Piero Bosio Social Web Site Personale

Social Forum federato con il resto del mondo. Non contano le istanze, contano le persone

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

interesting writeup about federated package management by @andrewnez#fedidev

Technical Discussion

1 Posts 1 Posters 2 Views

undefined This user is from outside of this forum
undefined This user is from outside of this forum
liaizon@social.wake.st

wrote on last edited by

#1

RE: https://mastodon.social/@by_caballero/115968453192473247
interesting writeup about federated package management by @andrewnez
#fedidev
1 Reply Last reply

0

Feed RSS

interesting writeup about federated package management by @andrewnez#fedidev

Gli ultimi otto messaggi ricevuti dalla Federazione

undefined
aslakr@mastodon.social

@julian @mcc @silverpill @mariusor There is also maybe Mike Macgirvin's Forte https://codeberg.org/fortified/forte/src/branch/dev/FEDERATION.md#c2s ?

read more
undefined
mariusor@metalhead.club

Also to reply to @reiver 's original question the GoActivityPub library that I work does not easily support JSON-LD extensions, but that's one of the main goals I'm striving towards in this year.
There will still be limitations at the end, Go being a statically typed language, so the extensibility will most likely need to be decided at compile time - similar to using protobuf - where you generate types based on the JSON-LD context(s) that you want to support as a developer.
@julian @mcc @silverpill

read more
undefined
mariusor@metalhead.club

@julian it' ONI. :D
And yes, it's basically a JavaScript interface using client to server ActivityPub to communicate with its backend. Also in the GoActivityPub family there's another server supporting C2S called FedBOX, but this one has no frontends, is just a purely ActivityPub server.
@mcc @silverpill

read more
undefined
julian@activitypub.space

@mcc@mastodon.social hmm...

Mitra from @silverpill@mitra.social and OMI by @mariusor@metalhead.club come to mind, but unsure of any more.

read more
undefined
mcc@mastodon.social

@reiver @toddsundsted Which server softwares *do* support it exactly?

read more
undefined
liaizon@social.wake.st

RE: https://mastodon.social/@by_caballero/115968453192473247
interesting writeup about federated package management by @andrewnez
#fedidev

read more
undefined
hongminhee@hollo.social

@bart@floss.social Oh, I'm also at K level 1!

read more
undefined
bart@floss.social

@hongminhee At the MapLibre stand!

read more

@pierobosio@soc.bosio.info

Post suggeriti

undefined

### 🚨 Security Advisory: CVE-2025-68475
Watching Ignoring Scheduled Pinned Locked Moved Fediverso fedify fedidev security fediverse activitypub
1

1 Votes

1 Posts

6 Views

undefined

🚨 Security Advisory: CVE-2025-68475 A ReDoS (Regular Expression Denial of Service) vulnerability has been discovered in Fedify's HTML parsing code. This vulnerability could allow a malicious federated server to cause denial of service by sending specially crafted HTML responses. CVE ID CVE-2025-68475 Severity High (CVSS 7.5) Affected versions ≤1.9.1 Patched versions 1.6.13, 1.7.14, 1.8.15, 1.9.2 If you're running Fedify in production, please upgrade to one of the patched versions immediately. For full details, see the security advisory: https://github.com/fedify-dev/fedify/security/advisories/GHSA-rchf-xwx2-hm93 Thank you to Yue (Knox) Liu for responsibly reporting this vulnerability. #Fedify #ActivityPub #security #fediverse #fedidev
undefined

i'm moving my stuff off GitHub because i'm sick of Microsoft's shit.
Watching Ignoring Scheduled Pinned Locked Moved Technical Discussion slurp fedidev
1

0 Votes

1 Posts

9 Views

undefined

i'm moving my stuff off GitHub because i'm sick of Microsoft's shit. today's task is slurp.the official project home page has been https://catgirl.codes/slurp for a bit, but now that's also the package URL as far as Go is concerned. this will be a breaking change for anyone who depended on slurp internals, which i hope is nobody. there's some sort of package renaming directive you can use in go.mod if you did.the public Git repo and issue tracker are now on Codeberg: https://codeberg.org/vyr/slurpif you can, please donate to Codeberg. i just did (again). they're a great option for open source devs like me who aren't SREs and don't want the overhead of self-hosting all that stuff, and running a service like that isn't free.#slurp #FediDev
undefined

If we were to do a regular online Fediverse meeting —
Watching Ignoring Scheduled Pinned Locked Moved Technical Discussion activitypub fedidev fediux fediverse fediverseux socialweb
2

0 Votes

2 Posts

16 Views

undefined

reiver@mastodon.social so, are we doing this?
undefined

I just did a video-chat with @sl007 —
Watching Ignoring Scheduled Pinned Locked Moved Technical Discussion fediverse fedidev socialweb
2

0 Votes

2 Posts

7 Views

undefined

@reiver well, a short summary;Public Spaces was full, the Social CG October meeting had 36 attendees, the November meeting was the dev meeting, the December meeting had 40 people who partly prepared #39c3 which then had 16.000 attendees.Happy New Year anyone – and thank you to all the volunteers who made this possible. We do also have german meetings, next one is in 2 weeks, et al. tell me if you are interested.

Piero Bosio Social Web Site Personale

interesting writeup about federated package management by @andrewnez#fedidev

Feed RSS

Gli ultimi otto messaggi ricevuti dalla Federazione

Post suggeriti

### 🚨 Security Advisory: CVE-2025-68475

i'm moving my stuff off GitHub because i'm sick of Microsoft's shit.

If we were to do a regular online Fediverse meeting —

I just did a video-chat with @sl007 —