mastodontech.de ist einer von vielen unabhängigen Mastodon-Servern, mit dem du dich im Fediverse beteiligen kannst.
Offen für alle (über 16) und bereitgestellt von Markus'Blog

Serverstatistik:

1,4 Tsd.
aktive Profile

#github

128 Beiträge104 Beteiligte10 Beiträge heute
thomasmey<p>Now that the company did switch from BitBucket to GitHub I really do wonder why <a href="https://social.tchncs.de/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> did win in the first place. Most things are just worse in GitHub.<br>The API has many strange behaviours and quirks, for example when you start a workflow, you get nothing. Good luck finding the correct workflow run in an advanced automation setup.<br>The API documentation is poor, why provide models in a machine format?<br>The list is long but what really stands out is the bad user experience for pull request review of larger things: GitHub just stops rendering diffs and you need to click all not-rendered diffs manually, also the jump to a certain file doesn't seem to work correctly.<br>BitBucket is so much better in every aspect but one:<br>GitHub is really fast for git operations, but everything else is not!</p>
Lenin alevski 🕵️💻<p>🤔 Looking for an open-source way to extract Google Maps data? 🗺️</p><p>Google Maps Scraper is a CLI &amp; web-based tool that pulls business info like name, address, phone, ratings, reviews, GPS coordinates, and more. Supports CSV/JSON export, email scraping (optional), and REST API for automation.</p><p><a href="https://infosec.exchange/tags/DataExtraction" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DataExtraction</span></a> <a href="https://infosec.exchange/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://infosec.exchange/tags/WebScraping" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WebScraping</span></a></p><p>🔗 Project link on <a href="https://infosec.exchange/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> 👉 <a href="https://github.com/gosom/google-maps-scraper" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/gosom/google-maps-s</span><span class="invisible">craper</span></a></p><p><a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/Software" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Software</span></a> <a href="https://infosec.exchange/tags/Technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Technology</span></a> <a href="https://infosec.exchange/tags/News" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>News</span></a> <a href="https://infosec.exchange/tags/CTF" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CTF</span></a> <a href="https://infosec.exchange/tags/Cybersecuritycareer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecuritycareer</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>redteam</span></a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>blueteam</span></a> <a href="https://infosec.exchange/tags/purpleteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>purpleteam</span></a> <a href="https://infosec.exchange/tags/tips" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tips</span></a> <a href="https://infosec.exchange/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloudsecurity</span></a></p><p>— ✨<br>🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️</p>
FinchHaven sfba<p><a href="https://sfba.social/tags/Mastodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mastodon</span></a> <a href="https://sfba.social/tags/QuotePosts" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>QuotePosts</span></a> are going to be a nightmare when they finally go live, if for no other reason(s) than different instance versions and different apps on different mobiles will all be at different stages of development</p><p>And no one will be available to act as <a href="https://sfba.social/tags/TechSupport" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechSupport</span></a></p><p>Here's some of the issues right now at <a href="https://sfba.social/tags/Github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Github</span></a>:</p><p>[mastodon/mastodon] Inconsistency in quote filtering with silenced accounts (Issue # 36162)</p><p>[mastodon/mastodon] Change quoted posts from silenced accounts not to be hidden (PR # 36166)</p><p>[mastodon/mastodon] Add click-through for quoted limited accounts (PR # 36167) </p><p>Maybe it's a good time go off and watch <a href="https://sfba.social/tags/SilkSong" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SilkSong</span></a> on <a href="https://sfba.social/tags/Twitch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Twitch</span></a> for a week or so</p>
FinchHaven sfba<p><span class="h-card" translate="no"><a href="https://Pertsch.social/@Sebastian" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Sebastian</span></a></span> </p><p>See, at <a href="https://sfba.social/tags/Github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Github</span></a>, this thread from three weeks ago</p><p>Here: <a href="https://github.com/mastodon/mastodon/issues/35803#issuecomment-3234904879" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/mastodon/mastodon/i</span><span class="invisible">ssues/35803#issuecomment-3234904879</span></a></p><p>cc <span class="h-card" translate="no"><a href="https://mastodon.social/@Mastodon" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Mastodon</span></a></span></p>
