Dave Troy @davetroy

43 posts37 participants3 posts today

**ResearchBuzz: Firehose** @researchbuzz_firehose@rbfirehose.com · 5h

ResearchBuzz: Firehose @researchbuzz_firehose@rbfirehose.com

TechSpot: Free tax filing tool Direct File is getting the open source treatment. “The Direct File repository has already been forked by Code for America, a nonprofit dedicated to bringing modern, user-focused technology to government services. With its code now open source and embraced by the civic tech community, the future of Direct File appears increasingly independent from federal […]

https://rbfirehose.com/2025/06/08/techspot-free-tax-filing-tool-direct-file-is-getting-the-open-source-treatment/

ResearchBuzz: Firehose | Individual posts from ResearchBuzz · 5hTechSpot: Free tax filing tool Direct File is getting the open source treatment | ResearchBuzz: Firehose

More from

ResearchBuzz: Firehose

#github #opensource #politics

**Erik L. Midtsveen** @midtsveen@social.linux.pizza · 13h

13h

Erik L. Midtsveen @midtsveen@social.linux.pizza

Looks like my #propaganda is working. When I switched from #GitHub to #Codeberg, I made some #stickers and left them around #town.

Today, someone scanned my #QRcode and ended up on my #website at https://midtsveen.codeberg.page

midtsveen.codeberg.pageHome - Erik L. MidtsveenAnarcho-syndicalist and unapologetically queer with a gender-fluid identity. Advocate for radical inclusion, privacy, and open-source software.

**Eduardo Medina** @edlinks@mastodon.social · 1d

Eduardo Medina @edlinks@mastodon.social

#XLibre es una bifurcación de #Xorg que busca alejar de las corporaciones el desarrollo de servidores gráficos basados en #X11. ¿Dónde está alojado? Pues en #GitHub. Coherencia en estado puro.

Con el paso de los años me he ido tomando cada vez menos en serio a las comunidades de #Linux y el #SoftwareLibre, porque es alucinante ver cómo pregonan cosas a los cuatro vientos y luego, sin un ápice de vergüenza, terminan haciendo lo contrario a cara descubierta.

**fedithom** @fedithom@social.saarland · 1d

fedithom @fedithom@social.saarland

To the people well versed in both #GitHub and #forgejo
Are syntax close enough? I found a plugin for #ObsidianMD to host notes in a Git repo, but don't want to use GitHub (obviously). Any chance that would "just work" if I host the notes on ForgeJo as well?

@Codeberg

**TechnoTenshi** @technotenshi@infosec.exchange · 1d

TechnoTenshi @technotenshi@infosec.exchange

Researchers reveal how attackers can exploit GitHub's Dependabot with "Confused Deputy" attacks, merging malicious code by tricking workflows. They share new TTPs, including branch name injection and branch protection bypasses.

https://boostsecurity.io/blog/weaponizing-dependabot-pwn-request-at-its-finest

#GitHub #Dependabot #SupplyChainSecurity #CI/CD

Comic book style illustration of a confused Wild West deputy, GitHub's Dependabot, about to press an 'Auto-Merge' lever on a machine releasing gremlin-like 'Vulnerabilities'.

boostsecurity.ioWeaponizing Dependabot: Pwn Request at its finestLearn how Dependabot can be co-opted to exploit some sensitive workflows, through the Confused Deputy Problem and branch name injections.

**Teodor Sandu** @teodorsandu@mastodon.online · 1d

Teodor Sandu @teodorsandu@mastodon.online

Oldie but goldie :)

The GIT Playlist followed by song titles like "Pull", "Push it", "Merge", "Conflict", "Pull Request", etc

#fun #meme #git

Continued thread

**tsk** @tasket@infosec.exchange · 1d

tsk @tasket@infosec.exchange

To anyone who thinks that an org like Microsoft is harmless to open source projects like Wyng, I beg to differ. Given Microsoft's priorities and other business models, I'd have to assume they are at least logging and analyzing keyboard, mouse, TOD, frequency, IP addresses, browser fingerprints, social graphs and more.

Furthermore, the arrangement allows MS to push personalized PR at anyone who is slightly interested in my (and your) projects while they reside on github. They can twist public and developer interest in some groups, technologies and licenses and re-frame them for their own ends. This is a vital concern especially with a corp that routinely used their monopoly position to undermine startups in the press just so they could acquire the targeted firms' tech at cut rate prices later on. FWIW, I think maybe the need for open source projects to avoid github is not so acute, but vendors who use #github for private projects should have their heads examined.

**World's Okayest Gopher** @arichtman@eigenmagic.net · 2d

World's Okayest Gopher @arichtman@eigenmagic.net

I mean I know why but why is the Copilot with agent mode button *above* the subscribe button on GitHub issues on mobile?

#GitHub

**Curated Hacker News** @CuratedHackerNews@mastodon.social · 2d

Curated Hacker News @CuratedHackerNews@mastodon.social

parrot.live

https://github.com/hugomd/parrot.live

GitHubGitHub - hugomd/parrot.live: 🐦 Bringing animated parrots to terminals everywhere🐦 Bringing animated parrots to terminals everywhere - hugomd/parrot.live

#github

**tsk** @tasket@infosec.exchange · 2d *

2d *

tsk @tasket@infosec.exchange

I just posted this in a github issue for wyng_backup...

