Michael Blum| mblum.me 🥝
Joel Drapper's technical investigation reveals the smoking gun - Ruby Central's "security measures" left Andre with full production access while removing his GitHub permissions. David Rodriguez loses gem ownership with only 1 of 8 owners consenting. This wasn't security. It was theater with screenshots to prove it.| Seuros Blog - Navigation Logs from the Ruby Nebula
The smoking gun revealed - Shopify threatened to pull funding unless Ruby Central seized control of RubyGems. hsbt was the insider who enabled it. The rv project was seen as a threat. This is the full story of corporate capture.| Seuros Blog - Navigation Logs from the Ruby Nebula
Hours after Ruby Central's Q&A, board member Freedom Dumlao broke ranks to explain his vote. Martin Emde's devastating response exposes the lies Ruby Central told their own board.| Seuros Blog - Navigation Logs from the Ruby Nebula
Ruby Central's Q&A happened, but the real story emerged from a board member's confession and a maintainer's devastating rebuttal revealing the full scope of the governance breakdown.| Seuros Blog - Navigation Logs from the Ruby Nebula
Ruby Central forcibly removed the people who built RubyGems for over a decade, replacing them with a 'Director of Open Source' whose last Ruby code was a conference tutorial in 2010. This is the anatomy of a hostile takeover disguised as 'strengthening stewardship.'| Seuros Blog
米国においてオープンソース・ライセンスが契約ではなく「著作権の一方的な許諾」であると長らく見做され、Jacobsen v. Katzerの訴訟でその効力が法的にも認められるようになった流れは前回の記事で解説したが、一方で続きを読む "契約としてのオープンソース・ライセンスの歴史と現実に迫る違反リスク :契約×著作権の二層執行の時代へ"| Shuji Sado
オープンソースライセンスで頒布されるAIモデルが増えてきてはいるが、トレーニングデータを含めた全ての関連コンポーネントがオープンであるAIシステムには幾つかの有望なシステムが生まれているものの未だ発展途上にあると言える。続きを読む "OpenMDWライセンス初期評価:オープンAIライセンスの革命か、オープンウォッシュの免罪符か?"| Shuji Sado
QEMUプロジェクトは、AIツールによって生成されたコードによる貢献を拒否する方針を正式に取り決めた。その核心的な理由は、貢献者が提出するパッチの正当性を証明するために用いているDeveloper’s Cer続きを読む "オープンソースプロジェクトはAI生成コードをどのように受け入れるべきか? — QEMUの禁止ポリシーからの教訓"| Shuji Sado
Debian Projectが毎年開催している開発者会議「DebConf」というイベントがある。もう随分と長い歴史があるのだが、一度として日本で開催したことはない。日本ではDebian GNU/Linuxが受け入れられて続きを読む "何故、DebConfは日本で未開催なのか?自由の闘士を来日させる道程"| Shuji Sado
DeepSeekは世界に衝撃を与えているが、その要因としては、中国から米国の巨大AIベンダーを脅かす新たな勢力が現れたことに加え、AIモデルがMITライセンスというオープンソースライセンスでも頒布されている点が大きいと考続きを読む "AIモデルがオープンソースであるために完全な学習データの公開は必要なのか?"| Shuji Sado
DeepSeekアプリがユーザーの入力や出力といった情報を中国内のどこかに送信している可能性について世界中で大騒ぎとなっているが、これは特に今始まったことではなく中国の国内法に依拠する問題である。元々この文書、というより続きを読む "DeepSeekは何故ユーザーの検閲を行いつつオープンソースなのか? – 中国における生成AI規制"| Shuji Sado
Meta Platforms社が開発するAIモデルのシリーズである「Llama」は、高性能で費用対効果が高く、比較的寛容な条件で頒布されていると多くの人々から見做されていることからシステムへの採用や派生モデルの開発等の利続きを読む "Llamaライセンス契約のオープンソースへの適合性について"| Shuji Sado
オープンソースAI(Open Source AI)とは、オープンソースの状態にあるAIシステムのことである。これはある意味で自明なのではあるが、「オープンソースの定義」(OSD)を管理している米国の非営利団体Open S続きを読む "オープンソースAIとは何か? – Open Source AI Definition策定経緯とドラフト版概説"| Shuji Sado
オープンソースに限らずソフトウェア業界においては、distributeもしくはdistributionという単語を使用することが多い。そして、その単語への日本語訳としては「配布」を割り当てることが多いだろう。しかしながら続きを読む "「頒布」という訳語を使用するのは何故か?"| Shuji Sado
著作権関連の話題においてパブリックドメイン(Public Domain、公有)という言葉がしばしば出てくる。このパブリックドメインという言葉は特にソフトウェアの業界では根強く誤解されてきた用語であり、現在では少なくなった続きを読む "何故オープンソースはパブリックドメインを含まないのか?"| Shuji Sado
オープンソースという用語は自由ソフトウェア(Free Software)という用語を置き換えるために作られたのは周知の事実である。それならば、両者の意味する所は全く同じであるはずであるが、歴史的経緯により両者には別々にそ続きを読む "オープンソースと自由ソフトウェアの違い"| Shuji Sado
「オープンソースの定義」はDebianフリーソフトウェア・ガイドライン(DFSG)を流用したことは周知の事実であるが、何故Debianプロジェクトは一般的にはFree Softwareという用語の祖とも管理者ともみなされ続きを読む "定義から見るオープンソースに至るまでの歴史"| Shuji Sado
2023年8月10日、長らくオープンソース業界の優等生として一般的に扱われてきたHashiCorp社がTerr…| Shuji Sado
Legacy support isn't just technical debt—it's innovation debt. Here's why I finally bumped my Ruby gem to require version 3.2.0 and why you should stop dragging corpses through your codebase.| Seuros Blog - Navigation Logs from the Ruby Nebula
Diese ist nämlich das Sie nur sonderlich resilient sind solange auch genug Leute solche föderierten Systeme selber betreiben. Der Ausfall der Matrix.| Björns Techblog
After 15 years since the first reports ruby gems remain broken, even tough I wrote the patch that fixes everything years ago.| Felipe Contreras
Researchers found reasoning inefficiencies in open-weight models, with token usage often exceeding closed counterparts by wide margins.| Digital Information World
