#Tag · bonfire.cafe

What's going on with Syncthing for Android?
It seems like the project suddenly disappeared and the maintainer has set his profile on github to privat.

However, it seems like another github account has taken over the project. There has been no communication why the project has been handed over. This is worrying, since the new account has access to the signing keys of the app and at least theoretically it could be possible to add malicious code to this widely used app.

I would like to keep thinking that Syncthing is still trustworthy, but to be honest, as long as we don't know what's going on, I'm not sure.

https://www.heise.de/en/news/Key-handover-in-the-dark-Syncthing-fork-community-raises-alarm-11107337.html

#syncthing #takeover #opensource

Doerk

@NebulaTide@mastodon.bsd.cafe · 3 weeks ago

What's going on with Syncthing for Android?
It seems like the project suddenly disappeared and the maintainer has set his profile on github to privat.

I would like to keep thinking that Syncthing is still trustworthy, but to be honest, as long as we don't know what's going on, I'm not sure.

https://www.heise.de/en/news/Key-handover-in-the-dark-Syncthing-fork-community-raises-alarm-11107337.html

#syncthing #takeover #opensource

STOP OCCUPATION 🍉 S. Costa boosted

𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕

@kubikpixel@chaos.social · 4 weeks ago

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

Cybersecurity researchers have discovered vulnerable code in legacy Python packages that could potentially pave the way for a supply chain compromise on the Python Package Index (PyPI) via a domain takeover attack.

https://thehackernews.com/2025/11/legacy-python-bootstrap-scripts-create.html

#python #bootstrap #pypi #itsecurity #py #domaintakeover #domain #takeover #coding #cybersecurity #supplychain #attack #packaging #itsec #infosec

𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕

@kubikpixel@chaos.social · 4 weeks ago

Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages

https://thehackernews.com/2025/11/legacy-python-bootstrap-scripts-create.html

#python #bootstrap #pypi #itsecurity #py #domaintakeover #domain #takeover #coding #cybersecurity #supplychain #attack #packaging #itsec #infosec

Nonilex

@Nonilex@masto.ai · 4 months ago

On Saturday, #Trump commented about #Chicago crime & #Illinois Gov. #JBPritzker on his Truth Social site: “Six people were killed, & 24 people were shot, in Chicago last weekend, & JB Pritzker, the weak & pathetic Governor of Illinois, just said that he doesn’t need help in preventing CRIME. He is CRAZY!!! He better straighten it out, FAST, or we’re coming! MAGA. President DJT”

#MilitaryState #WhiteSupremacy #law #military #NationalGuard #PosseComitatusAct #authoritarianism #TrumpCoup2

Nonilex

@Nonilex@masto.ai replied · 4 months ago

#Trump admin ofcls described the #immigration crackdown as part of a larger effort to expand the #federal law enforcement presence in major #Democratic-run #cities….

Unlike the recent federal #takeover of policing in #WashingtonDC, the #Chicago operation is not expected to rely on the #NationalGuard or #military & is focused exclusively on immigration instead of being cast as part of a broad campaign against crime, the ofcls said.

#MilitaryState #WhiteSupremacy #law #PosseComitatusAct #tyranny