I don't care about the pretense, pretexts or excuses they use for their window dressing; A spyware vendor is a spyware vendor, and a despot is a despot. Microsoft betrays users' trust at an immense scale.

Therefore I would like to leave this MS-owned site for someplace more ethical. The first alternative that comes to mind is CodeBerg; it serves projects more demanding than mine so I think it will be fine. Suggestions for other sites are welcome!
#microsoft #spyware #malware #wyng #github #codeberg

https://github.com/tasket/wyng-backup/issues/250

Microsoft still has a lot of poor behavior towards open source (esp. desktop) products, and their security posture is riddled with alarming lapses and conflicts of interest. I think that behavior i...

GitHubMove project to Codeberg.org · Issue #250 · tasket/wyng-backupBy tasket

**Lenin alevski** @alevsk@infosec.exchange · 2d

Lenin alevski @alevsk@infosec.exchange

New Open-Source Tool Spotlight

tfmcp simplifies Terraform management by letting AI assistants like Claude Desktop handle config, plans, and state via the Model Context Protocol (MCP). Built with Rust, it offers robust security, Docker support, and detailed analysis. #Terraform #DevOps

Project link on #GitHub https://github.com/nwiizo/tfmcp

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

**Stéphane** @sirber@jasette.facil.services · 2d *

2d *

Stéphane @sirber@jasette.facil.services

GitHub est slow...

#webdev #github #meme

**Paul R. Pival (he/him)** @ppival@glammr.us · 2d

Paul R. Pival (he/him) @ppival@glammr.us

What an absolutely amazing resource!

elder-plinius/CL4R1T4S: SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE! https://github.com/elder-plinius/CL4R1T4S

SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE! - elder-plinius/CL4R1T4S

GitHubGitHub - elder-plinius/CL4R1T4S: SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE!SYSTEM PROMPT TRANSPARENCY FOR ALL - CHATGPT, GEMINI, GROK, CLAUDE, PERPLEXITY, CURSOR, WINDSURF, DEVIN, REPLIT, AND MORE! - elder-plinius/CL4R1T4S

#GitHub #transparency #documentation

**Alvin Ashcraft** @alvinashcraft@hachyderm.io · 3d

Alvin Ashcraft @alvinashcraft@hachyderm.io

Direct File on GitHub | by Chris Given.

https://chrisgiven.com/2025/05/direct-file-on-github/

chrisgiven.comDirect File on GitHubPersonal blog of Chris Given, government technologist. These words are always written by a human; I have no one to blame but myself.

#oss #github #govt

**Dr. Fortyseven █▓▒░** @fortyseven@defcon.social · 3d

Dr. Fortyseven █▓▒░ @fortyseven@defcon.social

...and that's why people fucking suck.

#github

**Pyrzout** @jos1264@social.skynetcloud.site · 3d

Pyrzout @jos1264@social.skynetcloud.site

Meta open-sources AI tool to automatically classify sensitive documents https://www.helpnetsecurity.com/2025/06/05/meta-open-source-automated-sensitive-document-classification-tool/ #Artificialintelligence #datalossprevention #dataprotection #cybersecurity #opensource #Don'tmiss #Hotstuff #software #GitHub #News #Meta

Help Net Security · 3dMeta open-sources AI tool to automatically classify sensitive documents - Help Net SecurityMeta has released an open source AI tool called Automated Sensitive Document Classification. It was originally built for internal use and is designed to

**The New Oil** @thenewoil@mastodon.thenewoil.org · 3d

The New Oil @thenewoil@mastodon.thenewoil.org

Hacker targets other hackers and gamers with backdoored #GitHub code

https://www.bleepingcomputer.com/news/security/hacker-targets-other-hackers-and-gamers-with-backdoored-github-code/

#cybersecurity #gaming

**Lenin alevski** @alevsk@infosec.exchange · 3d

Lenin alevski @alevsk@infosec.exchange

New Open-Source Tool Spotlight

Groundhog by @ghuntley explains AI coding agents like Cursor from first principles. Built in Rust, it teaches the inner workings of coding assistants—perfect for learning or building your own. #AI #RustLang

Project link on #GitHub https://github.com/ghuntley/groundhog

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

**Mark Headd** @mheadd@mastodon.social · 3d

Mark Headd @mheadd@mastodon.social

~$ git clone https://github.com/IRS-Public/direct-file.git

GitHubGitHub - IRS-Public/direct-file: Direct FileDirect File. Contribute to IRS-Public/direct-file development by creating an account on GitHub.

#OpenSource #GitHub #DirectFile

Replied in thread

**FinchHaven sfba** @FinchHaven@sfba.social · 4d *

4d *

FinchHaven sfba @FinchHaven@sfba.social

@stefan

And the answer seems to be at #Mastodon #Github #Releases

"Quoting other people is not implemented yet, and it is currently not possible to mark your own posts as allowing quotes. However, a new “Who can quote” setting has been added to the “Posting defaults” section of the user settings. This setting allows you to set a default that will be used for new posts made on Mastodon 4.5 and newer, when quote posts will be fully implemented."

Here: https://github.com/mastodon/mastodon/releases

GitHubReleases · mastodon/mastodonYour self-hosted, globally interconnected microblogging community - mastodon/mastodon

Recent searches

Search options

Administered by:

Server stats:

#github