Opensource

Pinokio is a new software platform that enables users to run their own "personal Internet" locally on Mac, Windows, and Linux computers with a single click[^1]. The platform allows users to run web servers, AI models, and command-line applications directly on their local machines[^3].

Released in version 5.0, Pinokio positions your personal computer as "the Cloud," letting you operate various applications and services on your localhost rather than relying on remote cloud services[^1][^3].

[^1]: Pinokio - The 1-Click Localhost Cloud
[^3]: X.com - Introducing Pinokio 5.0

Github

s&box is now open source under MIT license, you can get it on GitHub and build the engine however you want.

Obviously this isn't the Source 2 code, that's up to Valve to open source if they want. For us Source 2 is providing lower level systems, all our high level systems are C# like the entire editor, networking, scene system, UI, and way more..

What this means is you can view, modify, copy any of our code to help improve s&box with pull requests, or maintain your own fork for your standalone games, or even just take the code for your own engine.

It might seem odd from a business perspective to make an engine and give it away for free with no royalties and to give all the code away under open source. But we're a bunch of nerds that love what we're creating, we want everyone to use it in whatever way they want, we want to provide opportunities.

Open source is great for the game dev ecosystem, engines like Godot are awesome, we should have more of it because everyone wins.

This is based on LibreOffice, but with a new UI.

15 years ago this month, @CiaranG started “an experiment in automated building from source”. And so F-Droid began to automate building all our apps from source. Before this, apps were either built manually or the binary files were fetched from trusted developers like Mozilla. Automating the build process was a key early step that set up F-Droid to lead on trustworthy computing. Since then, we moved to requiring apps to be built from source on our servers. Now we build apps from source as much as possible, and have expanded to Anti-Features, app reviews, privacy checks, reproducible builds, and more.

• Web;
• Google Play Store;
• Apple App Store;
• F-Droid;
• Google Chrome;
• Microsoft Edge;
• Apple Safari;
• Mozilla Firefox.

AliasVault is a privacy-first password and email alias manager. Create unique identities, strong passwords, and random email aliases for every website you use. Fully end-to-end encrypted, with a built-in email server and zero third-party dependencies.

Pebble, the e-ink smartwatch with a tumultuous history, is making a move sure to please the DIY enthusiasts that make up the bulk of its fans: Its entire software stack is now fully open source, and key hardware design files are available too.

Pebble creator Eric Migicovsky announced the move on Monday in a blog post and video detailing the changes his reborn Pebble watchmaking firm has undertaken, and they're considerable.

Publication croisée depuis https://programming.dev/post/41331208

"Upon execution, the malware downloads and runs TruffleHog to scan the local machine, stealing sensitive information such as NPM Tokens, AWS/GCP/Azure credentials, and environment variables.

The malicious code exfiltrates the stolen information by creating a GitHub Action runner named SHA1HULUD, and a GitHub repository description Sha1-Hulud: The Second Coming.. This suggests it may be the same attacker behind the "Shai-Hulud" attack observed in September 2025.

And now, over 27,000 GitHub repositories were infected."

Other source with list of compromised package available

Publication croisée depuis https://programming.dev/post/41331208

"Upon execution, the malware downloads and runs TruffleHog to scan the local machine, stealing sensitive information such as NPM Tokens, AWS/GCP/Azure credentials, and environment variables.

The malicious code exfiltrates the stolen information by creating a GitHub Action runner named SHA1HULUD, and a GitHub repository description Sha1-Hulud: The Second Coming.. This suggests it may be the same attacker behind the "Shai-Hulud" attack observed in September 2025.

And now, over 27,000 GitHub repositories were infected."

Other source with list of compromised package available

cross-posted from: https://lemmy.ml/post/39446054

I have seen folks talk about a pain point for using FF (or forks) being related to YouTube being super slow. The about:config settings the article mentions did seem to lead to YouTube loading faster on both my FF and Zen-Browser installs. So maybe this might help for others that specifically don't like to use FF as their main browser because of YouTube.

For those that just want the settings:

gfx.webrender.compositor.force-enabled (set to true and restart FF)

If on AMD GPU, this extra setting is supposed to help reduce CPU usage:

media.wmf.zero-copy-nv12-textures-force-enabled (set to true and restart FF)

What is it?

Harper is a free English grammar checker designed to be just right. You can think of it as an open-source alternative to Grammarly. I created it after years of dealing with the shortcomings of the competition.

Private

Harper is completely private, in every sense of the word.

Since Harper runs on-device, your data doesn't go anywhere you don't want it to.

That means you have 100% certainty we don't violate your copyright by training large language models.

Harper also intentionally avoids including any kind of generative AI in any part of our processing pipeline.

Dutch open hardware specialist FusionXvision has opened crowdfunding for a design it says can provide lab-grade programmable power from any USB Type-C Power Delivery (PD) power adapter: the BenchVolt PD.

