Podcasts about maintainer

  • 181PODCASTS
  • 287EPISODES
  • 50mAVG DURATION
  • 1WEEKLY EPISODE
  • Jun 24, 2026LATEST

POPULARITY

20192020202120222023202420252026


Best podcasts about maintainer

Latest podcast episodes about maintainer

Breach FM - der Infosec Podcast
Flurfunk - SearchLeak, Google AI Threat Defense, NPM 12 & Apple Private Cloud Compute

Breach FM - der Infosec Podcast

Play Episode Listen Later Jun 24, 2026 63:49


Erstes Thema: SearchLeak (CVE-2026-42824). Varonis Threat Labs hat eine dreistufige Angriffskette in Microsoft 365 Copilot Enterprise Search entdeckt: Ein präparierter Microsoft-Link, dessen URL-Parameter Copilot als Prompt interpretiert, kombiniert mit einer HTML-Rendering-Race-Condition und Bings Search-by-Image-Endpunkt als unfreiwilligem Exfiltrationsproxy. Ein Klick reicht – E-Mails, MFA-Codes, Kalendereinträge, alles was der User sehen darf, fließt ab. Microsoft hat server-seitig gepatcht. Das Muster – KI-Assistent wird durch Prompt Injection zur Datenwaffe – ist strukturell: EchoLeak, Reprompt, jetzt SearchLeak, drei Angriffe derselben Klasse.Max bringt einen Blogpost von Google Cloud CISO Chris Betz, der beschreibt, wie Google seine eigene KI intern wie einen Insider behandelt: mit Least Privilege, Monitoring, Auditing und Segmentierung. Was mich interessiert: auch Google musste dafür erst mal sein Asset Management nachziehen und konsolidieren. Die Kernbotschaft bleibt trotzdem richtig – wenn Angreifer mit Machine Speed arbeiten, muss die Verteidigung das auch. Für CISOs bedeutet das: Model Security, Agent Security, Data Governance werden zur Pflicht, nicht zur Kür.Dann Robert über NPM 12: Install Scripts von Dependencies laufen nicht mehr automatisch, bestimmte Remote-Dependencies werden blockiert. Überfällig und sinnvoll – aber 30-40% der NPM-Malware läuft erst beim Import, nicht bei der Installation. Wer einen Maintainer kompromittiert, kommt weiterhin durch. Gute Iteration, kein Allheilmittel.Zum Abschluss: Apple erweitert Private Cloud Compute auf die Google Cloud. Dasselbe Zero-Trust-Prinzip wie bisher – selbst Google soll keinen Zugriff auf verarbeitete Nutzerdaten bekommen. Clevere Partnerschaft statt Frontier-Rennen.SearchLeak / CVE-2026-42824 (Varonis)https://www.varonis.com/blog/searchleakGoogle Cloud CISO Chris Betz: AI Threat Defensehttps://cloud.google.com/blog/products/identity-security/how-google-cloud-is-applying-ai-to-threat-defenseNPM 12 / Risky Business Soapbox mit Paul McCartyhttps://risky.biz/soapbox_npm12Apple Private Cloud Compute auf Google Cloudhttps://security.apple.com/blog/private-cloud-compute-google-cloud

Sustain
Episode 289: Courtney Miller on Maintainer Burnout and Software Abandonment

Sustain

Play Episode Listen Later Jun 12, 2026 30:58


Guest Courtney Miller Panelist Richard Littauer Show Notes In this episode of Sustain, Richard welcomes back Courtney Miller to unpack her PhD research on one of open source's most overlooked problems: what happens when widely used software is abandoned. Courtney explains why abandonment is not always simple, or even always bad, but can create real risks for the developers and projects that depend on it. From npm package research and downstream impact to Abandabot, AI-assisted tooling, maintainer burnout, and responsible sunsetting, this conversation explores how the open source ecosystem can better understand, detect, and respond when the software we rely on stops being maintained. Press download now! [00:01:28] Courtney explains the focus of her dissertation. [00:02:34] Courtney defines abandonment. [00:03:44] Her ecosystem-wide analysis focused on the npm JavaScript ecosystem, looking specifically at widely used packages. [00:05:23] The first part of the dissertation involved interviews with maintainers who rely on abandoned packages and often lack tools or clear processes for responding. [00:06:31] Courtney describes two types of abandonment: Explicit Notice Abandonment and Activity Based Abandonment. [00:09:27] Courtney explains the third and final chapter called, Designing Abandabot. [00:11:10] Richard raises the point that some software can be “done” and still function fine. Courtney agrees, noting that not all abandonment matters and beyond alerts remediation matters. [00:13:22] The conversation expands into under-resourced and under-maintained projects, which can also become supply chain risks before they are fully abandoned. [00:14:53] Richard brings up the “Whale Fall” idea and Courtney agrees and points to responsible sunsetting as an important research area. [00:17:39] We learn about Courtney's experience bringing AI into the dissertation, especially for building Abandabot's prediction system. [00:20:54] Richard asks whether AI is already making abandonment more common. [00:24:52] Courtney talks about staying grounded in real practitioner problems as the open source and AI landscape changes quickly. [00:26:30] Final Takeaways: Courtney argues that abandonment needs to be addressed now, especially through software composition analysis tools that can help developers understand and respond to real dependency risk. Quotes [00:01:35] “The title of my dissertation is: “Supporting the Sustainable Use of Open Source Software.” [00:07:10] “There is no right answer how to define abandonment.” [00:07:26] “Explicit Notice Abandonment”- where the maintainers of a package publicly express their intent to no longer do so.” [00:07:42] “The other type of abandonment was called “Activity Based Abandonment” -commonly used as a way of identifying abandonment in open source sustainability literature.” [00:08:26] “Out of the widely used packages, around 15% had abandonment issues.” [00:11:38] “Not all abandonment matters. If left pad is abandoned, who cares?” [00:21:35] “Maybe projects never have to die. You can create a fork and maintain it on your own.” Spotlight [00:27:20] Richard's spotlight is the translation feature on iPhone in Books. [00:28:20] Courtney's potlight is her dog, Chanel, and SAFE-MCP. Links SustainOSS podcast@sustainoss.org richard@sustainoss.org SustainOSS Discourse SustainOSS Mastodon SustainOSS Bluesky SustainOSS LinkedIn Open Collective-SustainOSS (Contribute) Richard Littauer Socials Courtney Miller Website Courtney Miller LinkedIn Sustain Podcast-Episode 140: Courtney Miller and Hongbo Fang on Toxicity and Information Flow in Open Source Communities Supporting the Sustainable Use of Open Source Software by Courtney Elta Miller Whale Fall (Andrew Nesbitt blog) Michael Winser LinkedIn SAFE-MCP SustainOSS - AI, FLOSS, and Sustainability Virtual Forum Registration Sponsor CURIOSS Credits Produced by Richard Littauer Edited by Paul M. Bahr at Peachtree Sound Show notes by DeAnn Bahr Peachtree Sound Special Guest: Courtney Miller.

