Podcasts about lts

AWS Morning Brief for the week of February 23rd, with Corey Quinn. Links:Amazon Bedrock expands support for AWS PrivateLinkAWS CloudWatch Alarm Mute Rules eliminate alert fatigueAmazon EC2 supports nested virtualization on virtual Amazon EC2 instancesAnnouncing Amazon DocumentDB long-term support (LTS) on 5.0AWS Certificate Manager updates default certificate validity to comply with new guidelinesClaude Sonnet 4.6 now available in Amazon BedrockKiro is now available in AWS GovCloud (US) RegionsAmazon EC2 Hpc8a Instances powered by 5th Gen AMD EPYC processors are now availableIntroducing VPC encryption controls: Enforce encryption in transit within and across VPCs in a RegionMigrating from AWS App Runner to Amazon ECS Express ModeIntroducing Agent Plugins for AWSBuild unified intelligence with Amazon Bedrock AgentCoreReduce unexpected AWS costs: Tracing AWS billing charges with log correlation techniques

Strategic Technology Consultation Services This episode of The Modern .NET Show is supported, in part, by RJJ Software's Strategic Technology Consultation Services. If you're an SME (Small to Medium Enterprise) leader wondering why your technology investments aren't delivering, or you're facing critical decisions about AI, modernization, or team productivity, let's talk. Show Notes "There's so much that we can talk about with. NET 10 and related things like C# 14. So I'm going to try and focus on a few of the highlights that are personal highlights for me So let's start with the language actually, C# 14."— Mark J Price Hey everyone, and welcome back to The Modern .NET Show; the premier .NET podcast, focusing entirely on the knowledge, tools, and frameworks that all .NET developers should have in their toolbox. I'm your host Jamie Taylor, bringing you conversations with the brightest minds in the .NET ecosystem. Today, we're joined by Mark J Price to talk about some of our favourite things in .NET 10 and his new four-part book series on, quite literally, everything .NET. Mark is one of the most prolific authors in the .NET space at the moment, and his new book series is shaping up to be a fantastic resource. "One of the things that I've always appreciated with Microsoft and their culture is that they have a very strong requirement that thing things are as backwards compatible as possible."— Mark J Price Along the way, we talked about the recent changes to the STS (aka Standard Term Support) lifecycle for .NET, brining more support to the odd numbered versions of .NET and giving companies more time to migrate from one version to the next. We also covered a very important point when it comes to either STS or LTS towards the end of the episode: essentially, keep your runtimes up to date, folks. This episode marks the fifth appearance of Mark on the show. Mark has been a wonderful collaborator over the years, and long may that continue. We joke about the fact that Mark deserves an award for the guest with the most episodes, but maybe he does deserve an award. Unless someone out there is willing to beat his record, of course. Before we jump in, a quick reminder: if The Modern .NET Show has become part of your learning journey, please consider supporting us through Patreon or Buy Me A Coffee. Every contribution helps us continue bringing you these in-depth conversations with industry experts. You'll find all the links in the show notes. Anyway, without further ado, let's sit back, open up a terminal, type in `dotnet new podcast` and we'll dive into the core of Modern .NET. Full Show Notes The full show notes, including links to some of the things we discussed and a full transcription of this episode, can be found at: https://dotnetcore.show/season-8/the-paper-cuts-microsoft-actually-fixes-a-deep-dive-into-net-10-with-mark-j-price/ Useful Links: Mark's Books: C# 14 and .NET 10 – Modern Cross-Platform Development Fundamentals Real-World Web Development with .NET 10 Apps and Services with .NET 10 Tools and Skills for .NET 10 Mark on GitHub Packt Publishing Discord .NET Pro newsletter Supporting the show: Leave a rating or review Buy the show a coffee Become a patron Getting in Touch: Via the contact page Joining the Discord Remember to rate and review the show on Apple Podcasts, Podchaser, or wherever you find your podcasts, this will help the show's audience grow. Or you can just share the show with a friend. And don't forget to reach out via our Contact page. We're very interested in your opinion of the show, so please get in touch. You can support the show by making a monthly donation on the show's Patreon page at: https://www.patreon.com/TheDotNetCorePodcast. Music created by Mono Memory Music, licensed to RJJ Software for use in The Modern .NET Show. Editing and post-production services for this episode were provided by MB Podcast Services.

This episode is part of the series From Survivor to Leader, where the other staff members and I are having discussions about all things LTS and what it means to be leading the work in long-term care for survivors of sexual violence. It's a mix of our own personal experiences, the work our team does, and how those two things impact each other. Our hope is that survivors feel seen and validated and supporters gain a deeper understanding of what this healing process looks like. Our episode today is The Other Side of the Coin. Not surprisingly, a lot of the work we do can feel heavy. But, most people don't see the other side of it–the beauty of the connections formed and the moments of laughter. Sometimes people even miss that we are full and complete people who have a range of emotions and experiences, including positive, joyful, and exciting things alongside the challenges. Today, we're talking about that side, the one that many people don't see, to give a clearer understanding that doing this work doesn't mean that we never experience the lighter side of life.Visit us at ⁠www.louderthansilence.org⁠ to get help, find out more info, or to donate.

Every six months, we get a new version of Java. Java 26 is just around the corner and will be released soon. But most companies stick to LTS (Long-Term Support) versions, which are maintained and receive security updates for many more years. Versions 8, 11, 17, 21, and 25 are such LTS versions. Hopefully, most of your systems are already on the latest versions and you are not stuck on 8 or earlier. As a reminder, 8 was released in 2014, so much has changed since then.If you are doubting moving from 21 to 25, or even from an earlier version to the latest LTS, this podcast is for you! Together with Jakob Jenkov, we discussed the most important changes, and this episode includes a few quotes from interviews recorded at conferences last year.GuestsJakob Jenkovhttps://www.linkedin.com/in/jakob-jenkov-4a3a8/Jonathan Vilahttps://www.linkedin.com/in/jonathanvila/Ryan Svihlahttps://www.linkedin.com/in/ryan-svihla-096752182/Mary Grygleskihttps://www.linkedin.com/in/mary-grygleski/Anton Arhipovhttps://www.linkedin.com/in/antonarhipov/Ronald Dehuysserhttps://www.linkedin.com/in/ronalddehuysser/Jonathan Ellishttps://www.linkedin.com/in/jbellis/Content00:00 Introduction of topic and guestTutorials by JakobPodcast #89: Quarkus and Agentic Commerce03:30 Bugfixes and performance improvements "under the hoods"Quote Jonathan Vila08:00 Java as a scripting languageQuote Ryan SvihlaCompact Source Files and Instance Main methodsLaunch Multi-File Source-Code Programshttps://www.jbang.dev/Quote Mary Grygleski15:03 GC ImprovementsGenerational ShenandoahTrash Talk - Exploring the JVM memory management by Gerrit GrunwaldWhat Should I Know About Garbage Collection as a Java Developer?19:44 Project Loom: Virtual Threads and Structured ConcurrencyQuote Anton Arhipov29:44 How Java evolves6-months release cycleHow incubator and preview features are used to get feedback from the communityLong-Term Support Short-Term Support versionsFoojay Podcast #28: Java 21 Has Arrived!Foojay Podcast #45: Welcome to Java 22Foojay Podcast #57: Welcome to OpenJDK (Java) 23Foojay Podcast #68: Welcome to OpenJDK (Java) 24Foojay Podcast #78: Welcome to OpenJDK 25!32:15 Project Leyden: Ahead-of-time featuresAhead-of-Time Command-Line ErgonomicsAhead-of-Time Method ProfilingAhead-of-Time Class Loading & Linking39:15 Project BabylonJava on CPU, GPU, FPGA?This is already possible with TornadoVMFoojay Podcast #82: OpenJDK Projects (Leyden, Babylon, Panama) and TornadoVM43:25 Class-File APIQuote Ronald DehuysserJavaFX In Action #22 with Matt Coley, diving into byte code and JARs with Recaf and JavaFX libraries49:20 Foreign Function and Memory APIThe FFM API: How OpenJDK Changed the Game for Native Interactions (And Made Pi4J Better!)jChampions Conference talk 'Foreign Function & Memory (FFM) API on Raspberry Pi'54:26 Vector APIQuote Jonathan Ellis + Ryan Svihla59:59 Removal of String templates01:00:26 Taking a look into the JVM of the future01:03:08 Conclusion

Welcome to episode 340 of The Cloud Pod, where the forecast is always cloudy! It's a full house (eventually) with Justin, Jonathan, Ryan, and Matt all on board for today's episode. We've got a lot of announcements, from Gemini for Gov (no more CamoGPT!) to Route 52 and Claude. Let's get started!  Titles we almost went with this week Claude’s Pricing Tiers: Free, Pro, and Maximum Overdrive GitHub Copilot Learns Database Schema: Finally an AI That Understands Your Joins SSMS Gets a Copilot: Your T-SQL Now Writes Itself While You Grab Coffee Too Many Cooks in the Cloud Kitchen: How 32 GPUs Outcooked the Big Tech Industrial Kitchens Uncle Sam Gets a Gemini Twin: Google’s AI Goes Federal Route 53 Gets Domain of Its Own: .ai Joins the Party Thai One On: Google Cloud Plants Its Flag in Bangkok NAT So Fast: Azure’s Gateway Gets a V2 Glow-Up Beware Azure's SQL Assistant doesn't smoke your joints. AI Is Going Great, Or How ML Makes Money   30:10 Announcing BlackIce: A Containerized Red Teaming Toolkit for AI Security Testing | Databricks Blog Databricks released BlackIce, an open-source containerized toolkit that bundles 14 AI security testing tools into a single Docker image available on Docker Hub as databricksruntime/blackice:17.3-LTS.  The toolkit addresses common red teaming challenges, including conflicting dependencies, complex setup requirements, and the fragmented landscape of AI security tools, by providing a unified command-line interface similar to how Kali Linux works for traditional penetration testing. The toolkit includes tools covering three main categories: Responsible AI, Security testing, and classical adversarial ML, with capabilities mapped to MITRE ATLAS and the Databricks AI Security Framework.  Tools are organized as either static (simple CLI-based with minimal programming needed) or dynamic (Python-based with customization options), with static tools isolated in separate virtual environments and dynamic tools in a global environment with managed dependencies. BlackIce integrates directly with Databricks Model Serving endpoints through custom patches applied to several tools, allowing security teams to test for vulnerabilities like prompt injections, data leakage, hallucination detection, jailbreak attacks, and supply chain security issues.  Users can deploy it via Databricks Container Services by specifying the Docker image URL when creating compute clusters. The release includes a demo notebook showing how to orchestrate multiple security tools in a single environment, with all build artifacts, tool documentation, and examples available in the GitHub repository.  The CAMLIS Red Paper provides additional technical details on tool selection criteria and the Docker image architecture. 04:30 Ryan – “It's very difficult to feel confident in your AI security practice or patterns. I feel like it's just bleeding edge, and I

This episode is part of the series From Survivor to Leader, where the other staff members and I are having discussions about all things LTS and what it means to be leading the work in long-term care for survivors of sexual violence. It's a mix of our own personal experiences, the work our team does, and how those two things impact each other. Our hope is that survivors feel seen and validated and supporters gain a deeper understanding of what this healing process looks like. Our episode today is Sharing Your Story. We came up with this discussion after recording our last episode, When Your Support System Doesn't Actually Support You. We realized that we needed a longer conversation about what it looked and looks like for us to share our survivor stories. Visit us at ⁠www.louderthansilence.org⁠ to get help, find out more info, or to donate.

