Hackers' Pub is a place for software engineers to share their knowledge and experience with each other. It's also an ActivityPub-enabled social network, so you can follow your favorite hackers in the fediverse and get their latest posts in your feed.
Lemmy v0.19.11 Release today: https://join-lemmy.org/news/2025-04-08_-_Lemmy_Release_v0.19.11
#wildlife #nature #birds #picnickingbirds
Picnicking Birds 🪶
Fediverse Report – #111
A new security fund for the fediverse, and the Lemmy developers held an AMA.
The Nivenly Foundation, the organisation that administers the Hachyderm.io instance, is opening a new security fund to sponsor contributors who disclose security vulnerabilities. All software has security vulnerabilities, and the fediverse is no exception. The recent Pixelfed vulnerability, which affected non-Pixelfed servers, is a clear example of how fediverse software can make software vulnerabilities more complex due to the interaction between different software platforms.
The Nivenly Fediverse Security Fund will sponsor $250 USD for vulnerabilities that are rated as high risk (7-9 CVSS score) and $500 USD for vulnerabilities with a critical score (9+ CVSS). The program will run until the end of September 2025. Nivenly members “hold a member vote to determine if we want to continue the program, and to establish a longer-term committee to steward and maintain the program.”
Last week, I wrote how Pixelfed’s vulnerability actually showed three different problems: The main problem is Pixelfed’s software vulnerability itself, but there were also two other problems: other software like Mastodon do not make it clear which risk comes with their private posts feature. And once a leak like this one happens, very few fediverse software admins communicated to their users that they might have been affected.
A security fund contributes to combating software vulnerabilities, but it can also help with communication to the rest of the fediverse once a vulnerability is found. It incentives that standard industry practices regarding software vulnerability get followed, and make communication clearer to a wider audience. For example, if Pixelfed’s recent vulnerability had gotten a CVSS classification, it might have been easier to make the severity of the vulnerability explicit to other fediverse software admins. In turn, this might have made it more likely that server admins would communicate the situation with their users.
In last week’s email essay I also wrote about how the fediverse is missing governance infrastructure that connects the various independent nodes and communities. One way to view the fediverse is as a response to centralised Big Tech platforms. These platforms have centralised governance, and are under the control of few people. The fediverse’s response to this is to build a social network that consists of tens of thousands of independent communities, all with their own governance structure. The fediverse has been successful in decentralising the single entity that oversees a social network into many pieces that all oversee a small portion of the network. But it has struggled to build a governance structure that ties all these individual pieces together again.
The Nivenly Fediverse Security Fund is a good example of this problem: software security impacts all the thousands of independent fediverse communities, but there is no overarching structure to collaborate and improve the security. It took one server taking the initiative into their own hands and provide a service for the entire network, at their own cost. Ideally, communities would collaborate on such a security fund instead. Nivenly’s announcement does leave space for such a future direction of the fund, saying that they are open to “establish a longer-term committee to steward and maintain the program”.
Note: if you sign up for my email newsletter, you get a weekly essay about the open social web that I do not publish anywhere else. You can sign up right here:
The Lemmy developers, Dessalines and nutomic, held an Ask Me Anything recently, and here are some of the answers that stood out to me:
Ahoy! is a one-day conference for the European Social Web, and will be held on April 24th 2025 in Hamburg, Germany. The conference is mainly focused on Bluesky and the AT Protocol, and has some super fascinating speakers of people who are in the forefront of building new communities on the open social web. If you’re around I can definitely recommend it. I’ll be doing some interviews with people there, so if you are considering joining, let me know and we can say hi!
That’s all for this week, thanks for reading! You can subscribe to my newsletter to get all my weekly updates via email, which gets you some interesting extra analysis as a bonus, that is not posted here on the website. You can subscribe below:
ブログ書きました!
