Those #github commits you removed with sensitive data are still accessible. I didn't know this
Dew Drop Weekly Newsletter #439 - Week Ending July 4, 2025.
5 ways to transform your workflow using GitHub Copilot and MCP.
Durante las próximas semanas, volveremos a compartir una serie de tutoriales sobre proyectos colaborativos en #GitHub.
En nuestro primer video, Patricia Loto nos guía sobre cómo generar un issue.
Los issues son una herramienta esencial para la comunicación en proyectos colaborativos, y se usan para reportar errores, proponer nuevas funcionalidades, o hacer sugerencias.
Te invitamos a conocer la lista de videos completa y a suscribirte a nuestro canal de YouTube: https://www.youtube.com/playlist?list=PLNsHbWOM6tUeflQyje9PGOBpCPcsW_Q81
@claudius No surprise there. #GitLab is VC-backed bloatware at this point. They have clearly conflicting interests in supporting the #FOSS community as they have to make large enterprise customers happy to keep the cash flowing. Features benefitting the community will always take a backseat to that.
Honestly, I wish we would just collectively abandon GL and #GitHub at this point and put our mental investment, and personal time and effort into #Forgejo and @Codeberg.
Do you need a programmatic way to convert your PDF documents into Word in R, then give Convert2Docx R package a try.
Find installation and usage instructions in the GitHub repository: https://github.com/Ifeanyi55/Convert2Docx
Please consider supporting the project by giving it a star on GitHub
@jollysea @davidrevoy @creativecommons
I'm not sure, if an #AI using web service by #Microsoft is the right place to discuss freely and open-minded about dangers of #LLMs and #bigtech.
I scanned all of GitHub's "oops commits" for leaked secrets
Link: https://trufflesecurity.com/blog/guest-post-how-i-scanned-all-of-github-s-oops-commits-for-leaked-secrets
Discussion: https://news.ycombinator.com/item?id=44452317
I think this is brilliant:
Truffle Security reports that Sharon Brizinov, a white-hat hacker, scanned all of GitHub's "Oops" commits since 2020 for leaked secrets and ended up receiving over $25k in bug bounties in rewards.
They are now open-sourcing a tool that scans a GitHub org to find similar vulnerabilities.
(Found on HackerNews)
Hot take? #GitHub pages are some of the most regular-person-hateful shit I have ever seen on the internet.
Instructions: "Download SteamClip from the Release page, SteamClip.exe for Windows users"
Show me a 'Release page' in this screenshot. I dare you. I triple dog dare you.
Blerg
This is the crap that scares people off from #OpenSource. This page is utterly impenetrable for outsiders. It might as well be written in Klingon, translated from the original Vogon.
Update on my interest in moving away from #GitHub to another code forge. I was excited about #Radicle because it is meant to be #P2P, but I ended up deciding against it. Besides the use of cryptocurrency for fundraising/management being a red flag, I found that I needed a seed node with a dedicated address in order to host a private repo, which doesn't feel truly P2P.
I also want to be able to convince other people to use the code forge with me to write code and papers. The added complexity of Radicle (from a user's perspective) seems like even more of an uphill battle than getting mathematicians to choose git instead of #Overleaf. (By the way, we could use a #FOSS Overleaf alternative.)
Due to these considerations, it looks like self-hosting @forgejo is the way to go! (Even if it's not P2P.)
Anyway, I have gotten set up with a European VPS thanks to https://european-alternatives.eu/ and have a Debian machine running. I now need to get Forgejo set up, and I have three install methods I might use:
1) Follow https://forgejo.org/docs/latest/admin/installation-binary/
2) Follow https://codeberg.org/forgejo-contrib/forgejo-deb which says that (1) is bad
3) Use podman
From (2) I could start Forgejo and from (3) I could start a container, but the instructions on https://forgejo.org/docs/latest/admin/installation-docker/ don't work for me. In all cases I need to use the web UI to finish installation. Am I supposed to have no CLI alternative for this? I feel like installing a desktop environment on my VPS is not the answer, but I'm not sure what else to do here.
pro tip: if you are an iranian crypto exchange engaged in laundering money for #terrorists, vladimir putin, and worse and you are being actively hunted by multiple foreign intelligence agencies but you don't want israeli cyber teams to hack your shit and steal all your money, a good first step is to not check all your secret keys and passwords into the #git repo where hundreds of people can access them
https://github.com/fotechv/Nobitex-Source-Code/blob/main/core/exchange/settings.py
On my Safari, for #GitHub PRs the labels panel look like the screenshot on the left — little chrome, label descriptions, little x on the right to clear a label. On issues, it looks like the screenshot on the right, with clear tick boxes for each label, and higher contrast. The second look happens to also be *much* faster — for some reason PR label panels are slow as molasses for me. Anyone else see this and can I do something to always get the high-contrast look???
heise+ | Schneller zum Arzt: Doctolib-Chatbot für frühere Termine einrichten
Abspringende Patienten sorgen bei Doctolib regelmäßig für Terminlücken. Mit Python und Telegram können Sie einen Chatbot erstellen, der freie Termine meldet.
Jeremy Clark, David Handlos, Arthur Doler, and Erissa Duvall have Sessions on Software Craftsmanship at Nebraska.Code().
@CursedSilicon good question.
Either it just works or #GitHub refuses to implement it just like they refuse to correct their #calendar because #WeeksStartOnMonay, damn 'Murincans!
The GitHub Copilot Chat client for VS Code is now open source under the MIT license. Here's the source code:
"As Copilot Chat releases in lockstep with VS Code due to its deep UI integration, every new version of Copilot Chat is only compatible with the latest and newest release of VS Code. This means that if you are using an older version of VS Code, you will not be able to use the latest Copilot Chat.
Only the latest Copilot Chat versions will use the latest models provided by the Copilot service, as even minor model upgrades require prompt changes and fixes in the extension. An older version of Copilot Chat will still use the latest version of Copilot completions."