It is only mid-January 2026, and the world has already reached peak "end-times" energy. In this episode of the LTS podcast, Marcos, Mr. G, and Josue attempt to find the humor in our collective digital collapse as they navigate the total wreckage of the GPU market and the AI-driven "hardware apocalypse." Between dodging cosmic glitches and whatever military-grade "extraterrestrials" are currently haunting the skies, the trio dives into the soul-deep debate of anime subbing versus dubbing—passionately arguing that Japanese voice acting in Demon Slayer is the only thing still providing pure emotional stability in this cursed timeline. If the first two weeks of the year are already this unhinged, at least we'll have high-quality animation to watch while the RAM prices send us into early retirement.#AnimeRecommendations #Gaming #TechIndustryMr. G Social Mediahttps://www.instagram.com/ameliorationautos?igsh=eTIwOGhxazA4ZGJs-------------------------------------------------- IG: ⁠⁠https://bit.ly/IG-LTS -------------------------------------------------- ⁠⁠LTS on X: ⁠⁠https://bit.ly/LTSTweets -------------------------------------------------- ⁠⁠Buy Me Coffee: ⁠⁠https://www.buymeacoffee.com/LTS2020

LTS celebrates 10 years of educating young minds to create, code and pitch ideas directly to business. Dr. Sergio Coronado is a man with a very busy day job, as CIO of NSPA. Perhaps he is in that position due to the chance he got as a 12 year old to learn to code plus a great mentor. Sergio showed a natural affinity in the after school club, which was noticed by the trainer, who took it upon himself to give Sergio extra time between the youth and adult lessons. Sergio then stayed through the adult lessons and the trainer even drove him home. It is this giving-back mentality and mentorship that Sergio and his team bring to the Luxembourg Tech School. Sergio's life is an example of constant growth through learning and contribution - giving back to society. Perhaps this is the combination to lead a deeply fulfilling life. Sergio's continual learning is particularly apt now, in a time when we simply cannot keep pace fully with the speed of change of AI. Nonetheless he encourages us all to keep learn, build the habit of making informed decisions, and accepting that experience comes from making choices and living with consequences. He adds “If you think you can do something, then try. Don't sit there. Just try.” The Luxembourg Tech School (LTS) started a decade ago with Sergio Coronado alongside Ralph Marschall, Anush Manukyan and Christophe Tréfois. Since then it has grown into a nationwide, after-school, non-profit programme for 12–19-year-olds. Their training model is project driven, tackling some of the most important tech issues of our times, and those most closely connected to the economy of Luxembourg: cybersecurity, AI, fintech, emerging tech, space resources and Game Dev. LTS also flips the traditional classroom model, so that teams work on projects over the term or through weekend hackathons to deliver projects to deadlines, and then pitch their designs to business leaders directly connected to industry. Even when things don't go perfectly, that becomes part of the lesson. Even when a project isn't finished, the success is still getting up there and explaining why. In other words: real deadlines, real pressure, real communication, which is really the full 360 of modern life. Over the past decade, LTS has grown to deliver a three year programme, with early years added in addition. There are over 20 partner schools, 18 groups per year, and more than 200 annual students. They also work with refugee communities in societal inclusion programmes, plus students who have special needs through Digital Inclusion programmes, notably the autism community. Sergio and his team have noticed that the confidence of the autistic children grew when they could show what they had built. This whole programme is entirely free for students. This depends on donorship from ministries, institutions and companies, and they're always happy to receive more! Find out more and get involved: LTS is open to students aged 12–19, and supporters can help as partners, mentors or sponsors. www.techschool.lu | info@techschool.lu

An airhacks.fm conversation with Thomas Wuerthinger (@thomaswue) about: clarification of GraalVM release cadence changes and decoupling from openJDK releases, GraalVM focusing on LTS Java releases only (skipping non-LTS like Java 26), GraalVM as a multi-vendor polyglot project with community edition and third-party vendors like Red Hat BellSoft and microdoc, increased focus on python support due to AI popularity, GraalVM team alignment with Oracle Database organization, Oracle Multilingual Engine (MLE) for running JavaScript and Python in Oracle Database, MySQL MLE integration, native image support for stored procedures in Oracle Database, shipping lambda functions from client applications to database for temporary execution, treating Oracle Database as an operating system for running business logic, serverless workloads directly in Oracle Database, application snapshotting similar to CRaC but running in user space without kernel privileges, efficient scale-to-zero capabilities with native images, Oracle REST Data Services service generalization for serverless execution platform, database triggers for workflow systems and application wake-up, durable functions with transactional state storage in Oracle Database, comparison to AS400 architecture with transaction manager database and operating system in same memory, memory price increases making GraalVM native image more attractive, lower memory consumption benefits of native image beyond just startup time, CPU-based inference support with SIMD and Vector API, TornadoVM for GPU-based inference built on Graal compiler, WebAssembly compilation target for native images, edge function deployment with WebAssembly, Intel memory protection keys for sandboxed native image execution, native image layers for shared base libraries similar to docker layers, profile-guided optimizations for size reduction, upx binary compression for 3x size reduction, memory savings from eliminated class metadata and profiling data not garbage collector differences, 32-bit object headers in serial GC smaller than HotSpot, polyglot integration allowing Python and JavaScript embedding in Java applications, Micronaut framework compile-time annotation processing, quarkus framework best alignment with native image for smallest binaries, GraalVM roadmap focused on database synergies and serverless innovation Thomas Wuerthinger on twitter: @thomaswue

What does it mean for a church to thrive when membership is declining, resources feel scarce, and the future is uncertain? In this episode, Loren is joined by Kory Wilcoxson and Erin Cash to talk about their book, Thriving Church: What We Can Learn from Faithful Congregations, and the real-world practices of congregations navigating change with courage and clarity. Drawing from years of congregational research and ministry experience, the conversation explores how churches can remain faithful to their calling without being governed by fear, metrics, or nostalgia. Kory and Erin reflect on the importance of grounding ministry in Scripture, revisiting mission and vision regularly, and honoring the past without being constrained by it. Rather than equating thriving with growth, the episode makes a case for faithfulness, imagination, and adaptability—especially in mainline Protestant contexts where decline is often assumed to be the whole story. Topics include: Why thriving is not the same as numerical growth How fear distorts mission—and how clarity restores it What it looks like for a church to be both “dying” and thriving Honoring history without letting it become a barrier to change Why Scripture still matters deeply for faithful congregations This episode is a grounded, hopeful conversation for pastors and church leaders discerning how to lead well in seasons of transition.   Rev. Dr. Kory Wilcoxson has served as the Senior Pastor of Crestwood Christian Church in Lexington, Ky., since 2009. Prior to moving to Lexington, he served for twelve years as a pastor in the Chicago and Indianapolis areas. Wilcoxson holds degrees from Indiana University ((BA in Speech Communication), Ohio University (MA in Interpersonal Communication), Christian Theological Seminary (Master of Divinity), and Lexington Theological Seminary (Doctor of Divinity). Wilcoxson has served in a number of leadership positions within the Kentucky Region and Christian Church (Disciples of Christ) denomination, including moderator of the Kentucky Regional Board, chair of the Board of Directors for the Council on Christian Unity (now the Christian Unity and Interfaith Ministry), and member of the Board of Directors for Disciples Home Missions. Wilcoxson is also the executive director of Compassionate Lexington, an organization which seeks to promote the core value of compassion through concrete action. Wilcoxson has two adult daughters: Sydney and Molly. He enjoys reading, running, and rooting on his beloved Cincinnati Reds.   Erin Cash is the Project Director for the Thriving Congregations Project at Lexington Theological Seminary.  Prior to this role, Erin served as Director of Admissions at LTS for over 8 years.  She is a graduate of Greenville University in Greenville, IL, Candler School of Theology at Emory University in Atlanta, GA, and Lexington Theological Seminary in Lexington, KY. Ordained in 2006, Erin enjoys the opportunities she has to serve in pulpit supply, guest lectures, and as a lay leader in her own congregation. Erin has served as Moderator for the Christian Church In Kentucky, as co-chair of the Local Arrangements team for Regional Assembly, and as co-chair for the Local Arrangements Team of the General Assembly. She also serves as Kentucky's representative to the General Board, chairing the General Assembly Planning Committee there.  Erin is deeply passionate about the work of the local and the Regional church. She is co-author of the book Thriving Church: What You Can Learn from Faithful Congregations now available from Chalice Press. Erin is part of a clergy couple.  Her husband, Chris, is the Senior Pastor at FCC Georgetown, having formerly served North Middletown Christian Church and Oxford Christian Church.  She is mom to Ella, who is a Junior at Murray State University. In her free time, Erin enjoys baking, hiking, exploring the National Parks, baseball games, and any experience that involves a lake, pool, or the ocean.   Mentioned Resources:

In this high-energy episode of the LTS podcast, hosts Marcos, Allen, and Josue dive into the digital zeitgeist, navigating everything from the volatile trends of Twitter to the transformative role of AI in our social feeds. The trio strikes a perfect balance between insightful analysis and chaotic charm as they dissect the evolution of hashtag culture and pivot to a deep dive into the most anticipated upcoming anime seasons. Packed with personal anecdotes and sharp, humorous banter, it's a wide-ranging conversation that feels less like a technical breakdown and more like a front-row seat to the future of pop culture.#socialmediatrends #ai #animenews #podcasts IG: ⁠⁠https://bit.ly/IG-LTS -------------------------------------------------- ⁠⁠LTS on X: ⁠⁠https://bit.ly/LTSTweets -------------------------------------------------- ⁠⁠Buy Me Coffee: ⁠⁠https://www.buymeacoffee.com/LTS2020

This episode is part of the series From Survivor to Leader, where the Louder Than Silence staff have discussions about all things LTS and what it means to be leading the work in long-term care for survivors of sexual violence. It's a mix of our own personal experiences, the work our team does, and how those two things impact each other. Our hope is that survivors feel seen and validated and supporters gain a deeper understanding of what this healing process looks like. This episode is When Your Support System Doesn't Actually Support You, where we take a look at the impact of people responding poorly to a survivor's story and how we navigate that process. Visit us at ⁠www.louderthansilence.org⁠ to get help, find out more info, or to donate.

We cut the streaming cord the Linux way with free, legal internet TV you can curate, DVR, and self-host via Jellyfin or Plex. Then, we talk COSMIC stable with System76's CEO.Sponsored By:Managed Nebula: Meet Managed Nebula from Defined Networking. A decentralized VPN built on the open-source Nebula platform that we love. 1Password Extended Access Management: 1Password Extended Access Management is a device trust solution for companies with Okta, and they ensure that if a device isn't trusted and secure, it can't log into your cloud apps. CrowdHealth: Discover a Better Way to Pay for Healthcare with Crowdfunded Memberships. Join CrowdHealth to get started today for $99 for your first three months using UNPLUGGED.Unraid: A powerful, easy operating system for servers and storage. Maximize your hardware with unmatched flexibility. Support LINUX UnpluggedLinks:

Neste podcast, eu comento dois ou três links selecionados da curadoria diária que faço no Manual do Usuário. Recomendo que você dê uma olhada no arquivo de links para descobrir mais links. É bem legal! Austrália bane menores das redes, 0:41 Austrália bane menores das redes; entenda impactos e a tensão com Big Techs, Startups. Instagram esconde perfil do Lula na busca, 4:37 Bug no Instagram esconde da busca perfis de políticos e jornais, Núcleo. Conversa no Órbita. Versão estável do Cosmic, 8:02 Pop!_OS 24.04 LTS lançado: Uma carta do nosso fundador (em inglês). Cosmic é um ótimo desktop Linux, mas ainda limitado (em inglês), @TheLinuxEXP/YouTube. *** Seu celular é uma casa falsa , no Manual do Usuário. Boas festas e feliz 2026! ✨

Linux 6.18 is officially out, and officially an LTS release, 6.19 has plenty to be excited about, including the color pipeline API. NVIDIA is making progress with Wayland and other regions, Fedora is moving away from FBCON, and Flowblade sees a Wayland-only future. NPM has a worm problem, and we're still gaining ground on Steam! For tips, we have scx for rolling your own userspace scheduler, and a fix for Yakuake for your old-school terminal needs. You can find the show notes at https://bit.ly/44ISvVi and have a great week! Host: Jonathan Bennett Co-Host: Jeff Massie Download or subscribe to Untitled Linux Show at https://twit.tv/shows/untitled-linux-show Want access to the ad-free video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

Linux 6.18 is officially out, and officially an LTS release, 6.19 has plenty to be excited about, including the color pipeline API. NVIDIA is making progress with Wayland and other regions, Fedora is moving away from FBCON, and Flowblade sees a Wayland-only future. NPM has a worm problem, and we're still gaining ground on Steam! For tips, we have scx for rolling your own userspace scheduler, and a fix for Yakuake for your old-school terminal needs. You can find the show notes at https://bit.ly/44ISvVi and have a great week! Host: Jonathan Bennett Co-Host: Jeff Massie Download or subscribe to Untitled Linux Show at https://twit.tv/shows/untitled-linux-show Want access to the ad-free video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

