Closing my Twitter account
Long overdue, I'll close my Twitter account today.
I'll be as always in the #freenetworks
If you want to follow me, don't know how: email meShow all 5 replies
Audit finds 2/3 of popular docker images have medium to high security issues
Arthur Lutz likes this.Show all 6 repliesIndeed that doesn't seem surprising. It's like saying most debian iso images available at http://cdimage.debian.org/mirror/cdimage/archive/ have security issues.
Ofcourse they do if you don't run "apt-get -y update && apt-get -y upgrade" on them. A typical Dockerfile will start with apt-get -y update && apt-get -y upgrade.
Avoid RUN apt-get upgrade or dist-upgrade, since many of the “essential” packages from the base images will fail to upgrade inside an unprivileged container. If a base package is out of date, you should contact its maintainers. If you know there’s a particular package, foo, that needs to be updated, use apt-get install -y foo and it will update automatically.
Claes Wallin (韋嘉誠) likes this.
mediagoblin 0.8.0 has been frozen for way too long, but only 2 issues left
Emacs rainbow all the things
I was already using rainbow-delimeters and highlight-parentheses and didn't think it could get more insanely colorful, but now @Aeva Ntsc introduced me to rainbow-identifiers, and now my emacs "looks like a unicorn farted", as @Greg Grossmeier aptly put it.Thanks, your note pointed me to rainbow-delimiters, which I find useful indeed. (Whilst I generally doubt the necessity of syntax highlighting.)
With rainbow-identifiers it really gets a bit too colourful to improve readability. But it's fun how everything turns into little ponies.
Christopher Allan Webber likes this.
- #Mercurial 3.2.1 release notes http://mercurial.selenic.com/wiki/WhatsNew#Mercurial_3.2.1_.282014-11-11.29
Arthur Lutz likes this.
So http://transifex.com/ is totally proprietary now. I had no idea. Today I got an email about a "new transifex live" feature that was so exciting it was apparently patent pending. I got this email because I'm a "member of the open source community", apparently. What a way to thank the FOSS community!
So, looking into it more, I didn't realize that Transifex is no longer free software (really weird quotes there, including GitHub being lauded as being an inspiration and a key example of how to do things right for FOSS).
@Mike Linksvayer tells me they recently picked up VC money... also, weird tasteless quotes. Hope you're having fun having your unicorn burps and awesome farts measured by patented technology, new employee?
Anyway, I guess as soon as we get the time, we're leaving.Show all 7 replies
- Just learned about a massive git-annex deployment, spanning multiple organizations, 100 terabytes of data, and with complications including mailing hard drives, Debian VMs on Windows, and custom GUI interfaces. Hoping I can share some details sometime, it's awesome!
The really great thing about it is that when they're older, my great-neice and nephew will quite likely at some point use some of this data. This is all about preserving an important part of their cultural heritage.
- OK - I've got a fragile but barely-working pump-to-RSS bridge going at https://pump2rss.com/ .
It's about as rudimentary as possible -- put in a pump handle, and it will spit out the last N activities as an Atom feed.
It tries to be smart about which activities should be shown as objects and which should be shown as activities -- any help would be welcome on that score.
I still have a few things to add to the feeds -- attachments would be great. And at some point I'd like to PubSubHubbub-enable the feeds.
The code is here: https://github.com/e14n/pump2rss If anyone wants to help out, please let me know!Show all 11 replies