Frontend Dogma<p>How Tech Companies Measure the Impact of AI on Software Development, by <span class="h-card" translate="no"><a href="https://mastodon.online/@gergelyorosz" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gergelyorosz</span></a></span> and @lauratacho.com:</p><p><a href="https://newsletter.pragmaticengineer.com/p/how-tech-companies-measure-the-impact-of-ai" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">newsletter.pragmaticengineer.c</span><span class="invisible">om/p/how-tech-companies-measure-the-impact-of-ai</span></a></p><p><a href="https://mas.to/tags/ai" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ai</span></a> <a href="https://mas.to/tags/productivity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>productivity</span></a> <a href="https://mas.to/tags/metrics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>metrics</span></a> <a href="https://mas.to/tags/github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>github</span></a> <a href="https://mas.to/tags/google" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>google</span></a> <a href="https://mas.to/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoft</span></a> <a href="https://mas.to/tags/atlassian" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>atlassian</span></a> <a href="https://mas.to/tags/economics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>economics</span></a></p>
Openreads<p>Hello book lovers 📚 </p><p>New version of <a href="https://fosstodon.org/tags/Openreads" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Openreads</span></a> - free and private reading tracker is out!</p><p>- Scanning books by ISBN is much quicker now<br>- Default tags and books lists order can be changed<br>- Improved UI/UX</p><p>Fixed:<br>- <a href="https://fosstodon.org/tags/Goodreads" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Goodreads</span></a> import<br>- Sorting half-star books<br>- Stats</p><p>Download 2.11.0 from :github: <a href="https://fosstodon.org/tags/github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>github</span></a> :apple_inc: <a href="https://fosstodon.org/tags/appstore" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appstore</span></a> :android: <a href="https://fosstodon.org/tags/googleplay" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>googleplay</span></a> :fdroid: <a href="https://fosstodon.org/tags/fdroid" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fdroid</span></a></p><p>🔗 : <a href="https://github.com/mateusz-bak/openreads" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/mateusz-bak/openrea</span><span class="invisible">ds</span></a><br>Big thanks to contributors ❤️</p><p><a href="https://fosstodon.org/tags/books" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>books</span></a> <a href="https://fosstodon.org/tags/bookstodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bookstodon</span></a> <a href="https://fosstodon.org/tags/android" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>android</span></a> <a href="https://fosstodon.org/tags/ios" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ios</span></a> <a href="https://fosstodon.org/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> <a href="https://fosstodon.org/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> <a href="https://fosstodon.org/tags/flutter" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>flutter</span></a> <a href="https://fosstodon.org/tags/reading" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>reading</span></a></p>
Stephan Roth<p>The Model Context Protocol (<a href="https://mastodon.social/tags/MCP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MCP</span></a>) and the standardized SysML v2 API &amp; Services ... how can we bridge the gap between those two? It is obvious that providing a MCP server for SysML v2 models can offer a lot of possibilities. And now there is a project...</p><p><a href="https://roth-soft.de/blog/2025-09-18-building-mcp-server-sysml-v2-api.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">roth-soft.de/blog/2025-09-18-b</span><span class="invisible">uilding-mcp-server-sysml-v2-api.html</span></a></p><p><a href="https://mastodon.social/tags/SysMLv2" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SysMLv2</span></a> <a href="https://mastodon.social/tags/MBSE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MBSE</span></a> <a href="https://mastodon.social/tags/ModelContextProtocol" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ModelContextProtocol</span></a> <a href="https://mastodon.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a></p>
Tomasz Nurkiewicz<p>Discovered by accident on <a href="https://fosstodon.org/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> UI: ⌘+K, L lets you jump into arbitrary line (and creates persistent link)</p>
London<p><a href="https://mastodon.social/tags/informatique" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>informatique</span></a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.social/tags/technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>technology</span></a> <a href="https://mastodon.social/tags/github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>github</span></a> <br>new tool available<br><a href="https://github.com/London44380/modidown" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">github.com/London44380/modidown</span><span class="invisible"></span></a></p>
Dextive Studios<p>Behold! I have made a random character generator! It basically gives you a design prompt, and you can draw said prompt!</p><p><a href="https://github.com/DextiveStudios/Random-Charater-Generator" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/DextiveStudios/Rand</span><span class="invisible">om-Charater-Generator</span></a></p><p><a href="https://mastodon.social/tags/artist" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>artist</span></a> <a href="https://mastodon.social/tags/java" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>java</span></a> <a href="https://mastodon.social/tags/dev" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dev</span></a> <a href="https://mastodon.social/tags/github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>github</span></a> <a href="https://mastodon.social/tags/randomizer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>randomizer</span></a> <a href="https://mastodon.social/tags/program" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>program</span></a> <a href="https://mastodon.social/tags/artcommunity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>artcommunity</span></a> <a href="https://mastodon.social/tags/programmer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>programmer</span></a> <a href="https://mastodon.social/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>programming</span></a></p>