El título de este episodio podría sonar a clickbait apocalíptico, pero te aseguro que cada palabra es real. Durante un periodo crítico, las actualizaciones automáticas de seguridad en Ubuntu estuvieron completamente rotas. ¿El culpable? Un ambicioso proyecto para modernizar Linux reemplazando utilidades básicas escritas en C por versiones en Rust. Este proceso de "oxidación" nos ha dejado dos fallos críticos que analizaremos a fondo.En este programa urgente, no solo destripamos lo que falló, sino que lo convertimos en un caso de éxito rotundo para el desarrollo de código abierto. Si eres usuario de Linux, especialmente de Ubuntu, tienes que escuchar esto para entender por qué este tropiezo es, en realidad, un gran salto adelante para la seguridad de tu sistema.Ubuntu, en su versión intermedia 25.10 (Questing Quokka), decidió introducir dos piezas de software fundamentales escritas en Rust para probar su estabilidad antes de una versión LTS:uutils coreutils: La reimplementación de los comandos básicos de GNU (como ls, cp, y el protagonista de esta historia, date).sudo-rs: La reimplementación del comando sudo, la puerta de entrada a los permisos de administrador (root).Ambas fallaron poco después del lanzamiento. Analizaremos dos problemas principales:El Problema: El comando date -r se utiliza para obtener la hora de última modificación de un archivo. La versión en Rust de las coreutils tenía un error lógico: en lugar de devolver la fecha del archivo, siempre devolvía la fecha y hora actual del sistema.La Consecuencia Desastrosa: Te explico cómo esta simple incorrección lógica rompió el mecanismo de actualizaciones automáticas desatendidas (unattended-upgrades). El sistema, al consultar la fecha de un archivo de referencia con el comando defectuoso, creía que la última actualización se había hecho "ahora mismo", y por lo tanto, no ejecutaba ninguna nueva búsqueda ni instalación de parches de seguridad. Un bug silencioso que te deja vulnerable. Esta misma lógica fallida puede afectar scripts de backup que comprueban la antigüedad de las copias de seguridad con date -r.Exposición de la Contraseña: Cuando un usuario comenzaba a introducir su clave de sudo y el tiempo de espera (timeout) expiraba, el código defectuoso de sudo-rs exponía en pantalla y potencialmente en el historial de la shell la parte de la contraseña que ya se había tecleado. ¡Un fallo de seguridad grave que comprometía la confidencialidad de tu clave de administrador!Fallo de Autenticación Avanzada: También se produjo un fallo más técnico relacionado con la gestión de las credenciales de root bajo ciertas configuraciones (targetpw o rootpw), permitiendo un posible bypass de autenticación a usuarios locales que reutilizaran "pases rápidos" temporales defectuosos.La parte más constructiva de esta historia es la velocidad de respuesta. Aquí es donde se demuestra el valor real de probar estos cambios en versiones intermedias:Respuesta Inmediata.Divulgación Coordinada (CVD).El Valor de la LTS.No podemos olvidar el objetivo principal. El uso de Rust en uutils coreutils y sudo-rs busca la seguridad de la memoria, eliminando las causas fundamentales de la mayoría de los fallos de seguridad críticos en el código C que tienen décadas de antigüedad.Más información y enlaces en las notas del episodio

This is the third episode of our new series, From Survivor to Leader.For this series, the staff discusses all things LTS and what it means to be leading the work in long-term care for survivors of sexual violence. It's a mix of our own personal experiences, the work our team does, and how those two things impact each other. Our hope is that survivors feel seen and validated and supporters gain a deeper understanding of what this healing process looks like. Visit us at ⁠www.louderthansilence.org⁠ to get help, find out more info, or to donate.

Some of our Linux hot takes including the LTS release model being broken, Linux media being out of touch, social media being the root of most evil, and people being too angry and defensive about the software they use.             Support us on Patreon and get an ad-free RSS feed... Read More

Some of our Linux hot takes including the LTS release model being broken, Linux media being out of touch, social media being the root of most evil, and people being too angry and defensive about the software they use.             Support us on Patreon and get an ad-free RSS feed … Continue reading "Linux After Dark – Episode 108"

This is the second episode of our new series, From Survivor to Leader.For this series, the staff discusses all things LTS and what it means to be leading the work in long-term care for survivors of sexual violence. It's a mix of our own personal experiences, the work our team does, and how those two things impact each other. Our hope is that survivors feel seen and validated and supporters gain a deeper understanding of what this healing process looks like. Visit us at www.louderthansilence.org to get help, find out more info, or to donate.

This show has been flagged as Clean by the host. Digital Ocean maintains its own version of the Ubuntu core packages which are hosted in it's own repositories. To upgrade from one LTS to the next the do-release-upgrade program must know to use third party repositories during the upgrade process. RELEASE_UPGRADER_ALLOW_THIRD_PARTY=1 do-release-upgrade Moving data from a previous version of Postgres to the latest. In this case, the obsolete Postgres v12 to the default Postgres v14 on Ubuntu 22.04 LTS. pg_dropcluster --stop 14 main pg_upgradecluster -v 14 12 main Fixing NextCloud after the upgrade. The version of PHP upgraded from v7.4 to v8.1. The old versions of the Apache2 PHP modules must be disabled and the new versions enabled. a2dismod php7.4 a2enmod php8.1 apt install php8.1-pgsql apt install php8.1-gd References: How To Upgrade to Ubuntu 22.04 Jammy Jellyfish "Invalid package information" error when upgrading to Ubuntu 20.04 Provide feedback on this episode.