Yes, ObjectivePGP is backed by the organization of a Fortune 500 company founder. We signed a 1-year long grant agreement, two months ago, and I'm delighted with it. What does that mean? That happened. My three years old project got funding. Around May we had the first talk| Marcin Krzyżanowski
With "third-party", we usually mean someone not part of an agreement, but who may still be influencing (or influenced by) it. When this party is an Open Source project we depend on, I propose we use the term "second-party" instead. Here's why.| Code = Conversation
Learn how to seamlessly migrate your infrastructure from Terraform to OpenTofu, the open-source alternative with encryption support, faster performance, and vendor independence. Step-by-step migration guide included.| ITGix
The rise of single-maintainer projects like SQLite and curl isn't an anomaly - it's the future. Why committees kill innovation and how solo developers or super focused teams with clear vision will reshape open source.| Seuros Blog
Why open source maintainers burn out: an autopsy of entitlement culture. Dropping legacy support triggered an email storm that perfectly demonstrates the parasitic mindset keeping us trapped in the past.| Seuros Blog
After 12 years maintaining state_machines, I dropped Rails 7.1 support. This is the story of why forever backward compatibility kills innovation and how I'm building for the future, not maintaining the past.| Seuros Blog
How open source contributions became immutable proof of skills, why GitHub matters more than LinkedIn, and the future where code speaks louder than credentials.| Seuros Blog
Beyond "people who write code" - the 15+ types of contributors that make open source projects thrive, and why every role matters in the digital ecosystem.| Seuros Blog
From critic to maintainer in one conversation: what happens when you complain about a gem and suddenly become responsible for fixing it.| Seuros Blog
The hidden costs of open source development that every Twitter advocate with a stable salary won't tell you about.| Seuros Blog
As an open-source maintainer, I'm yanking broken package versions. Here's why you should too.| Seuros Blog
When AI-driven speed meets open source ecosystems, we get 'vibe packages'—libraries published fast but maintained poorly. Here's the impact.| Seuros Blog
How AI coding assistants are influencing API design in Ruby, and whether we're reinforcing old patterns or creating new opportunities.| Seuros Blog
When I work on multi-lingual projects, it always takes a lot of time to estimate and prioritize the localization process. Even if you use machine translation, you can't just translate all languages in the world, since it takes a long time, and LLM will spend all your money on garbage generations like chars "aa" repeated thousands of times in a row. I built the NPM package langstats to solve this problem.| vitonsky.net
Hey Rails devs! 👋 If you’re using Active Storage in your Ruby on Rails applications (and let’s be honest, it’s pretty awesome for handling file uploads!), you’ve probably experienced its power and simplicity. But have you ever wished you could easily see what’s going on under the hood? Like, a proper dashboard to visualize your blobs, attachments, and overall storage usage?| Giovanni Panasiti - Personal Website and Blog
When I first started writing the Active Storage Dashboard gem, I wasn’t aiming to change the world. I had a simple problem: managing attachments in Rails apps was tedious, error-prone, and not at all visible. But a small personal itch can spark bigger things. Open source isn’t just about code, it’s about showing who you are, what you value, and how you solve problems. It’s the ultimate resume.| Giovanni Panasiti - Personal Website and Blog
In-depth analysis of Xorg development branches and the neglect users suffer from.| Felipe Contreras
Most of the talks that I attended at Open Source Summit last week in Denver were in the general category of recruting and mentoring of new contributors. This is a bit of a brain dump of that content. The first talk I want to highlight was a panel session featuring Dawn Foster, Ruth Ikegah, Matt … Continue reading Mentoring and recruiting in open source→| Notes In The Margin
