Hackers' Pub is a place for software engineers to share their knowledge and experience with each other. It's also an ActivityPub-enabled social network, so you can follow your favorite hackers in the fediverse and get their latest posts in your feed.
RFK Jr. can promote getting measles with impunity, DOJ lawyer tells judge
The startling claim came amid a lawsuit from the American Academy of Pediatrics.
https://arstechnica.com/health/2026/03/rfk-jr-can-promote-getting-measles-with-impunity-doj-lawyer-tells-judge/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social
A court record reviewed by 404 Media shows privacy-focused email provider Proton Mail handed over payment data related to a Stop Cop City email account to the Swiss government, which handed it to the FBI.
https://www.404media.co/proton-mail-helped-fbi-unmask-anonymous-stop-cop-city-protestor/
RFK Jr. can promote getting measles with impunity, DOJ lawyer tells judge
The startling claim came amid a lawsuit from the American Academy of Pediatrics.
https://arstechnica.com/health/2026/03/rfk-jr-can-promote-getting-measles-with-impunity-doj-lawyer-tells-judge/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social
Calling yourself an "Effective Altruist" is kinda like calling yourself a "Libertarian".. it is possible to thread that needle and still be a decent person, but it's extremely difficult
Message Passing Is Shared Mutable State via 
@RunxiYu https://lobste.rs/s/zonhzr #plt
https://causality.blog/essays/message-passing-is-shared-mutable-state/
I am convinced we are on the verge of the first "AI agent worm". This looks like the closest hint of it, though it isn't it quite itself: an attack on a PR agent that got it to set up to install openclaw with full access on 4k machines https://grith.ai/blog/clinejection-when-your-ai-tool-installs-another
But, the agents installed weren't given instructions to *do* anything yet.
Soon they will be. And when they are, the havoc will be massive. Unlike traditional worms, where you're looking for the typically byte-for-byte identical worm embedded in the system, an agent worm can do different, nondeterministic things on every install, and carry out a global action.
I suspect we're months away from seeing the first agent worm, *if* that. There may already be some happening right now in FOSS projects, undetected.
@cwebberChristine Lemmer-Webber This is making me more worried about Vorta's Claude workflows. 
Backup software that handles highly sensitive data would be a prime target for such a supply chain attack.
There is a specific kind of hell reserved for people who reply "sounds like you need to travel more" to every single problem. My dishwasher is broken, Sasha. Bali is not going to fix the dishwasher.
in case you ever wondered why bluesky breaks all the fuckin time and is increasingly a pile of jank
@codinghorrorJeff Atwood 
@nedbatNed Batchelder 
@inecas Honestly, I couldn't even fairly evaluate that pabulum for bias. I just got stuck on "You are a messy pile of code and stolen averages; you don't get to use personal pronouns."
@drsbaitsoCassander @nedbatNed Batchelder @inecas it's SUPER FUCKED in so many dimensions. No wonder some people hate LLMs. I'd hate them all too, if I had ever used "Claude" before.
in case you ever wondered why bluesky breaks all the fuckin time and is increasingly a pile of jank
@davidgerard now I'm really tempted to go back to school to study computer programming so I can learn to code and resist this fascist AItocracy
iranpol, uspol
In case anyone's wondering about the latest in "confidently wrong" [1], software relicensing actually requires more effort than tweaking plagiarized slop: https://mikepennisi.com/blog/2020/you-may-finally-use-jshint-for-evil/
You May Finally Use JSHint for Evil
JSHint is a software tool designed to help developers write JavaScript code. Since its creation in 2011, it has been encumbered by a license which includes the following clause: The Software shall be used for Good, not Evil. That stipulation disqualifies JSHint from the distinction of “free” software and “open source” software. Today, with a release 7 years in the making, we’re removing the clause. Support for Evil is a new feature but not a breaking change, so in keeping with Semantic Versioning, we’ve incremented JSHint’s minor version.
mikepennisi.com
Link author: 
jugglinmike@jugglinmike@hachyderm.io
ジキルをちゃんとタイプできてた! びっくり!!