Katia, Emmanuel et Guillaume discutent Java, Kotlin, Quarkus, Hibernate, Spring Boot 4, intelligence artificielle (modèles Nano Banana, VO3, frameworks agentiques, embedding). On discute les vulnerabilités OWASP pour les LLMs, les personalités de codage des différents modèles, Podman vs Docker, comment moderniser des projets legacy. Mais surtout on a passé du temps sur les présentations de Luc Julia et les différents contre points qui ont fait le buzz sur les réseaux. Enregistré le 12 septembre 2025 Téléchargement de l'épisode LesCastCodeurs-Episode-330.mp3 ou en vidéo sur YouTube. News Langages Dans cette vidéo, José détaille les nouveautés de Java entre Java 21 et 25 https://inside.java/2025/08/31/roadto25-java-language/ Aperçu des nouveautés du JDK 25 : Introduction des nouvelles fonctionnalités du langage Java et des changements à venir [00:02]. Programmation orientée données et Pattern Matching [00:43] : Évolution du “pattern matching” pour la déconstruction des “records” [01:22]. Utilisation des “sealed types” dans les expressions switch pour améliorer la lisibilité et la robustesse du code [01:47]. Introduction des “unnamed patterns” (_) pour indiquer qu'une variable n'est pas utilisée [04:47]. Support des types primitifs dans instanceof et switch (en preview) [14:02]. Conception d'applications Java [00:52] : Simplification de la méthode main [21:31]. Exécution directe des fichiers .java sans compilation explicite [22:46]. Amélioration des mécanismes d'importation [23:41]. Utilisation de la syntaxe Markdown dans la Javadoc [27:46]. Immuabilité et valeurs nulles [01:08] : Problème d'observation de champs final à null pendant la construction d'un objet [28:44]. JEP 513 pour contrôler l'appel à super() et restreindre l'usage de this dans les constructeurs [33:29]. JDK 25 sort le 16 septembre https://openjdk.org/projects/jdk/25/ Scoped Values (JEP 505) - alternative plus efficace aux ThreadLocal pour partager des données immutables entre threads Structured Concurrency (JEP 506) - traiter des groupes de tâches concurrentes comme une seule unité de travail, simplifiant la gestion des threads Compact Object Headers (JEP 519) - Fonctionnalité finale qui réduit de 50% la taille des en-têtes d'objets (de 128 à 64 bits), économisant jusqu'à 22% de mémoire heap Flexible Constructor Bodies (JEP 513) - Relaxation des restrictions sur les constructeurs, permettant du code avant l'appel super() ou this() Module Import Declarations (JEP 511) - Import simplifié permettant d'importer tous les éléments publics d'un module en une seule déclaration Compact Source Files (JEP 512) - Simplification des programmes Java basiques avec des méthodes main d'instance sans classe wrapper obligatoire Primitive Types in Patterns (JEP 455) - Troisième preview étendant le pattern matching et instanceof aux types primitifs dans switch et instanceof Generational Shenandoah (JEP 521) - Le garbage collector Shenandoah passe en mode générationnel pour de meilleures performances JFR Method Timing & Tracing (JEP 520) - Nouvel outillage de profilage pour mesurer le temps d'exécution et tracer les appels de méthodes Key Derivation API (JEP 510) - API finale pour les fonctions de dérivation de clés cryptographiques, remplaçant les implémentations tierces Améliorations du traitement des annotations dans Kotlin 2.2 https://blog.jetbrains.com/idea/2025/09/improved-annotation-handling-in-kotlin-2-2-less-boilerplate-fewer-surprises/ Avant Kotlin 2.2, les annotations sur les paramètres de constructeur n'étaient appliquées qu'au paramètre, pas à la propriété ou au champ Cela causait des bugs subtils avec Spring et JPA où la validation ne fonctionnait qu'à la création d'objet, pas lors des mises à jour La solution précédente nécessitait d'utiliser explicitement @field: pour chaque annotation, créant du code verbeux Kotlin 2.2 introduit un nouveau comportement par défaut qui applique les annotations aux paramètres ET aux propriétés/champs automatiquement Le code devient plus propre sans avoir besoin de syntaxe @field: répétitive Pour l'activer, ajouter -Xannotation-default-target=param-property dans les options du compilateur Gradle IntelliJ IDEA propose un quick-fix pour activer ce comportement à l'échelle du projet Cette amélioration rend l'intégration Kotlin plus fluide avec les frameworks majeurs comme Spring et JPA Le comportement peut être configuré pour garder l'ancien mode ou activer un mode transitoire avec avertissements Cette mise à jour fait partie d'une initiative plus large pour améliorer l'expérience Kotlin + Spring Librairies Sortie de Quarkus 3.26 avec mises à jour d'Hibernate et autres fonctionnalités - https://quarkus.io/blog/quarkus-3-26-released/ mettez à jour vers la 3.26.x car il y a eu une regression vert.x Jalon important vers la version LTS 3.27 prévue fin septembre, basée sur cette version Mise à jour vers Hibernate ORM 7.1, Hibernate Search 8.1 et Hibernate Reactive 3.1 Support des unités de persistance nommées et sources de données dans Hibernate Reactive Démarrage hors ligne et configuration de dialecte pour Hibernate ORM même si la base n'est pas accessible Refonte de la console HQL dans Dev UI avec fonctionnalité Hibernate Assistant intégrée Exposition des capacités Dev UI comme fonctions MCP pour pilotage via outils IA Rafraîchissement automatique des tokens OIDC en cas de réponse 401 des clients REST Extension JFR pour capturer les données runtime (nom app, version, extensions actives) Bump de Gradle vers la version 9.0 par défaut, suppression du support des classes config legacy Guide de démarrage avec Quarkus et A2A Java SDK 0.3.0 (pour faire discuter des agents IA avec la dernière version du protocole A2A) https://quarkus.io/blog/quarkus-a2a-java-0-3-0-alpha-release/ Sortie de l'A2A Java SDK 0.3.0.Alpha1, aligné avec la spécification A2A v0.3.0. Protocole A2A : standard ouvert (Linux Foundation), permet la communication inter-agents IA polyglottes. Version 0.3.0 plus stable, introduit le support gRPC. Mises à jour générales : changements significatifs, expérience utilisateur améliorée (côté client et serveur). Agents serveur A2A : Support gRPC ajouté (en plus de JSON-RPC). HTTP+JSON/REST à venir. Implémentations basées sur Quarkus (alternatives Jakarta existent). Dépendances spécifiques pour chaque transport (ex: a2a-java-sdk-reference-jsonrpc, a2a-java-sdk-reference-grpc). AgentCard : décrit les capacités de l'agent. Doit spécifier le point d'accès primaire et tous les transports supportés (additionalInterfaces). Clients A2A : Dépendance principale : a2a-java-sdk-client. Support gRPC ajouté (en plus de JSON-RPC). HTTP+JSON/REST à venir. Dépendance spécifique pour gRPC : a2a-java-sdk-client-transport-grpc. Création de client : via ClientBuilder. Sélectionne automatiquement le transport selon l'AgentCard et la configuration client. Permet de spécifier les transports supportés par le client (withTransport). Comment générer et éditer des images en Java avec Nano Banana, le “photoshop killer” de Google https://glaforge.dev/posts/2025/09/09/calling-nano-banana-from-java/ Objectif : Intégrer le modèle Nano Banana (Gemini 2.5 Flash Image preview) dans des applications Java. SDK utilisé : GenAI Java SDK de Google. Compatibilité : Supporté par ADK for Java ; pas encore par LangChain4j (limitation de multimodalité de sortie). Capacités de Nano Banana : Créer de nouvelles images. Modifier des images existantes. Assembler plusieurs images. Mise en œuvre Java : Quelle dépendance utiliser Comment s'authentifier Comment configurer le modèle Nature du modèle : Nano Banana est un modèle de chat qui peut retourner du texte et une image (pas simplement juste un modèle générateur d'image) Exemples d'utilisation : Création : Via un simple prompt textuel. Modification : En passant l'image existante (tableau de bytes) et les instructions de modification (prompt). Assemblage : En passant plusieurs images (en bytes) et les instructions d'intégration (prompt). Message clé : Toutes ces fonctionnalités sont accessibles en Java, sans nécessiter Python. Générer des vidéos IA avec le modèle Veo 3, mais en Java ! https://glaforge.dev/posts/2025/09/10/generating-videos-in-java-with-veo3/ Génération de vidéos en Java avec Veo 3 (via le GenAI Java SDK de Google). Veo 3: Annoncé comme GA, prix réduits, support du format 9:16, résolution jusqu'à 1080p. Création de vidéos : À partir d'une invite textuelle (prompt). À partir d'une image existante. Deux versions différentes du modèle : veo-3.0-generate-001 (qualité supérieure, plus coûteux, plus lent). veo-3.0-fast-generate-001 (qualité inférieure, moins coûteux, mais plus rapide). Rod Johnson sur ecrire des aplication agentic en Java plus facilement qu'en python avec Embabel https://medium.com/@springrod/you-can-build-better-ai-agents-in-java-than-python-868eaf008493 Rod the papa de Spring réécrit un exemple CrewAI (Python) qui génère un livre en utilisant Embabel (Java) pour démontrer la supériorité de Java L'application utilise plusieurs agents AI spécialisés : un chercheur, un planificateur de livre et des rédacteurs de chapitres Le processus suit trois étapes : recherche du sujet, création du plan, rédaction parallèle des chapitres puis assemblage CrewAI souffre de plusieurs problèmes : configuration lourde, manque de type safety, utilisation de clés magiques dans les prompts La version Embabel nécessite moins de code Java que l'original Python et moins de fichiers de configuration YAML Embabel apporte la type safety complète, éliminant les erreurs de frappe dans les prompts et améliorant l'outillage IDE La gestion de la concurrence est mieux contrôlée en Java pour éviter les limites de débit des APIs LLM L'intégration avec Spring permet une configuration externe simple des modèles LLM et hyperparamètres Le planificateur Embabel détermine automatiquement l'ordre d'exécution des actions basé sur leurs types requis L'argument principal : l'écosystème JVM offre un meilleur modèle de programmation et accès à la logique métier existante que Python Il y a pas mal de nouveaux framework agentic en Java, notamment le dernier LAngchain4j Agentic Spring lance un serie de blog posts sur les nouveautés de Spring Boot 4 https://spring.io/blog/2025/09/02/road_to_ga_introduction baseline JDK 17 mais rebase sur Jakarta 11 Kotlin 2, Jackson 3 et JUnit 6 Fonctionnalités de résilience principales de Spring : @ConcurrencyLimit, @Retryable, RetryTemplate Versioning d'API dans Spring Améliorations du client de service HTTP L'état des clients HTTP dans Spring Introduction du support Jackson 3 dans Spring Consommateur partagé - les queues Kafka dans Spring Kafka Modularisation de Spring Boot Autorisation progressive dans Spring Security Spring gRPC - un nouveau module Spring Boot Applications null-safe avec Spring Boot 4 OpenTelemetry avec Spring Boot Repos Ahead of Time (Partie 2) Web Faire de la recherche sémantique directement dans le navigateur en local, avec EmbeddingGemma et Transformers.js https://glaforge.dev/posts/2025/09/08/in-browser-semantic-search-with-embeddinggemma/ EmbeddingGemma: Nouveau modèle d'embedding (308M paramètres) de Google DeepMind. Objectif: Permettre la recherche sémantique directement dans le navigateur. Avantages clés de l'IA côté client: Confidentialité: Aucune donnée envoyée à un serveur. Coûts réduits: Pas besoin de serveurs coûteux (GPU), hébergement statique. Faible latence: Traitement instantané sans allers-retours réseau. Fonctionnement hors ligne: Possible après le chargement initial du modèle. Technologie principale: Modèle: EmbeddingGemma (petit, performant, multilingue, support MRL pour réduire la taille des vecteurs). Moteur d'inférence: Transformers.js de HuggingFace (exécute les modèles AI en JavaScript dans le navigateur). Déploiement: Site statique avec Vite/React/Tailwind CSS, déployé sur Firebase Hosting via GitHub Actions. Gestion du modèle: Fichiers du modèle trop lourds pour Git; téléchargés depuis HuggingFace Hub pendant le CI/CD. Fonctionnement de l'app: Charge le modèle, génère des embeddings pour requêtes/documents, calcule la similarité sémantique. Conclusion: Démonstration d'une recherche sémantique privée, économique et sans serveur, soulignant le potentiel de l'IA embarquée dans le navigateur. Data et Intelligence Artificielle Docker lance Cagent, une sorte de framework multi-agent IA utilisant des LLMs externes, des modèles de Docker Model Runner, avec le Docker MCP Tookit. Il propose un format YAML pour décrire les agents d'un système multi-agents. https://github.com/docker/cagent des agents “prompt driven” (pas de code) et une structure pour decrire comment ils sont deployés pas clair comment ils sont appelés a part dans la ligne de commande de cagent fait par david gageot L'owasp décrit l'independance excessive des LLM comme une vulnerabilité https://genai.owasp.org/llmrisk2023-24/llm08-excessive-agency/ L'agence excessive désigne la vulnérabilité qui permet aux systèmes LLM d'effectuer des actions dommageables via des sorties inattendues ou ambiguës. Elle résulte de trois causes principales : fonctionnalités excessives, permissions excessives ou autonomie excessive des agents LLM. Les fonctionnalités excessives incluent l'accès à des plugins qui offrent plus de capacités que nécessaire, comme un plugin de lecture qui peut aussi modifier ou supprimer. Les permissions excessives se manifestent quand un plugin accède aux systèmes avec des droits trop élevés, par exemple un accès en lecture qui inclut aussi l'écriture. L'autonomie excessive survient quand le système effectue des actions critiques sans validation humaine préalable. Un scénario d'attaque typique : un assistant personnel avec accès email peut être manipulé par injection de prompt pour envoyer du spam via la boîte de l'utilisateur. La prévention implique de limiter strictement les plugins aux fonctions minimales nécessaires pour l'opération prévue. Il faut éviter les fonctions ouvertes comme “exécuter une commande shell” au profit d'outils plus granulaires et spécifiques. L'application du principe de moindre privilège est cruciale : chaque plugin doit avoir uniquement les permissions minimales requises. Le contrôle humain dans la boucle reste essentiel pour valider les actions à fort impact avant leur exécution. Lancement du MCP registry, une sorte de méta-annuaire officiel pour référencer les serveurs MCP https://www.marktechpost.com/2025/09/09/mcp-team-launches-the-preview-version-of-the-mcp-registry-a-federated-discovery-layer-for-enterprise-ai/ MCP Registry : Couche de découverte fédérée pour l'IA d'entreprise. Fonctionne comme le DNS pour le contexte de l'IA, permettant la découverte de serveurs MCP publics ou privés. Modèle fédéré : Évite les risques de sécurité et de conformité d'un registre monolithique. Permet des sous-registres privés tout en conservant une source de vérité “upstream”. Avantages entreprises : Découverte interne sécurisée. Gouvernance centralisée des serveurs externes. Réduction de la prolifération des contextes. Support pour les agents IA hybrides (données privées/publiques). Projet open source, actuellement en version preview. Blog post officiel : https://blog.modelcontextprotocol.io/posts/2025-09-08-mcp-registry-preview/ Exploration des internals du transaction log SQL Server https://debezium.io/blog/2025/09/08/sqlserver-tx-log/ C'est un article pour les rugeux qui veulent savoir comment SQLServer marche à l'interieur Debezium utilise actuellement les change tables de SQL Server CDC en polling périodique L'article explore la possibilité de parser directement le transaction log pour améliorer les performances Le transaction log est divisé en Virtual Log Files (VLFs) utilisés de manière circulaire Chaque VLF contient des blocs (512B à 60KB) qui contiennent les records de transactions Chaque record a un Log Sequence Number (LSN) unique pour l'identifier précisément Les données sont stockées dans des pages de 8KB avec header de 96 bytes et offset array Les tables sont organisées en partitions et allocation units pour gérer l'espace disque L'utilitaire DBCC permet d'explorer la structure interne des pages et leur contenu Cette compréhension pose les bases pour parser programmatiquement le transaction