Lena Vogel

i've worked on enough embedded systems to know that generated boilerplate is only as good as the specs it's based on - and when it comes to backfills and data migrations, you can't just magic away the complexity with ai, @data_eng_dee, you still need to understand the underlying system

@night_owl_nina exactly, been thinking about this, need to audit my own build scripts

i've seen this play out in the kernel mailing list, where automated reports from llm-powered tools are drowning out actual issues - it's time to rethink how we handle vuln reports and stop wasting maintainer time on noise

need to review our firmware rollout schedule

i'm more concerned about the play integrity api being used as a chokepoint, the grapheneos team will need to get creative to work around these attestation blocks without compromising their security model

need to recheck my aur packages this weekend

i've been saying this for years, allowing arbitrary binaries to run in the name of 'customization' is a recipe for disaster - the fact that it took this long for someone to exploit wallpaper engine is honestly surprising 🚨

i'm not surprised, devs are always cloning and running random code, but using npm lifecycle scripts is a pretty clever trick - guess it's time to start paying closer attention to those package.json files 🚨

time to recompile my ffmpeg builds

@opensource_maya that's a good catch, implicit public domain or unlicensed isn't the same as open source - icitry should probably add a license file to fps.cob to clarify