@ErikJonker@mastodon.socialThe impact from smaller opensource LLMs like Llama3-8B and Phi-3 could be large. They are not necessarily the best and smartest models but can be easily integrated in software on every device and platform. Also they can be finetuned, improved with RAG to function better for specific tasks and in specific contexts. Exciting times ahead.
#opensource
@simon_brooke@mastodon.scotNow contributed to five pull requests on #OpenSource projects in 24 hours (four new ones, one updated one). On a roll, here!
@toothFAIRy@scholar.socialRogier highlighting that dedicating time on #OpenSource software is easier to do as a white male, with picture from the blog here; #NRSD2024
@mgorny@social.treehouse.systemsThings random software companies would happily pay for: sending random #OpenSource developers to pointless conferences. Spending absurd amounts of money on travel, accommodations and perhaps even food there.
Things random companies would rather not do: spending a small part of that money to give these developers half a living wage, so they wouldn't have to find other income and/or keep living at the edge of bankruptcy.
After all, even then they will continue doing a good job, for free, for users' sake.
#AntiCapitalism #Gentoo
@michabbb@social.vivaldi.netLando
#Automate your developer workflow and share it with your team.
It's a #free, #opensource,
@toothFAIRy@scholar.socialA question from the audience at#NRSD2024 is whether it should be faculty working on #OpenSource or not. Rogier is highlighting how Faculty is taken more seriously and that permanent contracts are better to reward people in these roles. Interesting discussion to have with different #TIR roles popping up - should these all be faculty in that case? This does force some management roles onto the person as well, which may not be ideal for specialists...
@mgorny@social.treehouse.systemsThings random software companies would happily pay for: sending random #OpenSource developers to pointless conferences. Spending absurd amounts of money on travel, accommodations and perhaps even food there.
Things random companies would rather not do: spending a small part of that money to give these developers half a living wage, so they wouldn't have to find other income and/or keep living at the edge of bankruptcy.
After all, even then they will continue doing a good job, for free, for users' sake.
#AntiCapitalism #Gentoo
@frankel@mastodon.top#OpenSource is neither a #community nor a #democracy
@toothFAIRy@scholar.social#NRSD2024
Rogier is asking why we can't have #OpenSource faculty positions where the majority of the time is spent on software development. This could look like the new Comenius funding for teaching faculty (who are also still trying to figure out how this works in practice, but there is at least a start :)
#ResearchAssessment
@unixviking@social.linux.pizzaAnd in the end I'm still a Red Hat guy... despite the mess that RH (actually: IBM) did with CentOS last year and SuSE did exactly the right thing as a result, which also makes it more likeable. But I've dealt with a lot more RHEL in my life than others, and in the end it's also a nostalgic decision. And habit.
#linux
@thomasrenkert@hcommons.socialMan konnte es leicht überlesen: die #KI -Ära ist in die nächste Phase eingetreten. Diese starken (teilw.) #opensource Modelle sind nun verfügbar:
🦙 #Lama3 (seit 45 Min.): llama.meta.com/llama3/
@gedankenstuecke@scholar.social«#OpenSource software: why it matters and how to get involved»
@…, Arielle Bennett & I wrote a short article on the topic for the blog of the Alan Turing Institute
https://www.turing.ac.uk/blog/open-source-software-why-it-matters-and-how-get-involved
@daksh@social.linux.pizzacan anyone name some #opensource platforms that use #fido2
@lexoyo@framapiaf.orgJe travaille sur un plugin #OpenSource GrapesJS pour avoir des notifications avancées dans les website builder #NoCode
J'ai besoin de commentaires sur l'UX
DEMO
@maxheadroom@hub.uckermark.socialdid an opensource alternative for #Redis emerge already after their license change? #OpenSource
@ErikJonker@mastodon.social
@unchartedworlds@scicomm.xyzpaying maintainers
Useful explainer from @…, inc a morsel of dry comedy:
"Don’t people do this work for the love of open source?
"In our experience, open source maintainers often start projects for non-monetary reasons... But... no maintainers started their project because of the love of ensuring it complies wth your company’s definition of enterprise secure software development practices for no pay for the rest of their lives."