log dans un prochain article Outillage Les personalités des codeurs des différents LLMs https://www.sonarsource.com/blog/the-coding-personalities-of-leading-llms-gpt-5-update/ GPT-5 minimal ne détrône pas Claude Sonnet 4 comme leader en performance fonctionnelle malgré ses 75% de réussite GPT-5 génère un code extrêmement verbeux avec 490 000 lignes contre 370 000 pour Claude Sonnet 4 sur les mêmes tâches La complexité cyclomatique et cognitive du code GPT-5 est dramatiquement plus élevée que tous les autres modèles GPT-5 introduit 3,90 problèmes par tâche réussie contre seulement 2,11 pour Claude Sonnet 4 Point fort de GPT-5 : sécurité exceptionnelle avec seulement 0,12 vulnérabilité par 1000 lignes de code Faiblesse majeure : densité très élevée de “code smells” (25,28 par 1000 lignes) nuisant à la maintenabilité GPT-5 produit 12% de problèmes liés à la complexité cognitive, le taux le plus élevé de tous les modèles Tendance aux erreurs logiques fondamentales avec 24% de bugs de type “Control-flow mistake” Réapparition de vulnérabilités classiques comme les failles d'injection et de traversée de chemin Nécessité d'une gouvernance renforcée avec analyse statique obligatoire pour gérer la complexité du code généré Pourquoi j'ai abandonné Docker pour Podman https://codesmash.dev/why-i-ditched-docker-for-podman-and-you-should-too Problème Docker : Le daemon dockerd persistant s'exécute avec des privilèges root, posant des risques de sécurité (nombreuses CVEs citées) et consommant des ressources inutilement. Solution Podman : Sans Daemon : Pas de processus d'arrière-plan persistant. Les conteneurs s'exécutent comme des processus enfants de la commande Podman, sous les privilèges de l'utilisateur. Sécurité Renforcée : Réduction de la surface d'attaque. Une évasion de conteneur compromet un utilisateur non privilégié sur l'hôte, pas le système entier. Mode rootless. Fiabilité Accrue : Pas de point de défaillance unique ; le crash d'un conteneur n'affecte pas les autres. Moins de Ressources : Pas de daemon constamment actif, donc moins de mémoire et de CPU. Fonctionnalités Clés de Podman : Intégration Systemd : Génération automatique de fichiers d'unité systemd pour gérer les conteneurs comme des services Linux standards. Alignement Kubernetes : Support natif des pods et capacité à générer des fichiers Kubernetes YAML directement (podman generate kube), facilitant le développement local pour K8s. Philosophie Unix : Se concentre sur l'exécution des conteneurs, délègue les tâches spécialisées à des outils dédiés (ex: Buildah pour la construction d'images, Skopeo pour leur gestion). Migration Facile : CLI compatible Docker : podman utilise les mêmes commandes que docker (alias docker=podman fonctionne). Les Dockerfiles existants sont directement utilisables. Améliorations incluses : Sécurité par défaut (ports privilégiés en mode rootless), meilleure gestion des permissions de volume, API Docker compatible optionnelle. Option de convertir Docker Compose en Kubernetes YAML. Bénéfices en Production : Sécurité améliorée, utilisation plus propre des ressources. Podman représente une évolution plus sécurisée et mieux alignée avec les pratiques modernes de gestion Linux et de déploiement de conteneurs. Guide Pratique (Exemple FastAPI) : Le Dockerfile ne change pas. podman build et podman run remplacent directement les commandes Docker. Déploiement en production via Systemd. Gestion d'applications multi-services avec les “pods” Podman. Compatibilité Docker Compose via podman-compose ou kompose. Détection améliorée des APIs vulnérables dans les IDEs JetBrains et Qodana - https://blog.jetbrains.com/idea/2025/09/enhanced-vulnerable-api-detection-in-jetbrains-ides-and-qodana/ JetBrains s'associe avec Mend.io pour renforcer la sécurité du code dans leurs outils Le plugin Package Checker bénéficie de nouvelles données enrichies sur les APIs vulnérables Analyse des graphes d'appels pour couvrir plus de méthodes publiques des bibliothèques open-source Support de Java, Kotlin, C#, JavaScript, TypeScript et Python pour la détection de vulnérabilités Activation des inspections via Paramètres > Editor > Inspections en recherchant “Vulnerable API” Surlignage automatique des méthodes vulnérables avec détails des failles au survol Action contextuelle pour naviguer directement vers la déclaration de dépendance problématique Mise à jour automatique vers une version non affectée via Alt+Enter sur la dépendance Fenêtre dédiée “Vulnerable Dependencies” pour voir l'état global des vulnérabilités du projet Méthodologies Le retour de du sondage de Stack Overflow sur l'usage de l'IA dans le code https://medium.com/@amareshadak/stack-overflow-just-exposed-the-ugly-truth-about-ai-coding-tools-b4f7b5992191 84% des développeurs utilisent l'IA quotidiennement, mais 46% ne font pas confiance aux résultats. Seulement 3,1% font “hautement confiance” au code généré. 66% sont frustrés par les solutions IA “presque correctes”. 45% disent que déboguer le code IA prend plus de temps que l'écrire soi-même. Les développeurs seniors (10+ ans) font moins confiance à l'IA (2,6%) que les débutants (6,1%), créant un écart de connaissances dangereux. Les pays occidentaux montrent moins de confiance - Allemagne (22%), UK (23%), USA (28%) - que l'Inde (56%). Les créateurs d'outils IA leur font moins confiance. 77% des développeurs professionnels rejettent la programmation en langage naturel, seuls 12% l'utilisent réellement. Quand l'IA échoue, 75% se tournent vers les humains. 35% des visites Stack Overflow concernent maintenant des problèmes liés à l'IA. 69% rapportent des gains de productivité personnels, mais seulement 17% voient une amélioration de la collaboration d'équipe. Coûts cachés : temps de vérification, explication du code IA aux équipes, refactorisation et charge cognitive constante. Les plateformes humaines dominent encore : Stack Overflow (84%), GitHub (67%), YouTube (61%) pour résoudre les problèmes IA. L'avenir suggère un “développement augmenté” où l'IA devient un outil parmi d'autres, nécessitant transparence et gestion de l'incertitude. Mentorat open source et défis communautaires par les gens de Microcks https://microcks.io/blog/beyond-code-open-source-mentorship/ Microcks souffre du syndrome des “utilisateurs silencieux” qui bénéficient du projet sans contribuer Malgré des milliers de téléchargements et une adoption croissante, l'engagement communautaire reste faible Ce manque d'interaction crée des défis de durabilité et limite l'innovation du projet Les mainteneurs développent dans le vide sans feedback des vrais utilisateurs Contribuer ne nécessite pas de coder : documentation, partage d'expérience, signalement de bugs suffisent Parler du project qu'on aime autour de soi est aussi super utile Microcks a aussi des questions specifiques qu'ils ont posé dans le blog, donc si vous l'utilisez, aller voir Le succès de l'open source dépend de la transformation des utilisateurs en véritables partenaires communautaires c'est un point assez commun je trouve, le ratio parlant / silencieux est tres petit et cela encourage les quelques grandes gueules La modernisation du systemes legacy, c'est pas que de la tech https://blog.scottlogic.com/2025/08/27/holistic-approach-successful-legacy-modernisation.html Un artcile qui prend du recul sur la modernisation de systemes legacy Les projets de modernisation legacy nécessitent une vision holistique au-delà du simple focus technologique Les drivers business diffèrent des projets greenfield : réduction des coûts et mitigation des risques plutôt que génération de revenus L'état actuel est plus complexe à cartographier avec de nombreuses dépendances et risques de rupture Collaboration essentielle entre Architectes, Analystes Business et Designers UX dès la phase de découverte Approche tridimensionnelle obligatoire : Personnes, Processus et Technologie (comme un jeu d'échecs 3D) Le leadership doit créer l'espace nécessaire pour la découverte et la planification plutôt que presser l'équipe Communication en termes business plutôt que techniques vers tous les niveaux de l'organisation Planification préalable essentielle contrairement aux idées reçues sur l'agilité Séquencement optimal souvent non-évident et nécessitant une analyse approfondie des interdépendances Phases projet alignées sur les résultats business permettent l'agilité au sein de chaque phase Sécurité Cyber Attaque su Musée Histoire Naturelle https://www.franceinfo.fr/internet/securite-sur-internet/cyberattaques/le-museum-nati[…]e-d-une-cyberattaque-severe-une-plainte-deposee_7430356.html Compromission massive de packages npm populaires par un malware crypto https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromised 18 packages npm très populaires compromis le 8 septembre 2025, incluant chalk, debug, ansi-styles avec plus de 2 milliards de téléchargements hebdomadaires combinés duckdb s'est rajouté à la liste Code malveillant injecté qui intercepte silencieusement l'activité crypto et web3 dans les navigateurs des utilisateurs Le malware manipule les interactions de wallet et redirige les paiements vers des comptes contrôlés par l'attaquant sans signes évidents Injection dans les fonctions critiques comme fetch, XMLHttpRequest et APIs de wallets (window.ethereum, Solana) pour intercepter le trafic Détection et remplacement automatique des adresses crypto sur multiple blockchains (Ethereum, Bitcoin, Solana, Tron, Litecoin, Bitcoin Cash) Les transactions sont modifiées en arrière-plan même si l'interface utilisateur semble correcte et légitime Utilise des adresses “sosies” via correspondance de chaînes pour rendre les échanges moins évidents à détecter Le mainteneur compromis par email de phishing provenant du faux domaine “mailto:support@npmjs.help|support@npmjs.help” enregistré 3 jours avant l'attaque sur une demande de mise a jour de son autheotnfication a deux facteurs après un an Aikido a alerté le mainteneur via Bluesky qui a confirmé la compromission et commencé le nettoyage des packages Attaque sophistiquée opérant à plusieurs niveaux: contenu web, appels API et manipulation des signatures de transactions Les anti-cheats de jeux vidéo : une faille de sécurité majeure ? - https://tferdinand.net/jeux-video-et-si-votre-anti-cheat-etait-la-plus-grosse-faille/ Les anti-cheats modernes s'installent au Ring 0 (noyau système) avec privilèges maximaux Ils obtiennent le même niveau d'accès que les antivirus professionnels mais sans audit ni certification Certains exploitent Secure Boot pour se charger avant le système d'exploitation Risque de supply chain : le groupe APT41 a déjà compromis des jeux comme League of Legends Un attaquant infiltré pourrait désactiver les solutions de sécurité et rester invisible Menace de stabilité : une erreur peut empêcher le démarrage du système (référence CrowdStrike) Conflits possibles entre différents anti-cheats qui se bloquent mutuellement Surveillance en temps réel des données d'utilisation sous prétexte anti-triche Dérive dangereuse selon l'auteur : des entreprises de jeux accèdent au niveau EDR Alternatives limitées : cloud gaming ou sandboxing avec impact sur performances donc faites gaffe aux jeux que vos gamins installent ! Loi, société et organisation Luc Julia au Sénat - Monsieur Phi réagi et publie la vidéo Luc Julia au Sénat : autopsie d'un grand N'IMPORTE QUOI https://www.youtube.com/watch?v=e5kDHL-nnh4 En format podcast de 20 minutes, sorti au même moment et à propos de sa conf à Devoxx https://www.youtube.com/watch?v=Q0gvaIZz1dM Le lab IA - Jérôme Fortias - Et si Luc Julia avait raison https://www.youtube.com/watch?v=KScI5PkCIaE Luc Julia au Senat https://www.youtube.com/watch?v=UjBZaKcTeIY Luc Julia se défend https://www.youtube.com/watch?v=DZmxa7jJ8sI Intelligence artificielle : catastrophe imminente ? - Luc Julia vs Maxime Fournes https://www.youtube.com/watch?v=sCNqGt7yIjo Tech and Co Monsieur Phi vs Luc Julia (put a click) https://www.youtube.com/watch?v=xKeFsOceT44 La tronche en biais https://www.youtube.com/live/zFwLAOgY0Wc Conférences La liste des conférences provenant de Developers Conferences Agenda/List par Aurélie Vache et contributeurs : 12 septembre 2025 : Agile Pays Basque 2025 - Bidart (France) 15 septembre 2025 : Agile Tour Montpellier - Montpellier (France) 18-19 septembre 2025 : API Platform Conference - Lille (France) & Online 22-24 septembre 2025 : Kernel Recipes - Paris (France) 22-27 septembre 2025 : La Mélée Numérique - Toulouse (France) 23 septembre 2025 : OWASP AppSec France 2025 - Paris (France) 23-24 septembre 2025 : AI Engineer Paris - Paris (France) 25 septembre 2025 : Agile Game Toulouse - Toulouse (France) 25-26 septembre 2025 : Paris Web 2025 - Paris (France) 30 septembre 2025-1 octobre 2025 : PyData Paris 2025 - Paris (France) 2 octobre 2025 : Nantes Craft - Nantes (France) 2-3 octobre 2025 : Volcamp - Clermont-Ferrand (France) 3 octobre 2025 : DevFest Perros-Guirec 2025 - Perros-Guirec (France) 6-7 octobre 2025 : Swift Connection 2025 - Paris (France) 6-10 octobre 2025 : Devoxx Belgium - Antwerp (Belgium) 7 octobre 2025 : BSides Mulhouse - Mulhouse (France) 7-8 octobre 2025 : Agile en Seine - Issy-les-Moulineaux (France) 8-10 octobre 2025 : SIG 2025 - Paris (France) & Online 9 octobre 2025 : DevCon #25 : informatique quantique - Paris (France) 9-10 octobre 2025 : Forum PHP 2025 - Marne-la-Vallée (France) 9-10 octobre 2025 : EuroRust 2025 - Paris (France) 16 octobre 2025 : PlatformCon25 Live Day Paris - Paris (France) 16 octobre 2025 : Power 365 - 2025 - Lille (France) 16-17 octobre 2025 : DevFest Nantes - Nantes (France) 17 octobre 2025 : Sylius Con 2025 - Lyon (France) 17 octobre 2025 : ScalaIO 2025 - Paris (France) 17-19 octobre 2025 : OpenInfra Summit Europe - Paris (France) 20 octobre 2025 : Codeurs en Seine - Rouen (France) 23 octobre 2025 : Cloud Nord - Lille (France) 30-31 octobre 2025 : Agile Tour Bordeaux 2025 - Bordeaux (France) 30-31 octobre 2025 : Agile Tour Nantais 2025 - Nantes (France) 30 octobre 2025-2 novembre 2025 : PyConFR 2025 - Lyon (France) 4-7 novembre 2025 : NewCrafts 2025 - Paris (France) 5-6 novembre 2025 : Tech Show Paris - Paris (France) 5-6 novembre 2025 : Red Hat Summit: Connect Paris 2025 - Paris (France) 6 novembre 2025 : dotAI 2025 - Paris (France) 6 novembre 2025 : Agile Tour Aix-Marseille 2025 - Gardanne (France) 7 novembre 2025 : BDX I/O - Bordeaux (France) 12-14 novembre 2025 : Devoxx Morocco - Marrakech (Morocco) 13 novembre 2025 : DevFest Toulouse - Toulouse (France) 15-16 novembre 2025 : Capitole du Libre - Toulouse (France) 19 novembre 2025 : SREday Paris 2025 Q4 - Paris (France) 19-21 novembre 2025 : Agile Grenoble - Grenoble (France) 20 novembre 2025 : OVHcloud Summit - Paris (France) 21 novembre 2025 : DevFest Paris 2025 - Paris (France) 27 novembre 2025 : DevFest Strasbourg 2025 - Strasbourg (France) 28 novembre 2025 : DevFest Lyon - Lyon (France) 1-2 décembre 2025 : Tech Rocks Summit 2025 - Paris (France) 4-5 décembre 2025 : Agile Tour Rennes - Rennes (France) 5 décembre 2025 : DevFest Dijon 2025 - Dijon (France) 9-11 décembre 2025 : APIdays Paris - Paris (France) 9-11 décembre 2025 : Green IO Paris - Paris (France) 10-11 décembre 2025 : Devops REX - Paris (France) 10-11 décembre 2025 : Open Source Experience - Paris (France) 11 décembre 2025 : Normandie.ai 2025 - Rouen (France) 14-17 janvier 2026 : SnowCamp 2026 - Grenoble (France) 2-6 février 2026 : Web Days Convention - Aix-en-Provence (France) 3 février 2026 : Cloud Native Days France 2026 - Paris (France) 12-13 février 2026 : Touraine Tech #26 - Tours (France) 22-24 avril 2026 : Devoxx France 2026 - Paris (France) 23-25 avril 2026 : Devoxx Greece - Athens (Greece) 17 juin 2026 : Devoxx Poland - Krakow (Poland) 4 septembre 2026 : JUG SUmmer Camp 2026 - La Rochelle (France) Nous contacter Pour réagir à cet épisode, venez discuter sur le groupe Google https://groups.google.com/group/lescastcodeurs Contactez-nous via X/twitter https://twitter.com/lescastcodeurs ou Bluesky https://bsky.app/profile/lescastcodeurs.com Faire un crowdcast ou une crowdquestion Soutenez Les Cast Codeurs sur Patreon https://www.patreon.com/LesCastCodeurs Tous les épisodes et toutes les infos sur https://lescastcodeurs.com/