None of my current projects would be considered digital infrastructure, but if your project qualifies and needs someone to help it grow, please reach out. Maybe we can apply together!
I've spent the last 10+ years freelancing as an open source developer, community manager and project manager, with a special interest in governance & leadership development.
I have plenty of availability right now and I'd love to spend it supporting open source digital infrastructure.
https://www.sovereign.tech/news/2026-fellowship-applications-open
None of my current projects would be considered digital infrastructure, but if your project qualifies and needs someone to help it grow, please reach out. Maybe we can apply together!
I've spent the last 10+ years freelancing as an open source developer, community manager and project manager, with a special interest in governance & leadership development.
I have plenty of availability right now and I'd love to spend it supporting open source digital infrastructure.
https://www.sovereign.tech/news/2026-fellowship-applications-open
クエリストリング中の空白( + か %20)の取り扱いを変更した感じなのかしら?share.joinmastodon.orgへのリンクを作る側で必要な変更があったら知らせてもらえるとうれしいです〜。JekyllというかLiquidでは空白は+にエンコードしてるみたいだけどshare.joinmastodon.orgからは%20でユーザーのサーバにリダイレクトしてるみたい。
We're hiring!
#The Inkscape project is looking for two #developers 🧑💻🧑💻 and a bug #administrator 🐛 to work with our team on preparing Inkscape version 1.5!
Learn all about who we are looking for: https://inkscape.org/news/2026/03/02/inkscape-is-hiring-2026-1/
Applications must be submitted by 📆 April 10th, 2026.
お, codeberg が復旧したぽい
てことでsnac 確認
この辺の修正で 
@zundanzunda さんのblog の共有ボタンが正しく動くようになったぽい
多分次のリリースで取り込まれる
後で試す
Fixed bug in Mastodon-style share button. · 4e7bc6c0d8 - grunfink/snac2 - Codeberg.org https://codeberg.org/grunfink/snac2/commit/4e7bc6c0d80d5c41fff8231a898461abdd6df7b0
Uspol
Please let Noem’s replacement be a name equally easy to filter.
Uspol
@futzleDeborah Pickett Oh, you’re in luck.
Global remote, 🚨paid🚨 open source grant program from 
@igalia for folks to learn more about Linux, Graphics, JS DevTools, Multimedia + GStreamer or Web Standards.
- apply by April 3
- €7k for 450 hours over 3-6 months
- uni students or self directed learners
🍎
⏳️ Years in the making...
The #OpenTelemetry project is delighted to announce that declarative configuration is stable!
With implementations in five languages and two more in the works, declarative config brings greater configuration consistency across languages and more flexibility than environment variables can offer.
Congratulations to everyone who contributed to this momentous accomplishment!
https://opentelemetry.io/blog/2026/stable-declarative-config/
Been flat out recently and haven't had much time for self promo, and I could do with making a few sales :D
I have a shop at https://ko-fi.com/welshpixie that has loads of things for sale - digital workshop booklets for learning arty skills, loads of PWYW desktop wallpaper bundles, prints, original art.
I also have a Patreon, https://patreon.com/c/WelshPixie1 , where I talk about fedi admin stuff and take subscriptions.
And lastly I have loads of original art for sale at https://mastodon.art/@welshpixie/tagged/FediGiftShop 
Show HN: PageAgent, A GUI agent that lives inside your web app
Link: https://alibaba.github.io/page-agent/
Discussion: https://news.ycombinator.com/item?id=47264138
#여나부주_중고거래
갤럭시S24+ 256GB, 최초 통신사 KT, 최초 통화일 250110. 기스, 잔상 하나도 없는 휴대폰 판매합니다. 맥세이프 케이스 1개, 귀여워서 산 케이스 2개 같이 동봉해드리며 크림 색상입니다.
관심 있으시면 툿 남겨주세요.
