News Nug
Firefox Moves to GitHub

Published: 2025-05-13 | Origin: Hacker News

The content emphasizes the importance of user feedback, indicating that every piece of input is read and taken seriously. It also mentions the availability of qualifiers in the documentation and identifies the subject as the official repository of Mozilla's Firefox web browser.

TransMLA: Multi-head latent attention is all you need

Published: 2025-05-13 | Origin: Hacker News

arXivLabs is a collaborative framework for developing and sharing new features on the arXiv website, emphasizing values of openness, community, excellence, and user data privacy. Both individuals and organizations can participate, provided they align with these values. There is an invitation for project ideas that can benefit the arXiv community. Additionally, users can receive status notifications for arXiv's operational status via email or Slack.

Fastvlm: Efficient vision encoding for vision language models

Published: 2025-05-13 | Origin: Hacker News

The repository presents the official implementation of "FastVLM: Efficient Vision Encoding for Vision Language Models," which is associated with the CVPR 2025 conference. It utilizes the LLaVA codebase for training variants of FastVLM and provides instructions for training, finetuning, and running inference with the models. Details on model evaluations can be found in the related paper. Users can download pretrained checkpoints and run inferences on different platforms, including Apple Silicon, which requires specific export formats. The

I hacked a dating app (and how not to treat a security researcher)

Published: 2025-05-13 | Origin: /r/programming

On April 21, 2025, a report highlighted significant security vulnerabilities in the dating app Cerca. The author initially contacted the Cerca team on February 23, 2025, and participated in a video call the following day where the team acknowledged the issues and promised to address them and notify affected users. However, despite multiple follow-up emails, the author received no updates or confirmation of user notifications by the publication date. The author independently confirmed that the vulnerabilities had been patched, allowing for responsible disclosure

Embeddings are underrated

Published: 2025-05-13 | Origin: /r/programming

The content discusses the potential of machine learning, specifically embeddings, to enhance technical writing. It distinguishes embeddings from text generation models, focusing instead on how embeddings work and how they can be applied in the context of technical writing. The process begins with inputting text—ranging from a single word to entire documents—and results in an output of fixed-length numerical arrays, regardless of the input size. This characteristic allows for mathematical comparisons between different texts. The discussion is aimed at technical writers who may be encountering embeddings

The overclocked timer

Published: 2025-05-12 | Origin: /r/programming

Failed to fetch content - HTTP Status - 429

A conversation about AI for science with Jason Pruet

Published: 2025-05-12 | Origin: Hacker News

Jason Pruet is collaborating with teams at the Laboratory to prepare for the transformative impact of artificial intelligence (AI) on science and security. Initially viewing AI as a tool, Pruet now recognizes its potential for broad disruption in scientific methodologies and discovery processes due to advancements in large AI models. He emphasizes the global challenge of leveraging AI's benefits while mitigating associated risks. In 2025, the Laboratory made its largest investment in AI-related work to date. Pruet reflects on the historical context

Redis Is Open Source Again. But Is It Too Late?

Published: 2025-05-12 | Origin: /r/programming

Abhimanyu Saharan discusses the recent announcement of Redis 8, which has reverted to being fully open source under the AGPLv3 license after a year of controversy surrounding its licensing. This change comes after a switch in March 2024 from a BSD license to a dual-license model intended to prevent large cloud providers from monetizing Redis without contributing back. This earlier decision led to dissatisfaction in the community and the emergence of forks like Valkey, which many teams adopted. The return of Salvatore

Can you trust that permission pop-up on macOS?

Published: 2025-05-12 | Origin: Hacker News

The article discusses a correction regarding a previously mentioned vulnerability (CVE-2025-31250) that was believed to be patched in macOS Ventura 13.7.6 and macOS Sonoma 14.7.6. The author initially assumed all macOS releases included the patch but later realized these specific versions were not addressed. After reaching out to Apple for clarification and conducting personal tests using a virtual machine, the author confirmed the vulnerability still exists in those versions. They plan to provide updates

Ruby 3.5 Feature: Namespace on read

Published: 2025-05-12 | Origin: /r/ruby

A new feature proposal has been introduced to define virtual top-level namespaces in Ruby, replacing a previous suggestion (#19744). This feature allows different namespaces to load libraries independently, with dependencies also being managed within their respective namespace. Initially, it will be disabled by default and can be activated via the environment variable `RUBY_NAMESPACE=1`. The proposed design employs an "on read" approach, wherein namespaces are created prior to requiring or loading applications, facilitating incremental adoption without needing to alter existing libraries.

