HackerTrans
TopNewTrendsCommentsPastAskShowJobs

spyc

no profile record

Submissions

Expat 2.8.2 released, fixes 13 vulnerabilities

blog.hartwork.org
3 points·by spyc·19 hari yang lalu·0 comments

Steven, please fix the 1% loss/gain graph

blog.hartwork.org
3 points·by spyc·2 bulan yang lalu·1 comments

Expat 2.8.1 released, CVE-2026-45186 and CVSS unreliability

blog.hartwork.org
4 points·by spyc·2 bulan yang lalu·0 comments

Expat 2.8.0 released, includes security fixes

blog.hartwork.org
3 points·by spyc·3 bulan yang lalu·0 comments

Expat 2.7.5 released, includes security fixes

blog.hartwork.org
7 points·by spyc·4 bulan yang lalu·0 comments

Expat 2.7.4 released, includes security fixes

blog.hartwork.org
1 points·by spyc·5 bulan yang lalu·0 comments

Python 3.14 started enabling color for argparse by default

github.com
2 points·by spyc·6 bulan yang lalu·0 comments

sandwine 5.0.0 adds support for Wayland and PipeWire

github.com
1 points·by spyc·8 bulan yang lalu·0 comments

Reconsider W3C Recommendation status of XSLT 2.0 and XSLT 3.0

github.com
11 points·by spyc·9 bulan yang lalu·1 comments

Expat 2.7.3 released, includes security fixes

blog.hartwork.org
2 points·by spyc·10 bulan yang lalu·0 comments

Expat 2.7.2 released, includes security fixes

blog.hartwork.org
1 points·by spyc·10 bulan yang lalu·0 comments

comments

spyc
·29 hari yang lalu·discuss
Both libexpat ("Expat") and uriparser are following the curl security vacation and will not accept new vulnerability reports before 2026-08-01, starting today.

[1] https://github.com/libexpat/libexpat/issues/1277

[2] https://github.com/uriparser/uriparser/issues/323
spyc
·7 bulan yang lalu·discuss
The current implementation breaks semantics of functions with tail recursion from within loops: https://github.com/raaidrt/tacopy/issues/1
spyc
·9 bulan yang lalu·discuss
Potentially the movie itself is also or more of interest. The related thread is: https://news.ycombinator.com/item?id=45056377
spyc
·tahun lalu·discuss
Both implementations of doas for Linux have (the same) unfixed security issue:

- https://github.com/Duncaen/OpenDoas/issues/106

- https://github.com/slicer69/doas/issues/110

I have a hard time recommending doas over sudo on Linux when the issue has been fixed in sudo but not in doas.
spyc
·tahun lalu·discuss
Lost trust for sure. Who knows if Redis would be AGPL now if Valkey did not exist.