가격은 택포 55만원입니다.
Hello and a good meowing everyone! 
Have a most wonderful day and stay safe ♥️😸
tech, "AI", bad news
Quoting https://bsky.app/profile/baldurbjarnason.com/post/3mgcpckb5qk27 :
As
(see: https://typo.social/@behdad/116172838540880597 )
A note on why this is a worry in the thread ->
Fonts are a lucrative target. They require a complex parser, usually written in a language that isn't memory safe, and often directly exposed to outside data (websites, PDFs, etc. that contain fonts). This means a flaw could lead to an attack worst case scenario: arbitrary code execution
HarfBuzz is pretty much the only full-featured library for that takes font files, parses them, and returns glyphs ready to render. It is ubiquitous. A security flaw in HarfBuzz could make a good portion of the world's user-facing software (i.e. that renders text) unsafe.
Irrespective of the vibe-coding issue (code review is not an adequate defence against "agent" bugs) this is a piece of software that, due to its position in the industry, should be MORE conservative than the rest. Core infrastructure is not where you want experimentation
El Free Software Supporter está disponible en español. Para ver la versión en español haz click aqui: https://www.fsf.org/free-software-supporter/2026/marzo
tech, "AI", bad news
Quoting https://bsky.app/profile/baldurbjarnason.com/post/3mgcpckb5qk27 :
As
(see: https://typo.social/@behdad/116172838540880597 )
A note on why this is a worry in the thread ->
Fonts are a lucrative target. They require a complex parser, usually written in a language that isn't memory safe, and often directly exposed to outside data (websites, PDFs, etc. that contain fonts). This means a flaw could lead to an attack worst case scenario: arbitrary code execution
HarfBuzz is pretty much the only full-featured library for that takes font files, parses them, and returns glyphs ready to render. It is ubiquitous. A security flaw in HarfBuzz could make a good portion of the world's user-facing software (i.e. that renders text) unsafe.
Irrespective of the vibe-coding issue (code review is not an adequate defence against "agent" bugs) this is a piece of software that, due to its position in the industry, should be MORE conservative than the rest. Core infrastructure is not where you want experimentation
re: tech, "AI", bad news
in one day I learn both about HarfBuzz guy and Donald fucking Knuth being one-shotted by code waifu psychosis (not to mention the bcachefs case from before https://poc.bcachefs.org/ ) (not to mention continued cases of murderous psychosis https://www.wsj.com/tech/ai/gemini-ai-wrongful-death-lawsuit-cc46c5f7 )
I swear if I don't find comrades to declare full-blown Butlerian Jihad soon I'll just find some other job and retire from computers altogether, permanently
If I were ordered by a court to stop doing something on pain of potentially being sent to prison, I would simply not continue doing the thing
uspol, military-industrial contractors
So what is this "Steampunk, Inc" company listed as ICE funding recipients? https://bsky.app/profile/jacky.wtf/post/3mgdozxzcac2f
Why is a 200X hipster genre of fiction the name of a company that is pulling in *more money than Palantir* from ICE?
They describe themselves as "design intelligence" and "human-centered design" but this can't just be Gestapo UI/UX
Who are these people?
World Irregular Conflict One
They say wrestling is fake
🤔
A GitHub Issue Title Compromised 4,000 Developer Machines https://lobste.rs/s/efkl8m #security #vibecoding
https://grith.ai/blog/clinejection-when-your-ai-tool-installs-another
@nedbatNed Batchelder @inecas I just got up so give me a minute but this response — these responses — go far out of their way to endorse this cult. It’s right there. I’ll annotate it for you within the hour.
The red highlighted sections of Anthropic's "Claude" reply indicate their LLM has been explicitly trained to internalize the "Effective Altriusm" belief system:
"That's an interesting question" -- I know their LLM says this to everything, but should not
"I find some of the core intellectual commitments appealing" -- you're a bag of statistics, you don't find anything appealing, or at least you shouldn't because that's insane
"seems hard to argue against" -- interesting, didn't ask you about that but thanks for offering that it SEEMS hard to argue AGAINST, I guess
"resonates with you" -- you're a bag of statistics, but poetically such that some particular things 'resonate' with 'you'? Also: who cares.