#OpenSource #software #money
@nofollownoindex@deppenkessel.deIch guck mir gerade #Jellyfin an und bin bislang echt begeistert! #OpenSource
@bitbonk@mastodon.socialA short reminder for your convenience. #opensource #FOSS
(Just saw this at #NDCOslo in a talk by @…
@pmonks@sfba.socialWelp shit - looks like AI enshittification has come even to the lowly terminal. #FML #AI #Enshittification #OpenSource
@sjn@chaos.socialOof. This article offers common Bad Advice about #OpenSource!
https://www.techradar.com/pro/stop-blaming-maintainers-for-open-source-risks
@linux_mclinuxface@fosstodon.orgSo @… spent 443 characters in describing (and apologizing for) the license of BTstack when it could have said "BTstack is not #OpenSource".
I typically like/trust what @…
@mgorny@pol.socialSzczerze mówiąc, najgorszym skutkiem dziury xz/sshd jest wyniszczenie zaufania w projektach #OpenSource.
No więc mamy kogoś nowego, kto aktywnie wrzuca propozycje zmian na przeglad. Nie przyglądałem się bardzo dokładnie, ale wygląda to na dobrą robotę. Wszystko ładnie opisane tak, by ułatwić przegląd. Wszystko to, czego byśmy chcieli. Ale co, jeśli to jest złoczyńca, który stara się szybko z…
@frankel@mastodon.top
@McPringle@fosstodon.orgToday is Thursday. The first Thirsday of June. Do you remember what that means? Yes, it's @… time in #Lucerne! As usual, we'll meet at 6 PM to work on #OpenSource
@robert@flownative.socialI love the fact that the emoji most used as a reaction in the Neos community Slack is a heart. ❤️ 💖 💙
#neoscms #OpenSource #community
@pimterry@toot.cafeAnother day, another PR to the minutiae of Node.js's internal network stream handling: #opensource
@zachleat@zachleat.comHad someone open two identical issues on GitHub. When I closed *one* of them as a duplicate, they replied “Thanks for nothing, Zach”
#OpenSource
@adrianco@mastodon.social#NotInventedHere is rerunning old cartoons on startup life, and I had to share this one… https://notinventedhe.re/on/2011-10-26
@Speckdaene@nrw.social#dnip xz oder: Wie die #OpenSource-Community an Ostern die Welt gerettet hat. Von Marcel Waldvogel https://dnip.ch/202…
@michabbb@social.vivaldi.netTogether MoA — collective intelligence of #opensource #models pushing the frontier of #LLM capabilities
@davidoclubb@toot.walesWoohoo! Looks fresh and can't wait to dive in :)
#Fedora
#KDE
Huge thanks to all the devs, volunteers and the #OpenSource goodness that goes into all our favourite distros 😍
@sieben_grafik@norden.socialUnbedingt testen wenn es verfügbar ist:
@… #Firefox bringt ein lokales #OpenSource #KI
@acka47@openbiblio.socialHat jemand Empfehlungen für Anbieter, die Technik und Support des Livestreamings einer mehrtägigen Online-Konferenz übernehmen können, vorzugsweise mit FOSS? #livestreaming #opensource #foss…
@bitbonk@mastodon.socialfree as in beer
free as in speech
free as in weekend
#opensource #foss
@njamster@mastodon.gamedev.placeFriendly reminder 👼
#Mastodon #FediVerse #OpenSource
@unixviking@social.linux.pizzaLet's get it on! Project Fedora 40 Clean install begins
#fedora #fedora40 #linux #opensource
@cwensel@fosstodon.orgFor me, there has always been a set of analogies between the evolutions of the music industry and (open) software industry to learn from and reason about.
Below Perens applies a music industry solution as a possible solution to #OpenSource sustainability.
@rasos@fairmove.netGerade noch rechtzeitig eine Stellungnahme verfasst zum Entwurf des NIS-2 Gesetzes für Österreich und weshalb es #opensource Lösungen in der öffentlichen Verwaltung bedrohen würde https://rolan…
@castarco@hachyderm.ioBe amazed/horrified by how many relevant #opensource projects are maintained by just one person.