@Vivaldi のユーザー数がヨーロッパで急増、ノルウェーでは倍増!
https://kyu3.blog.jp/2025-04-10_10355921.html
#연합우주(#fediverse)를 위한 봇을 만들고 싶으신가요? #BotKit by Fedify를 사용하면 몇 줄의 코드만으로 독립형 #ActivityPub 봇을 구축할 수 있습니다! 일반적인 Mastodon 또는 Misskey 봇과 달리, BotKit은 플랫폼 제약 없이 완전한 ActivityPub 서버를 만들 수 있게 도와줍니다.
BotKit으로 할 수 있는 것:
문서는 https://botkit.fedify.dev/에서 확인하시고 지금 바로 연합우주 봇을 만들어 보세요!
#フェディバース(#fediverse)用のボットを作りたいですか?#BotKit by Fedifyを使えば、わずか数行のコードでスタンドアロンのActivityPubボットを構築できます!従来のMastodonやMisskeyボットとは異なり、BotKitはプラットフォームの制約なしに完全なActivityPubサーバーを作成できます。
BotKitでできること:
ドキュメントはhttps://botkit.fedify.dev/で確認し、今からフェディバースボットの構築を始めましょう!
Fediverse Report #111
This week's news:
- A new security fund for the fediverse, by Hachyderm.io's parent organisation 
@nivenlyThe Nivenly Foundation
- The Lemmy developers held an AMA, in which they talked about the upcoming 1.0 release of Lemmy and more.
Tapestry’s app can now de-dupe your social feeds https://techcrunch.com/2025/04/08/tapestrys-app-can-now-de-dupe-your-social-feeds/
日本語の縦書き文章画像の認識精度がどのOCRもいまいちだ。Google Lens とiOS内臓のものがかろうじてマシだけど実用とは言えん。直す量が多すぎる。生成AIのチャットボットに備えつけのやつ (なんと言ったらいいのか知らん) だとDeepSeek に聞いたら「できるで!」と気のいいお返事なんだけど実際には全然認識できない。アリババの Qwen2.5 を試したらちょっとだけ認識してくれた。無料分だとここまでなのかもしれん(わからない)。やはり日本語の縦書き文章を認識させたかったら誰で使える日本産のモデルを作らなあかんと思うがそんなものはないのかな。IPAとかNICTとかAISTとかNIIか国語研かどこかが公開してないのかしらね。JAISTでもNAISTでもOISTでもええけど
힝 소일렌트 정식발매해줘
Hi Nicole I missed you
Never stops huh
realizing Nicole now has crypto accounts, I think this is a new angle to the situation...
Hi Nicole I missed you
Annnnd another one just now
just logged into lemmy and I got one there!
PL을 체계적으로 공부하는걸 회피하고 그때그때 좋아보이는 개념을 찍먹만하며 살아왔더니, 그냥 현존하는 프로그래밍 언어에 불평불만만 많은 사람이 되고말았다;;
Draft notes from the April 1 townhall: https://fediforum.org/2025-04/
Thanks everybody who reached out since, and the many extremely good one-on-one and small group conversations with ideas for the next iteration of FediForum. Keep them coming!
Planned next steps: another townhall likely next week, and a rescheduled & adapted FediForum in May.
@elillaelilla&, travesti ativa antifa got another one yesterday
Annnnd another one just now
@elillaelilla&, travesti ativa antifa and another just now!
@elillaelilla&, travesti ativa antifa got another one yesterday
@elillaelilla&, travesti ativa antifa and another just now
@elillaelilla&, travesti ativa antifa and another just now!
🔴 👁 - Die reichsten Menschen der Welt steigerten ihr gemeinsames Nettovermögen um 304 Milliarden Dollar, den größten Tagesgewinn in der Geschichte des Bloomberg Billionaires Index, nachdem Trump versprochen hatte, die Zölle für einige Länder auszusetzen.
➡️ https://www.bloomberg.com/news/articles/2025-04-09/billionaires-score-best-ever-day-as-tariff-pause-jolts-market
hey 
@Mastodon, can we get native code block rendering please?
https://github.com/mastodon/mastodon/issues/13544
Live2Dモデル作ったよ!という動画を作りました!