Big tech companies invest a lot of effort to sell us the point that every good programmer must have their own open source project. Many programmers have open source side projects, but quite few of them can explain why they waste their time on it. As a result, they work for free, to make big tech rich. Actually, open source can't make money for programmers, but may be useful as a promotion tool for them.| vitonsky.net
There are many myths about X and Wayland, here I debunk the most common ones.| Felipe Contreras
Due to some recent Rust drama in the Linux kernel I’ve decided to explain in detail why the Rust ideology simply isn’t compatible with the Linux way.| Felipe Contreras
Celebrate Free Software Day with us as we share our favorite open-source projects and the passion behind building tools that empower the community!| bitcrowd blog Blog
As the founder of Packagist Conductors, a small company with just eight employees, I've had a front-row seat to one of the most pressing challenges in software development today: sustainable open source funding. We found our own way to fund a major open source project, and managed to avoid becoming| Private Packagist
In 2018 — seeing the figure through the ground — I used the Laws of Media developed by Marshall and Eric McLuhan to examine the impact of social media. McLuhan’s Laws state that every medium (technology) used by people has four effects. Every medium extends a human property, obsolesces the previous medium (& often makes it a luxury good), retrieves a much older medium, and reverses its properties when pushed to its limits. These four aspects are known as the media tetrad. This image w...| Harold Jarche
I decided to set aside a monthly budget and sponsor a few open source projects I regularly use.| Andrea Grandi
200ok and Ardeo hosted the Swiss satellite venue for EmacsConf 2024 in Lucerne, bringing together the Emacs and Free Software community for two days of inspiring talks, including a keynote on Org mode's future by new maintainer Ihor Radchenko. The event showcased the vibrant state of the Emacs ecosystem through technical presentations, collaborative hacking sessions, and community networking.| 200ok.ch
‘Decentralised social media is more than just a technical shift; it’s a step toward restoring autonomy and trust in our digital lives, empowering individuals and communities to connect without compromising their values or privacy.’ —Zhilin Zhang, University of Oxford, 2024 In November 2022 — from platforms to covenants — I wrote that I firmly believe open protocols connecting small pieces loosely joined is a better framework than any privately owned social media platform. Twitter ...| Harold Jarche
Experience the magic of EmacsConf 2024 in person! Join us at our Swiss satellite venue in Lucerne for two days of Emacs enlightenment, community connection, and free software celebration.| 200ok.ch
We're joining the Open Source Pledge because our business is built on and with open-source software. We will spend at least $2,000 per full-time developer on open-source projects and maintainers. Sentry launched this initiative after a $500,000 distribution across their open-source dependencies, and others followed. Sustainability| Private Packagist
Composer 1.x has served the PHP community well, but with Composer 2.0 released four years ago in October 2020, it's time to move forward. As of today, more than 95% of Composer updates are using v2, benefiting from its significant improvements in performance, memory usage, and| Private Packagist
How we can build a healthy and sustainable funding model for open source software which is being used by thousands of companies and developers around the world.| Andrea Grandi
(Pressemitteilung des KSI Siegburg, den 30. April 2024) Siegburg. Dass unser ökonomisches und gesellschaftliches Handeln immer auch eine globale Dimension hat und mit Blick auf nachfolgende Generationen gestaltet werden sollte, ist ein wesentliches Element des Prinzips der Nachhaltigkeit. Doch was genau bedeutet dies für die digitale Welt? Das Katholisch-Soziale Institut (KSI) bekennt sich im RahmenWeiter lesen| LUKi e.V.
