Front-page articles summarized hourly.
JWasm is a MASM-compatible assembler by Baron-von-Riedesel. It runs on Windows, Linux, DOS, and OS/2 (and likely others). The repo contains source, samples, and many makefiles for different toolchains (Msvc, GCC, Open Watcom, CLang) to build 32/64‑bit binaries. It includes a README with build hints and documentation; last release is v2.20 (Nov 30, 2025).
sandbox-exec is a macOS command-line tool to run apps in a sandbox with limited resources by using a sandbox profile (-f). Profiles use Scheme-like syntax, with version, allow/deny rules, paths, regex, and two approaches: Deny by default (more secure) and Allow by default (easier). Practical usage: create profiles for network access, read permissions; run with sandbox-exec -f profile.sb command. System-provided profiles in /System/Library/Sandbox/Profiles. Debugging with Console.app and log stream. Limitations: deprecated by Apple; no GUI; complex setups. Advanced tips: aliases, importing profiles. Conclusion: powerful but requires effort.
GitHub repo alvi-se/ai-ublock-blacklist provides a personal uBlock Origin blacklist of sites entirely generated by AI. The README argues AI content is often low-value or unsafe and outlines criteria for flagging AI content farms (no sources, SEO spam, referral links, poor formatting, overhyped intros, etc.). It explains how to add entries to list.txt (by domain or path) and that additions are manual. How to use: subscribe or import the list into uBlock Origin; pull requests are welcome.
The article proposes a minimal, cloud-free way to sync personal Git repos by using bare repositories on a shared external drive and remotes accessed over SSH. It explains the difference between bare and non-bare repos, why pushes go to bare repos, and how to set up: create a bare repo on the external drive; add remote origins on desktop and other machines; clone the bare repo to new devices. This sacrifices features like a web UI or issues, but suits personal repos. Any accessible location can host the bare repo; Tailscale helps SSH access.
Coccinelle allows writers to express complex, style-preserving source-to-source transformations for C code (e.g., refactorings). To install from source, see install.txt; a spatch executable is provided. Prebuilt spatch binaries are available; you can run it directly from the download/build directory after setting up environment variables. Example: spatch --sp-file demos/simple.cocci demos/simple.c -o /tmp/new_simple.c. If using bytecode, install OCaml and run ocamlrun. Documentation is in docs/; make docs may be needed. Runtime deps: OCaml and Python dev packages. Contributions require a sign-off (Developer's Certificate of Origin). Licensed GPL-2.0.
std::shared_mutex, added in C++17, is a reader–writer mutex that supports multiple concurrent readers and a single writer. It suits read‑mostly data by enabling parallel reads while protecting writes. The article refactors a counter from std::mutex to std::shared_mutex (shared_lock for reads, unique_lock for writes) and shows a read‑heavy benchmark with throughput gains. It then presents a realistic read‑mostly cache, warns of pitfalls (no recursive locking, unsafe upgrade, overhead), and notes newer C++20 tools exist, but shared_mutex remains practical for read‑dominant workloads.
Karpathy's mini-essay about tinkering with Claws after buying a Mac Mini presents Claws as a new layer atop LLM agents, handling orchestration, scheduling, context, tool calls, and persistence. He remains skeptical of OpenClaw but excited by the concept. NanoClaw and others like nanobot, zeroclaw, ironclaw, picoclaw illustrate lightweight, containerized cores (NanoClaw ~4000 lines). The term Claw is becoming an industry label for OpenClaw–like AI agents that run on personal hardware, communicate via messaging, and can act on instructions and schedule tasks (🦞).
An author verifies their LinkedIn identity via Persona and uncovers the privacy trade-off. Persona collects: full name, passport photos, a live selfie, biometric facial geometry, NFC passport data, national ID, contact details, IP, device data, geolocation, plus hesitation and copy-paste detection. They cross-check against government databases and third-party sources. Data is shared with LinkedIn, Persona’s providers, affiliates, and 17 subprocessors (mostly US-based, including Anthropic, OpenAI, AWS, Google Cloud). CLOUD Act allows US authorities to access data regardless of storage location; EU protections via the Data Privacy Framework are uncertain. Biometric data is retained up to six months or longer if legally required; liability is capped at $50; arbitration. Actions: request data/deletion, contact the DPO, reconsider verification.
