|
If combating attacks and hijackings of legitimate software on open source registries like npm weren’t challenging enough, app makers are increasingly experiencing the consequences of software self-sabotage. "You're scheming on a thing that's a mirage. I'm trying to tell you now, it's sabotage"
|
|
|
|
|
This basically means the end of free open-source software (OSS) as we currently know it.
While most free OSS comes "as is", there used to be an implicit guarantee that the description matches what's "in the box." If this is no longer true, users of the software must spend time verifying each package (and each new version of the package), time that they previously spent improving their product. Under these circumstances, they might as well buy a commercial package that comes with guarantees that the package is as described.
Freedom is the freedom to say that two plus two make four. If that is granted, all else follows.
-- 6079 Smith W.
|
|
|
|
|
OSS was born when programmers were few and they were all pioneers. Today there are 6 weeks courses that kickstart barely alphabetized people into programming job - the ecosystem can no longer support implicit gentlemen agreements.
GCS/GE d--(d) s-/+ a C+++ U+++ P-- L+@ E-- W+++ N+ o+ K- w+++ O? M-- V? PS+ PE Y+ PGP t+ 5? X R+++ tv-- b+(+++) DI+++ D++ G e++ h--- r+++ y+++* Weapons extension: ma- k++ F+2 X
|
|
|
|
|
In next week's news: AI vets OSS for sabotaged code.
Or maybe that was last week. Who knows, but if there was ever a good use for AI, that would be one IMO.
|
|
|
|
|
Isn't a general-purpose program that verifies that a software library produces results as expected the "Holy Grail" of automated testing?
And yes, it would be a good use of AI, but I'd hate to be put in charge of the training for such an AI.
Freedom is the freedom to say that two plus two make four. If that is granted, all else follows.
-- 6079 Smith W.
|
|
|
|
|
Marc Clifton wrote: In next week's news: AI vets OSS for sabotaged code.
Nah. Gonna need quantum computing for that. Maybe even 'Deep Quantum' computing. Somewhere, venture capitalists are pouring money into the idea. Click-baity headline coming in three, two, ...
|
|
|
|
|
I don't see a problem with this. The fact that corporations have been using OSS without contributing back or knowing what they're using has resulted in some of the largest security breaches in the past five years. Oh, I know the "claim" that OSS is more secure than closed source, but based on the track record it's obviously not more secure.
|
|
|
|
|
The bill is expected to pass the House later this week and then move to Biden’s desk for his signature. In addition to the semiconductor funding, the legislation includes money for research and workforce training and 5G wireless technology. Hopefully they get All-Dressed, or maybe Salt&Vinegar
|
|
|
|
|
So much for being a Capitalist system. Oh, wait, I guess owning Senators and Representatives could be considered a form of Capitalism.
|
|
|
|
|
It’s one of the oldest, and most common forms.
TTFN - Kent
|
|
|
|
|
Pure capitalism may work in a pre-globalization society. Globalization without a single unified world governent (may the gods save us from that) puts severe wrenches in capitalism for reasons we all saw: companies are unregulated and move manifacturing (and now even engineering) where it's cheaper, increasing their own country technological debt.
GCS/GE d--(d) s-/+ a C+++ U+++ P-- L+@ E-- W+++ N+ o+ K- w+++ O? M-- V? PS+ PE Y+ PGP t+ 5? X R+++ tv-- b+(+++) DI+++ D++ G e++ h--- r+++ y+++* Weapons extension: ma- k++ F+2 X
|
|
|
|
|
My biggest gripes are that profits are privatized, expenses are socialized, and that the CEOs aren't in touch with the reality of their workers, as they make hundreds to thousands of times more than the workers. If those weren't the cases, I wouldn't be so bitter about the hypocrisy of calling ourselves 'Capitalist.'
For a so-called 'Socialist,' Bernie nailed it on this topic: Why I Oppose the CHIPS Giveaway.
|
|
|
|
|
It's a shame that I'm not wealthy enough to receive a handout.
"the debugger doesn't tell me anything because this code compiles just fine" - random QA comment
"Facebook is where you tell lies to your friends. Twitter is where you tell the truth to strangers." - chriselst
"I don't drink any more... then again, I don't drink any less." - Mike Mullikins uncle
|
|
|
|
|
While we’ve seen scientists find novel ways to use insects after they’re dead, it’s hard to imagine any group of researchers topping the work of a team from Rice University that turned lifeless wolf spiders into “necrobotic” grippers. Because your nightmares need fuel too
Necrobotic. Lovely term. I don't imagine those researchers sit at the popular table for lunch.
|
|
|
|
|
Only science can create something gross and simultaneously fascinating.
(Well, Hollywood too)
|
|
|
|
|
Those aren't "necrobots"; they are zombies!
(It's a good thing spiders don't need much brainzzz)
Freedom is the freedom to say that two plus two make four. If that is granted, all else follows.
-- 6079 Smith W.
|
|
|
|
|
Researchers at Stanford University, MIT's Computer Science and Artificial Intelligence Lab, and the Autodesk AI Lab have collaborated to develop a novel learning-based framework that can interpret 2D instructions to build 3D objects. It's now buying up all the pieces to build itself a fortress
|
|
|
|
|
I see they started with the easy one - Legos. Let me know when it can handle Ikea's instructions.
|
|
|
|
|
And that's still easy.
What about a manual originally written in Chinese and then translated into a western language?
Oh sanctissimi Wilhelmus, Theodorus, et Fredericus!
|
|
|
|
|
Researchers have unpacked a major cybersecurity find—a malicious UEFI-based rootkit used in the wild since 2016 to ensure computers remained infected even if an operating system is reinstalled or a hard drive is completely replaced. The attacks are coming from inside the computer
|
|
|
|
|
This will ensure the MSBuild node spawns with a lower priority, affecting all compile and link processes. For those times where you just feel a little buildish
|
|
|
|
|
When you have a fast computer and need an excuse for a long lunch
|
|
|
|
|
The time admins have to patch systems before exploitation is shrinking. "Any track is turning but the race is in my head"
|
|
|
|
|
There's no doubt about it: The top ask of Visual Studio users is to run the IDE on the Linux OS. They need a good text editor after all
|
|
|
|
|
IDEs available on Linux are a hellscape of broken components and severely outdated UX.
GCS/GE d--(d) s-/+ a C+++ U+++ P-- L+@ E-- W+++ N+ o+ K- w+++ O? M-- V? PS+ PE Y+ PGP t+ 5? X R+++ tv-- b+(+++) DI+++ D++ G e++ h--- r+++ y+++* Weapons extension: ma- k++ F+2 X
|
|
|
|