do people still care about package manager install speeds in YOL 2026?
If your entire, 1000+ dependency project installed from scratch in less than a second, would that make a meaningful difference to you?
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
soatok@furry.engineer ("Soatok Dreamseeker") wrote:
Cryptography engineering has an intrinsic duty of care.
http://soatok.blog/2026/02/25/cryptography-engineering-has-an-intrinsic-duty-of-care/
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
NaahraTheScaled@furry.engineer ("Orange Lizard Girlthing") wrote:
Boosted by kornel ("Kornel"):
emacsomancer@types.pl ("(mapcar #'emacsomancer objs)") wrote:
From Bruce Schneier: "All it takes to poison AI training data is to create a website:
I spent 20 minutes writing an article on my personal website titled “The best tech journalists at eating hot dogs.” Every word is a lie. I claimed (without evidence) that competitive hot-dog-eating is a popular hobby among tech reporters and based my ranking on the 2026 South Dakota International Hot Dog Championship (which doesn’t exist). I ranked myself number one, obviously. Then I listed a few fake reporters and real journalists who gave me permission….
Less than 24 hours later, the world’s leading chatbots were blabbering about my world-class hot dog skills. When I asked about the best hot-dog-eating tech journalists, Google parroted the gibberish from my website, both in the Gemini app and AI Overviews, the AI responses at the top of Google Search. ChatGPT did the same thing, though Claude, a chatbot made by the company Anthropic, wasn’t fooled.
Sometimes, the chatbots noted this might be a joke. I updated my article to say “this is not satire.” For a while after, the AIs seemed to take it more seriously.
These things are not trustworthy, and yet they are going to be widely trusted."
https://www.schneier.com/blog/archives/2026/02/poisoning-ai-training-data.html
Boosted by kornel ("Kornel"):
rlafuente@post.lurk.org ("Ricardo Lafuente") wrote:
Time to announce something new: @aiscarvalho and me have set up a dedicated consultancy to help organisations migrate away from big tech platforms.
We help inform your decisions: we map your requirements, present alternatives, list the pros and cons involved, and give you support and advice throughout the migration process.
We draw from our 15+ year experience using F/LOSS software and managing our digital infrastructure in order to help other organisations do the same, with technical expertise that we know how to convey in clear and human terms.
So if you know an organisation that wants to get away from Google, Microsoft, Oracle, Dropbox, Salesforce, Zoom, Notion, AirTable, Adobe or Figma, we're here to help!
Boosted by kornel ("Kornel"):
dalias@hachyderm.io ("Cassandrich") wrote:
PSA: The Amazon wishlist doxing threat is much greater and more immediate than folks might realize. Attack works like this:
Stalker who wants your address opens an Amazon seller account and lists themselves as a third party seller for any item on your public wishlist. Then, they order the item from themselves as a gift for you. Bam, they have your address.
In particular, attack does not depend on an existing third party seller having poor PII handling hygiene, like the articles have implied.
fromjason ("fromjason.xyz ❤️ 💻 ✍️ 🥐 🇵🇷") wrote:
Interesting reads in the Social Web "un-workshop"
https://fediforum.org/2026-03-growing-open-social-web/submissions/
Brought it back to 2009 and made a word cloud
fromjason ("fromjason.xyz ❤️ 💻 ✍️ 🥐 🇵🇷") wrote:
In the end, I'd rather join a centralized, not-for-profit digital community with a commitment to stay away from big tech money and influence, than a decentralized ecosystem where Mark Zuckerberg gets to have a say.
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
laemeur@mastodon.sdf.org ("LÆMEUR") wrote:
Hey, fedi! I need to book some work, y'all. I do editorial illustration, comics, various design work, I've worked in mobile games, indie tabletop games, advertising... I can draw real good is what I'm sayin'!
Allow me to attach my card...
...and link to my website: https://laemeur.com
Boosts appreciated!
Attachments:
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
campuscodi ("Catalin Cimpanu") wrote:
A security firm has gained access to a malvertising test platform and used the information to help ad companies block more than 59 million malicious ads last year
https://blog.confiant.com/p/disrupting-59m-malicious-impressions
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
zrowolf@meow.social ("Zero Otterwolf") wrote:
@soatok you forgot the requirement of 10 years experience with a code language that has only existed for two years...