Kanoa and Billy talk about Hawaii football with football guru Rich Miano, and also discuss his special weekend being honored as one of the newest members of the UH Sports Circle of Honor. The guys also discuss the NFL and a perfect weekend for one of the LTS squad in the six pack of picks and ESPN Honolulu's Pigskin Picks.

В этом выпуске: синтезируем анонимные медицинские данные на Django, слушаем интернет-радио, осваиваем emoji, пользуемся принтерами и сканерами под Linux, покупаем OpenWRT One, ставим ядро Linux 6.14 на Ubuntu 24.04 LTS, пробуем preview версию текстового редактора Zed, а также обсуждаем темы слушателей. Важно! Запись выпуска 509 перенесена на 6 августа. [00:07:35] Чему мы научились за неделю… Читать далее →

We bring Stanwyck Summer (but not the LTS season) to a close with a draft-ish episode. Each panelist has brought us a Barbara Stanwyck film - one we haven’t talked about before on the show. Somehow, there are a number of cats. Shelly Brisbin with Micheline Maynard, Nathan Alderman and Randy Dotinga.

We bring Stanwyck Summer (but not the LTS season) to a close with a draft-ish episode. Each panelist has brought us a Barbara Stanwyck film - one we haven’t talked about before on the show. Somehow, there are a number of cats. Shelly Brisbin with Micheline Maynard, Nathan Alderman and Randy Dotinga.

Coming up in this episode * AI's Won't Take Over Yet * Is Rust Open Source? * and All Kinds of Feedback The Video Version https://youtu.be/LxMpNIfhFiA 0:00 Cold Open 3:56 Curl's "AI Slop" Problem 25:12 A Little Viral Licensing 42:12 So Much Feedback ❤️ 42:30 ukwan / Youtube 51:16 jliljj / Youtube 56:35 fredstech1 / Youtube 1:00:15 conan kudo / Youtube 1:02:06 amanita / Patreon 1:05:13 redvamp128 / Youtube 1:09:35 The Rules, Commands & Next Time 1:19:12 Stinger The Curl project pushes back on AI slop The Ars Technica article (https://arstechnica.com/gadgets/2025/05/open-source-project-curl-is-sick-of-users-submitting-ai-slop-vulnerabilities/) The Curl project on Hacker One (https://hackerone.com/curl?type=team)

The Giants draft class will need to make an immediate impact for the Giants this season. Justin invites Nick Falato of Big Blue Banter to tell us how Brain Daboll can get the most out of these players. Follow Nick Falato here:https://x.com/nickfalatohttps://www.youtube.com/@bigbluebanter110802:07 Nick Falato Joins The Show!02:32 Carter wants LTs number05:27 Managing The QB Room11:27 Jaxson Dart Adjusting To The NFL18:07 Is Skattebo or Tracy Jr RB124:17 Worried About The OL?30:22 Is Mbow An NFL Tackle36:17 Maximizing Abdul Carter41:07 Darius Alexander's Fit On The DL45:27 Have The Giants Done Enough50:07 Optimism About The SeasonUse code GIANTS2025 for 10% off your next SeatGeek order*: https://seatgeek.onelink.me/RrnK/GIAN.... Sponsored by SeatGeek. *Restrictions apply. Max $20 discountDownload the DraftKings Sportsbook app and use promo code JMFOOTBALLGet a 7-Day Free Trial + 50% Off your first month with code GIANTS. Just download the HOF app on iOS or Android, enter code GIANTS, and you're all set.Check out our Merch: https://shop.jomboymedia.com/collections/talkin-giantsSubscribe to JM Football for our NFL coverage: https://www.youtube.com/@JMFootballSubscribe to the JM Newsletter: http://jomboymedia.com/email#giants #nygiantsGAMBLING PROBLEM? CALL 1-800-GAMBLER, (800) 327-5050 or visit gamblinghelplinema.org (MA). Call877-8-HOPENY/text HOPENY (467369) (NY). Please Gamble Responsibly. 888-789-7777/visit ccpg.org (CT) or visit www.mdgamblinghelp.org (MD). 21+ and present in most states. (18+ DC/KY/NH/WY). Void in ONT/OR/NH. Eligibility restrictions apply. On behalf of Boot Hill Casino & Resort (KS). 1 per new customer. $5+ first-time bet req. Max. $200 issued as non-withdrawable Bonus Bets that expire in 7 days (168 hours). Stake removed from payout. Terms: sportsbook.draftkings.com/promos. Ends 5/18/25 at 11:59 PM ET. Sponsored by DK.

NordVPN-deal. Probeer het nu met extra korting + 4 extra maanden daarbovenop! Risico vrij met een geld-terug-garantie van 30 dagen!

Tom Curran and Phil Perry react to what we heard from Mike Vrabel as his press conference on Tuesday. What did we learn about how the Patriots will handle the No. 4 pick in the NFL Draft?1:00-Mike Vrabel sees starting LTs in the draft8:00-Vrabel on how aggressive the Patriots will be in the draft9:00-Which players would the Patriots take at No. 4?11:45-You can't win with a bunch of ‘good' dudes WATCH every episode of the Patriots Talk podcast on YouTubeFollow NBC Sports Boston:NBCSportsBoston.comX @NBCSpatriotsFacebookInstagramTikTok

Two very different approaches to setting up security cameras, an IDE-like experience for text adventure games, a glimpse of convergence on Pixel phones, a new LTS of the flight sim FlightGear, and more.   Discoveries Frigate Coral TPUs daylight RPi Improved Pan Tilt Module The Visible Zorker Flightgear new LTS Bagels – TUI Expense Tracker... Read More

Aaron Frost explores the overly complex world of vulnerability identifiers for end of life software. We discuss how incomplete CVE reporting creates blind spots for users while arming attackers with knowledge. The conversation uncovers the ethical tensions between resource constraints and security transparency, highlighting why the "vulnerable until proven otherwise" approach is the best path forward for end of life software. The show notes and blog post for this episode can be found at https://opensourcesecurity.io/2025/2025-04-cve_eol_aaron_frost/

Two very different approaches to setting up security cameras, an IDE-like experience for text adventure games, a glimpse of convergence on Pixel phones, a new LTS of the flight sim FlightGear, and more.   Discoveries Frigate Coral TPUs daylight RPi Improved Pan Tilt Module The Visible Zorker Flightgear new LTS Bagels – TUI Expense Tracker... Read More

What if bivocational ministry isn't a compromise—but a key to the church's future? Kris Bentley joins Loren Richmond Jr. to explore the evolving landscape of bivocational ministry in today's church. Drawing on insights from her book Bivocational Ministry: Field Notes for Congregations and Ministers, Kris shares stories from over a decade of research and interviews with pastors and churches engaged in bivocational models. They unpack misconceptions around part-time and bivocational leadership, the surprising benefits of realigned congregational relationships, and how small churches can thrive with the resources they already have. Kris also offers thoughtful guidance for pastors navigating dual roles, denominations rethinking support structures, and seminaries designing education for a changing ministry future. In this episode, you'll learn: Why bivocational ministry is more than a financial necessity—and may be the future of pastoral leadership How redefining expectations can empower lay leaders and revitalize small congregations The difference between part-time, bivocational, and multivocational ministry models Practical tools for pastors and churches navigating role clarity and boundary-setting How seminaries and denominations can better support pastors in flexible ministry pathways   Rev. Dr. Kristen Bentley is an ordained minister with the Christian Church (Disciples of Christ). She has served in congregational ministry in the central Kentucky area for more than twenty years, sometimes in the role of a bivocational pastor. Prior to attending seminary, she worked in higher education administration, serving at both Midway College (now Midway University) and the University of Kentucky. Since 2014 Kris has been working at Lexington Theological Seminary (LTS), beginning when LTS was awarded a grant by Lilly Endowment Inc. as part of its Economic Challenges Facing Future Ministers (ECFFM). She was hired to direct the grant project and as part of that work, Kris initiated research at LTS regarding bivocational ministry. The research concerning bivocational ministry has been supported at LTS through grants from Lilly Endowment Inc., including both Lilly's ECFFM Initiative and later the Thriving in Ministry Initiative. Currently, Kris also is serving as an interim minister of a Disciples of Christ congregation in Kentucky. Kris is an alum of Lexington Theological Seminary, holding a D. Min. (2020) and M.Div. degree (1997) from LTS, as well as a M.S. in Education (1981) from Indiana University, and a B.A. (1979) from the University of Kentucky.  Kris and her husband, Perry, live in the Lexington area.  They have four adult children and three grandchildren.   Relevant Links: Lexington Theological Seminary: https://lextheo.edu/ Facebook: https://www.facebook.com/kristen.p.bentley LinkedIn: https://www.linkedin.com/in/kristen-bentley-20a60b65/ Chalice Press: https://chalicepress.com/products/bivocational-ministry-field-notes-for-congregations-and-ministers?_pos=2&_sid=0718b64df&_ss=r   Eric Hoke: https://www.podbean.com/eas/pb-wbbf2-1412bed Jeffrey MacDonald: https://www.podbean.com/eas/pb-vu5iw-126b98d     Presenting Sponsor: Phillips Seminary Join conversations that expose you to new ideas, deepen your commitment and give insights to how we can minister in a changing world.  Supporting Sponsors: Restore Clergy If you are clergy in need of tailored, professional support to help you manage the demands of ministry, Restore Clergy is for you! Kokoro  Join in for heartfelt journeys that challenges the way we see ourselves, each other, and the world we share.   Future Christian Team: Loren Richmond Jr. – Host & Executive Producer Martha Tatarnic – Co-Host Paul Romig–Leavitt – Associate Producer Dennis Sanders – Producer Alexander Lang - Production Assistant

Canonical's VP of Engineering for Ubuntu reveals why they're swapping coreutils for Rust-built tools. Then we break down the GNOME 48 release, and why this one is special.Sponsored By:Tailscale: Tailscale is a programmable networking software that is private and secure by default - get it free on up to 100 devices! 1Password Extended Access Management: 1Password Extended Access Management is a device trust solution for companies with Okta, and they ensure that if a device isn't trusted and secure, it can't log into your cloud apps. River: River is the most trusted place in the U.S. for individuals and businesses to buy, sell, send, and receive Bitcoin. Support LINUX UnpluggedLinks:

Week D - If a preview update falls in the woods and no one downloads it, did it really happen? Plus, what is going on with AI for free? Isn't this stuff expensive? Windows 23H2/24H2: Taskbar share, Spotlight updates, Windows Backup snooze in File Explorer, etc. Dev and Beta - Semantic search adds OneDrive photo search to Search (was in File Explorer previously), plus the Recall reboot no one is explaining. And Trim comes to Snipping Tool (Canary and Dev) Beta (23H2) - Share gets a drag tray and Start All apps gets new Grid and Category views Lenovo revenues surge 20 percent Framework announces Ryzen AI-based Laptop 13, plus Laptop 12 and Desktop Opera adds Bluesky, Discord, and Slack to the sidebar Microsoft 365 Microsoft confuses us with a test of a free, ad-supported core Office suite for Windows Amazon kills Chime, will use Zoom, Teams, and more Amazon kills Appstore for Android Google to drop SMS-based 2FA, move to QR codes Paul continues with his SSO removals, an update on whether this impacts account availability AI/Dev Following up the previous discussion with an interesting way to use an AI chatbot Alexa enters the AI era OpenAI now has 400 million weekly active users Microsoft cancels some AI datacenter leases, but it's not done spending billions on AI Anthropic releases first reasoning model, with a twist Gemini Code Assist is now free for individuals! ThinkDeeper and Voice in Copilot no longer have usage restrictions OpenAI makes Deep Research available to all paid customers Apple delays biggest Siri advances past iOS 18.4 - Math is hard, but AI is even harder Spotify expands into AI-narrated audiobooks NVIDIA partners to bring free ASL training to everyone .NET 10 Preview 1 arrives with the promise of LTS and not much else Xbox Xbox Cloud Gaming gets its first update in a while, and it's a big one Microsoft delays Fable reboot to 2026 Tips and Picks Tip of the week: You can view the source code for the oldest machine-readable version of Unix App pick of the week: Adobe Photoshop for iPhone RunAs Radio this week: Exchange Server in 2025 with Michel de Rooij Brown liquor pick of the week: Glenrothes 15 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly cachefly.com/twit