Understanding StructuredClone: The Modern Way to Deep Copy In JavaScript

Published: 2025-05-12 | Origin: /r/programming

JavaScript developers often face challenges with reference types, particularly due to issues arising from unintentional object mutations. Deep copying objects has historically been complicated, with common methods like shallow copying through `Object.assign()` or the spread operator falling short for nested structures. The introduction of `structuredClone()` marks a significant improvement, providing a straightforward way to create deep copies of objects. This article explains how `structuredClone()` functions, compares it to other copying techniques, and highlights important considerations for developers. The core

RIP Usenix ATC

Published: 2025-05-12 | Origin: Hacker News

USENIX has decided to discontinue its flagship Annual Technical Conference (ATC), which has been a significant venue for sharing ideas since its inception in 1975, prior to the widespread use of the Internet. The author reflects on their experiences with ATC, particularly recalling the excitement of presenting DTrace at the 2004 conference. However, the conference had shifted from a focus on practical systems work to a more academic approach dominated by PhD students, which led to concerns about the decline of industrial

The Barbican

Published: 2025-05-12 | Origin: Hacker News

Three years ago, the author discovered the Barbican estate while searching for Vitsoe setups and was surprised by its beauty, contrasting with their earlier opinion of it being ugly. Built between 1965 and 1976, the author became fascinated, watching videos and reading about the complex. When visiting London recently, the author prioritized a visit to Barbican and joined a two-hour architecture tour with friends, which was captivating and felt much shorter than its duration. The tour guide shared numerous intriguing details about the

R in the Browser: Announcing Our WebAssembly Distribution

Published: 2025-05-12 | Origin: /r/programming

QuantStack has secured funding from the Bill & Melinda Gates Foundation through CourseKata to develop support for the R programming language in JupyterLite using Emscripten-forge for WebAssembly. The integration of R in JupyterLite is now available via the Xeus-R Jupyter kernel, allowing users to utilize R workflows directly in the browser. The announcement details the challenges faced in packaging R and its dependencies for JupyterLite, as well as solutions for managing R mamba packages on the

A new Lazarus arises – for the fourth time – for Pascal programming fans

Published: 2025-05-12 | Origin: /r/programming

Failed to fetch content - HTTP Status - 403

Rails 8 adds built in authentication generator

Published: 2025-05-12 | Origin: /r/ruby

The author is a full-stack Software Engineer specializing in React, JavaScript, and Rails, and has worked remotely for two years. Prior to this role, they founded a hyperlocal delivery startup. They discuss the challenges new developers face in setting up basic authentication in Rails applications, which often require extensive manual configurations or reliance on third-party gems. To address this, Rails introduced a basic authentication generator in Rails 8 that simplifies the setup process. This generator creates necessary code for user and session management, including

Implementing a radically simple alternative to Graylog

Published: 2025-05-12 | Origin: /r/programming

In May 2025, a software engineer reflected on their experience from 2022, where their team managed a service that generated 2-3 million log messages per hour from a distributed cluster of over 20 hosts. Initially, they used Graylog for log management, which allowed quick queries (1-3 seconds for an hour of logs). However, due to maintenance issues disliked by the infrastructure team, they decided to switch to Splunk. Upon rollout, the engineer found Splunk to be

Platform Engineering: Evolution or just a Rebranding of DevOps?

Published: 2025-05-12 | Origin: /r/programming

The content discusses a post by user deacon91 on Reddit, where he argues that DevOps has reached a dead end and advocates for a shift toward Platform Engineering. This new area has gained popularity, but the author questions whether it represents genuine progress or is simply a rebranding of existing concepts. They illustrate the phenomenon of "title drift" where professionals, often changing jobs for better titles and salaries, adopt inflated titles like "Platform Engineer," even while performing similar tasks to their previous roles, such as

Astronoby v0.7.0

Published: 2025-05-12 | Origin: /r/ruby

The team values and carefully considers all feedback received. For detailed information on available qualifiers, users should refer to the documentation. Those upgrading should consult the UPGRADING.md file, and a full changelog is available for versions v0.6.0 to v0.7.0.

My puts Debugging Workflow in Rails Apps

Published: 2025-05-12 | Origin: /r/ruby

Failed to fetch content - HTTP Status - 403