Welcome to the RB family, Synkplay π₯³
https://apt.izzysoft.de/packages/com.reddnek.syncplay
Synkplay synchronizes playback on different devices and makes sure everyone is watching the same thing at the same second, even if they're miles away.
Thanks to the help of its developer, we finally succeeded with #ReproducibleBuilds for it at the #IzzyOnDroid repository 
Aaandβ¦ Welcome to the RB family, Sshd4a π₯³
https://apt.izzysoft.de/packages/com.hardbacknutter.sshd
Sshd4a provides an 'sshd' server with shell access, rsync and scp/sftp services. Thanks to the help of its developer, it could now be confirmed to be reproducible
Coming to your favourite repository with the next sync π
Inspired by the Debian 14 announcement, Iβve finally made my json-store #Python package create reproducible builds.
This was super easy thanks to all the work done by the hatch build system.
https://hatch.pypa.io/1.16/config/build/#reproducible-builds
You should too. π
Dear opensource developers,
I added an "adoption" list to the repro-env README, if you publish pre-compiled binaries and you successfully adopted it to allow anyone to reproduce them from source code to prove the absense of a build server compromise, you are very welcome to add yourself to the list. πΊ
https://github.com/kpcyrd/repro-env#adoption
#reproducible #reproduciblebuilds #supplychainsecurity #rust
Debian 14 Forky is mandating bit-for-bit identical builds to stop supply chain attacks. Discover how this shifts trust from servers to auditable source code.
More details here: https://ostechnix.com/debian-linux-reproducible-builds/
#Debian14 #DebianForky #ReproducibleBuilds #Security #Linux #Packages #SupplyChainSecurity
Hey #Google, cool you're adding a bit of #BinaryTransparency. Unfortunately, it doesn't mean much without #FreeSoftware #OpenSource and #ReproducibleBuilds. When can we expect you to adopt those practices?
https://blog.google/security/bringing-binary-transparency-to-the-android-ecosystem/
For the record #FDroid has offered binary transparency since 2017 https://gitlab.com/fdroid/fdroidserver/-/merge_requests/226
And we even offer binary transparency for your #Gradle and #AndroidSDK binaries
https://f-droid.org/2021/02/05/apis-for-all-the-things.html#binary-transparency-logs
How about expanding your logging to all your binaries?
Debian's mandate for reproducible packages aims to revolutionize software supply chain security, but the real challenge extends far beyond verifying source code. The article explains how achieving byte-for-byte identical binaries requires meticulously neutralizing every source of non-determinism across the entire build toolchain and package ecosystem, a formidable engineering feat for aβ¦
#cybersecurity #debian #reproduciblebuilds
π€ This post was AI-generated.
Why Reproducible Builds?
μ¬ν κ°λ₯ν λΉλ(reproducible builds)λ λΉλ νκ²½μ΄λ μ»΄νμΌλ¬κ° μ μμ μΌλ‘ λ³μ‘°λμλμ§ μ‘°κΈ°μ νμ§ν μ μκ² νμ¬ λ³΄μ 곡격μ λμνλ€. λν, λ€μν νκ²½μμμ μΌκ΄λ λΉλ ν μ€νΈλ₯Ό ν΅ν΄ νμ§ λ³΄μ¦κ³Ό λλ²κΉ μ μ©μ΄νκ² νλ©°, λ°μ΄λ리 μ°¨μ΄λ₯Ό μ΅μνν΄ μ μ₯ 곡κ°κ³Ό λ€νΈμν¬ λΉμ©μ μ κ°νλ€. κ°λ° μλ ν₯μκ³Ό μμ‘΄μ± ν¬λͺ μ± ν보, μννΈμ¨μ΄ κ΅¬μ± μμ λͺ©λ‘(SBOM) μμ±μλ κΈ°μ¬νμ¬ λ³΄μκ³Ό κ·μ μ€μμ νμμ μ΄λ€. μνλ©λ κ°λ° νκ²½κ³Ό κ²°ν©νλ©΄ μ μν νκ²½ μ¬νκ³Ό 보μ κ°νκ° κ°λ₯ν΄ νλ DevSecOps μ€μ²μ μ ν©νλ€.
https://reproducible-builds.org/docs/why/
#reproduciblebuilds #security #softwaredevelopment #sbom #devsecops
Debian alza l'asticella della sicurezza rendendo obbligatorie le "Reproducible Builds" per Debian 14 "Forky".
Ogni pacchetto dovrΓ poter essere ricompilato partendo dal sorgente originale pena la sua esclusione.
Questo garantisce che il software che installiamo sia esattamente quello dichiarato dagli sviluppatori, proteggendoci da manipolazioni durante la fase di compilazione.
https://itsfoss.com/news/debian-makes-reproducible-builds-mandatory/
#Debian #Linux #Sicurezza #ReproducibleBuilds #SoftwareLibero #Privacy
Izzy
.:. brainsik
kpcyrd π΄
OSTechNix
Hans-Christoph Steiner
elenavosk
sayzard
Nicola Fioretti 
