More instances of sabotage are being found.

Simply excluding this backdoor does not seem to be sufficient. The malicious actor has contributed over 750 commits to xz, all of which could contain further backdoors.

Downgrading to the last version without any contributions from the malicious actor is not possible either, because of new functionalities and other security issues that were fixed in the meantime. Uninstalling xz is also not possible, because half my system depends on it.

I guess it will take some time to sort all of that out. I am very impressed by the fast and coordinated response to this incident by the FOSS community.

For my phone (almost 7 years old), a thin needle to scrape out all the dust is sufficient. Pressurized air also helps.

Me, a physics educator: “Interesting!” takes note

I am using Librera Reader. Make sure to install the F-Droid version (Librera FD) without Google Play services.

It is primarily an ebook reader that supports a variety of formats, but it is also an excellent PDF viewer. Significantly more feature-rich than any other FOSS PDF viewer for Android that I have found.

I was confused for a second asking myself when Kroger was split into Kroger Sued and Kroger Nord.

We used to play the game with 2× base game, ~3 or so expansions (including Inns and Cathedrals), and one mini expansion. The game would take several hours, and everyone would just attempt to build a single giant city with a cathedral to get 3 points per city tile.

Here, the developer explained why development activity decreased:

While it is true that due to private reasons I had to take a bit of a pause of developing FlorisBoard and some time passed with no progress at all, implementing a completely new statistical NLP (Natural Language Processing) provider, or in laymans terms the long-awaited word prediction and spell-checking implementation, is also a huge task which takes a lot of time and trial-error and development time.

Android supports multiple payment providers. Some banks implement their own payment provider (e.g. Sparkasse in Germany), most just rely on Google Pay (now Google Wallet). Google Wallet has strict requirements for the Play Integrity API. Because of the modifications to Android that GrapheneOS is implementing, it is not eligible to receive the required integrity attestation and thus, Google Wallet is refusing to work. Google could at any point reconsider and certify/whitlelist GrapheneOS, which would allow Google Wallet to work using GrapheneOS. Likelihood close to 0.

Any banking app implementing their own payment provider is completely independent of this decision unless it also relies on Play Integrity API attestation (or a similar mechanism).

You are comparing GitLab (the application) with codeberg.org (the website operated by the codeberg e.V. non-profit). A fair comparison would be gitlab.com (the website operated by GitLab Inc.) with codeberg.org or GitLab (Community Edition or Enterprise Edition) with Forgejo (the application powering codeberg.org). They can be fully self-hosted and are both planning to implement AcivityPub-based federation.

The sidebar on his Patreon page says

you can actually donate any amount you want per month.

On this page, you can scroll down to the bottom, and there is an option “Or choose your own price” with a “Make custom pledge” button.

You might have heard of alternative frontends to services such as YouTube (Piped, Invidious), X/Twitter (Nitter), etc.

Something similar exists for Fandom: Breezewiki. This instance seems to occasionally result in errors, other instances seem to work more reliable.