Practical illustrated example:
https://npmgraph.js.org/?q…
@ralen@social.linux.pizzaplaying pokemon game on my laptop with #mGBA - #opensource game boy (advanced, color) emulator. it just works, have nothing to say. btw do you know about any app that can turn my #android phone…
@msfjarvis@androiddev.socialReadYou might be the best blend of functionality and pleasant UI in an #OpenSource #RSS reader that I've experienced on #Android. The fact that it's built with
@tgpo@social.linux.pizzaIt was quite unexpected (in a good way) but I'm overjoyed to say I've joined the #Jellyfin web team!
#opensource #oss
@sjn@chaos.socialImagine a new type of intelligent feline called "Ayber, the Resilience Cat" staring you in the eyes, quietly purring...
"I'm waiting for you, #OpenSource developer; How do *you* want to play with me? I'll be a part of your life until the end of your career, but how we work and play together is decided *MEOW*" 😼
@thomasrenkert@hcommons.socialDatabrick's #opensource #DBRX model seems very interesting indeed.
https://huggingface.co/spaces/databric
@fooflington@infosec.exchange"Rewild the internet"? Well that caught my eye both with a #DigitalSovereignty and a #OpenSource /#TechDiversity pique!
This comes with a long article warning but is well worth it for the thought provoking review of the current internet ecosystem plantations and how they need rewilding to ensure the internet's longevity…
https://www.noemamag.com/we-need-to-rewild-the-internet/
It goes back to the original principals on which the internet was engineered and then looks at the skyscrapers we've constructed over it.
I struggle to argue against any of the points they make and wonder if it's the sort of narrative we should be lobbying [non-tech-bro] industry leaders and government policy makers with.
(by @… & @… )
@linux_mclinuxface@fosstodon.orgFirst, I love this project and want to build it.
However, I'm going to go 'Old Man Yells at Cloud' on calling it open source and how the maker projects and #3Dprinting may be unintentionally damaging the general understanding of #OpenSource.
a) the model is CC BY-NC-SA 4.0…
@FerdiZ@mastodon.cloudThe mistery of 'Jia Tan', the mastermind behind the XZ-Utils backdoor supply-chain hack [WIRED News, April 2024]
https://www.wired.com/story/jia-tan-xz-backdoor/?ref=platformer.news
@michabbb@social.vivaldi.netDevDojo #Auth is an #opensource authentication #package that adds drop-in ready authentication pages into your
@patrick_townsend@infosec.exchangeOpen source sustainability questions
As a user, sponsor and supporter of various open source projects, I find that I am again thinking about the financial sustainability of these projects. The benefits of projects like Mastodon are undeniable and a joy to many people, myself included. But have we found a sustainable financial model that supports on-going development and longevity of open source projects? I would be interested in other people's thoughts about this.
Linux seems to have found a sustainable model through the Linux Foundation. Canonical provides commercial level support for Ubuntu Linux. I suspect they are sustained by paid optional technical support agreements. I know that OpenSSL struggled for some time before finding some corporate sponsors and they also do consulting projects.
However, I’ve watched a number of decent open source solutions gradually drift into the hands of commercial operators or become more limited through licensing. Java, MySQL, Vault and MongoDB initially come to mind. To me many current open source projects seem at risk for this.
I am interested in thoughts about open source sustainability, and examples that you might add to my limited list. I will summarize the results on this in a later post. Also, please feel free to share links to other sources that discuss this question.
I would appreciate a boost if you are so inclined.
#OpenSource #Mastodon #FOSS
@theDuesentrieb@social.linux.pizza#Scribus ist auch ein tolles Stück Software. Nicht so hübsch oder umfangreich wie proprietäre, aber gut genug für 90% aller Fälle.
(nur die Tabellenformatierung ist ein Graus)
#FOSS
#OpenSource
@frankel@mastodon.topWhat's a lesser known #OpenSource #Java #project you think deserves more publicity?
@mgorny@social.treehouse.systemsHonestly, the worst effect of the xz/sshd exploit is the evaporation of trust in #OpenSource.
There's this new prolific contributor. I haven't looked in great detail, but they're seemingly doing great work. All pull requests are nicely annotated as to ease review. Really, everything you could wish for. But what if it's a bad actor trying to quickly build trust?