Python Bytes
#482 Mr. Beast's episode

Python Bytes

Play Episode Listen Later Jun 1, 2026 24:01 Transcription Available


Topics covered in this episode: CVE-2026-48710: A Maintainer's Perspective daily-stars-explorer Markdown to pdf with pandoc and typst postman2pytest Extras Joke Watch on YouTube About the show Brian #1: CVE-2026-48710: A Maintainer's Perspective Marcelo Trylesinski suggested by Lee Luocks Short version: users of Starlette: upgrade to Starlette 1.0.1 security professionals: we can't treat open source projects like corporations This top link is a Starlette security advisory with the title Missing Host header validation poisons request.url.path, bypassing path-based security checks The CVE apparently caused some negative press targeting starlette. However, “the vulnerability came from the application pattern and the deployment, never from something Starlette intended.” A quote from an OSTIF article: “This bug is a classic “responsibility gap” where if this maintainer didn't patch, thousands of exposed projects would have to individually secure their projects. In doing this work, they've voluntarily taken on the responsibility to protect the ecosystem from long-term systemic harm. As with all open source projects, they owed us nothing and could have left this to be everyone else's problem and took the extraordinary steps of helping the ecosystem.” Both X40 D-Sec and Ars Technica expected immediate fixes and responses from Starlette. That's not good. We can do better. Michael #2: daily-stars-explorer Explore the full history of any GitHub repository.

Talk Python To Me - Python conversations for passionate developers
#550: AI Contributions and Maintainer Load in Open Source

Talk Python To Me - Python conversations for passionate developers

Play Episode Listen Later May 30, 2026 62:42 Transcription Available


You wake up, brew the coffee, open GitHub, and there it is. Another pull request on your open source project. Thirteen thousand lines added. No issue filed first. No discussion. Just "here, please review this for me." Over the past year, GitHub activity has spiked roughly twelve times in a few short months, and a huge chunk of that signal is landing on the same small group of maintainers who were already stretched thin. The curl bug bounty got buried under AI-generated noise. Jazzband, the home of Django classics like pip-tools and the Django debug toolbar, hit what its maintainer called an "apocalypse" and started sunsetting. Even CPython just shipped fresh guidelines on AI-assisted contributions this week. So what does all of this actually look like from the receiving end of the pull request? On this episode, Paolo Melchiorre joins us to tell that story from inside the maintainer's chair. Paolo is a director of the Django Software Foundation, an organizer of PyCon Italy, a Django Girls coach, and he has spent the past year carefully collecting examples of how AI is reshaping open source contributions. The good, the bad, and the extra fingers. We dig into his PyCon US talk on AI-assisted contributions and maintainer load, why AI is best understood as an amplifier rather than a new kind of contributor, the wildly different policies across 86 open source foundations, whether projects banning AI today are reacting to last year's models. Episode sponsors AgentField AI Talk Python Courses Links from the show Guest Paolo Melchiorre: github.com DSF: www.djangoproject.com djangonaut-space: djangonaut.space PyCon Italia: 2026.pycon.it uDjango: github.com My PyCon US 2026 post: www.paulox.net AI-Assisted Contributions and Maintainer Load: www.paulox.net Senior Engineer Tries Vibe Coding: www.youtube.com Code Rabbit AI PR Reviews: www.coderabbit.ai GitHub Usage Graphs: github.blog Update on CPython's AI Policies: fosstodon.org High-Quality Chaos from Curl: daniel.haxx.se The Generative AI Policy Landscape in Open Source: redmonk.com Watch this episode on YouTube: youtube.com Episode #550 deep-dive: talkpython.fm/550 Episode transcripts: talkpython.fm Theme Song: Developer Rap

The Lunduke Journal of Technology
"Rust is Going to Save Us" Says Linux Kernel Number 2 Guy

The Lunduke Journal of Technology

Play Episode Listen Later May 24, 2026 22:11


The Maintainer of the Linux Kernel Stable Branch, Greg Kroah-Hartman, says, "We need more Rust Linux developers!"50% Off Yearly, & Massively Discounted Lifetime Subs Through May 31:https://lunduke.substack.com/p/50-off-yearly-and-massively-discountedMore from The Lunduke Journal:https://lunduke.com/ This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit lunduke.substack.com/subscribe

PodRocket - A web development podcast from LogRocket
pnpm 11 deep dive with lead maintainer Zoltan Kochan

PodRocket - A web development podcast from LogRocket

Play Episode Listen Later May 14, 2026 27:48


pnpm lead maintainer Zoltan Kochan joins PodRocket to unpack pnpm 11's biggest shifts: a new minimum release age default that blocks npm registry packages under 24 hours old, a cleaner allow builds config replacing scattered post-install script settings, and the experimental global virtual store that slashes install times with Git worktrees. Zoltan also shares why a Rust rewrite of pnpm's engine is now underway, and how AI-assisted development made it possible far sooner than expected. Links Website: https://www.kochan.io/ Github: https://github.com/zkochan LinkedIn: https://www.linkedin.com/in/zkochan X: https://x.com/zoltankochan Mastodon: https://fosstodon.org/@zkochan Bluesky: https://bsky.app/profile/kochan.io Resources pnpm release blog post: https://pnpm.io/blog/releases/11.0 We want to hear from you! How did you find us? Did you see us on Twitter? In a newsletter? Or maybe we were recommended by a friend? Fill out our listener survey! https://t.co/oKVAEXipxu Let us know by sending an email to our producer, Elizabeth, at elizabeth.becz@logrocket.com, or tweet at us at PodRocketPod. Check out our newsletter! https://blog.logrocket.com/the-replay-newsletter/ Follow us. Get free stickers. Follow us on Apple Podcasts, fill out this form, and we'll send you free PodRocket stickers! What does LogRocket do? LogRocket provides AI-first session replay and analytics that surfaces the UX and technical issues impacting user experiences. Start understanding where your users are struggling by trying it for free at LogRocket.com. Try LogRocket for free today. Chapters 00:00 Introduction 01:00 The 24-Hour Minimum Release Age Default 03:30 Community Pushback and the Polling Shift 05:00 Trusted Policy and OIDC Provenance Checking 07:00 Performance Trade-offs of Full Metadata Fetching 08:00 The New Allow Builds Configuration 10:30 Global Installs and the Virtual Store Explained 13:00 Which Packages Break with the New Layout 14:30 Global Virtual Store for Local Dev and Worktrees 16:30 TypeScript Go and the Golden Age of Development 17:30 AI Agents Influencing pnpm's Design Decisions 19:00 The Rust Rewrite — and Why Now 20:00 Dropping Node 18 and the Standalone Executable 22:00 Installing Node.js via pnpm and the New GitHub Action 24:00 Moving Config from npmrc to pnpm-workspace.yaml 26:00 Upgrade Smoothness and Common Migration Pain Points 28:30 pnpm v12 Roadmap — Frozen Installs in Rust 31:00 Contributing to pnpm and the Open Source PR Tsunami 33:00 Wrap-up

Raven Conversations
Raven Conversations - 35T Military Intelligence Systems Maintainer, with SGT Stephen Fujita

Raven Conversations

Play Episode Listen Later Apr 15, 2026 12:57


Raven Conversations: In today's episode, we are joined by SGT Stephen Fujita, a 35T Military Intelligence Systems Maintainer. Tune in as he talks about his career field.

