Grew up with an Amiga 500. Studied CS (Compilers and OSs). Did IoT and sensor networks for my PhD. Stayed at the university to now do data science and AI stuff lik everyone else.
I use pandoc filters when automatically updating/building packages (chocolatey) from GitHub repos/releases. When I built them I remember the documentation and API much less than this. As a developer I might have been easily overwhelmed by today's docs. On the other hand: today I guess those docs are rather read/ used by an AI than any human.
I think the problem is really that law enforcement have got used to outsourcing this kind of policing to private operated platforms (at least here in Germany). I was actually at the local police station because I notified them via an online mechanism about sth that looked very CSAM to me in a random forum tracking some gossip/Internet meme (actually I did not really look further than a title because that can be already illegal). Just dropping the link (which I thought would be just auto scanned and sent into some central pool), led to the fact that I had to go there in person, wait and had to listen to a speech about the fact that it can be easily illegal to be in certain places in the Internet and that I should be careful because I had a daughter in the age. It was almost that they are threatening me. They told me that all the CSAM stuff anyways comes through the provider and that they would do raids if needed. They cannot do much anyhow on the state level if they do not get the local ISP and IP delivered.
It felt rather absurd and somewhat scary/dystopian that there are Internet companies that sent cops out to do raids based on some IP. According to the police officer it seemed very effective.
Actually we need to force our European governments to use services that do not depend on foreign services (ie. Google or Apple). Then I guess it will only then become obvious to them how crazy the situation has become.
The company's have done their thing to ensure that the average guy wouldn't even try escaping their lock-in. So chances are becoming smaller and smaller to hope for a critical mass of users to complain.
This quote on risk seems to completely misunderstand the concept of risk. First we have a vulnerability ( IMHO that is equals a hazard), then we assign both impact and probability and only then we get risk. By definition there are IMHO always vulnerabilities with low impact or low probability and thus low risk. While CVEs have some score, the actual risk and later accepting those risks before or after mitigations is up to the use case to define. No risk => no vulnerability is flawed reasoning by design. No vulnerability => no risk, I think is the only thing we can agree on.
The original idea of open source or rather free software is to bmactually "own" the code in a way that you can modify it to your needs. Guess this is not the case here, then. But I guess also most of android falls in that category that by now. I guess we should be using better,more attributes when describing open source
I am really somehow happy about this feud as it really demasks Microsoft. The signal Microsoft sends to their costumers (also corporate and government) is IMHO as disasterous as it is to security researchers.
it is good if people actually develop good workflows. Actually in applied research/public gov tech we are seeing tons of different gitlab instances.
One project we are contributingto the Fraunhofer team developing it has had an internal gitlab with CI/CD and mirrors at three different sites: gitlab.com, opencode.de and code.europa.eu . Now they are slowly trying to move to gitlab.com for the main repo as they cannot open their own repo enough for security/legal reasons. However, the CI/CD stuff still only runs on their gitlab.
Now we have our own gitlab instance we, were we are doing some small frontend work as part of a funded project on national level and have a mirror on GitHub for visibility reasons. Now we have another EU funded project that has its CI/CD on another gitlab instance at a partner. All come with their own onboarding and federated IDM quirks.
It is a total mess. While git is certainly distributed, the workflow is a mess. You end up cherrypicking CI/CD configs and divergent features all over the place.
I wonder: Is there a l'meta-forge' that just would handle rebasing?
I actually understand people using bare git workflow with mailing lists. However, even for me the learning curve and necessary attention span/social contracts is too much a challenge.
I could not even find a mention what platform it supports. There is a Linux example on the bottom. Have never seem a libc implementation that does not even mention for which platforms it is meant.
The way you can phrase it: you may jsut get people that are happy to do a good job for the pay they get. In many areas your typical white/cis/hetero/neurotypical male is not present, because you cannot get the maximum reward for their well-trained ego. I think diversity/pay is pretty munch confounded for plausible reasons.
I am actually only switching to Chromium based browsers because some corps and most notably some captcha/paywalls don't work as expected. But the. I always think I made the right choice (actually I am rather using Zen because I love their UX on top of FF)
Grew up with an Amiga 500. Studied CS (Compilers and OSs). Did IoT and sensor networks for my PhD. Stayed at the university to now do data science and AI stuff lik everyone else.