Tootfinder

Don't miss today's Metacurity for the most critical infosec developments you should know, including
--A bona fide self-replicating worm has infected 187 npm packages,
--BreachForums founder hit with new three-year sentence,
--Coinbase beach suspect accused of participating in $500k bribery scheme,
--DHS intelligence arm exposed sensitive database,
--MSFT seized 338 sites linked to Raccoon0365 stealer,
--DeepSeek is biased against Falun Gong and oth…

A self-replicating worm has infected 187 npm packages
BreachForums founder hit with new three-year sentence, Coinbase breach suspect accused of participating in $500k+ bribery scheme, DHS intelligence arm exposed sensitive database, MSFT seized 338 sites linked to Raccoon0365 stealer, DeepSeek is biased against Falun Gong and others, much more

A template for data analysis projects structured as R packages (or not) #rstats #datascience

GitHub - Pakillo/template: A template for data analysis projects structured as R packages (or not)
A template for data analysis projects structured as R packages (or not) - Pakillo/template

python_dependency: Python Dependency Network
Python's package dependency networks. Nodes in the network are Python's packages registered to PyPI and edges are dependencies among packages.
This network has 58743 nodes and 108399 edges.
Tags: Technological, Software, Unweighted
https://networks.sk…

Nobody uploaded https://f-droid.org/en/packages/biz.binarysolutions.healthybatterycharging/ to Google Play so I guess I'm not gonna take this app with me to Play.
FDroid, stop updating when I've set you not to. Also stop being "hurt" y…

Healthy Battery Charging | F-Droid - Free and Open Source Android App Repository
Prolong the life of your battery by keeping it charged between 40% and 80%

Researching ISO 8601 and RFC 3339 date parsing and found this excellent resource: https://ijmacd.github.io/rfc3339-iso8601/
Tried a few packages to solve this problem (dayjs, date-fns, luxon, moment). Unfortunately they are either not accurate enough or very large 😭

Haha, Gmail has gotten dumber
I ordered a pizza (for takeout !)
and Gmail offered to "track your packages"

A file I came across on my iPad. No idea where it came from. #randomThoughts
Thoughts to ponder:
Why isn’t the number 11 pronounced onety-one?
If 4 out of 5 people SUFFER from diarrhea, does that mean that one out of five enjoys it?
Why do croutons come in airtight packages? Aren't they just stale bread to begin with?
If a pig loses its voice, is it disgrunt…

Are you interested in how dependency-heavy your (or another) package is and why? #rstats

GitHub - jokergoo/pkgndep: Analyzing Dependency Heaviness of R Packages
Analyzing Dependency Heaviness of R Packages. Contribute to jokergoo/pkgndep development by creating an account on GitHub.

Go is working on a better JSON API:
https://go.dev/blog/jsonv2-exp

A new experimental Go API for JSON - The Go Programming Language
Go 1.25 introduces experimental support for encoding/json/jsontext and encoding/json/v2 packages.

Using fonts in R graphics can be tricky at times. {showtext} aims to make it easier: #rstats