Roland<p><a href="https://vm.io/tags/meme" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>meme</span></a> <a href="https://vm.io/tags/github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>github</span></a> <a href="https://vm.io/tags/foss" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>foss</span></a> <a href="https://vm.io/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a></p>
GripNews<p>🌘 Triton/Python/Tutorials/Gluon/01-intro.py:GitHub 上的 Triton 專案介紹<br>➤ GitHub Triton 專案的 Python 入門教程<br>✤ <a href="https://github.com/triton-lang/triton/blob/main/python/tutorials/gluon/01-intro.py" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/triton-lang/triton/</span><span class="invisible">blob/main/python/tutorials/gluon/01-intro.py</span></a><br>這篇文章是 Triton 專案 GitHub 頁面上一個 Python 教程的開頭,介紹了 Triton 語言和其在 Python 環境中的使用。它提供了程式碼檔案的連結,並展示了 Triton 專案的基本資訊,包括星標數、分支數等。GitHub 頁面上的導航元素也一併呈現,暗示了更廣泛的專案文件和資源。<br>+ 太好了!終於有 Triton 的 Python 入門教程了,希望內容夠詳盡。<br>+ GitHub 的介面總是這麼豐富,不過我更關心的是 Triton 本身的介紹。<br><a href="https://mastodon.social/tags/%E7%A8%8B%E5%BC%8F%E7%A2%BC%E6%95%99%E7%A8%8B" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>程式碼教程</span></a> <a href="https://mastodon.social/tags/Triton" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Triton</span></a> <a href="https://mastodon.social/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Python</span></a> <a href="https://mastodon.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a></p>
MDZG (Markdown Zen Garden)<p>🔍 / <a href="https://mastodon.uno/tags/software" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>software</span></a> / <a href="https://mastodon.uno/tags/library" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>library</span></a> / <a href="https://mastodon.uno/tags/terminal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>terminal</span></a> / <a href="https://mastodon.uno/tags/python" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>python</span></a></p><p><a href="https://mastodon.uno/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> - Textualize/rich: Rich is a Python library for rich text and beautiful formatting in the terminal.</p><p>🐱🔗 <a href="https://laravista.altervista.org/CatLink/links/353" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">laravista.altervista.org/CatLi</span><span class="invisible">nk/links/353</span></a></p><p><a href="https://mastodon.uno/tags/catlink" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>catlink</span></a> <a href="https://mastodon.uno/tags/softwarelibrary" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>softwarelibrary</span></a> <a href="https://mastodon.uno/tags/softwarelibraryterminal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>softwarelibraryterminal</span></a> <a href="https://mastodon.uno/tags/softwarelibraryterminalpython" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>softwarelibraryterminalpython</span></a></p>
Inautilo<p><a href="https://mastodon.social/tags/Development" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Development</span></a> <a href="https://mastodon.social/tags/Analyses" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Analyses</span></a><br>Oh no, not again... · “NPM has become the easiest way to ship malware.” <a href="https://ilo.im/166ych" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">ilo.im/166ych</span><span class="invisible"></span></a></p><p>_____<br><a href="https://mastodon.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://mastodon.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> <a href="https://mastodon.social/tags/Npm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Npm</span></a> <a href="https://mastodon.social/tags/NodeJS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NodeJS</span></a> <a href="https://mastodon.social/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>JavaScript</span></a> <a href="https://mastodon.social/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/WebDev" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WebDev</span></a> <a href="https://mastodon.social/tags/Frontend" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Frontend</span></a> <a href="https://mastodon.social/tags/Backend" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Backend</span></a></p>
Lenin alevski 🕵️💻<p>Ever wonder if third-party GCP Service Account keys are as secure as they claim? 🔑🤔 </p><p>This recon tool, `gcp-sa-key-checker`, evaluates GCP Service Account keys using public x509 data. It identifies mismanaged or risky keys (e.g., `USER_MANAGED` types) without needing permissions. A smart way to audit SaaS integrations. <a href="https://infosec.exchange/tags/GCP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GCP</span></a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a></p><p>🔗 Project link on <a href="https://infosec.exchange/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> 👉 <a href="https://github.com/mercari/gcp-sa-key-checker" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/mercari/gcp-sa-key-</span><span class="invisible">checker</span></a></p><p><a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Infosec</span></a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/Software" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Software</span></a> <a href="https://infosec.exchange/tags/Technology" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Technology</span></a> <a href="https://infosec.exchange/tags/News" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>News</span></a> <a href="https://infosec.exchange/tags/CTF" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CTF</span></a> <a href="https://infosec.exchange/tags/Cybersecuritycareer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecuritycareer</span></a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>redteam</span></a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>blueteam</span></a> <a href="https://infosec.exchange/tags/purpleteam" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>purpleteam</span></a> <a href="https://infosec.exchange/tags/tips" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tips</span></a> <a href="https://infosec.exchange/tags/opensource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opensource</span></a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloudsecurity</span></a></p><p>— ✨<br>🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️</p>
