Mastodawn

The Programmer’s Fulcrum: 20 March, 2026

Welcome to this week’s The Programmer’s Fulcrum.

It’s your weekly review of the essential news in the Open Media Network and Fediverse development communities with a focus on devastating big tech via Techno Anarchism. We aim to provide actionable content you can use to destroy Techno Feudalism each week. It has the additional benefit of weakening authoritarianism.

IMHO, the best way to do […]

https://newsletter.mobileatom.net/the-programmers-fulcrum-20-march-2026/ #ActivityPub #Akkoma #ATProto #bluesky #Buttondown #CSS #Drupal #DrupalCMS #fediverse #Friendica #GNOME #Gutenberg #Holos #HTML #HTMX #Hubzilla #Inkwell #javascript #Joplin #Linux #Madblog #Markdown #Mastodon #MicroBlog #NodeBB #nodejs #OMN #OpenProject #PostmarketOS #Sigil #Tangled #Twig #WebComponents #WordPress

RedPacket Security 3d ago

CVE Alert: CVE-2026-32698 - opf - openproject - https://www.redpacketsecurity.com/cve-alert-cve-2026-32698-opf-openproject/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-32698 #opf #openproject

CVE Alert: CVE-2026-32698 - opf - openproject - RedPacket Security

OpenProject is an open-source, web-based project management software. Versions prior to 16.6.9, 17.0.6, 17.1.3, and 17.2.1 are vulnerable to an SQL injection

RedPacket Security

Offensive Sequence 3d ago

🚨 CRITICAL: CVE-2026-32698 in OpenProject (CVSS 9.1) enables SQL injection via admin-created custom fields, leading to potential RCE if chained with repo module bug. Patch to 16.6.9/17.0.6/17.1.3/17.2.1+ now! https://radar.offseq.com/threat/cve-2026-32698-cwe-89-improper-neutralization-of-s-a9afd70e #OffSeq #SQLInjection #OpenProject #InfoSec

Offensive Sequence 3d ago

🚨 OpenProject CRITICAL XSS (CVE-2026-32703): Attackers with repo push access can inject persistent scripts via filenames, impacting all users viewing affected pages. Patch to 16.6.9/17.0.6/17.1.3/17.2.1+ now! https://radar.offseq.com/threat/cve-2026-32703-cwe-79-improper-neutralization-of-i-f2afc489 #OffSeq #XSS #OpenProject #infosec

Offensive Sequence 4d ago

⚠️ CRITICAL: CVE-2026-32703 in OpenProject (<16.6.9, <17.0.6, <17.1.3, <17.2.1) enables persistent XSS via repo filenames. Attackers w/ push access can inject scripts — risk: session hijack, data theft. Patch now! https://radar.offseq.com/threat/cve-2026-32703-cwe-79-improper-neutralization-of-i-f2afc489 #OffSeq #XSS #OpenProject #Vuln

OpenProject 4d ago

We are excited to announce new releases of the OpenProject integration for Nextcloud (versions 3.0.0 and 2.11.2).

This update introduces support for Nextcloud 33, along with several improvements to stability, debugging, and overall user experience.

We recommend updating to benefit from the latest enhancements.

Learn more: https://www.openproject.org/blog/nextcloud-integration-release-3-0-0/

#OpenSource #OpenProject #Nextcloud #Collaboration

Marcel SIneM(S)US Mar 13

#Projektmanagement-Tool #OpenProject 17.2 öffnet sich für KI-Systeme | iX Magazin https://www.heise.de/news/OpenProject-17-2-integriert-MCP-Server-fuer-KI-gestuetzte-Projektarbeit-11208972.html #ProjectManagement #OpenSource

Projektmanagement-Tool OpenProject 17.2 öffnet sich für KI-Systeme

OpenProject 17.2 bringt einen MCP Server für die Anbindung von KI-Systemen, Meeting-Vorlagen, Budget-Widgets und mehrere Security-Fixes.

heise online

Show thread

alexanderadam Mar 12

@enigmax I understand that you don't like the approach of having proprietary enterprise features but may I ask how you'd like to tackle having FOSS development financed?

I also know European projects who do it the same way (i.e. #OpenProject and #OpenCloud ).

Would it be better for you if the GitLab HQ would be in Brussels but there would still be proprietary modules or is both unacceptable for you?

OpenProject Mar 12

Discover how Agile Boards in OpenProject help teams organize and track work visually. From Scrum to Kanban and sprint planning — Agile workflows made flexible.

More improvements on Agile workflows and boards are coming soon. 👀🎨

#OpenProject #Agile #OpenSource

https://youtu.be/DeOOOuRutZ8