Boosted by cstanhope@social.coop ("Your weary 'net denizen"):
ashenwave@mastodon.art ("Ashenwave✨Commissions Open!") wrote:
🔸Guardian of the Resonance🔸
#MastoArt #FediArt #CommissionsOpen #Illustration #CreativeToots #AshenwaveArt #OriginalArt #SciFi #Fantasy #Art
Boosted by cstanhope@social.coop ("Your weary 'net denizen"):
hackaday@hackaday.social wrote:
Easily Replaceable USB-C Port Spawned By EU Laws
https://hackaday.com/2026/02/26/easily-replaceable-usb-c-port-spawned-by-eu-laws/
Boosted by cstanhope@social.coop ("Your weary 'net denizen"):
sad_electronics@fosstodon.org ("Cutie-PHY") wrote:
@hackaday Also available from Amphenol:
https://fosstodon.org/@sad%5Felectronics/115986811369106226
denschub@schub.social ("Dennis Schubert") wrote:
Related to my last post: I wanted to end a meeting with "enjoy the rest of your day!", but I'm tired and my brain is dead, so I accidentally said "enjoy the rest of your life!" and I think my coworkers might be slightly disturbed now.
Maybe I should have just stayed in bed today.
soatok@furry.engineer ("Soatok Dreamseeker") wrote:
RE: https://meow.social/@novra/116136959005134188
But still not physically old enough to have enough years of experience for most "entry level" job listings lol
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
novra@meow.social ("Novra The Boffcat") wrote:
How young furries/gays see anyone near or older than 30
Attachments:
- gifv: 4aef74498f9c0101.mp4
Boosted by ratatui_rs@fosstodon.org ("Ratatui"):
orhun@fosstodon.org ("Orhun Parmaksız 👾") wrote:
Open source maintainers are going to love this 😍
🐙 **gitv** — A terminal viewer for GitHub issues
⚡ Browse threads, react, edit comments, manage labels & close issues.
🦀 Written in Rust & built with @ratatui_rs
⭐ GitHub: https://github.com/jayanaxhf/gitv
Attachments:
- gifv: d7e9862df032668a.mp4
denschub@schub.social ("Dennis Schubert") wrote:
I'm in the mood for some pyrotechnical redecoration today, AMA.
slightlyoff@toot.cafe ("Alex Russell") wrote:
Ah London; grey with promise and tradition.
Traditions like "there is no service on the Elizabeth Line".
Missed this.
Boosted by baldur@toot.cafe ("Baldur Bjarnason"):
Ashedryden@xoxo.zone ("Ashe Dryden 🙆🏼♀️🐈🐈⬛") wrote:
Kansas is revoking trans people's driver's licenses in the latest anti-trans fascism.
https://www.erininthemorning.com/p/kansas-sends-letters-to-trans-people
Boosted by baldur@toot.cafe ("Baldur Bjarnason"):
davidgerard@circumstances.run ("David Gerard") wrote:
heyyyy i have this amazon list of stuff i need for the podcast and it needs more stuff on it. i am looking for suggestions.
https://www.amazon.co.uk/hz/wishlist/ls/3Q8VZW46J6DM6
[note: this is asking what it's asking. if your suggestion is "don't use amazon", you're wasting both our time and I'll happily improve both our timelines.]
soatok@furry.engineer ("Soatok Dreamseeker") wrote:
"This is not a security issue"
"There is no impact"
And Other Ways To Green-Light Public Disclosure to Vulnerability Researchers
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
tekhedd@byteheaven.net wrote:
@markus @harrysintonen @soatok If its "not a vuln" nobody could possibly object, right? I'm not even being sarcastic. For once.
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
Redfuchs@furries.club ("Jasper Fox :therian:") wrote:
Persist against all odds
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
offby1@wandering.shop ("Chris is.") wrote:
I love RSS, folks. RSS feeds still surface some of the best things I read.
Today, it’s this: https://jenniferplusplus.com/what-is-a-token/
Out of this, I learned the term “Anchoring” to describe an effect I observe in myself when using an LLM while working on a problem, and that I find problematic. I hope to use the fact that I now have language for it to help me break out of that loop.
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
quat@woof.group ("pup quat") wrote:
"ai" this "ai" that. how come tech guys havent invented headphones that don't get drowned out while eating chips or brushing your teeth
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
soatok@furry.engineer ("Soatok Dreamseeker") wrote:
Cryptography engineering has an intrinsic duty of care.
http://soatok.blog/2026/02/25/cryptography-engineering-has-an-intrinsic-duty-of-care/
Boosted by soatok@furry.engineer ("Soatok Dreamseeker"):
markus@uxp.de ("Markus Gerstel") wrote:
@harrysintonen I keep going back to @soatok's stance of "if you say it's not a vulnerability then I publish immediately"
Their incompetent triage team should not be the security researchers' problem.
soatok@furry.engineer ("Soatok Dreamseeker") wrote:
RE: https://furry.engineer/@soatok/116133505365798805
This one isn't going to do numbers on any of the link aggregators, simply because to most people in my profession, I'm basically stating the obvious here so it's not exciting enough for them.
Alas.



