#Tag · bonfire.cafe

Andrew Nesbitt boosted

Seth Larson

The Python Security Response Team membership is now public with a documented nomination process 🥳

https://devguide.python.org/developer-workflow/psrt/

#security #opensource #oss #python

Python Developer's Guide

Python Security Response Team (PSRT)

The Python Security Response Team (PSRT) is responsible for handling vulnerability reports for CPython and pip. Members: The PSRT publishes a full list of members and admins, included in the table ...

Seth Larson

@sethmlarson@mastodon.social · 6 hours ago

The Python Security Response Team membership is now public with a documented nomination process 🥳

https://devguide.python.org/developer-workflow/psrt/

#security #opensource #oss #python

Python Developer's Guide

Python Security Response Team (PSRT)

Rob Whittaker boosted

Mike Perham :sidekiq:

@getajobmike@ruby.social · 4 days ago

Announcing: the winners of the 2026 Gem Fellowship https://gem.coop/updates/2026-fellowship/ #ruby #oss

gem.coop

announcing the 2026 Gem Fellowship

Last month I announced my latest venture to support the Ruby open source community: the Gem Fellowship. I want this grant program to support and fund existing Ruby-related open source project maintainers and their ongoing efforts: fixing bugs and adding features for those libraries we know and love.

Mike Perham :sidekiq:

@getajobmike@ruby.social · 4 days ago

Announcing: the winners of the 2026 Gem Fellowship https://gem.coop/updates/2026-fellowship/ #ruby #oss

gem.coop

announcing the 2026 Gem Fellowship

Lambert Heller boosted

RenkeSiems

@RenkeSiems@openbiblio.social · 5 days ago

"Damit verändert sich auch, was ein Open-Source-Projekt überhaupt ist. Es wird nicht mehr als sozio-technisches Gefüge wahrgenommen, in dem Code, Dokumentation, Community und Finanzierung aufeinander bezogen sind, sondern als bloßer Datenlieferant für nachgelagerte Systeme. Das Projekt wird unsichtbar, während seine Produkte weiter zirkulieren."

#oss #slopification #llm

https://www.leitmedium.de/2026/01/09/das-drohende-ende-von-opensource-projekten-durch-llms-am-beispiel-von-tailwind/

Leitmedium

Das drohende Ende von Open-Source-Projekten durch LLMs am Beispiel von Tailwind CSS

Ich bin heute über eine längere Diskussion auf GitHub gestolpert, die exemplarisch zeigt, wie „KI“s bisherige Open-Source-Ökosysteme zerstören und derzeit keine Lösung in Sicht ist. Da das Thema exemplarisch interessant, aber auch etwas technisch ist, versuche ich, es hier noch einmal abstrakt zu beschreiben, auch wenn es an anderen Stellen dazu schon Berichte gibt. Es...

RenkeSiems

@RenkeSiems@openbiblio.social · 5 days ago

#oss #slopification #llm

https://www.leitmedium.de/2026/01/09/das-drohende-ende-von-opensource-projekten-durch-llms-am-beispiel-von-tailwind/

Leitmedium

Das drohende Ende von Open-Source-Projekten durch LLMs am Beispiel von Tailwind CSS

Em :official_verified: boosted

XWiki SAS

@xwiki@social.xwiki.com · last week

⏳ Just one day until @fosdem !

The XWiki team is heading to Brussels from all across Europe. We’re excited to meet the open-source community, share ideas, and explore how XWiki supports flexible, open collaboration.

See you this weekend!

#FOSDEM2026 #OpenSource #XWiki #fosdem #oss #foss #news #community

XWiki SAS

@xwiki@social.xwiki.com · last week

⏳ Just one day until @fosdem !

The XWiki team is heading to Brussels from all across Europe. We’re excited to meet the open-source community, share ideas, and explore how XWiki supports flexible, open collaboration.

See you this weekend!

#FOSDEM2026 #OpenSource #XWiki #fosdem #oss #foss #news #community

Alex, the Hearth Fire boosted

Joan, but festive 🎅🏼🎄

@clickhere@mastodon.ie · last week

Does anyone know, is @thegoodcloud okay? I haven't seen recent updates here (since August) or on their blog (since July), and the password re-set function doesn't appear to be working for me.

Which is kinda making me nervous..

(cc @nextcloud)

#TheGoodCloud #NextCloud #FOSS #OSS

Doug Webb boosted

Beth Pariseau

@BPariseau@hachyderm.io · 2 years ago

Here we go. S1E1!

Chad Whitacre is head of open source at Sentry, an application and performance monitoring software maker that moved to a business source license for its products in 2019, and then to a functional source license in November 2023. In this episode, he discusses the #tragedyofthecommons vs #enclosure, open source vs open products, #BSL vs #FSL and the story of "The #Codecov kerfuffle." #OSS #softwarecommons #opensource #opensourcesustainability #podcast

https://itopsquery.podbean.com/e/chad-whitacre-sentry/

Open source vs source available code and balancing freedom with sustainability | IT Ops Query

Chad Whitacre is head of open source at Sentry, an application and performance monitoring software maker that moved to a business source license for its products in 2019, and then to a functional source license in November 2023. Most recently, Chad has been working on a new project called Software Commons over the last six months, with the goal of balancing the user freedom prioritized by open source software with developer sustainability. In this episode, he discusses the tragedy of the commons vs enclosure, open source vs open products, BSL vs FSL and more.