"BenchVolt PD transforms any USB Type-C power adapter into a versatile, multi-channel laboratory power supply," FusionXvision's Suleyman Yasin Dundar says of the company's latest launch. "Designed for makers, engineers, and professionals, it combines portability, safety, and flexibility to put bench-grade power performance in your pocket. With up to 100W of total power, five output channels, and built-in monitoring, it's the perfect tool for powering prototypes, testing circuits, or working in the field without bulky equipment."

One of the great things about Valve's hardware is that it's not locked down, and they put a lot of money into open source for SteamOS (Linux). With the upcoming new Steam Machine and Steam Frame, the open source never stops.

And here we have Igalia, one of the Free Software consultancies that Valve works with, writing up a post detailing some of the work that goes into it all. In this case, it's especially interesting for the Steam Frame. Igalia have people working on FEX, as just one example, which is a fast usermode x86 and x86-64 emulator for Arm64 Linux. Basically, it allows running x86 applications on ARM64 Linux devices - this is part of how the Steam Frame will actually run games.

Yesterday, Pebble watch software was ~95% open source. Today, it’s 100% open source. You can download, compile and run all the software you need to use your Pebble. We just published the source code for the new Pebble mobile app!

"Apertus: a fully open, transparent, multilingual language model

EPFL, ETH Zurich and the Swiss National Supercomputing Centre (CSCS) released Apertus 2 September, Switzerland’s first large-scale, open, multilingual language model — a milestone in generative AI for transparency and diversity.

Researchers from EPFL, ETH Zurich and CSCS have developed the large language model Apertus – it is one of the largest open LLMs and a basic technology on which others can build.

In brief Researchers at EPFL, ETH Zurich and CSCS have developed Apertus, a fully open Large Language Model (LLM) – one of the largest of its kind. As a foundational technology, Apertus enables innovation and strengthens AI expertise across research, society and industry by allowing others to build upon it. Apertus is currently available through strategic partner Swisscom, the AI platform Hugging Face, and the Public AI network. ...

The model is named Apertus – Latin for “open” – highlighting its distinctive feature: the entire development process, including its architecture, model weights, and training data and recipes, is openly accessible and fully documented.

AI researchers, professionals, and experienced enthusiasts can either access the model through the strategic partner Swisscom or download it from Hugging Face – a platform for AI models and applications – and deploy it for their own projects. Apertus is freely available in two sizes – featuring 8 billion and 70 billion parameters, the smaller model being more appropriate for individual usage. Both models are released under a permissive open-source license, allowing use in education and research as well as broad societal and commercial applications. ...

Trained on 15 trillion tokens across more than 1,000 languages – 40% of the data is non-English – Apertus includes many languages that have so far been underrepresented in LLMs, such as Swiss German, Romansh, and many others. ...

Furthermore, for people outside of Switzerland, the external pagePublic AI Inference Utility will make Apertus accessible as part of a global movement for public AI. "Currently, Apertus is the leading public AI model: a model built by public institutions, for the public interest. It is our best proof yet that AI can be a form of public infrastructure like highways, water, or electricity," says Joshua Tan, Lead Maintainer of the Public AI Inference Utility."

Six folks pledged lumps of cash to make it happen.

Since the 2022 release of memtest86+ 6.0 as a rewrite of this long-used RAM testing utility, this open-source software has continued advancing nicely after a decade hiatus. Released on Sunday night was memtest86+ 8.0 as the latest iteration of this popular RAM tester for enthusiasts.

The memtest86+ 8.0 release can now be built with the Clang compiler and LLVM LLD linker. Plus there are many internal updates as well as now being able to provide a single binary that works for both UEFI and legacy boot environments.

I'm a tournament organizer for a local Smash tournament. We normally host our brackets on start.gg. However, the site is pretty unreliable. Occasionally, we've had to run the bracket on challonge.com instead. Recently, the venue wifi was having issues and we almost had to run it on our phones which wouldve been brutal. Every alternative I can find is either web-based or is commercial software for big E-sports events. I just need software on my laptop (I'm running Linux Mint, the other TO uses a MacBook) that can generate a double-elinination bracket based on a seeded list of entrants. After that, it should be able to track the bracket progress over the course of the event. This seems like a pretty simple concept but I haven't been able to find anything.

Welcome to the 47th week of Linuxiac’s 2025 Weekly Roundup — your go-to source for all things Linux & Open Source. Here’s a look at the biggest Linux and FOSS highlights from the past week (Nov 17 – 23).

I wonder that I didn't find any good quiz engine yet that is open source.

There are games like It's Quiz Time or You Don't Know Jack. There also are some web quiz platforms like Kahoot or MyQuiz that can be used for educational purpose too. The idea is that you get quiz questions on one device and players can vote with their mobile device. Depending on the software, it supports different varieties of questions.

Something like Tux Quiz would be nice, an open source project with community driven questions. What do you think? Does something like this already exist?