-issued ID document may be the right balance (for others it wouldn't work). That is neither an easy nor a quick path, though. Also note that sophisticated nation state attackers will probably not have a problem procuring "good" fake IDs. It might still raise the bar, though.
9. What happened here seems clearly criminal - at least under my IANAL naive understanding of EU criminal law. There was clear intent to cause harm, and that makes the specific method less important. The legal system should also be able to help in mitigating supply chain attacks; not in preventing them, but in making them more costly if attackers can be tracked down (this is difficult in itself, see point 8) and face risk of punishment after the fact.
H/T @… @… @… @… @…

昨日は (今日もだけど) 体調が悪くて、午後帰宅してそのままベッドで横になった。そしたら朝からつけっ放しだった NHKラジオ第1 で阪神 - 中日戦を中継してて。試合は 7回表。戦況をなかなか言わないので Web で速報を見たら、10 - 2 で中日が負けてる！
そこから更に点を取られて、中日ファンのカフェのご主人の SNS を恐る恐る除いたら「なんだこりゃ？」と一行。...胸が痛い。最終的に 15 - 2 で阪神が圧勝。そして今日も 3 - 0 で阪神の勝ち。...で、夕方ちょっと体調が持ち直したので、中日ファンのご主人のカフェへお邪魔して話が盛り上がる。
野球の話しで盛り上がっている自分に我乍ら驚き。そしてラジオの野球中継も、解説は今中慎二だったけど本当に面白かった。阪神の岡田監督も素晴らしい。ちょっとしたチャンスを必ず得点に繋げる感じ。...これから野球ファンになるかも？

昨日は (今日もだけど) 体調が悪くて、午後帰宅してそのままベッドで横になった。そしたら朝からつけっ放しだった NHKラジオ第1 で阪神 - 中日戦を中継してて。試合は 7回表。戦況をなかなか言わないので Web で速報を見たら、10 - 2 で中日が負けてる！
そこから更に点を取られて、中日ファンのカフェのご主人の SNS を恐る恐る除いたら「なんだこりゃ？」と一行。...胸が痛い。最終的に 15 - 2 で阪神が圧勝。そして今日も 3 - 0 で阪神の勝ち。...で、夕方ちょっと体調が持ち直したので、中日ファンのご主人のカフェへお邪魔して話が盛り上がる。
野球の話しで盛り上がっている自分に我乍ら驚き。そしてラジオの野球中継も、解説は今中慎二だったけど本当に面白かった。阪神の岡田監督も素晴らしい。ちょっとしたチャンスを必ず得点に繋げる感じ。...これから野球ファンになるかも？

Credential Control Balance: A Universal Blockchain Account Model Abstract From Bank to Bitcoin, Ethereum External Owned Account and Account Abstraction
Huifeng Jiao, Dr. Nathapon Udomlertsakul, Dr. Anukul Tamprasirt
https://arxiv.org/abs/2402.10616

Credential Control Balance: A Universal Blockchain Account Model Abstract From Bank to Bitcoin, Ethereum External Owned Account and Account Abstraction
Blockchain market value peaked at $3 trillion, fell to $1 trillion, then recovered to $1.5 trillion and is rising again. Blockchain accounts secure most on-chain assets in this huge market (Web-12). This paper initiates a universal blockchain account model from a comprehensive review of blockchain account development, encompassing both academic and industry perspectives. This paper uses a model analysis method to analysis the account progress and create high level new account model. And it uses…

Credential Control Balance: A Universal Blockchain Account Model Abstract From Bank to Bitcoin, Ethereum External Owned Account and Account Abstraction
Huifeng Jiao, Dr. Nathapon Udomlertsakul, Dr. Anukul Tamprasirt
https://arxiv.org/abs/2402.10616

Credential Control Balance: A Universal Blockchain Account Model Abstract From Bank to Bitcoin, Ethereum External Owned Account and Account Abstraction
Blockchain market value peaked at $3 trillion, fell to $1 trillion, then recovered to $1.5 trillion and is rising again. Blockchain accounts secure most on-chain assets in this huge market (Web-12). This paper initiates a universal blockchain account model from a comprehensive review of blockchain account development, encompassing both academic and industry perspectives. This paper uses a model analysis method to analysis the account progress and create high level new account model. And it uses…