Week D - If a preview update falls in the woods and no one downloads it, did it really happen? Plus, what is going on with AI for free? Isn't this stuff expensive? Windows 23H2/24H2: Taskbar share, Spotlight updates, Windows Backup snooze in File Explorer, etc. Dev and Beta - Semantic search adds OneDrive photo search to Search (was in File Explorer previously), plus the Recall reboot no one is explaining. And Trim comes to Snipping Tool (Canary and Dev) Beta (23H2) - Share gets a drag tray and Start All apps gets new Grid and Category views Lenovo revenues surge 20 percent Framework announces Ryzen AI-based Laptop 13, plus Laptop 12 and Desktop Opera adds Bluesky, Discord, and Slack to the sidebar Microsoft 365 Microsoft confuses us with a test of a free, ad-supported core Office suite for Windows Amazon kills Chime, will use Zoom, Teams, and more Amazon kills Appstore for Android Google to drop SMS-based 2FA, move to QR codes Paul continues with his SSO removals, an update on whether this impacts account availability AI/Dev Following up the previous discussion with an interesting way to use an AI chatbot Alexa enters the AI era OpenAI now has 400 million weekly active users Microsoft cancels some AI datacenter leases, but it's not done spending billions on AI Anthropic releases first reasoning model, with a twist Gemini Code Assist is now free for individuals! ThinkDeeper and Voice in Copilot no longer have usage restrictions OpenAI makes Deep Research available to all paid customers Apple delays biggest Siri advances past iOS 18.4 - Math is hard, but AI is even harder Spotify expands into AI-narrated audiobooks NVIDIA partners to bring free ASL training to everyone .NET 10 Preview 1 arrives with the promise of LTS and not much else Xbox Xbox Cloud Gaming gets its first update in a while, and it's a big one Microsoft delays Fable reboot to 2026 Tips and Picks Tip of the week: You can view the source code for the oldest machine-readable version of Unix App pick of the week: Adobe Photoshop for iPhone RunAs Radio this week: Exchange Server in 2025 with Michel de Rooij Brown liquor pick of the week: Glenrothes 15 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly cachefly.com/twit

Week D - If a preview update falls in the woods and no one downloads it, did it really happen? Plus, what is going on with AI for free? Isn't this stuff expensive? Windows 23H2/24H2: Taskbar share, Spotlight updates, Windows Backup snooze in File Explorer, etc. Dev and Beta - Semantic search adds OneDrive photo search to Search (was in File Explorer previously), plus the Recall reboot no one is explaining. And Trim comes to Snipping Tool (Canary and Dev) Beta (23H2) - Share gets a drag tray and Start All apps gets new Grid and Category views Lenovo revenues surge 20 percent Framework announces Ryzen AI-based Laptop 13, plus Laptop 12 and Desktop Opera adds Bluesky, Discord, and Slack to the sidebar Microsoft 365 Microsoft confuses us with a test of a free, ad-supported core Office suite for Windows Amazon kills Chime, will use Zoom, Teams, and more Amazon kills Appstore for Android Google to drop SMS-based 2FA, move to QR codes Paul continues with his SSO removals, an update on whether this impacts account availability AI/Dev Following up the previous discussion with an interesting way to use an AI chatbot Alexa enters the AI era OpenAI now has 400 million weekly active users Microsoft cancels some AI datacenter leases, but it's not done spending billions on AI Anthropic releases first reasoning model, with a twist Gemini Code Assist is now free for individuals! ThinkDeeper and Voice in Copilot no longer have usage restrictions OpenAI makes Deep Research available to all paid customers Apple delays biggest Siri advances past iOS 18.4 - Math is hard, but AI is even harder Spotify expands into AI-narrated audiobooks NVIDIA partners to bring free ASL training to everyone .NET 10 Preview 1 arrives with the promise of LTS and not much else Xbox Xbox Cloud Gaming gets its first update in a while, and it's a big one Microsoft delays Fable reboot to 2026 Tips and Picks Tip of the week: You can view the source code for the oldest machine-readable version of Unix App pick of the week: Adobe Photoshop for iPhone RunAs Radio this week: Exchange Server in 2025 with Michel de Rooij Brown liquor pick of the week: Glenrothes 15 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly cachefly.com/twit

Week D - If a preview update falls in the woods and no one downloads it, did it really happen? Plus, what is going on with AI for free? Isn't this stuff expensive? Windows 23H2/24H2: Taskbar share, Spotlight updates, Windows Backup snooze in File Explorer, etc. Dev and Beta - Semantic search adds OneDrive photo search to Search (was in File Explorer previously), plus the Recall reboot no one is explaining. And Trim comes to Snipping Tool (Canary and Dev) Beta (23H2) - Share gets a drag tray and Start All apps gets new Grid and Category views Lenovo revenues surge 20 percent Framework announces Ryzen AI-based Laptop 13, plus Laptop 12 and Desktop Opera adds Bluesky, Discord, and Slack to the sidebar Microsoft 365 Microsoft confuses us with a test of a free, ad-supported core Office suite for Windows Amazon kills Chime, will use Zoom, Teams, and more Amazon kills Appstore for Android Google to drop SMS-based 2FA, move to QR codes Paul continues with his SSO removals, an update on whether this impacts account availability AI/Dev Following up the previous discussion with an interesting way to use an AI chatbot Alexa enters the AI era OpenAI now has 400 million weekly active users Microsoft cancels some AI datacenter leases, but it's not done spending billions on AI Anthropic releases first reasoning model, with a twist Gemini Code Assist is now free for individuals! ThinkDeeper and Voice in Copilot no longer have usage restrictions OpenAI makes Deep Research available to all paid customers Apple delays biggest Siri advances past iOS 18.4 - Math is hard, but AI is even harder Spotify expands into AI-narrated audiobooks NVIDIA partners to bring free ASL training to everyone .NET 10 Preview 1 arrives with the promise of LTS and not much else Xbox Xbox Cloud Gaming gets its first update in a while, and it's a big one Microsoft delays Fable reboot to 2026 Tips and Picks Tip of the week: You can view the source code for the oldest machine-readable version of Unix App pick of the week: Adobe Photoshop for iPhone RunAs Radio this week: Exchange Server in 2025 with Michel de Rooij Brown liquor pick of the week: Glenrothes 15 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly cachefly.com/twit

Week D - If a preview update falls in the woods and no one downloads it, did it really happen? Plus, what is going on with AI for free? Isn't this stuff expensive? Windows 23H2/24H2: Taskbar share, Spotlight updates, Windows Backup snooze in File Explorer, etc. Dev and Beta - Semantic search adds OneDrive photo search to Search (was in File Explorer previously), plus the Recall reboot no one is explaining. And Trim comes to Snipping Tool (Canary and Dev) Beta (23H2) - Share gets a drag tray and Start All apps gets new Grid and Category views Lenovo revenues surge 20 percent Framework announces Ryzen AI-based Laptop 13, plus Laptop 12 and Desktop Opera adds Bluesky, Discord, and Slack to the sidebar Microsoft 365 Microsoft confuses us with a test of a free, ad-supported core Office suite for Windows Amazon kills Chime, will use Zoom, Teams, and more Amazon kills Appstore for Android Google to drop SMS-based 2FA, move to QR codes Paul continues with his SSO removals, an update on whether this impacts account availability AI/Dev Following up the previous discussion with an interesting way to use an AI chatbot Alexa enters the AI era OpenAI now has 400 million weekly active users Microsoft cancels some AI datacenter leases, but it's not done spending billions on AI Anthropic releases first reasoning model, with a twist Gemini Code Assist is now free for individuals! ThinkDeeper and Voice in Copilot no longer have usage restrictions OpenAI makes Deep Research available to all paid customers Apple delays biggest Siri advances past iOS 18.4 - Math is hard, but AI is even harder Spotify expands into AI-narrated audiobooks NVIDIA partners to bring free ASL training to everyone .NET 10 Preview 1 arrives with the promise of LTS and not much else Xbox Xbox Cloud Gaming gets its first update in a while, and it's a big one Microsoft delays Fable reboot to 2026 Tips and Picks Tip of the week: You can view the source code for the oldest machine-readable version of Unix App pick of the week: Adobe Photoshop for iPhone RunAs Radio this week: Exchange Server in 2025 with Michel de Rooij Brown liquor pick of the week: Glenrothes 15 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly cachefly.com/twit

Let the show’s 5th year begin! LTS regular Micki Maynard turned me onto this one. Paul Newman and Sidney Pottier star as jazz musicians in Paris. Their love interests are Joanne Woodward and Dihann Caroll, repectively. Louis Armstrong plays a character called Wild Man Moore. If my synopsis seems superficial, that’s because I haven’t actually seen this one. But I love the cast, and I love the idea that Sidney and Diahann are doing something more interesting than playing that one Black person in the movie. So come discover this one along with me. Shelly Brisbin with Micheline Maynard and Nathan Alderman.

Let the show’s 5th year begin! LTS regular Micki Maynard turned me onto this one. Paul Newman and Sidney Pottier star as jazz musicians in Paris. Their love interests are Joanne Woodward and Dihann Caroll, repectively. Louis Armstrong plays a character called Wild Man Moore. If my synopsis seems superficial, that’s because I haven’t actually seen this one. But I love the cast, and I love the idea that Sidney and Diahann are doing something more interesting than playing that one Black person in the movie. So come discover this one along with me. Shelly Brisbin with Micheline Maynard and Nathan Alderman.

In this episode, Open Source Security chats with Aaron Frost, CEO of Hero Devs about the world of maintaining end-of-life open source software. Aaron explains how EOL versions of open source work and how backporting security fixes can help maintaining compliance. In the discussion we cover the "just upgrade" mentality, how backporting works, why it's hard, and why it matters. We also cover some oddities the world of CVE brings to the discussion. The blog post for this episode can be found at  https://opensourcesecurity.io/2025/2025-02-patching_EOL_OSS_aaron_frost/

In this episode, I engage in a thought-provoking dialogue with Fallon Morningstar and Ian Morris from Listening to Smile, an innovative platform dedicated to the healing powers of art and music. We delve into the profound relationship between creativity and healing, exploring how vibrational music can serve as a transformative medium for mental and physical well-being.-----------------------------Listening To Smile is a pioneering company that focuses on transforming the lives of individuals through the healing power of sound frequencies. By offering a unique licensing system, the company empowers holistic practitioners around the globe to provide Frequency Minded services to their clients.The Frequency Minded Music, featured in the company's Frequency Minded Magazine, highlights the LTS method, which is Listening To Smile's innovative approach to frequency therapy. This method offers a scalable and adaptable solution, providing practitioners with the tools to tailor treatments according to their clients' needs.With a presence in 13 countries, Listening To Smile is revolutionizing the field of frequency therapy through the scalability and effectiveness of its LTS method. By fostering a community of practitioners and music enthusiasts, the company continues to expand its reach, enabling more people to experience the life-changing benefits of Frequency Minded Music and sound healing.Discover more about Listening to Smile:Listening to SmileFalyn Morningstar and Ian Morris are trailblazing entrepreneurs whose dedication to innovation and global wellness has made them influential leaders in the industry. Falyn's Radiant Balance System, seamlessly integrating Functional Diagnostic Nutrition, clinical testing, somatic practices, sound healing, and meditation, is a testament to her revolutionary approach to women's health and well-being.Ian Morris, an acclaimed artist known for his Frequency Minded Music™ and LTS Method from Listening to Smile, has pushed the boundaries of sound therapy and stress reduction, garnering global recognition.Together, they have multiple companies and continue to redefine the wellness landscape through Listening to Smile's recently expanded networks: Frequency Minded Magazine, LTS Podcast, and LTS Records. Their commitment to fostering connections within the art, music, and well-being communities solidifies their status as pioneers in this new world of holistic wellness and innovation.https://falynmorningstar.com/instagrams:https://www.instagram.com/listeningtosmile/ andhttps://www.instagram.com/falynhuntermorningstar/youtube:https://www.youtube.com/@listeningtosmilemusicFollow Martin Benson for more insights:*To stay updated on the podcast and related content, check out my Instagram*To support the show and access exclusive content, consider subscribing for $0.99/month on Instagram (link above).Credits: Special thanks to Matthew Blankenship of The Sometimes Island for our podcast theme music!Support this podcast: https://podcasters.spotify.com/pod/show/martin-l-benson/support