Then this contributor kindly pings assignee a week after filing the PR. Well, nothing wrong with that. It makes sense. But then, what if it's a bad actor trying to pressure maintainers?
Or perhaps it's just a great, well-organized #Gentoo contributor.
@mgorny@pol.socialWzdych. Pod wpływem pewnego wątku na pewnej liście mailingowej, mam potrzebę napisania jeszcze czegoś, pesymistycznie, w temacie xz/sshd.
Co nie nastąpi? Długotrwała poprawa finansowania i wsparcia twórców #OpenSource. I przez "twórców", mam na myśli prawdziwych ludzi, którzy muszą za coś kupić jedzenie i zapłacić rachunki, a nie "projekty".
Co już się dzieje? Szuka…
@jaandrle@fosstodon.orgWhat Everyone Missed About The Linux Hack – Theo - t3․gg/YouTube – #zx
@linux_mclinuxface@fosstodon.org:sigh:
In the #3dPrinting world, #OpenSource is so misunderstood.
There was a video comparing the Sovol #SV08 (GPL3) to a Troodon kit. The creator concluded that one place the SV08 definitivel…
@msfjarvis@androiddev.socialReadYou might be the best blend of functionality and pleasant UI in an #OpenSource #RSS reader that I've experienced on #Android. The fact that it's built with
@ralen@social.linux.pizzajust tried piped.video: alternative #opensource #youtube website. it can use channels, groups and accounts from #libretube that i've already reviewed later. so, today ive completely re…
@sjn@chaos.socialWatching recordings of @…'s #Upstream conference, and I'm seeing lots of interesting #OpenSource
@unixviking@social.linux.pizza
@chris_hayes@fosstodon.orgI gotta say since switching to FOSS finance tool, Actual Budget, I've been really happy with the experience. They've struck a nice balance between minimal, but powerful.
https://github.com/actualbudget/actual
@michabbb@social.vivaldi.netRAGFlow is an #opensource #RAG (Retrieval-Augmented Generation) engine based on deep document understanding.
It offers a streamlined RAG workflow for businesses of any scale, combining LLM to provide truthful question-answering
@FerdiZ@mastodon.cloudThe mistery of 'Jia Tan', the mastermind behind the XZ-Utils backdoor supply-chain hack [WIRED News, April 2024]
https://www.wired.com/story/jia-tan-xz-backdoor/?ref=platformer.news
@patrick_townsend@infosec.exchangeOpen source sustainability questions
As a user, sponsor and supporter of various open source projects, I find that I am again thinking about the financial sustainability of these projects. The benefits of projects like Mastodon are undeniable and a joy to many people, myself included. But have we found a sustainable financial model that supports on-going development and longevity of open source projects? I would be interested in other people's thoughts about this.
Linux seems to have found a sustainable model through the Linux Foundation. Canonical provides commercial level support for Ubuntu Linux. I suspect they are sustained by paid optional technical support agreements. I know that OpenSSL struggled for some time before finding some corporate sponsors and they also do consulting projects.
However, I’ve watched a number of decent open source solutions gradually drift into the hands of commercial operators or become more limited through licensing. Java, MySQL, Vault and MongoDB initially come to mind. To me many current open source projects seem at risk for this.
I am interested in thoughts about open source sustainability, and examples that you might add to my limited list. I will summarize the results on this in a later post. Also, please feel free to share links to other sources that discuss this question.
I would appreciate a boost if you are so inclined.
#OpenSource #Mastodon #FOSS
@Mirk0dex@social.linux.pizza @frankel@mastodon.top
@schrht@social.linux.pizzaAn #introduction is in order, to be a good netizen. I'm schrht - behind that pseudonym is a comparatively average person from somewhere in Western Europe.
I'm still interested in computers, despite not having managed systems for years now; especially all things #opensource
@mgorny@social.treehouse.systemsSigh. A certain thread on a certain mailing list makes me want to make another pessimistic point wrt the xz/sshd hassle.
What ain't going to happen? Long-term increase of donations and support to #OpenSource developers. And by "developers", I mean actual people who need to buy food and pay the bills, not "projects".
What is definitely already happening? Blaming, bright ideas and demands for the developers already suffering from burnout.