Breach FM - der Infosec Podcast
Flurfunk - Delve Update, Axios Supply-Chain, Microsoft/Artemis II & Nicholas Carlinis LLM CVE Vortrag

Breach FM - der Infosec Podcast

Play Episode Listen Later Apr 8, 2026 58:03


In der neuen Folge von Breach FM starten Max Imbiel und ich mit dem Nachklang zur Delve-Compliance-Affäre. Die Gründer haben sich per Videobotschaft zu Wort gemeldet und die Lage damit eher verschlechtert. Sie nennen den Vorfall eine koordinierte Diffamierung, bieten aber gleichzeitig Re-Audits und mehr manuelle Prüfprozesse an. Für eine reine Schmierkampagne eine aufwendige Reaktion. Y Combinator hat sich still von Delve getrennt, und Elizabeth Holmes bot den Gründern öffentlich Hilfe an.Dann zum nächsten Supply-Chain-Fall: Das NPM-Paket Axios – über 100 Millionen wöchentliche Downloads – wurde über einen gezielten Spearphishing-Angriff auf seinen Maintainer kompromittiert. Angreifer tarnten sich als legitimes Unternehmen, luden ihn zu einem gefälschten Teams-Call ein und installierten dabei Malware. Darüber kamen sie an seine NPM-Credentials und schleusten einen Payload in die nächste Version ein. Sarah Gooding beschreibt parallel, wie die Lazarus-Gruppe dieses Muster systematisch gegen hochwertige Open-Source-Maintainer im Node.js-Universum betreibt.Zur wöchentlichen Microsoft-Corner: ProPublica hat einen tiefen Artikel über die GCC High Government Cloud und ihre FedRAMP-Zulassung veröffentlicht. Das Fazit interner US-Regierungsprüfer: Die Bewertung basierte auf unvollständigen Informationen, weil Microsoft zentrale Sicherheitsfragen schlicht nicht beantworten konnte. Ein Auditor bezeichnete das System als "a pile of shit" – nicht mein Zitat. Passend dazu: Commander Reid Wiseman meldete während der Artemis-II-Mission, er habe zwei Outlook-Instanzen an Bord – und keine funktioniere.Zum Abschluss empfehle ich den Vortrag von Nicholas Carlini, Research Scientist bei Anthropic, auf der [un]prompted-Konferenz. Er zeigt, wie aktuelle LLMs autonom Zero-Days in produktivem Code finden – darunter eine SQL Injection in Ghost CMS nach 90 Minuten und ein Linux-Kernel-Bug, der seit 2003 unentdeckt war. Insgesamt hat das Frontier Red Team über 500 validierte High-Severity-Schwachstellen gefunden. Die Fähigkeiten verdoppeln sich laut Carlini etwa alle vier Monate. Den Vortrag verlinken wir – mit dem transparenten Hinweis, dass Carlini für Anthropic arbeitet.Delve sets the record straight on anonymous attackshttps://delve.co/blog/delve-sets-the-record-straight-on-anonymous-attacksFederal Cyber Experts Thought Microsoft's Cloud Was “a Pile of Shit.” They Approved It Anyway.How Axios was compromisedhttps://x.com/flaviocopes/status/2039973060158095827?s=46Nicholas Carlini - Black-hat LLMs | [un]prompted 2026https://www.youtube.com/watch?v=1sd26pWhfmgArtemis II crew experienced issues with Outlook this morninghttps://x.com/latestinspace/status/2039763355162812702?s=46

Software Defined Talk
Episode 566: The code is actually kinda useless

Software Defined Talk

Play Episode Listen Later Apr 3, 2026 60:31


The code is actually kinda useless This week, we discuss the Claude Code leak, locking down coding agents, and the Axios supply chain attack. Plus, Coté considers breaking up with his Gmail address of 20+ years. Watch the YouTube Live Recording of Episode 566 Runner-up Titles pawpatrol891@gmail.com I get that dude's email Those turtles are dyslexic I'm just a space hyperchicken judge curl|bash is the debate Djikstra's algorithm for calendaring Rundown Google Now Lets You Change Your Gmail Address. Here's How Claude had a week He Rewrote Leaked Claude Code in Python, And Dodged Copyright Anthropic admits Claude Code quotas running out too fast Auto mode for Claude Code Anthropic leaked its own source Code Are sandboxes the future Docker Sandboxes: Run Agents in YOLO Mode, Safely Docker Sandboxes: Run Claude Code and More Safely Coder Raises $35M Axios NPM Distribution Compromised in Supply Chain Attack Relevant to your Interests Updates to GitHub Copilot interaction data usage policy Juries Take the Lead in the Push for Child Online Safety Jensen Huang runs Nvidia with 60 direct reports — and no one-on-ones Report: Apple to Move a Part of its Embedded Cores to RISC-V, Stepping Away from Arm ISA A one-line Kubernetes fix that saved 600 hours a year Apple discontinues the Mac Pro with no plans for future hardware - 9to5Mac ‘Astound'ed. Google Flips Its Fiber To PE. Hacked Files of F.B.I. Director Kash Patel Circulate Online We Rewrote JSONata with AI in a Day, Saved $500K/Year I Decompiled the White House's New App Mistral secures $830 million in debt financing to fund AI data center The AI boom is a lie: Fake data centres and unused GPUs | Ed Zitron Microsoft Copilot is now injecting ads into pull requests on GitHub American Exchange Group Inks $39 Million Deal for Allbirds Assets OMG. Best back to back posts. Maintainer for Axios, before and after the supply chain breach. Historical GitHub Uptime Charts Reddit - The heart of the internet Bluesky's new AI tool Attie is already the most blocked account other than J.D. Vance Steve Blank Your Startup Is Probably Dead On Arrival Nonsense The Untold Story of Wiz (ft. Wiz Khalifa) Conferences DevOpsdays Atlanta 2026, April 21-22, 2026 DevOpsDays Austin, May 5-6, 2026 DevOpsDays + AI Nashville, May 14-15, 2026 KCD Texas, May 15, 2026, use code MEDIA_THANK_YOU for free pass WeAreDevelopers Europe, July 8-10, 2026 Berlin, Coté speaking. DevOpsDays Dallas, Sep 28-29, 202 WeAreDevelopers NA, Sept 23-25, 2026, Discount Code: Community_SoftwareDefined DevOpsDays Vilnius, Sep 30 - Oct 1. 2006 VMware User Groups (VMUGs): Minneapolis (April 7-9, 2026) Toronto (May 12-14, 2026) Dallas (June 9-11, 2026) Orlando (October 20-22, 2026) Conference Partners SDT News & Community Join our Slack community Email the show: questions@softwaredefinedtalk.com Free stickers: Email your address to stickers@softwaredefinedtalk.com Follow us on social media: Twitter, Threads, Mastodon, LinkedIn, BlueSky Watch us on: Twitch, YouTube, Instagram, TikTok Book offer: Use code SDT for $20 off "Digital WTF" by Coté Sponsor the show Sponsor more podcasts with Failover Media Recommendations Brandon: Claude Code /copy Matt: Search Engine: Are You a Good Driver? The Trial of the Driverless Car Coté: Abby Bangser's KubeCon EU 2026 talk booWhoops

Engineering Kiosk
#261 Git 3.0, SHA-256, Reftables: Die Zukunft von Git mit Maintainer Patrick Steinhardt

