Introduction Hello, I’m RyotaK (@ryotkak ), a security engineer at Flatt Security Inc. A few days ago, I was upgrading my home lab network, and I decided to upgrade the OpenWrt on my router.1 After accessing the LuCI, which is the web interface of OpenWrt, I noticed that there is a section called Attended Sysupgrade, so I tried to upgrade the firmware using it. After reading the description, I found that it states it builds new firmware using an online service.

Contribute to privastead/privastead development by creating an account on GitHub.

Kyanos is a networking analysis tool using eBPF. It can visualize the time packets spend in the kernel, capture requests/responses, makes troubleshooting more efficient. - hengyoush/kyanos

My writings about Ghostty, the terminal emulator I work on.

Release news for version GIMP 3.0 RC1

Open source tool chooses to become more open than ever

The OSI, the self-appointed arbiter of all things open source, has released its first definition of 'open source' AI.

Trench — Open-Source Analytics Infrastructure. A single production-ready Docker image built on ClickHouse, Kafka, and Node.js for tracking events, page views. Easily build product analytics dashboards, LLM RAGs, observability platforms, or any other analytics product. - FrigadeHQ/trench

Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...) - permitio/opal

Several Phoronix readers have written in this Sunday over concerns of Bitwarden further moving away from open-source

Apache NiFi is an easy to use, powerful, and reliable system to process and distribute data

Winamp released its source code with a license that drew a lot of attention. That’s when other apps’ code was found inside.

Matt Mullenweg, the WordPress co-founder and Automattic CEO, has been embroiled in a very public and legal fight with WP Engine these last few weeks over

Web Browser Optimized for Rabbit-Holing

Pulumi and System Initiative Spice Up Infrastructure as Code to challenge IaC leader HashiCorp, which is being acquired by IBM.

MicroK8s is the simplest production-grade upstream K8s. Lightweight and focused. Single command install on Linux, Windows and macOS. Made for devops, great for edge, appliances and IoT. Full high availability Kubernetes with autonomous clusters.

Compatibility:
Source: See Trivy website for details. Trivy is an all-in-one open source security scanner that can help you identify vulnerabilities and IaC misconfigurations, discover SBOMs, perform cloud scanni…

Radicle is a decentralized platform for code collaboration, offering secure and sovereign infrastructure for developers.

Here, you'll find a list of free, open-source cybersec tools that are ready to be added to your organization's arsenal.