Veritasium just dropped a video on ethics of the FOSS movement, right to repair, digital sovereignty, and the idea that closed source software has absolutely no role in supply chain security.

In recent years my teammates and I have shifted our entire careers to FOSS supply chain security engineering in spite of constantly being told our work is a waste of time. We feel seen!

https://yewtu.be/watch?v=aoag03mSuXQ

Shameless plugs @ https://caution.co https://distrust.co and https://stagex.tools

I should wait until this release is published next week, but I am too excited.

Stagex is the first production ready Linux distro to be:

- 100% deterministic
- 100% full source bootstrapped
- Maintainer signed on every commit and review
- Reproduced and signed by multiple maintainers on every artifact
- OCI container native
- LLVM/compiler-rt/libunwind native

https://codeberg.org/stagex/stagex/pulls/757

All the confs that turned us down and the people who said it could not be done can eat my entire ass.

If you claim to be building decentralized FOSS for censorship resistant finance, privacy, or communication and you collaborate via Zoom, Slack, Telegram, Twitter, Github, or Discord: you are full of shit.

Anyone that says they are looking for a "Full Stack Engineer" has no idea that the "full stack" skills needed to make the next bullshit megacorp scale include physics, electronics, kernel debugging, CPU architecture, OS hardening, networking, scaling, databases, privacy, applied cryptography, etc, in addition to "frontend" and "backend".

Full stack engineers do not actually exist and you look amateur if you publish job descriptions requesting one.

Sorry to be the one to tell you.

Are there any parents out there that has managed to raise a kid without phones?

Would be curious what the biggest surprises or challenges were.

Good news everyone. Cloudflare and GCP are down!

Everyone that told me self hosting my infrastructure was a waste of time can bite me.

Yes it was a lot of work. I earned this level of smugness.

100% of my shit is still online.

I have audited or done security due diligence on a -lot- of fintech companies and the status quo should terrify most people.

In fact, I challenge anyone to show me a single crypto-asset custodian that does not grant one, or even hundreds of people, the power to do irreversible transfers of tens of millions of dollars alone.

Seriously, show me just one.

These companies are an open buffet for state actors, or often even any mildly motivated teen skiddies.

Saw a Tesla with an american flag license plate border and a plate that read "LYVFREE".

While I don't actually condone such actions, it was in that moment I truly understood where people get the urge to set a Tesla or two on fire.

Teslas have become the urban equivalent of big pickup trucks with truck nuts and flags flying off the back.