Engineering Kiosk

Play Episode Listen Later Mar 31, 2026 76:38 Transcription Available


Git nutzen wir jeden Tag. Aber Hand aufs Herz: Wie viel davon verstehen wir wirklich?Hinter commit, push und pull steckt kein bisschen Magie, sondern ein erstaunlich komplexes System aus Objekten, Referenzen, Protokollen und Designentscheidungen, die bis heute die Softwareentwicklung prägen. Und genau da wird es spannend. Denn Git ist 20 Jahre alt, aber alles andere als fertig entwickelt.In dieser Episode sprechen wir mit Patrick Steinhardt, Git Maintainer, Contributor zu libgit2 und Staff Engineer im Git Team bei GitLab. Gemeinsam tauchen wir tief in die Git Internals ein und klären, warum Git sich gegen Subversion durchgesetzt hat, was ein bare Repository auf der Server-Seite eigentlich macht, wie Clone, Fetch und Push wirklich funktionieren und warum große Repositories, Millionen Referenzen, Binärdateien und Git LFS bis heute echte Herausforderungen sind. Außerdem geht es um Reftables, Partial Clones, Large Object Promises, pluggable object databases, Git History, Interactive Rebase und die Frage, was Git 3.0 mit SHA-256, besserer Usability und moderner Architektur verändern könnte.Wenn du Git bisher vor allem als Werkzeug für deinen täglichen Workflow gesehen hast, bekommst du hier einen Blick unter die Haube, der vieles neu sortiert. Vielleicht hörst du diese Folge als Developer:in mit einem leichten Ich benutze Git seit Jahren Gefühl. Vielleicht gehst du raus mit dem Gedanken: Ich kenne bisher gerade mal die Oberfläche. So oder so, diese Episode ist Pflichtprogramm für alle, die Versionskontrolle, Entwickler-Workflows, Open Source und die Zukunft von Git besser verstehen wollen. Bonus: Danach wirkt selbst git rebase plötzlich fast freundlich.Unsere aktuellen Werbepartner findest du auf https://engineeringkiosk.dev/partnersDas schnelle Feedback zur Episode:

EmpowerU
Mitzner Show Cattle Genetics Sale Preview

EmpowerU

Play Episode Listen Later Feb 25, 2026 31:50


Yes another preview, and someone new coming on to join us! Mr. Mitzner has put together a great sale of Simmental, Maintainer, Angus and even Shorthorn and Club calf embryos. Along with some great semen opportunities, you don't want to miss out on some of his promising and consistent genetics up to grab. It all happens March 1st on SCO! Empowerment Is Here. Sale Link

My Open Source Experience Podcast
The True Story of a Volunteer Event Maintainer

My Open Source Experience Podcast

Play Episode Listen Later Feb 17, 2026 46:20


Running events is not easy, even for companies and organizations who this as (part of) their business. If you think that maintaining open source events as a volunteer organizer in your free time is impossible, you're proven wrong!In the My Open Source Experience podcast episode, Ariel Jolo shares his experience how he got from helping his friends install Linux on their PCs and then becoming a sysadmin all the way to being the organizer of Nerdearla. Recent occasions of the event attracted over 10,000 people in person and over 30,000 people online, and yet, Ariel is organizing the series in multile locations aroudn the globe on his free time without any monetary compensation.Learn more about:- Building a community as a kid- Getting from interest in OSS to a paid job- How to make a gathering for sysadmins go viral- The story behind the Nerdearla event- What it takes to organize a wildly successful event series in your free time Hosted on Acast. See acast.com/privacy for more information.

Buongiorno da Edo
Astro non è (solo) di Cloudflare, parola di maintainer - con Chris Swithinbank - Buongiorno 309

Buongiorno da Edo

Play Episode Listen Later Feb 5, 2026 24:17


Quando ho pubblicato l'episodio 306 sull'acquisizione di Astro da parte di Cloudflare, un maintainer del core team mi ha scritto su Mastodon: "Ci sono cose che non hai considerato." Così ho invitato Chris Swithinbank, maintainer di Astro e creatore di Starlight, a spiegarmi cosa mi ero perso. Spoiler: più della metà dei maintainer di Astro non lavorano per Cloudflare, e il progetto ha una struttura di governance e sponsorship che non avevo raccontato. Fonti e approfondimenti: - Supporting the Future of Astro: https://astro.build/blog/supporting-the-future-of-astro/ - Starlight: https://github.com/withastro/starlight - What's new in Astro - January 2026: https://astro.build/blog/whats-new-january-2026/ La mia app: https://play.google.com/store/apps/details?id=com.edodusi.coderoutine&hl=it-it#astro #cloudflare #opensource #starlight #frontend

Rails with Jason
306 - Steve Pike, Co-Founder of Infield

Rails with Jason

Play Episode Listen Later Jan 23, 2026 59:03 Transcription Available


In this episode I talk with Steve Pike, founder of Infield, about dependency management and automated Rails upgrades. We discuss the tradeoffs of taking on dependencies, authorization libraries like CanCanCan versus Pundit, open source maintainer obligations, and how AI is changing the upgrade automation landscape.InfieldOnce a Maintainer

Late Confirmation by CoinDesk
The Blockspace Pod: Inside Bitcoin Core's Newest Maintainer

Late Confirmation by CoinDesk

Play Episode Listen Later Jan 17, 2026 33:05


We dive into the mystery of the newest Bitcoin Core maintainer and the project to separate consensus code. From GitHub hierarchies to the quest for client diversity, learn how a $2 trillion network is actually governed and why the "lead maintainer" no longer exists. Subscribe to the Blockspace newsletter! Explaining the latest shakeup in Bitcoin development: the addition of a sixth Bitcoin Core maintainer known as "The Charlatan." We explore the history of Bitcoin's governance—from Satoshi to Wladimir van der Laan—and why the project has moved away from a single lead maintainer. We also break down the "Bitcoin kernel" project, an initiative to separate consensus code to allow for a more diverse ecosystem of Bitcoin clients, and address the common conspiracies surrounding who really controls the network. Subscribe to the newsletter! [https://newsletter.blockspacemedia.com](https://newsletter.blockspacemedia.com) Notes: * Bitcoin is a $2 trillion network asset. * Bitcoin Core has six current maintainers. * No person officially holds lead maintainer title. * GitHub is a Microsoft-owned product. * Bitcoin on path to $100 trillion valuation. * New maintainer added first time since Feb 2023. Timestamps: 00:00 Start 03:09 What's Github? 05:29 What is a Maintainer? 09:27 Client diversity 16:24 Lead maintainer 18:28 Faketoshi 26:15 New Maintainer

What the Dev?
332: Knative graduates from CNCF (with Knative maintainer Dave Protasowski)

What the Dev?

Play Episode Listen Later Oct 28, 2025 18:47


In this episode, Dave interviews Dave Protasowski, a member of the steering committee for Knative, about the project's recent graduation from the CNCF. They discuss: An overview of what Knative doesThe history of the project at the CNCFWhat's in store for Knative in the future

Besser Wissen
Wie man freie Software betreut

Besser Wissen

Play Episode Listen Later Oct 27, 2025 79:11 Transcription Available


Wir sprechen mit Christoph Cullmann über sein Projekt und die wachsenden Anforderungen an Open-Source-Software. Sponsorenhinweis: FRITZ! ist Europas führender Hersteller von Produkten für das digitale Zuhause. Mit rund 900 Mitarbeitenden und der bekanntesten Marke für WLAN-Router bringt FRITZ! Millionen von Menschen ins Internet. Spannende Einblicke unter fritz.com/jobs.

Weightloss Mindset
Q&A7 Your Questions About Developing Maintainer Traits

Weightloss Mindset

Play Episode Listen Later Oct 15, 2025 10:11 Transcription Available


Monday's episode on Maintainer Traits struck a chord—listeners loved it but wanted to know: “How do I actually develop these traits in real life?”In today's Q&A, Rick dives deep into your most practical questions about shifting from goal-thinking to systems-thinking, seeing setbacks as data instead of disasters, and building real self-trust around food.These aren't just ideas—they're skills you can start practicing today to think, act, and feel like a lifelong maintainer.In This Episode, You'll Learn:How to shift from goals to systems so your success doesn't depend on motivation.A 3-question tool to turn setbacks into learning opportunities, not failures.How to rebuild self-trust around food—one piece of micro-evidence at a time.How to plan for obstacles without falling into obsession or control.Which non-scale victories actually show your mindset is changing for good.Key TakeawaysGoals have finish lines. Systems just keep making you better.Curiosity beats judgment. Every setback is data for your next success.Beliefs change through evidence, not affirmations. Collect proof you can trust yourself.Preparation > perfection. Simple “if-then” plans build resilience.Track what really matters. Energy, calm, and confidence—not just the scale.Your Weekly ChallengePick one maintainer trait from Monday's episode and one strategy from today's Q&A. Practice them this week. Notice how your mindset—and results—start to shift.Have a Question for Rick?Send your questions for next week's Q&A to [insert contact/email/social handle]. Your struggles and insights help shape future episodes!