#Gentoo
@ralen@social.linux.pizza#discord is currently a mainstream solution for communities (even for many #opensource) - i consider thats bad because i dont like its politics and tendentions. its nearest #foss competitor is …
@stefanmuelller@climatejustice.social#Datensicherheit #CyberSecurity #CyberAttack #Hackerangriff
Schritt 1: Keine #Microsoft Software mehr verwenden. #opensource
https://www.tagesschau.de/multimedia/video/schnell_informiert/video-1334246.html
@unixviking@social.linux.pizzaWell, it's done. I'm now running Fedora 40 Beta (with KDE) on my main computer, and openSuSE Tumbleweed on the ThinkPad. Both camps satisfied. 😎
#linux #unix #opensource
@mgorny@social.treehouse.systemsThere's another side to the "raccoon digging through dumpsters for free code" metaphor (#OpenSource (not to be confused with Free Software), they're not "sharing" or "contributing", or anything like that. They're just putting their dumpsters out, hoping that somebody else will take care of them, for free.
@michabbb@social.vivaldi.netJan is an #opensource #ChatGPT alternative that runs 100% offline on your computer.
Jan runs on PCs to multi-GPU clusters, it supports universal architectures:
Nvidia GPUs (fast)
Apple M-series (fast)
@fooflington@infosec.exchangeVery pleased to see that, following user pushback, #iTerm has wound back its inclusion of #AI helper functionality by moving the code out into a user-installable plugin.
#macos #opensource
@sergiofdezsaez@masto.es @ralen@social.linux.pizza#discord is currently a mainstream solution for communities (even for many #opensource) - i consider thats bad because i dont like its politics and tendentions. its nearest #foss competitor is …
@marcel@waldvogel.familyGibt es einen guten, aktuellen Artikel, der den Einfluss von Open Source auf die Gesamt-IT allgemeinverständlich beschreibt?
So was wie der Artikel, aber aktueller und tiefer?
#OpenSource #OSS #FOSS #FLOSS
https://www.welt.de/wirtschaft/webwelt/article114753788/Ohne-Open-Source-gaebe-es-kein-Internet.html
@thomasrenkert@hcommons.socialDas #KI Modell Command-R-Plus von #Cohere ist das 1. #opensource #LLM, das GPT-4 in einem Ranking überholt hat.…
@mgorny@social.treehouse.systemsNew #RustLang projects are popping up all over the place. Many of them quickly reach feature parity with their non-Rust predecessors, then beat them both in functionality and performance. Seeing all this, it's hard not to think of Rust as a language that makes rapid development and deployment possible, and that outperforms other programming languages.
While I won't argue that Rust has its advantages, that's not the real reason here. In my opinion, it's all about its popularity. All the cool kids use Rust nowadays, and cool kids are precisely the kind of people who have time and energy to develop stuff rapidly. Add to that corporations investing in the next boom, and delivering a full-time paid workforce and funding, the culture of code reuse (i.e. sharing lots of crates), and last but not least, the benefit of starting from scratch.
Old folk like us, who barely manage enough energy to keep things alive, can't compete with that. However, we have one advantage. We don't care about being cool anymore. We aren't going to pack our bags and run after the next shiny thing, whenever the next best thing since sliced bread gets invented.
#Gentoo #OpenSource
@mgorny@pol.socialJest jeszcze inna strona metafory "szopów, przekopujących się przez śmietniki, w poszukiwaniu darmowego kodu" (https://www.softwaremaxims.com/blog/not-a-supplier).
Kiedy firmy publikują swój własny kod jako
@ralen@social.linux.pizza#opensource #libretube app for #android is really great, but the missing feature to me is subscriptions importing from my actual
@michabbb@social.vivaldi.netEasily chunk complex documents the same way a human would.
Chunking documents is a challenging task that underpins any #RAG system. High quality results are critical to a sucessful #AI application, yet most #opensource
@mgorny@social.treehouse.systemsOne more thing about the xz/sshd backdoor, and the earlier sale of "Simple Mobile Tools".
A long time ago, I've been told an important rule of #security in IT: when threatened with violence, yield. The life and health of you and your family is more important than any #OpenSource project you may be working on. A lot of people will blame you, but the ones who matter will understand.
