Expat 2.8.2 released, fixes 13 vulnerabilitiesblog.hartwork.org3 points·by spyc·vor 18 Tagen·0 comments
Expat 2.8.1 released, CVE-2026-45186 and CVSS unreliabilityblog.hartwork.org4 points·by spyc·vor 2 Monaten·0 comments
Expat 2.8.0 released, includes security fixesblog.hartwork.org3 points·by spyc·vor 3 Monaten·0 comments
Expat 2.7.5 released, includes security fixesblog.hartwork.org7 points·by spyc·vor 4 Monaten·0 comments
Expat 2.7.4 released, includes security fixesblog.hartwork.org1 points·by spyc·vor 5 Monaten·0 comments
Python 3.14 started enabling color for argparse by defaultgithub.com2 points·by spyc·vor 6 Monaten·0 comments
sandwine 5.0.0 adds support for Wayland and PipeWiregithub.com1 points·by spyc·vor 8 Monaten·0 comments
Reconsider W3C Recommendation status of XSLT 2.0 and XSLT 3.0github.com11 points·by spyc·vor 9 Monaten·1 comments
Expat 2.7.3 released, includes security fixesblog.hartwork.org2 points·by spyc·vor 10 Monaten·0 comments
Expat 2.7.2 released, includes security fixesblog.hartwork.org1 points·by spyc·vor 10 Monaten·0 comments
spyc·vor 28 Tagen·discussBoth libexpat ("Expat") and uriparser are following the curl security vacation and will not accept new vulnerability reports before 2026-08-01, starting today.[1] https://github.com/libexpat/libexpat/issues/1277[2] https://github.com/uriparser/uriparser/issues/323
spyc·vor 7 Monaten·discussThe current implementation breaks semantics of functions with tail recursion from within loops: https://github.com/raaidrt/tacopy/issues/1
spyc·vor 9 Monaten·discussPotentially the movie itself is also or more of interest. The related thread is: https://news.ycombinator.com/item?id=45056377
spyc·letztes Jahr·discussLost trust for sure. Who knows if Redis would be AGPL now if Valkey did not exist.
[1] https://github.com/libexpat/libexpat/issues/1277
[2] https://github.com/uriparser/uriparser/issues/323