Fajr Reminders
Stand if you are alive

Fajr Reminders

Play Episode Listen Later Sep 30, 2025 13:41


Auto-generated transcript: Bismillahirrahmanirrahim. I begin in the name of Allah, the Creator, the Sustainer, the Maintainer, and the Protector of the entire universe and all that it contains, the most beneficent, the most merciful. We send salutations on his messenger, the last and final of them. Muhammad, peace and blessings be upon him, his family,… Continue reading Stand if you are alive

Fajr Reminders
Institution of Marriage

Fajr Reminders

Play Episode Listen Later Aug 20, 2025


Auto-generated transcript: In the name of Allah, the Creator, the Sustainer, the Maintainer, the Protector of the Universe and everything it contains. The God of Abraham, the God of Moses, the God of Jesus, the God of Muhammad. Peace and blessings be upon all of them. The one and only God, the one and only… Continue reading Institution of Marriage

Talking Drupal
Talking Drupal #516 - Drupal CMS & Recipes

Talking Drupal

Play Episode Listen Later Aug 18, 2025 60:40


Today we are talking about Drupal CMS Analytics, Recipes, and how to use both with guest Dharizza Espinach. We'll also cover Field Data as our module of the week. For show notes visit: https://www.talkingDrupal.com/516 Topics Drupal CMS Analytics Track Balancing Personal and Work Contributions Planning and Estimating Contributions Team Effort and Collaboration Challenges and Solutions in UI and Integration Future Enhancements and Roadmap Conclusion and Contact Information Resources Noise Cancellation Tool Recipe installer kit Saplings Creating a Simple Donation form with Drupal, Stripe, and Webforms Guests Dharizza Espinach - dharizza Hosts Nic Laflin - nLighteneddevelopment.com nicxvan John Picozzi - epam.com johnpicozzi Rich Lawson - richlawson.co rklawson MOTW Correspondent Jacob Rockowitz - jrockowitz.com jrockowitz Brief description: Did you ever need to review all the data in a field on a content entity type or a specific bundle? Module name/project name: Field Data Brief history How old: February 28, 2025 Versions available: 1.0.0-alpha12 Maintainership Actively maintained Test coverage Documentation Default settings include Display only published field data Display only field data in the default language Usage stats: 34 sites report using this module Maintainer(s): Jacob Rockowitz Module features and usage Adds a 'Data' tab to Drupal core's 'Field list' report (/admin/reports/fields), which allows administrators to view and download field data. This module can be used while developing a migration to review field data before and after a migration. This module also allows site builders and developers to identify unused fields. Similar Modules Schema Viewer Provides a backend developer tool to view table schema by table name. Entity Export CSV Export Content Entity to CSV.  

Talking Drupal
Talking Drupal #515 - AI with amazee.ai

Talking Drupal

Play Episode Listen Later Aug 11, 2025 76:46


Today we are talking about AI, How it can be privacy focused, and What amazee.ai is doing to help with guest Michael Schmid. We'll also cover LiteLLM AI Provider as our module of the week. For show notes visit: https://www.talkingDrupal.com/515 Topics Privacy Concerns with AI Amazee's Privacy-Focused AI Solutions Foundation Models and Their Importance AI-Powered Search in Drupal Customizing AI Responses and Search Proprietary vs. Open Source Models Understanding Neural Networks Training and Weights in Models Integrating AI with Drupal Practical Steps to Implement AI in Drupal AI and MCP for Automation Open Source Models in AI Future Directions for MAI AI Conclusion and Contact Information Resources amazee.ai Foundation models amazee ai provider & amazee ai vector db module Drupal AI module AI Chatbot MCP DrupalGovCon Guests Michael Schmid - amazee.ai schnitzel Hosts Nic Laflin - nLighteneddevelopment.com nicxvan John Picozzi - epam.com johnpicozzi Rich Lawson - richlawson.co rklawson MOTW Correspondent Matt Glaman - mglaman.dev mglaman Brief description: AI provider for using LiteLLM. LiteLLM is a gateway that allows connecting to LLMs without accessing the providers directly using the same API as OpenAI along with other governance goodies. Module name/project name: LiteLLM AI Provider Brief history How old: created on 24 February 2025 Versions available: beta, 1.1.0 and 1.0.0 to track main AI module Maintainership Actively maintained Usage stats: 439 Maintainer(s): marcus_johansson, andrewbelcher, justanothermark of FreelyGive Module features and usage Basically like OpenAI provider but allows it to work with non-OpenAI models and other logic that's in the OpenAI provider module.

Healthi Talks
Mindful Moments #25 - The Maintainer's Mindset: Qualities for Lasting Health

Healthi Talks

Play Episode Listen Later Aug 4, 2025 9:23


Ever wonder how some people lose weight and actually keep it off? It's not just about the diet! In this episode of Mindful Moments, we're uncovering the key qualities that successful maintainers share. Discover the power of consistency, flexible thinking, and a strong inner drive that goes way beyond the scale. Learn how to cultivate these traits to build truly lasting health.

Food School: Smarter Stronger Leaner.
Why you don't do what you know you "should do". The Explorer and the Maintainer: understanding your brain's competing drives.

Food School: Smarter Stronger Leaner.

Play Episode Listen Later Jul 20, 2025 26:08


The universal tension between seeking comfort and pursuing growth creates an internal tug-of-war we all experience. What if this conflict isn't a flaw, but a feature of our neurobiology designed to serve our triving?  Drawing from insights by neuroscientist Andrew Huberman and personal development pioneer Tony Robbins, this episode reveals how our brains are simultaneously wired for 2 opposing forces: homeostasis (maintaining balance and comfort) and reward-seeking (driving us toward exploration and growth). This biological reality explains why we can genuinely want two contradictory things at once - to stay comfortable and to challenge ourselves.  What's particularly fascinating is how different people are naturally calibrated on this spectrum.  Some individuals, like Richard Branson or Tony Robbins, appear wired for perpetual growth. For these "explorers," the answer to "When is it enough?" is simply "Never" - their fulfillment comes from the pursuit itself. Others naturally gravitate toward maintaining and improving existing conditions. Both tendencies serve important functions, and neither is inherently superior.  Understanding your natural tendencies can dramatically improve decision-making. If you recognize yourself as growth-oriented, you can stop questioning why comfortable situations never satisfy you for long. For those working with others - whether as managers, partners, or parents - this understanding helps position people according to their strengths rather than fighting their nature.  Share this episode with someone struggling with whether to stay comfortable or venture into something new.    Text Me Your Thoughts and IdeasSupport the showBrought to you by Angela Shurina Behavior-First Change Leadership & Culture Transformation ConsultantEXECUTIVE & OPTIMAL PERFORMANCE COACH

Ones Ready
Ep 484: From Thunderbirds Maintainer to Netflix Star - TSgt Xavier Knapp!

