Mastodawn

why does everyone write webapps and ship electron when you have such great native UI frameworks here! for example... *opens GObject docs* oh- um.. *opens Qt docs* oh... *looks up native windows development* oh no....

Janek Bevendorff May 22

daniel:// stenberg://May 22

not even half-way through this #curl release cycle we are already at 11 confirmed vulnerabilities - and there are three left in the queue to assess and new reports keep arriving at a pace of more than one/day

11 CVEs announced in a single release is our record from 2016 after the first-ever security audit (by Cure 53).

Janek Bevendorff May 17

Der Postillon 📯May 17

Risiko Lastenrad: 9 von 10 Fahrern überleben Beschuss mit Marschflugkörper nicht https://www.der-postillon.com/2023/05/risiko-lastenrad.html

Risiko Lastenrad: 9 von 10 Fahrern überleben Beschuss mit Marschflugkörper nicht

Düsseldorf (dpo) - Vor allem in Städten sieht man sie immer häufiger: Lastenfahrräder, die als umweltschonendende Transportmittel für Waren...

Blogger

Janek Bevendorff May 16

Natasha

🇪🇺May 15

How it feels to be alive lately.

by Sarah Andersen

Janek Bevendorff May 14

European Commission May 14

🚆 One journey. One ticket. Full rights.

We’re making cross-border train journeys simpler:

🎫 One booking across rail operators
Find, compare and book trains from different operators in one transaction.

🛡️ Full passenger rights for the whole journey
If you miss a connection on a single ticket, you’ll get assistance, including rerouting, reimbursement and compensation.

📲 Clearer pricing info
Travel options shown fairly and clearly, so you can easily compare and choose.

https://link.europa.eu/jMThrK

Janek Bevendorff May 13

Harry Sintonen May 13

CVE-2026-42945 Heap-based Buffer Overflow in #nginx combined with the linux kernel LPEs is "not great" as we say in the industry.

https://depthfirst.com/nginx-rift

#CVE_2026_42945

NGINX Rift

An 18 year old memory corruption flaw in NGINX Plus and NGINX Open Source lets an unauthenticated attacker crash worker processes or execute remote code with crafted HTTP requests.

Janek Bevendorff May 13

daniel:// stenberg://May 12

High Quality chaos (a slide from a talk I do next week on this topic)

Janek Bevendorff May 11

Team KeePassXC May 11

RE: https://mastodon.social/@bagder/116554421875449945

"All modern AI models are good at this now. Anyone with time and some experimental spirits can find security problems now. The high quality chaos is real."

Second that. The number of confidential security reports for KeePassXC has also gone up (though nothing major yet). Those AI reports used to be slop, but they are now mostly legitimate . We don't know which models are being used by the reporters, but occasionally, we get the same things reported multiple times within the span of just days.

Janek Bevendorff May 11

daniel:// stenberg://May 11

#Mythos finds a #curl vulnerability

yes, as in singular one.

https://daniel.haxx.se/blog/2026/05/11/mythos-finds-a-curl-vulnerability/

Mythos finds a curl vulnerability

yes, as in singular one. Back in April 2026 Anthropic caused a lot of media noise when they concluded that their new AI model Mythos is dangerously good at finding security flaws in source code. Apparently Mythos was so good at this that Anthropic would not release this model to the public yet but instead … Continue reading Mythos finds a curl vulnerability →

daniel.haxx.se

Janek Bevendorff May 9

Joep Bos-Coenraad May 8

Tech companies are destroying social structures, preventing young people from building romances and steady relations.

Connor Leahy explains spot on how tech companies are acting in a 'wild west' fashion. Getting very rich without taking societal responsibility while leaving a great mess behind.

(I was sent a link to this video on a wild-west platform, hope they're OK with me sharing it here. Find the full video here: https://nexus-instituut.nl/en/person/connor-leahy )