Open-source projects are developed in plain sight — the current status is almost always fully visible to everyone. Which is why posting comments like “Any updates?” is just about the least helpful comment anyone can make.| Justin Mayer
Fortressa is the app store for open source, providing you with open-source SaaS alternatives to take back control over your data and reduce your software costs.| Justin Mayer
Maintainers and authors are found everywhere throughout our dependency trees. This includes the authors of the tooling others use for maintaining, building, testing, writing and running the infrastructure they depend on. Even maintainers depend on other maintainers.| blogs.perl.org
Escrito por Daniel Olivares Introducción Esta es la parte 4 de nuestra serie de artículos para mejorar la seguridad de nuestras PYMES y Hogar, los artículos anteriores son: Securitizando tu red: Sy…| FINSIN
WebViewOverlay Widget is an OpenSourced Android library that provides a drop-in solution for loading a URL in an Overlay WebView in full screen mode.| tech&Life
This article walks through the process of publishing an OpenSourced Android library to JCenter.| tech&Life
There are many ways to support your favorite open-source project. Even though code contributions are the most obvious method, not everyone - including me - can do so. I just want to share some ideas, on how someone can support the open-source space. Coding As mentioned before, the most obvious contribution to an open-source project might be to code yourself. This can be a small bug fix, a new feature, or even becoming a maintainer of the whole project, depending on your time and capabilities....| ITTavern.com
Join us for EmacsConf 2023 in Lucerne. Engage in talks about GNU Emacs, Lisp, and the Free Software movement.| 200ok.ch
Last weekend, 200ok and Ardeo were proud to be satellite venues for| 200ok - Accelerating Publishing
EmacsConf is going strong in 2022 - it's a two-day (Dec 3 and 4), two-tracks conference.| 200ok - Accelerating Publishing
Some images from the official Zürich Satellite of EmacsConf 2019.| 200ok.ch
EmacsConf 2019 is coming closer! Save the date: November 2nd, 2019.| 200ok - Accelerating Publishing
We all use calendars. Some digital calendars have a standardized| 200ok - Accelerating Publishing
In an collaborative effort with OpnTec and| 200ok - Accelerating Publishing
Swiss Crowdfunder is an OSS crowd funding and equity funding platform| 200ok - Accelerating Publishing
As part of our ongoing effort in giving back to the open source| 200ok - Accelerating Publishing
We just released our newest product: Swiss Crowdfunder| 200ok - Accelerating Publishing
Short friendly announcement: 200ok has just released it's 3.0 website:| 200ok - Accelerating Publishing
In this blog post you will learn how to fine-tune LLMs using Hugging Face TRL, Transformers and Datasets in 2024. We will fine-tune a LLM on a text to SQL dataset.| www.philschmid.de
Admission Control (GitHub) is a micro-framework written in Go for building and deploying dynamic admission controllers for your Kubernetes clusters. It reduces the boilerplate needed to inspect, validate and/or reject the admission of objects to your cluster, allowing you to focus on writing the specific business logic you want to enforce.| questionable services
Updated September 2020: Now incorporates the matrix functionality supported in CircleCI.| questionable services
I was writing this up for some internal conversations, but felt like this could be a more generic list for my blog. Hopefully this’ll help someone in the f...| jjasghar.github.io
Most of us are relatively familiar with system monitoring: we monitor RAM, CPU, or disk usage over time and receive alerts when some thresholds are reached.| blog.mathieu-leplatre.info
At last, with all this surrounding pressure, you finally decided to write tests.| blog.mathieu-leplatre.info
A couple of weeks ago, I had a very interesting reading :| blog.mathieu-leplatre.info
Five years ago I started a small GitHub project aimed to run Bitlbee seamlessly in a container.| Michele Bologna
Update: Cloudflare’s response indicates that this is a customer-specific rule and not a global policy. They did not mention what kind of rule is triggering this behavior though.| lwt hiker
Open source is a term that originally referred to open source software (OSS). Open source software is code that is designed to be publicly accessible—anyone can see, modify, and distribute the code as they see fit.| blog.yezz.me
We will show in this article how one can surgically modify an open-source model, GPT-J-6B, and upload it to Hugging Face to make it spread misinformation while being undetected by standard benchmarks.| Mithril Security Blog
The open source strategy at many companies is rooted in security and compliance. I think that a data-driven, risk-management approach may offer an interesting framework for driving a broader open source strategy.| justin.abrah.ms
A brief explaination of the differences, as I see them, of feature flags, dynamic config and experimentation| justin.abrah.ms
My recent ban shows how Codes of Conduct easily turn a community authoritarian.| Felipe Contreras