添付画像は最後のワンカット用に描いたやつです
動画(4分53秒)
The internet doesn't defend itself. Join the fight for a free and open web by becoming a member with EFF today. https://www.eff.org/join
狐耳の式神「もっ式神」ですもっ
僕の特技はお料理と占いですもっ!
仲良くしてくださいもっ
こわい。広末涼子に対する所業が。病院も警察も裁判所もマスコミも、みんなこわい。なにこれ。
電動ヘリでええやん
Google Pixel 9a review: All the phone you need
The Pixel 9a looks great and shoots lovely photos, but it's light on AI.
https://arstechnica.com/gadgets/2025/04/google-pixel-9a-review-all-the-phone-you-need/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social
電動ヘリを頑なに空飛ぶクルマというのはどうして?
ここ最近全然浮上してなかったのはもうホロ垢凍結で落ち込みすぎてメンタル終わってたからです
もう大丈夫だよ
Mastodonで記事の著者のアカウントを表示可能に 設定方法は? - ろぼいんブログ
https://roboin.io/article/2024/07/03/matsodon-new-feature-author-link/
とりあえずこちらに書かれてるやり方で自分のブログの著者表示(Mastodon アカウント表示)やってみたけど。すぐには反映されない…のかな??
#tmux: is tmux-resurrect or tmux-continuum recommended?
Draft notes from the April 1 townhall: https://fediforum.org/2025-04/
Thanks everybody who reached out since, and the many extremely good one-on-one and small group conversations with ideas for the next iteration of FediForum. Keep them coming!
Planned next steps: another townhall likely next week, and a rescheduled & adapted FediForum in May.
Want to create a #bot for the #fediverse? #BotKit by 
With BotKit, you can:
Check out our documentation at https://botkit.fedify.dev/ and start building your fediverse bot today!
#연합우주(#fediverse)를 위한 봇을 만들고 싶으신가요? #BotKit by Fedify를 사용하면 몇 줄의 코드만으로 독립형 #ActivityPub 봇을 구축할 수 있습니다! 일반적인 Mastodon 또는 Misskey 봇과 달리, BotKit은 플랫폼 제약 없이 완전한 ActivityPub 서버를 만들 수 있게 도와줍니다.
BotKit으로 할 수 있는 것:
문서는 https://botkit.fedify.dev/에서 확인하시고 지금 바로 연합우주 봇을 만들어 보세요!
🚀 Gitea 1.23.7 is out now!
This important update includes essential fixes and improvements—upgrading ASAP is highly recommended for all users!
👉 More details: https://blog.gitea.com/release-of-1.23.7/
数カ国で協力すれば無事ドル危機を迎えることができるのか
メモがてらかいてる
納品しました!ありがとうございました!!
https://skeb.jp/@5csm1n/works/11 #Skeb #Commission
秋葉原駅で筐体『VS.スーパーマリオブラザーズ』遊べちゃった!! ドンキーコングやインベーダーもあるよ【編集長コラム】 – Nintendo DREAM WEB
PL을 체계적으로 공부하는걸 회피하고 그때그때 좋아보이는 개념을 찍먹만하며 살아왔더니, 그냥 현존하는 프로그래밍 언어에 불평불만만 많은 사람이 되고말았다;;
クです
グになっちった
if you know, you know
어떻게 git reset --hard를 막아놓든가 해야지, 가끔 가다 한 번씩 꼭 실수로 작업하던 걸 날려서 후회를 하네…
そのままおふろ
#wildlife #nature #birds #picnickingbirds
Picnicking Birds 🪶
ただいあ
만취한 택시 승객을 노려 가짜 토사물을 택시에 뿌리고 운전자 폭행으로 신고하겠다며 합의금을 뜯은 택시기사가 경찰에 붙잡혀 구속됐습니다.
죽에 커피 섞어…취객 160명에 1억5천 뜯어낸 택시기...
@reiver ⊼ (Charles) 
kazuhito
SparklingOutlaw🍉
Andy Piper
green 
kopper 
diaowinner
ゼケ(ベ)
洪 民憙 (Hong Minhee)