Ones Ready

Play Episode Listen Later Jun 23, 2025 66:55


Send us a textLet's get one thing straight—this ain't your typical Air Force hype-fest. Xavier Knapp went from "please God, not F-16s" to becoming the standout maintainer in Netflix's Thunderbirds documentary. In this episode, we pull the curtain all the way back on what it really means to be a top-tier wrench-turner in the Air Force. Xavier shares the unfiltered truth about failing out of EOD, getting slapped in the face (literally) by maintenance, and grinding through 120° days and freezing nights to keep jets flying. He breaks down the hard-earned pride of maintenance culture, the myth and reality of the Thunderbirds, and why tight uniforms and tighter standards actually matter. If you think being a Thunderbird is all glitz and no grit, this one's going to hurt your feelings. Let Xavier wreck your cynicism—and maybe inspire you to raise your own damn standards.

Sustain
Episode 273: Maintainer Month 2025 with Federico Mena Quintero on GNOME

Sustain

Play Episode Listen Later Jun 13, 2025 46:11


Guest Federico Mena Quintero Panelist Richard Littauer Show Notes In this special Maintainer Month episode of Sustain, host Richard Littauer chats with Federico Mena Quintero, a foundational GNOME hacker and board member. Federico shares his journey from learning image processing in high school, becoming a key contributor to the GIMP project, and founding the GNOME desktop environment. He discusses the historical context, challenges, and achievements of GNOME and open source development. The conversation delves into the importance of maintaining infrastructural software, adapting to new technologies like the Rust programming language, and the socio-economic factors influencing the open source community's demographics. Press download now to hear more! [00:01:29] Federico describes GNOME as the “surface of your desk”- the visual and interactive layer of the Linux desktop. [00:02:16] Federico started writing image processing programs in high school and discovered GIMP (GNU Image Manipulation Program) and began contributing plugins. Encouraged by positive feedback, he continued developing filters and building community resources. [00:10:20] The proprietary Motif GUI toolkit used by GIMP prompted the creation of GTK (GIMP Toolkit), a free alternative. GTK was split from GIMP and became a foundation for GNOME. Miguel de Icaza learned about modular component design from Microsoft and brought those ideas to the GNOME team. [00:14:48] Federico explains KDE was already launched but used the non-free Qt toolkit and GNOME was created as a fully free alternative using GTK. [00:17:58] They discuss GNOME's long-term success which has thousands of contributors and institutional backing from its foundation. [00:21:06] Federico reflects on his privilege. He never had to apply for his first job because he was recruited and recognizes the barriers to entry for underrepresented communities. [00:24:32] The conversation turns to global south and diversity. Federico discusses the limitations on who can participate in open source due to time, money, and societal roles, and notes that women and people outside the Global North often face greater barriers. [00:30:37] Richard inquires what Federico means by “maintaining infrastructure.” He explains that open source today is less about new features and more about keeping infrastructure working. [00:32:59] Federico talks about a recent project to replace a vital but abandoned infrastructure component and emphasizes the need for sustainable maintenance strategies. [00:36:25] Federico became maintainer of Librsvg image rendering library from C to Rust. [00:40:00] Find out where you can follow Federico on the web. Quotes [00:31:10] “Software doesn't rot, but the environment around it changes.” Spotlight [00:40:57] Richard's spotlight is the book, 1491: New Revelations of the Americas Before Columbus. [00:41:49] Federico's spotlight is two books: Malintzin's Choices and James. Links SustainOSS (https://sustainoss.org/) podcast@sustainoss.org (mailto:podcast@sustainoss.org) richard@sustainoss.org (mailto:richard@sustainoss.org) SustainOSS Discourse (https://discourse.sustainoss.org/) SustainOSS Mastodon (https://mastodon.social/tags/sustainoss) SustainOSS Bluesky (https://bsky.app/profile/sustainoss.bsky.social) SustainOSS LinkedIn (https://www.linkedin.com/company/sustainoss/) Open Collective-SustainOSS (Contribute) (https://opencollective.com/sustainoss) Richard Littauer Socials (https://www.burntfen.com/2023-05-30/socials) Federico Mena Quintero Blog (https://viruta.org/) Federico Mena Quintero Mastodon (https://mastodon.social/@federicomena@mstdn.mx) GNOME (https://www.gnome.org/) GIMP (GNU Image Manipulation Program) (https://www.gimp.org/) GTK (https://www.gtk.org/) Librsvg (https://github.com/GNOME/librsvg) 1491: New Revelations of the Americas Before Columbus by Charles C. Mann (https://en.wikipedia.org/wiki/1491%3A_New_Revelations_of_the_Americas_Before_Columbus) La Malinche (https://en.wikipedia.org/wiki/La_Malinche) Malintzin's Choices by Camila Townsend (https://archive.org/details/malintzinschoice0000town) James by Percival Everett (https://en.wikipedia.org/wiki/James_(novel)) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guest: Federico Mena Quintero.

2.5 Admins
2.5 Admins 251: OversharePoint

2.5 Admins

Play Episode Listen Later Jun 12, 2025 31:54


SharePoint is exploitable by Microsoft's AI, NIST proposes a new metric for exploited vulnerabilities, SBCs that look cool for a mini NAS and a router,  and setting up a first NAS with 4 disks.   Plugs Support us on patreon and get an ad-free RSS feed with early episodes sometimes The Maintainer's Dilemma: Strategies for […]

Late Night Linux All Episodes
2.5 Admins 251: OversharePoint

Late Night Linux All Episodes

Play Episode Listen Later Jun 12, 2025 31:54


SharePoint is exploitable by Microsoft's AI, NIST proposes a new metric for exploited vulnerabilities, SBCs that look cool for a mini NAS and a router,  and setting up a first NAS with 4 disks.   Plugs Support us on patreon and get an ad-free RSS feed with early episodes sometimes The Maintainer's Dilemma: Strategies for... Read More