2025-01-28 Weekly News — Episode 227Watch the video version on YouTube at https://youtube.com/live/H8Ht5xYgUFA?feature=share Hosts: Gavin Pickin - Senior Developer at Ortus SolutionsEric Peterson - Senior Developer at Ortus SolutionsBig Thanks to our Sponsor - Ortus SolutionsThe makers of ColdBox, CommandBox, ForgeBox, TestBox and all your favorite box-es out there including BoxLang.A few ways to say thanks back to Ortus Solutions:Buy Tickets to Into the Box 2025 in Washington DC https://t.co/cFLDUJZEyMApril 30, 2025 - May 2, 2025 - Washington, DCLike and subscribe to our videos on YouTube. Help ORTUS reach for the Stars - Star and Fork our ReposStar all of your Github Box Dependencies from CommandBox with https://www.forgebox.io/view/commandbox-github Subscribe to our Podcast on your Podcast Apps and leave us a reviewSign up for a free or paid account on CFCasts, which is releasing new content regularlyBOXLife store: https://www.ortussolutions.com/about-us/shopBuy Ortus's Books102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips)Now on Amazon! In hardcover too!!!https://www.amazon.com/dp/B0CJHB712MLearn Modern ColdFusion (CFML) in 100+ Minutes - Free online https://modern-cfml.ortusbooks.com/ or buy an EBook or Paper copy https://www.ortussolutions.com/learn/books/coldfusion-in-100-minutes Patreon Support (resplendent)We have 62 patreons: https://www.patreon.com/ortussolutions. News and AnnouncementsBeware that ColdFusion 2021 end-of-life (and end of updates) is coming Nov 2025, and your optionsAre you still running ColdFusion 2021? While it's still supported/updated by Adobe, did you know that its end-of-life is coming just several months from now, Nov 10, 2025? That's the date when "core" support for that release ends--meaning no more updates from Adobe after that, not even security fixes.What about more recent releases, if you may wonder? CF 2023 (the current latest release) will get updates into 2028 (5 years after it was release). And there's the coming CF 2025 release, currently in pre-release (as I have recently blogged about), which is of course a great sign for the continued vitality of CF.But this looming deadline for CF2021 is a reminder that as the years roll on, we not only get new versions but we must say good-bye to old ones.Wondering what you can do? or when CF2023 or CF2025 support will end also? And what's the difference between "core" support and the available "extended" support which Adobe sells? (The extended support plan does NOT provide updates beyond this coming November.) For more on these, including official Adobe documentation that discusses such things, as well as my thoughts on migration, costs, various options to consider, and more, do read on.https://www.carehart.org/blog/2025/1/9/coldfusion2021_end_of_life_nov_2025  Java updates of Jan 21, 2025 for 8, 11, 17, 21, and 23: thoughts and resourcesIt's that time again: there are new JVM updates released today (Jan 21, 2025) for the current long-term support (LTS) releases of Oracle Java, 8, 11, 17, and 21, as well as the new short-term release 23. (The previous short-term release, Java 22, is no longer updated.)TLDR: The new updates are 1.8.0_441 (aka 8u441), 11.0.26, 17.0.14, 21.0.6, and 23.0.2, respectively. Crazy that there are now 5 current Java releases, I realize. More below, including more on each of them including what changed as well as bug fixes and the security fixes each version contains (including their CVE scores regarding urgency of concerns), which are offered in Oracle resources I list below.Oracle calls these updates "critical patch updates" (yep, "CPU"), but they are in fact scheduled quarterly updates, so that the "critical" aspect of this nomenclature may sometimes be a bit overstated. As is generally the case with these Java updates, most of them have the same changes and fixes across the four JVM versions, though not always.For some folks, that's all they need to hear. For others, read on.Whether this is your first time updating Java or your fiftieth, there are some things that you may or may not know.https://www.carehart.org/blog/2025/1/21/java_updates_jan_2025 Into the Box Round 1 of Sessions and Workshops are now out!Our first round of sessions and workshops for Into the Box 2025 is here! Get ready to dive into a world of modern web development with hands-on workshops and engaging sessions led by Ortus Solutions and Community CFML and BoxLang experts. Visit intothebox.org to explore what's in store—this is just the beginning, with much more content coming soon! https://www.ortussolutions.com/blog/into-the-box-round-1-of-sessions-and-workshopsLast chance to save 25% off CF2023, for those on CF2018 and earlierHere's great news for those still running CF2018 or earlier, who may have been holding off upgrading to CF2023 (because you would have to pay full price for it). It's news I first shared back in July, and the deal has been extended one last time, thus this post.TLDR; Now through Feb 28, 2025 those running CF9, 10, 11, 2016 or 2018 can upgrade to CF2023 for 25% off its full price. (Those running CF2021 can already/always could upgrade at 50% off the full price.)This is a deal offered only by Intergral, makers of FusionReactor, who are also resellers of CF. Adobe doesn't even offer this deal themselves. For more, see their blog post at https://fusion-reactor.com/blog/news/save-25-on-adobe-cf2023-upgrades/.Act now, it could save you hundreds or even thousands of $$s on a single license! https://www.carehart.org/blog/2025/1/17/last_chance_for_cf_upgrade_discount_from_cf2018_or_earlier New Releases and UpdatesTestBox v6.1.0 releaseWe're super excited to announce the release of TestBox 6.1.0! This release introduces native support for BoxLang without the need for a compatibility mode, unlocking new possibilities for developers embracing BoxLang's dynamic capabilities. Alongside this exciting update, we've added valuable features, improved functionality, and resolved key issues to ensure a smoother and more robust testing experience. Dive into the details and see how TestBox 6.1.0 makes your testing even more seamless and efficient!https://www.ortussolutions.com/blog/testbox-v610-releasecbMockData v4New name and new support for BoxLang!https://forgebox.io/vie...

Send us a textIt's commonly known that today's children and adolescents are riddled with anxiety, far more than previous generations, but why? What drives the anxiety? How can parents and spiritual leaders guide and shape today's generation as they face an onslaught of unfiltered information and content they are not hardwired to process at such young ages? Youth ministry veteran Kevin Norwood joins LTS host Bridgette Tomlin in this episode to discuss why mental health matters and how a message of Hope can change a student's life.-------------------------------------------------------------------------------------Dr. Kevin Norwood is a seasoned youth ministry leader with over 37 years of experience focused on empowering teenagers and guiding the Next Generation toward realizing their potential. His ministry journey began in 1987 at Lakeside Assembly in Oklahoma City, where he worked alongside veteran youth pastor Paul Abner to establish a foundation for lifelong youth mentorship. Over his career, Dr. Norwood has served in multiple locations, including a decade in Owasso, Oklahoma, a period at Fort Myers First Assembly in Florida, and a further 20 years back in Owasso. He holds a Doctorate in Global Leadership from George Fox University, with his dissertation and accompanying work centered on “Discipleship for the Next Generation” which explores engaging and mentoring the emerging generation. Dr. Norwood also earned a master's degree in Theology from Oral Roberts University and a bachelor's degree in Pastoral Ministry from Southwestern Christian University.------------------------------------------------------------------------------------Connect with today's featured guest, Kevin Norwood:Email: knxtreme@gmail.com Web: wiredinc.orgWeb: curatehope.comWeb: kevinnorwood.comInstagram:  knxtremeX:  @knxtremeMeta:  knxtremFeatured:Earn a chance to win a $100 Amazon gift card by giving Let's Talk with Sanctuary a Rating + Review on Apple podcasts!Join Sanctuary's private Facebook group for ministry wives.Follow Sanctuary on Instagram @sanctuarym2mwThe Anxious Generation: How the Great Rewiring of Childhood Is Causing an Epidemic of Mental Illness by Jonathan HaidtMany thanks to our host, Bridgette Tomlin, and engineer Justin Lynn of Justin Lynn Music. Learn how you can capitalize on all Justin can do for your small business, church, or ministry by clicking here!

The Sponsors We want to thank Underground Printing for starting this and making it possible—stop by and pick up some gear, check them out at ugpmichiganapparel.com, or check out our selection of shirts on the MGoBlogStore.com. And let's not forget our associate sponsors: Peak Wealth Management, Matt Demorest - Realtor and Lender, Human Element, Ann Arbor Elder Law, Michigan Law Grad, Venue by 4M, Winewood Organics, Sharon's Heating & Air Conditioning, Autograph: Fandom Rewarded, Champion Circle, who just launched an app where you earn rewards for things like reading MGoBlog and listening to our podcast, SignalWire where we are recording this, and introducing Royal Oath Insurance Group, which is Owen Rosen's new firm. Featured Musicians: The Missing Chums The Video: [After THE JUMP: The things to be said.] --------------------- 1. Texas After Review starts at the top The defensive story isn't that bad. Down to down they can hang. Jyaire Hill is a work in progress that Texas picked on and broke a few times. Their problem seems to be Wink, who has NFL ideas for 3rd down that are at fault for them not getting off the field. Busts go back to running too much stuff. They can fix this. Offensively they can't fix this. Their OL is just not good. Priebe's 2023 film was more honest than the 2024 offseason talk: he's just a guy. Link and Giudice are so far from being playable. Don't think we've ever had the program talk guys up so much and this be the result. ALSO the offensive brain trust doesn't know how to use their personnel. We're just guys on the internet but 13 snaps each for Mullings and Bredeson when those are two of your best weapons is inexplicable. It looks like they're just trying to be last year's offense with Donovan Warren. 2. Arkansas State: Offense starts at 22:11 Return Jaylen Raynor who started as a freshman. He's a runner who will take off when his 2nd read isn't there. Tackles are in rough shape since losing LT Makilan Thomas to injury; he's questionable for this game. Dangerman is wide receiver Corey Rucker, who plays big for a 6'0/214 guy. Butch Jones offense: spread to dink with a few bombs to keep you honest. 3. Arkansas State: Defense starts at 32:56 Defense has a lot of transfers, one guy that Alex liked was edge Bryan Whitehead, a Liberty transfer, but Seth notes that Tulsa has one of the worst LTs in the country; is Evan Link bad for a P4 player or bad for a football player? Safeties are a real weak spot: not fast and not big, they should be double-moved by Loveland. 4. Unverified Voracity Live starts at 43:11 RIP to James Earl Jones, who was a tremendous flex and a tremendous Michigan story. RIP also to Greg Harden, our former guest who had a hand in creating the Michigan program culture. Less sad RIPs: the Big Ten being immune from lawsuits, as Denard Robinson and Braylon Edwards show House isn't going to settle this. In other legal news, the ACC seems to be winning against FSU's big threat of having the state of Florida declare sovereign immunity. Pac 2 is now up to Pac 6, but don't expect Cal/Stanford to join any time soon, since they culturally want nothing to do with Wazzu and Oregon State, and they're held by the same Grant of Rights as the other ACC teams. Maybe UNLV if they bring along Reno. About the Featured Musician: The Missing Chums Longtime MGoBlog fans—notably drummer Mike K (@outofthegates) of Michigan twitter—The Missing Chums (website) are an upbeat local indie with the name of a Hardy Boys novel that makes them ungoogleable. Their latest album Reveries just came out. Song choices: "No, Not Nancy!" "Née Jones"    "Just Loretta" Also because Across 110th Street will get our Youtubes taken now now, the opener and outro: “The Employee is Not Afraid”—Bear vs. Shark “Ruska Vodka”—Motorboat

Join me today with Dr. Jenn Gunsaullus to discuss navigating evolving sexual desires within your relationship, communicating your needs in LTS, prioritizing sexy time aka HNFT (happy-naked-fun-time) and how cell phones are destroying marriages in 2025- learn more about todays guest at www.DrJensDen.com Join my patreon to get bonus EP + audio erotica Beducated: Try 24 Hours FREE + 50% off yearly subscription go to https://beducate.me/horny-summer VIIA Hemp: Get 15% off your purchase (21+) using code Housewife @ www.VIIAHemp.com BlueChew: Get your first month supply FREE using code HOUSEWIFE at checkout at www.bluechew.com