GripNews<p>🌗 npm 供應鏈攻擊事件深入解析:<span class="h-card" translate="no"><a href="https://mastodon.social/@ctrl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ctrl</span></a></span>/tinycolor 套件遭惡意推送<br>➤ 揭露 npm 供應鏈攻擊的技術細節與防範之道<br>✤ <a href="https://sigh.dev/posts/ctrl-tinycolor-post-mortem/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">sigh.dev/posts/ctrl-tinycolor-</span><span class="invisible">post-mortem/</span></a><br>本文作者 Scott Cooper 深入剖析了其維護的 <span class="h-card" translate="no"><a href="https://mastodon.social/@ctrl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ctrl</span></a></span>/tinycolor 套件遭受npm供應鏈攻擊的事件。攻擊者利用共享儲存庫的權限漏洞,透過惡意 GitHub Actions 工作流程竊取了具有廣泛發布權限的 npm 權杖,並藉此推送了包含惡意後門的套件版本。作者強調自身帳號和儲存庫並未直接被入侵,也未使用受感染的套件。事件發生後,GitHub 和 npm 安全團隊迅速採取行動,下架了惡意版本,作者也重新發布了乾淨版本以恢復信任。文章並探討了現有發布機制的不足,並提出了未來安全發布的改進建議,例如採用 npm 的 Trusted Publishing (OIDC) 及加強 2FA 驗證。<br>+ 這篇文章解釋得很清楚,幸好作者和安全團隊反應快,不<br><a href="https://mastodon.social/tags/%E4%BE%9B%E6%87%89%E9%8F%88%E6%94%BB%E6%93%8A" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>供應鏈攻擊</span></a> <a href="https://mastodon.social/tags/npm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>npm</span></a> <a href="https://mastodon.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> Actions <a href="https://mastodon.social/tags/%E5%AE%89%E5%85%A8%E6%80%A7" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>安全性</span></a> <a href="https://mastodon.social/tags/TypeScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TypeScript</span></a></p>
//devdigest<p>⚡️ Prompt and Instruction Files for GitHub Copilot and .NET</p><p>🏷️ <a href="https://mastodon.social/tags/devdigest" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>devdigest</span></a> <a href="https://mastodon.social/tags/dotnet" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dotnet</span></a> <a href="https://mastodon.social/tags/net" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>net</span></a> <a href="https://mastodon.social/tags/git" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>git</span></a> <a href="https://mastodon.social/tags/github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>github</span></a></p><p><a href="https://devdigest.today/goto/4877" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">devdigest.today/goto/4877</span><span class="invisible"></span></a></p>
Tane Piper ⁂<p>I posted this image in our Slack channel, and my 24 year old DevOps warlock (honestly this guy has built an amazing platform from nothing, when that time comes - hire him) just said:</p><p>"Solo mode - old style"</p><p>I'm not sure if I should laugh or take to HR as an assault.</p><p>(Also <a href="https://tane.codes/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> - can we get a dropdown to select 30/60/120/240 minutes?)</p>
Alvin Ashcraft 🐿️<p>Meet the GitHub MCP Registry: The fastest way to discover MCP Servers</p><p><a href="https://github.blog/ai-and-ml/github-copilot/meet-the-github-mcp-registry-the-fastest-way-to-discover-mcp-servers/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.blog/ai-and-ml/github-c</span><span class="invisible">opilot/meet-the-github-mcp-registry-the-fastest-way-to-discover-mcp-servers/</span></a> </p><p><a href="https://hachyderm.io/tags/github" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>github</span></a> <a href="https://hachyderm.io/tags/ai" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ai</span></a> <a href="https://hachyderm.io/tags/mcp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mcp</span></a> <a href="https://hachyderm.io/tags/oss" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>oss</span></a> <a href="https://hachyderm.io/tags/apis" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apis</span></a> <a href="https://hachyderm.io/tags/mcpregistry" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mcpregistry</span></a></p>
Hacker News<p>Microsoft Python Driver for SQL Server</p><p><a href="https://github.com/microsoft/mssql-python" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/microsoft/mssql-pyt</span><span class="invisible">hon</span></a></p><p><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HackerNews</span></a> <a href="https://mastodon.social/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://mastodon.social/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Python</span></a> <a href="https://mastodon.social/tags/Driver" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Driver</span></a> <a href="https://mastodon.social/tags/SQL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SQL</span></a> <a href="https://mastodon.social/tags/Server" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Server</span></a> <a href="https://mastodon.social/tags/GitHub" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitHub</span></a> <a href="https://mastodon.social/tags/mssql" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mssql</span></a>-python <a href="https://mastodon.social/tags/Programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Programming</span></a></p>