Sustain
Episode 272: Maintainer Month 2025 with Sarah Rainsberger of Astro

Sustain

Play Episode Listen Later Jun 6, 2025 39:46


Guest Sarah Rainsberger Panelists Richard Littauer | Abby Mayes | Eriol Fox Show Notes In this special Maintainer Month episode of Sustain, hosts Richard, Abby, and Eriol talk with guest, Sarah Rainsberger, a documentation lead at Astro, who shares her journey from teaching high school mathematics to becoming an open source contributor. Sarah elaborates on her approach to documentation, emphasizing the importance of clear, supportive, and inclusive communication to onboard new contributors effectively. She also discusses using low-tech tools like Chromebooks and cloud-based editors for open source contributions. The episode highlights the strategies employed by the Astro Docs team to recognize and value contributions. Press download now to hear more! [00:02:30] Sarah shares her background, role at Astro, how she got involved in documentation that started by fixing a bad choir website, and why she chose Astro over Gatsby and quickly became a key contributor. [00:06:49] She reflects on the moment she connected her work with the concept of “open source.” [00:07:54] Sarah talks about becoming a leader using Chromebook, taking lessons on Scrimba, and using cloud tools like CodeSandbox and Gitpod, the Astro community embracing her methods, and how she built a reputation as someone making meaningful contributions regardless of hardware. [00:14:24] Sarah explains how docs are “self-serve support” and essential to project success. [00:16:28] The conversation turns to combatting the stigma that docs are low value and Sarah addresses the false perception that documentation isn't real development. [00:18:28] Sarah shares that Astro has over 1,000 docs contributors and details their intentional process of welcoming, crediting, and celebrating new contributors. [00:24:37] How does Astro handle lower-quality contributions? Astro uses the motto: “Not worse than what we had before.” They edit or mentor rather than reject, to build confidence and retain contributors. [00:29:12] Astro maintains a separate documentation site (“D Squared”) that outlines its processes for contributing to documentation. [00:33:25] Sarah shares where to find her work at the Astro Docs and where to find her. Quotes [00:05:26] “If I'm going in, let's go all in.” [00:12:50] “I have chosen to maintain low tech.” [00:12:59] “I am known for my evil devices.” [00:14:36] “Docs are so important to a project that you want someone else to use or contribute to.” [00:15:28] “Docs is the most scalable type of support that you can have.” [00:16:37] “Everyone complains about docs until it's someone else's project.” [00:26:51] “PRs don't just fall out of the sky; they are effort, and they are work.” [00:27:05] “There is some motivation behind this PR.” [00:31:41] “Several of our maintainers started by translating the docs.” [00:31:49] “If you want to find mistakes in your English docs, you want translators.” Spotlight [00:34:40] Abby's' spotlight is CommunityRule. [00:35:04] Eriol's spotlight is State of Docs. [00:35:19] Richard's spotlight is Nathan Schneider and the Protocol Oral History Project. [00:36:08] Sarah's spotlight is Better GitHub Co-Authors. Links SustainOSS (https://sustainoss.org/) podcast@sustainoss.org (mailto:podcast@sustainoss.org) richard@sustainoss.org (mailto:richard@sustainoss.org) SustainOSS Discourse (https://discourse.sustainoss.org/) SustainOSS Mastodon (https://mastodon.social/tags/sustainoss) SustainOSS Bluesky (https://bsky.app/profile/sustainoss.bsky.social) SustainOSS LinkedIn (https://www.linkedin.com/company/sustainoss/) Open Collective-SustainOSS (Contribute) (https://opencollective.com/sustainoss) Richard Littauer Socials (https://www.burntfen.com/2023-05-30/socials) Abby Cabunoc Mayes GitHub (https://abbycabs.github.io/) Eriol Fox GitHub (https://erioldoesdesign.github.io/) Sarah Rainsberger Website (https://www.rainsberger.ca/) Sarah Rainsberger Mastodon (https://mastodon.social/@sarah11918) Non-code contributions are the secret to open source success (The ReadME Project) (https://github.com/readme/featured/open-source-non-code-contributions) Astro (https://astro.build/) Astro Docs (https://docs.astro.build/en/getting-started/) Contribute to Astro (https://docs.astro.build/en/contribute/) Gitpod (https://www.gitpod.io/) Scrimba (https://scrimba.com/home) Hugo Server (https://gohugo.io/commands/hugo_server/) CommunityRule (https://communityrule.info/) State of Docs (https://www.stateofdocs.com/2025/introduction-basic-stats) Better GitHub Co-Authors (https://github.com/delucis/better-github-coauthors) Sustain Podcast-Episode 85: Geoffrey Huntley and Sustaining OSS with Gitpod (https://podcast.sustainoss.org/85) Sustain Podcast- 2 episodes featuring Nathan Schneider (https://podcast.sustainoss.org/guests/nathan-schneider) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guest: Sarah Rainsberger.

Sustain
Episode 271: Maintainer Month 2025 with Kade Morton on Cybersecurity

Sustain

Play Episode Listen Later May 30, 2025 37:47


Guest Kade Morton Panelists Richard Littauer | Eriol Fox Show Notes In this Maintainers Month episode of Sustain, host Richard Littauer and co-host Eriol Fox talk with cybersecurity expert Kade Morton from Arachne Digital. The conversation dives into how Kade's unconventional path through criminology and international relations led him into cybersecurity and open source. They explore the unique challenges of sustaining open source security tools, particularly for human rights activists and under-resourced groups, the tension between proprietary and open solutions, and how geopolitical contexts and human motivations influence modern digital threat landscapes. Hit download now to hear more! [00:01:41] Kade explains his work is split between a day job working security operations and a startup he runs called Arachne Digital. [00:02:51] Kade tells us about his background, how he got into cybersecurity through self-teaching and open source, and how his criminology and international relations studies informed his interest in cyber threats. [00:05:17] Kade discusses the open source projects he maintains, specifically ‘Thread.' [00:06:50] We learn about the difficulty of getting others invested in better tools and Kade discusses challenges explaining open source values to corporate environments. [00:12:26] Richard asks whether closed-source software is more secure and Kade highlights how most real world exploits target proprietary software. [00:14:57] Eriol brings up security perceptions in non-tech orgs using digital tools. Kade shares how Arachne Digital offers free services to vetted human rights orgs and he they discuss challenges balancing funding and access in human rights cybersecurity. [00:19:17] Richard reflects on monetization models for sustaining open source cybersecurity. Kade explains his company avoids fear-based marketing and promotes awareness instead. [00:22:40] Kade outlines how their threat-informed defense model works. [00:25:42] Eriol asks what changes could help improve open source sustainability. Kade discusses feeling out of place in both government and open source spaces and emphasizes cross-pollination between sectors to reduce polarity. [00:28:29] Richard introduces the concept of “digital sovereignty.” Kade warns of the risks of splintering the internet through nationalism and advocates for a balanced middle ground between centralization and fragmentation. [00:31:41] Kade shares where you can find his work on the web. Quotes [00:13:44] “It's mostly proprietary software that's being hacked.” [00:29:40] “The internet is the world's largest shared resource.” Spotlight [00:32:56] Eriol's spotlight is a repository called: The Design We Open. [00:33:49] Richard's spotlight is 1Password and Robin Riley. [00:34:31 Kade's spotlight is a shoutout to Mitre for TRAM and Justin Seitz who wrote a blog post on a project called, Searx. Links SustainOSS (https://sustainoss.org/) podcast@sustainoss.org (mailto:podcast@sustainoss.org) richard@sustainoss.org (mailto:richard@sustainoss.org) SustainOSS Discourse (https://discourse.sustainoss.org/) SustainOSS Mastodon (https://mastodon.social/tags/sustainoss) SustainOSS Bluesky (https://bsky.app/profile/sustainoss.bsky.social) SustainOSS LinkedIn (https://www.linkedin.com/company/sustainoss/) Open Collective-SustainOSS (Contribute) (https://opencollective.com/sustainoss) Richard Littauer Socials (https://www.burntfen.com/2023-05-30/socials) Eriol Fox GitHub (https://erioldoesdesign.github.io/) Kade Morton LinkedIn (https://www.linkedin.com/in/kade-morton-34179283/) Arachne Digital (https://www.arachne.digital/) Arachne Digital LinkedIn (https://www.linkedin.com/company/arachne-digital/) Arachne Digital (Medium) (https://arachnedigital.medium.com/) Arachne Digital (YouTube) (https://www.youtube.com/@Arachne_Digital) Arachne Digital (Bluesky) (https://bsky.app/profile/arachnedigital.bsky.social) Arachne Digital (GitHub) (https://github.com/arachne-threat-intel/) Thread-GitHub (https://github.com/arachne-threat-intel/thread) The National Digital Forum (NDF) (https://www.ndf.org.nz/) The New Design Congress (https://newdesigncongress.org/en/) Open Technology Fund -Security Lab (https://www.opentech.fund/labs/security-lab/) The Design We Open (GitHub) (https://github.com/sprblm/The-Design-We-Open) 1Password (https://1password.com/) TRAM (https://github.com/mitre-attack/tram) Searx (https://github.com/searx/searx) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guest: Kade Morton.