Could not summarize article.
gitas is a Rust-based tool to switch Git accounts by updating your local/global git config and pre-filling the credential cache for seamless commands. It provides a Command Proxy (gitas git) that runs git with a temporary identity and credential helper without changing config files. Tokens are stored in the system keychain. You can add accounts, and use gitas git clone to access private repos. Install options include a curl install script (Linux/macOS), Windows PowerShell, Homebrew, or cargo. Uninstall via removing ~/.gitas, Homebrew, or cargo uninstall. Apache-2.0.
EU's Batteries Regulation enters into force to ensure low-carbon, low-harm, highly recyclable batteries with a full life-cycle approach. From 2025, declaration requirements, performance classes and maximum carbon footprints will apply to EVs, light transport and industrial batteries. Substances of concern will be restricted and reviewed regularly. Recycling targets and material recovery (notably cobalt, lithium, nickel) rise over time; all waste batteries must be recycled. From 2027, portable batteries in devices can be replaced by consumers. Labels and a QR digital passport aid decisions; companies face due diligence for raw-material sourcing. Implementing acts to follow.
An issue at 24 Hour Fitness leaves the unsubscribe link broken: the unsubscribe endpoint returns a Spanish error due to a one-line JavaScript bug (contentType: false instead of 'application/json'), preventing opt-outs. The author, Ahmed Kaddoura, reports the bug, builds a workaround unsubscribe page that correctly posts JSON, and criticizes the company for ignoring opt-out requests despite CAN-SPAM penalties. The bug has persisted for years (noted since 2019).
Acme Weather, by Adam Grossman, launches a new weather app that embraces forecast uncertainty by showing multiple possible futures from diverse data sources, plus community reports, rich maps, and customizable notifications. It also features Acme Labs, with experimental tools like rainbow alerts and sunset insights. Privacy is prioritized—no location history or third-party trackers. The app costs $25/year with a two-week free trial, and is in the iOS App Store with an Android version coming soon.
Trunk-Based Development is a source-control approach where all code lives on a single trunk/main. Long-lived feature branches are discouraged; teams either commit directly to trunk (small teams) or use short-lived, single-developer branches for CI and code review, guarded by feature flags or branch by abstraction. The goal is a releasable trunk at all times to enable continuous integration and delivery. Release can be from trunk or via just‑in‑time release branches for higher throughput. Requires build servers to prevent breaking builds; practiced by Google and others; described in Continuous Delivery and The DevOps Handbook.
A Vercel Security Checkpoint prompts browser verification and requires enabling JavaScript to continue, with a link labeled “Website owner? Click here to fix.”
Colorado SB 26-051 shifts online age verification from websites to the OS/app-store layer. OS providers would collect a user’s birthdate, generate an age bracket signal, and expose it to apps via an API for developers to use. It aims to bypass direct publisher verification, reflecting prior attempts (SB 25-201, SB 25-086) that stalled over First Amendment, privacy, and feasibility concerns. Supporters say centralized mobile ecosystems enable practical enforcement; critics warn of open-web bypasses, constitutional risks, and no universal ID or mandatory parental controls. The bill awaits a committee hearing.
Microsoft researchers demonstrated glass-based data storage that could stay readable for 10,000 years or longer. They encode data in borosilicate glass by ultrafast laser bursts that create plasma-induced nano-explosions, deforming the glass, with reading done via a microscope. A 12 cm square stores about 4.8 terabytes (~two million books). The method requires specialized write/read equipment but is maintenance-free and temperature-insensitive, offering near-permanent archival storage. This deployable approach, part of Project Silica, uses borosilicate instead of fused silica for practicality and density.
Ajay Chavda's Mojo Dojo SEO reports that Meta's automated identity checks ban agency work accounts for paid ads within minutes to hours, even for long-standing advertisers with clean histories. Despite hiring senior paid ads specialists and compiling verifications, every attempt ends in a ban; appeals are unusable because you’re locked out. The result: lost client campaigns, harmed staff, and disrupted operations. They call for a manual onboarding pathway for verified agencies, human login support, and acknowledgment of false positives, asking others and Meta employees to engage.
Made by Johno Whitaker using FastHTML