Joan, but festive 🎅🏼🎄

@clickhere@mastodon.ie · last week

Does anyone know, is @thegoodcloud okay? I haven't seen recent updates here (since August) or on their blog (since July), and the password re-set function doesn't appear to be working for me.

Which is kinda making me nervous..

(cc @nextcloud)

#TheGoodCloud #NextCloud #FOSS #OSS

5h15h

@shish@techhub.social · 2 weeks ago

Just read https://arxiv.org/abs/2601.15494. #AI agents boost productivity by remixing #OSS, but weaken the human feedback loops that sustain it. Feels analogous to how ideas are now consumed through #LLMs instead of directly from source

arXiv.org

Vibe Coding Kills Open Source

Generative AI is changing how software is produced and used. In vibe coding, an AI agent builds software by selecting and assembling open-source software (OSS), often without users directly reading documentation, reporting bugs, or otherwise engaging with maintainers. We study the equilibrium effects of vibe coding on the OSS ecosystem. We develop a model with endogenous entry and heterogeneous project quality in which OSS is a scalable input into producing more software. Users choose whether to use OSS directly or through vibe coding. Vibe coding raises productivity by lowering the cost of using and building on existing code, but it also weakens the user engagement through which many maintainers earn returns. When OSS is monetized only through direct user engagement, greater adoption of vibe coding lowers entry and sharing, reduces the availability and quality of OSS, and reduces welfare despite higher productivity. Sustaining OSS at its current scale under widespread vibe coding requires major changes in how maintainers are paid.

Tobias van Beek

@tvbeek@phpc.social · 2 weeks ago

GitHash 1.5.0 released, this release adds support for PHP 8.5.

The package is to get the current git hash (short or long) in your application.

https://packagist.org/packages/tjvb/githash

#PHP #Git #PHP85 #package #oss #release

tjvb/githash - Packagist.org

Get the current git hash from your project.

Tobias van Beek

@tvbeek@phpc.social replied · 2 weeks ago

And I released Laravel GitHash 1.9.0

The package is to get the current git hash (short or long) in your Laravel application.

https://packagist.org/packages/tjvb/laravel-githash

#PHP #PHP85 #Laravel #release #oss

tjvb/laravel-githash - Packagist.org

Get the current git hash from your project, show it in your blade or add it to your logs.

Tobias van Beek

@tvbeek@phpc.social · 2 weeks ago

GitHash 1.5.0 released, this release adds support for PHP 8.5.

The package is to get the current git hash (short or long) in your application.

https://packagist.org/packages/tjvb/githash

#PHP #Git #PHP85 #package #oss #release

tjvb/githash - Packagist.org

Get the current git hash from your project.

Eric McCorkle

@emc2@indieweb.social · 2 weeks ago

Switch to #LibreWolf is going well. All my #Firefox plugins (disconnect, https everywhere lite+, noscript, KeepassXC integration) all work.

Bookmarks import perfectly fine. It even seems to be faster and smoother.

#OSS #OpenSource

daniel:// stenberg:// boosted

Socket

@SocketSecurity@fosstodon.org · 2 weeks ago

curl maintainer @bagder said the project is shutting down its bug bounty program after maintainers were buried under low-quality, AI-generated slop reports. Security disclosure systems that assume unlimited #OSS maintainer labor are reaching their limits.

https://socket.dev/blog/curl-shuts-down-bug-bounty-program-after-flood-of-ai-slop-reports

Socket

curl Shuts Down Bug Bounty Program After Flood of AI Slop Re...

A surge of AI-generated vulnerability reports has pushed open source maintainers to rethink bug bounties and tighten security disclosure processes.

Socket

@SocketSecurity@fosstodon.org · 2 weeks ago

https://socket.dev/blog/curl-shuts-down-bug-bounty-program-after-flood-of-ai-slop-reports

Socket

curl Shuts Down Bug Bounty Program After Flood of AI Slop Re...

A surge of AI-generated vulnerability reports has pushed open source maintainers to rethink bug bounties and tighten security disclosure processes.

Hacker News

@h4ckernews@mastodon.social · 3 weeks ago

Bettershot an OSS Alternative of Cleanshot

https://github.com/KartikLabhshetwar/better-shot

#HackerNews #Bettershot #Cleanshot #OSS #OpenSource #Screenshot #Tool

GitHub

GitHub - KartikLabhshetwar/better-shot: An open-source alternative to CleanShot X for macOS. Capture, edit, and enhance your screenshots with professional quality.

An open-source alternative to CleanShot X for macOS. Capture, edit, and enhance your screenshots with professional quality. - KartikLabhshetwar/better-shot

Rob Whittaker boosted

|7eter l-|. l3oling 🧰

@galtzo@ruby.social · 3 weeks ago

I am going to start charging for all of my MIT licensed open source software (which the MIT license allows!), and I am interested in your thoughts about that. The internet would choke without it, and yet I can’t afford health insurance.
#FLOSS #OSS

Boško Ivanišević boosted

Álvaro R.

@xenodium@indieweb.social · 3 weeks ago

🦬 New Bending Emacs episode ✨

https://www.youtube.com/watch?v=R2Ucr3amgGg

#mistral #emacs #qwen #claude #anthropic #ai #google #goose #gemini #linux #github #macos #oss #foss #opencode #codex #vibe #macos #linux #windows #video #youtube #indie #indiedev