If you're wondering why I'm crossposting .ml content or for an account listing of accounts used for it, please see the bottom of this megathread
Linux @sh.itjust.works Arch Linux’s AUR is experiencing a malware incident involving user-contributed packages with malicious commits that attempt to download npm-based payloads during installation. (...)
Arch users should not update AUR packages without review. Examine PKGBUILD diffs, check any new .install files, and be cautious if updates introduce npm commands or dependencies unrelated to the software.
Users who recently updated affected AUR packages should review package history, examine executed suspicious install scripts, and treat any unexpected npm-based installation behavior as a possible compromise.
Climate Crisis, Biosphere & Societal Collapse @sopuli.xyz Rust @programming.dev This Week in Rust 650 · This Week in Rust
Rust @programming.dev Emulating Petzold's Code BCD decoder – each logic gate is a persistent task with own instructions on a stack VM
Also vm repo
Python @programming.dev The SafeDep blog reports that compromised versions of the telnyx package have been found in the PyPI repository:
Two versions of telnyx (4.87.1 and 4.87.2) published to PyPI on March 27, 2026 contain malicious code injected into telnyx/_client.py. The telnyx package averages over 1 million downloads per month (~30,000/day), making this a high-impact supply chain compromise. The payload downloads a second-stage binary hidden inside WAV audio files from a remote server, then either drops a persistent executable on Windows or harvests credentials on Linux/macOS.
Rust @programming.dev Announcing Rust 1.94.1
Homelab @selfhosted.forum MOS is a new open-source project for homelabs and small servers. Instead of being a traditional, storage-focused NAS, it aims to be more like a general-purpose server platform managed through a web-based UI.
The project is built on Devuan and is still in early stages. It uses a service-oriented design, where the web interface acts only as a client to the MOS API. The backend services handle all the main operations.
MOS combines features that are usually spread across different tools in a typical homelab. With its web interface, admins can manage system monitoring, user accounts, storage pools, shared storage, and both container and virtual machine workloads
JavaScript @programming.dev Javascript Turns 30 years
**🎉 JavaScript Turns 30 Years Old
Back in May 1995, a 33 year old Brendan Eich built the first prototype of JavaScript in just ten days, originally codenamed Mocha (and then LiveScript). On December 4, 1995, Netscape and Sun Microsystems officially announced 'JavaScript' in a press release as "an easy-to-use object scripting language designed for creating live online applications that link together objects and resources on both clients and servers."
Over thirty years, JavaScript has cemented its place at the heart of the Web platform, and more broadly in desktop apps, operating systems (e.g. Windows' use of React Native), mobile apps, and even on microcontrollers.**
Python @programming.dev Godot @programming.dev Galactic Drift by KillGorack
We have a few updates here, some of them include;
Drop system expanded to drop more items and a way to add later.
powerups added so that the base weapons can be equipped, and upgrading them happens during gameplay.
Hud graphics updated with some visuals that show stats like life / shields. (right side progress bar not started yet) We are planning a resource-based game play to expand.
NPC characters (some gleaned from (Irmandito's Space ship sprites)
YouTube https://youtu.be/qVHKqPT43xA
Itch https://killgorack.itch.io/galactic-drift
Homepage https://www.killgorack.com/PX4/index.php?ap=gd&cn=hme
Public GIT https://github.com/KillGorack/Galactic-Drift
Screenshot of the drop system getting beaten up.
Developer: @[email protected]
Ok maybe not so good for meta glasses....but...now hear me out....flock cameras >:)