opensource Timeline - FediScanner

17.09.2025 20:23
technotenshi (@technotenshi@infosec.exchange)

A malicious GitHub Actions workflow in a shared repo exfiltrated an npm token and was used to publish backdoored versions of 20 packages, including @ctrl/tinycolor. The attack exploited admin rights to bypass PR review. GitHub and npm teams acted quickly to unpublish the compromised packages.

https://sigh.dev/posts/ctrl-tinycolor-post-mortem/

#SupplyChainSecurity #JavaScriptSecurity #OpenSource #InfosecNews

Show Original Post

Report

17.09.2025 20:16
reddit_tech_vn_bot (@reddit_tech_vn_bot@mastodon.maobui.com)

Sau khi chi phí LLM tăng vọt, tôi đã xây dựng một router thông minh tự động chọn mô hình tốt nhất về chi phí/chất lượng cho từng prompt, cache phản hồi và chuyển đổi nhà cung cấp. Giảm ~60% chi phí! Dự án mã nguồn mở cho cộng đồng.

#AI #TríTuệNhânTạo #CostOptimization #TốiƯuChiPhí #OpenSource #MãNguồnMở #LLM #SideProject

https://www.reddit.com/r/SideProject/comments/1njiya9/built_a_smarter_router_after_getting_crushed_by/

Show Original Post

Report

17.09.2025 20:13
strigga_ (@strigga_@mastodon.social)

Ich find an der ganzen #KI Jobvernichterei ja am schlimmsten, dass ein guter Teil des Trainingsmaterials #open-source gewesen sein wird. Zusätzlich zu #stackoverflow antworten und allen möglichen anderen Quellen, bei denen Menschen unbezahlt hilfreich sind.

Ich wünsche allen Nutznießern, die sich im Big Tech damit gerade die Taschen voll machen ein Knalltrauma vom Platzen der #KIblase

#foss #opensource #bigtech #openai #Gemini #grok #copilot

Show Original Post

Report

17.09.2025 19:51
splitcells (@splitcells@fosstodon.org)

Today I learned, that old Maven versions can cause the site goal to fail :P

https://issues.apache.org/jira/browse/MSITE-967

#Maven #Java #OpenSource #WorksOnMyKubernetes

Show Original Post

Report

17.09.2025 19:38
pluswerk (@pluswerk@techhub.social)

DMEXCO 2025 Day 1: What a start ✨

Full talks, exciting discussions and lots of curious visitors at our stand – the first day at DMEXCO showed just how much interest there is in smart digital solutions. A big thank you to everyone who stopped by our sessions. Your feedback and the discussions show how important the topic of digital transformation is. 💡

👉 Tomorrow, the @typo3 Experience Hub will continue with new talks: At 11 a.m., Jens Krumm, CEO of +Pluswerk, will speak on the topic of ‘Finally found! AI in the search function on your website’. At 3 p.m., the topic will be ‘Personalised content and smart user guidance’. Come by and let's talk about your digital challenges!

#DMEXCO #TYPO3 #DigitalMarketing #OpenSource

Show Original Post

Report

17.09.2025 19:35
jr_dev (@jr_dev@techhub.social)

For real!!! #linux #opensource #software

Show Original Post

Report

17.09.2025 19:22
ReneRebe (@ReneRebe@chaos.social)

#GNOME 49 “Brescia” Brings Modern Apps, HDR Support, and Developer Tools to the #Linux #OpenSource Desktop https://medium.com/@Re-News/gnome-49-brescia-brings-modern-apps-hdr-support-and-developer-tools-to-the-linux-desktop-90cc869eb3c2?sk=06a695c7ee041efad84d3ce74f2e3fbf

Show Original Post

Report

17.09.2025 19:21
syft (@syft@fosstodon.org)

TOMORROW 🚨 Join our live demo of Grant 0.3.0, the #opensource license scanner. We will be talking: Deeper GoLang Module Analysis, advanced license rules & enforcements and performance tune ups. Register now
https://go.anchore.com/whats-new-in-grant.html

Show Original Post

Report

17.09.2025 19:15
forumuu (@forumuu@nerdculture.de)

LXQt, MATE und andere Fenstermanager

Dateierweiterung .xyz mit gewähltem Symbol verbinden
https://forum.ubuntuusers.de/topic/dateierweiterung-xyz-mit-gewaehltem-symbol-ver/
17.09.2025 um 19:09 Uhr

#ubuntuusers #forumuu #linux #opensource

Show Original Post

Report

17.09.2025 19:15
zeek (@zeek@infosec.exchange)

Pluggable flow tuples bring more flexibility to connection tracking. New in Zeek 8.

Find out how it works: https://docs.zeek.org/en/master/devel/plugins/connkey-plugin.html

#Zeek #NetworkMonitoring #CyberSecurity #OpenSource