Login

Recent searches

No recent searches

Search options

Only available when logged in.
social.coop is one of the many independent Mastodon servers you can use to participate in the fediverse.
A Fediverse instance for people interested in cooperative and collective projects. If you are interested in joining our community, please apply at https://join.social.coop/registration-form.html.

Administered by:

Server stats:

485
active users

social.coop: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.4

#socket

1 post1 participant0 posts today
Public
Christoffer S.

The Rise of Slopsquatting: How AI Hallucinations Are Fueling a New Class of Supply Chain Attacks

socket.dev/blog/slopsquatting-

> Slopsquatting is a new supply chain threat where AI-assisted code generators recommend hallucinated packages that attackers register and weaponize.

This was an excellent article covering an area that definitely has not gotten enough attention, especially coupled with Vibe Coding.

SlopSquatting... What an excellent name!

#Socket#SlopSquatting#Cybesecurity
Public *
Y⃒̸̷̝̜̙ͥͥͥngmar

Soviet phone socket. Seems to contain a lightbulb?! And two 1A fuses.

No tone, but it's not disconnected, something pulses a ~40V spike every now and then.

The fuses connect each input wire to the residential outlet. The lightbulb doesn't seem to be connected to anything, but has those two screws to connect it across the copper pair, presumably for testing purposes. Those 40V spikes would make it flash. It's normally under an opaque cover.

Interesting.

An open phone socket mounted on a wall. Inside are two slim glass tubes containing wire fuses and a wider glass bulb containing what is probably a lightbulb with three connections. A thick old copper wire pair is connected to the input. A much newer and thinner wire is connected to the output. Another empty baseplate is mounted next to it.
#Soviet#POTS#Telephony
Public *
zirias (on snac)
Just started work on the planned "single instance mode" for #Xmoji.

The first commit is done, adding a class implementing the core functionality using a local #Unix #socket. Part of the job is deriving a unique name for that socket, where #hashing comes natural.

I had a similar class in #qXmoji (based on #Qt), and there you have #sha256 at your fingertips with QCryptographicHash, so I just used that. You need a string from that, and sure thing, there's a .toBase64() method. Well, a / doesn't play well for filenames, but then, there's .replace().

Without all these helpers from Qt, first thing I did now was searching the web for a "good" hash function, but there's certainly no need for a cryptographic one. I found #FNV1a. It's super easy to implement in #C. And for the base64 part, well, doing it myself, I can directly use a modified set of digits, without the /.

Now, here's the whole thing:
https://github.com/Zirias/xmoji/commit/db764e3184537d42b528e718bd4886495eb45544

I'd say that's a nice example how not having lots of "powerful" library functions readily available can lead to a much better (smaller, more efficient) solution. 😏

#X11 #emoji #keyboard #development
GitHubSingleInstance: Enforce single running instance · Zirias/xmoji@db764e3Add class to optionally enforce a single running instance per host and user. Use this during xmoji startup().
Public
zirias (on snac)
Coding in #C ... sometimes I really enjoy just using what I created a long time ago 😁.

This is the whole change to #Xmoji allowing it to fork into background on startup:
https://github.com/Zirias/xmoji/commit/0ab2d8ed424ebc35aa99e5c2bd15b097a5e74b42

It's the first step to implementing an (optional) single-instance mode, that will only allow one running instance per user and machine. Implementing that will require a local #Unix domain #socket, which is also covered by the same library, #poser 😉.

I designed this library for (simple and small) #networking #daemons, but found it's quite useful for #X11 applications as well. If you want to know more, here are the docs:
https://zirias.github.io/poser/
GitHubX11App: Detach from terminal by default · Zirias/xmoji@0ab2d8eBy default, fork into background and exit from the main process after startup is complete. For this to work, calling X11Adapter_init() must be moved in the prestartup event handler which runs from ...
Public
C.

I have, literally, 7 different flavours of subminiature crimp-pin connectors in my parts collection.

And yet, somehow, whatever I'm working on has a nearly-identical-but-not-quite kind that isn't in my collection.

Murphy was an optimist.

#murphy#jst#xh
Replied in thread
Public
happyborg

@heapwolf Interesting thread.

It prompted me to make a topic for #socket on the #SafeNetwork forum and #MaidSafe's founder has made a few comments there so you might want to take a look:

safenetforum.org/t/socket-p2p-
#p2p

Safe Network Forum · Socket p2p app frameworkSocket has been around as a project since at least 2014 following a similar path to Safe Network in some respects and with similar ideals. There are at least three mentions of it already here, all from 2014-2015 but it doesn’t have it’s own topic. The founder is approachable, active on Mastodon as well as other SM and I include a thread below in which he introduces the project with some history, or you can visit socket.io In the thread he mentions having tried libp2p, found it wanting, notably...
Public
Changelog

🗞 New episode of Changelog News!

👀 React Server Actions on display at Next.js Conf
🛑 @kentcdodds on why he won't use Next
🟢 Lee Robinson on why he is using Next
📦 @nixos_org' reproducible builds
✍️ OpenSign is an open source alternative to DocuSign
🎙 hosted by @jerod

#reactjs #frontend #javascript #nextjs #vercel #rsc #nixos #opensign #opensource #alternative #news #podcast #linux #socket #infosec #webdev

🎧 changelog.com/news/68

ChangelogWhat will React come up with Next? (Changelog News #68)The hubbub of the web dev world right now is Next.js’ integration of React Server Components, Kent C. Dodds writes up why he doesn’t use Next, Lee Robinson responds with why he does, the NixOS team hits a milestone in their reproducible builds effort & OpenSign is an open source alternative to DocuSign.
ExploreLive feeds
About