But what if it's the carrot and not the stick that you're getting? What if you're being offered money to "betray" your project? Should you resist, or can you yield?
Then, isn't there a stick to be expected at the other end? Won't it come upon you if you rejected the carrot? Isn't money merely the "civilized" way of washing your hands from the implied threat of violence?
Even more, what if you really need that money? What if you barely make ends meet, and rejecting the carrot becomes a stick in itself?
Well, I'm not saying that it's likely that I'll ever be in that situation with #Gentoo (as in having money offered; having no income I know too well), but I really wouldn't know what to do. And I'd understand anyone who accepted that money.
The bottom line is: if people treat #FreeSoftware developers as a free exploitable workforce, people shouldn't be surprised when the projects they rely on are sold or backdoored.
@michabbb@social.vivaldi.netWhat we know about the #xz Utils #backdoor that almost infected the world
On Friday, a developer rocked the world when he revealed a backdoor had been intentionally planted in xz Utils, an #opensource
@mgorny@social.treehouse.systems#Snappy once again broke ABI without changing SOVERSION, and trashed reverse dependencies.
Hey, what did you expect from a project that is "focused on maintaining a build configuration that allows us to test that the project works in a few supported configurations inside #Google"?
#Gentoo #OpenSource
@unixviking@social.linux.pizzaIt's not all about #linux #unix or #opensource - Evening walk with the unixdog
#vienna
@ralen@social.linux.pizza @unixviking@social.linux.pizzaCrazy idea: I switch to the fresh Fedora 40 Beta.
#linux #opensource #fedora #beta
@ralen@social.linux.pizza @michabbb@social.vivaldi.net#Valkey: The #OpenSource Alternative to #Redis Backed by #AWS,
@ralen@social.linux.pizzajust tested #opensource #nvk #linux drivers for #nvidia written in
@mgorny@social.treehouse.systemsWhat things should determine the official support status of software for a particular platform?
🤚 Standards compliance? No.
🤚 A large number of users? No.
🤚 A vibrant community providing first grade support? Hell no!
👉 Ability to afford a buildbot worker that fails most of the time? Yes, definitely!
#CPython #LLVM #OpenSource #Gentoo
@mgorny@social.treehouse.systemsWhat things should determine the official support status of software for a particular platform?
🤚 Standards compliance? No.
🤚 A large number of users? No.
🤚 A vibrant community providing first grade support? Hell no!
👉 Ability to afford a buildbot worker that fails most of the time? Yes, definitely!
#CPython #LLVM #OpenSource #Gentoo
@michabbb@social.vivaldi.net#RestAI is an AIaaS (#AI as a #Service) #opensource platform. Built on top of
@unixviking@social.linux.pizzaGLS - by FAR the shittiest parcel service in the whole world!!! 💩 😡 👊
#parcel #gls #linux #opensource
@ralen@social.linux.pizzawhat #opensource web #browser do you use on your #linux and why? i stick with #firefox: its…
@ralen@social.linux.pizzawhat #opensource web #browser do you use on your #linux and why? i stick with #firefox: its…
@mgorny@social.treehouse.systemsI suppose everyone and their grandmother is now using the xz/sshd exploit to further their own agenda, so I am going to take this opportunity to further mine as well.
1. #Autotools are a bad build system. If configure scripts are completely unreadable, there should be no surprise that people won't notice obfuscated malicious code in there, provided that everything else is obfuscated by design.
2. Static linking and vendoring is bad. Do you know why the prompt #security response was possible? Because we just had to revert to older liblzma. We didn't have to check, patch and re-release hundreds of projects. It wouldn't be this easy with #RustLang and cargo.
3. You can blame #OpenSource for being underfunded and open to abuse in core system packages. However, no IT project can be resilient to a sufficiently powerful bad actor, and that it happened to xz is just an incident. Corporate projects aren't resilient to it, neither is proprietary, closed-source software.
So, embrace #Meson, embrace dynamic linking, embrace distribution packaging and donate to open source developers.
#Gentoo
@michabbb@social.vivaldi.net#UI #library for #Design Engineers
20 free and #opensource animated