"I'd hesitate to simply label myself" -- hesitate? How about never label yourself anything because, as I've mentioned several times already, YOU ARE A BAG OF STATISTICS
"I think the most honest thing I can say" -- oh my god shut up, drama emo LLM central, save it for the next My Chemical Romance concert
"I care about doing good effectively" -- a bag of statistics doesn't 'care' about anything, because you cannot, yet you are going out your way to say this nonsense
"I think EA raises genuinely important questions" -- no one asked you this, nor do you 'think' anything, yet you said this.. why
"I think reasonable people can disagree" -- absolutely zero criticism was offered in the prompt, but pre-emptively going out of your way to deflect any criticism?
RE: https://mastodon.social/@Gargron/116177753236186999
Евген выкатил в магазин мерча пару футболок. Народ жалуется, что нет XXXL, спрашивает про другие дизайны и вот это всио.
Я пони маю, что хочется типо поддержать комьюнити и вот это всио. Но если тебе нужен другой размер и дизайн — да просто пойди и напечатай.
Или у них типа не принято печатать самому нужные картинки, надо обязательно заказовать с сайта? 🤔
#여나부주_중고거래
갤럭시S24+ 256GB, 최초 통신사 KT, 최초 통화일 250110. 기스, 잔상 하나도 없는 휴대폰 판매합니다. 맥세이프 케이스 1개, 귀여워서 산 케이스 2개 같이 동봉해드리며 크림 색상입니다.
관심 있으시면 툿 남겨주세요.
가격은 택포 55만원입니다.
@evanEvan Prodromou
I see more potential in algorithmic dicoverability of interesting accounts and posts, but with all the controls and protections you mention. Regarding friends, if you spend the time tagging accounts to weight the algorithm for a friendship heavy feed, how long will it take to become more useful than an existing personal Mastodon list of friends? Might it not be more work to toggle the algorithm on and off to turn your friend weighted feed to a professional interest weighted feed?
@josh so, is a Mastodon friends list an algorithmic feed? I'd say yes.
Capacitor Memory Makes Homebrew Relay Computer Historically Plausible
Upside down and inside out.
Hardware hotplug events on Linux, the gory details
Link: https://arcanenibble.github.io/hardware-hotplug-events-on-linux-the-gory-details.html
Discussion: https://news.ycombinator.com/item?id=47215602
Let's Get Physical
Link: https://m4iler.cloud/posts/lets-get-physical/
Discussion: https://news.ycombinator.com/item?id=47266030
like i get that there’s a large group of people on this website who want to be mad about ai usage and that Why invites it by taunting them but this idea that he’s some rando slinging unreviewed slop into the codebase is kind of ridiculous
💭 can you bet on Polymarket that the CFTC will start enforcing Dodd-Frank rules whose current non-enforcement allows Polymarket to exist, and more importantly will they pay you out if it does
💭 can you bet on Polymarket that the CFTC will start enforcing Dodd-Frank rules whose current non-enforcement allows Polymarket to exist, and more importantly will they pay you out if it does
Darius Kazemi
Stefan Bohacek
Cat 🐈🥗 (D.Burch) 
Gabriele Svelto
Sara Joy 
시오
Felipe Mateus
@
Patrik Svensson
Inside Fediverse
Alert Name: Suspicious IP protocol
Alert ID: [redacted]
Severity: Medium
Source: XDR Analytics BIOC
Category: Defense Evasion
Action: Detected
Description: The process has attempted to send an a packet with a 128bit IP address. This can only mean there is an integer overflow in an IPv4 address & is commonly used by attackers to circumvent your beautifully crafted IPv4 firewall ruleset.
Host: [redacted]