Sustain
Episode 268: Maintainer Month 2025 with Dirkjan Ochtman on Sustaining Critical Rust Libraries

Sustain

Play Episode Listen Later May 9, 2025 34:18


Guest Dirkjan Ochtman Panelist Richard Littauer Show Notes In this special Maintainer Month episode of Sustain, host Richard speaks with Dirkjan Ochtman, a long-time open source contributor and Rust advocate. They dive deep into what it's like maintaining critical infrastructure libraries, the motivations behind taking over "abandonware," and how funding ecosystems like GitHub Sponsors and thanks.dev help sustain low-level dependencies. Dirkjan also reflects on how Rust's design lends itself well to long-term maintainability and shares thoughts on the challenges of burnout, context switching, and ensuring project continuity. Hit the download button now! [00:01:33] Dirkjan explains how he chooses which projects he's maintaining, being passionate about memory safety via Rust, and maintaining tools like Rustls, Hickory DNS, and Quinn. [00:03:14] Dirkjan describes his motivation for maintaining abandonware and sees it as providing value to the community. [00:04:23] ISRG funds Dirkjan's work on memory-safe DNS and TLS libraires, and they are replacing C-based libraires with Rust equivalents. [00:05:33] Dirkjan uses thanks.dev to help fund maintainers through the full dependency graph and revenue is limited but promising. [00:08:06] Richard brings up Tidelift and Dirkjan mentions it's not yielding results for Rust projects yet because the Rust ecosystem is smaller. [00:09:30] We hear Dirkjan's journey into Rust, starting in Python but frustrated by lack of type safety and performance, and creating his own compiler before appreciating Rust's complexity. [00:12:20] Dirkjan talks about his transition from Python to Rust. [00:13:39] Dirkjan uses PyO3 to create Python bindings for Rust libraries. [00:15:31] Richard wonders why projects become unmaintained and Dirkjan responds that people have life events, job changes, or shifting interests. [00:17:11] How are unmaintained projects flagged? Dirkjan uses the RustSec Advisory DB to detect projects with no active maintainers. [00:18:47] Dirkjan avoids burnout as a maintainer by keeping the scope narrow, only responds to PRs, doesn't overcommit, and focuses on high-efficiency, low-effort maintenance. [00:19:51] Rust has a strong system, built-in unit tests, great CI support, and Dirkjan encourages atomic commits to simplify code review. [00:21:28] Dirkjan speaks about languages that are more maintainer safe. [00:22:18] Richard brings up attack vectors and the ‘left-pad incident.' Dirkjan shares how he builds trust via his public GitHub record. [00:24:17] We hear Dirkjan's offboarding and succession planning as he explains handing off projects like Askama and promoting multiple maintainers to reduce bus factor. [00:26:08] Dirkjan's long-term vision for OSS sustainability is he hopes to move higher in the stack and wants to make high-quality software easier to build. [00:27:38] Dirkjan explains why he prefers to do asynchronous collaboration over pair programming. [00:28:52] Dirkjan discusses Rust's long-term ecosystem stability. [00:31:09] Find out where you can follow Dirkjan on the web. Quotes [00:03:23] “You call it abandonware and I call it a dependency that has a million users.” [00:19:02] “[When I take on a project], I don't take on the burden of proactively improving the project.” [00:19:11] “I will be there when someone submits a PR." [00:20:37] “I ask folks to make small changes: atomic commits.” Spotlight [00:31:37] Richard's spotlight is Allan Day. [00:32:20] Dirkjan's spotlight is Xilem. Links SustainOSS (https://sustainoss.org/) podcast@sustainoss.org (mailto:podcast@sustainoss.org) richard@sustainoss.org (mailto:richard@sustainoss.org) SustainOSS Discourse (https://discourse.sustainoss.org/) SustainOSS Mastodon (https://mastodon.social/tags/sustainoss) SustainOSS Bluesky (https://bsky.app/profile/sustainoss.bsky.social) SustainOSS LinkedIn (https://www.linkedin.com/company/sustainoss/) Open Collective-SustainOSS (Contribute) (https://opencollective.com/sustainoss) Richard Littauer Socials (https://www.burntfen.com/2023-05-30/socials) Dirkjan Ochtman LinkedIn (https://www.linkedin.com/in/dochtman/?originalSubdomain=nl) Dirkjan Ochtman Blog (https://dirkjan.ochtman.nl/) Dirkjan Ochtman Mastodon (https://hachyderm.io/@djc) Dirkjan Ochtman GitHub (https://github.com/djc) Dirkjan Ochtman Bluesky (https://bsky.app/profile/djc.ochtman.nl) Rust (https://www.rust-lang.org/) Rustls (https://github.com/rustls/rustls) Hickory DNS (https://github.com/hickory-dns/hickory-dns) Quinn (https://github.com/quinn-rs/quinn) Internet Security Research Group (ISRG) (https://www.abetterinternet.org/) Let's Encrypt (https://letsencrypt.org/) Automatic Certificate Management Environment (https://en.wikipedia.org/wiki/Automatic_Certificate_Management_Environment) PyO3 user guide (https://pyo3.rs/v0.15.1/) Sustain Podcast-Episode 108: Sarah Gran and Josh Aas: Sustainable Digital Infrastructure with Memory Safe Code (https://podcast.sustainoss.org/108) Sustain Podcast-Episode 148: Ali Nehzat of thanks.dev and OSS Funding (https://podcast.sustainoss.org/148) Tidelift (https://tidelift.com/) RustSec Advisory Database-GitHub (https://github.com/RustSec/advisory-db) Askama (https://docs.rs/askama/latest/askama/) Allan Day's GNOME Blog (https://blogs.gnome.org/aday/) Xilem (https://xilem.dev/) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guest: Dirkjan Ochtman.

Talking Drupal
Talking Drupal #499 - Contact Form Initiative

Talking Drupal

Play Episode Listen Later Apr 28, 2025 65:09


Today we are talking about The Contact Form Initiative, What it is, and how it helped Drupal with guest J. Hogue. We'll also cover Local Tasks More as our module of the week. For show notes visit: https://www.talkingDrupal.com/499 Topics What is the Contact Form initiative What makes up the contact form recipe Why did you want to run this initiative What are the responsibilities of an initiative lead Were there any unexpected speed bumps Who was involved As a non-backend developer, any hesitation to lead this effort What was onboarding like What was the timeline Any tips for others thinking of leading an initiative Guests J. Hogue - oomphinc.com artinruins Hosts Nic Laflin - nLighteneddevelopment.com nicxvan John Picozzi - epam.com johnpicozzi Kathy Beck - kbeck303 MOTW Correspondent Jacob Rockowitz - jrockowitz.com jrockowitz Brief description: Nodes can have too many local tasks. Only the first few, like View, Edit, Layout, Revisions, and Translate, are used daily. Would you like to hide or reorder less commonly used local tasks, which include Usage, Clone, Devel, and Convert. There is a module for that Local Tasks More (local_tasks_more) Brief history How old: created on November 6th, 2024 Versions available: 1.0.0-beta2 r Maintainership Actively maintained No security coverage Has test coverage Does not require much documentation No issues Usage stats: 22 sites Maintainer(s): jrockowitz (me) Module features and usage Enter the base routes that support the show more/less task link and alterations. Enter the local task id and the altered title and weight. Set the local tasks to FALSE to remove it. Enter the number of links to trigger show more/less tasks link/icon from primary and secondary tasks (aka tabs).

My Open Source Experience Podcast
Open doesn't Always Mean Accessible

My Open Source Experience Podcast

Play Episode Listen Later Mar 18, 2025 48:11


By definition, open source projects and communities are supposed to be accessible. And while the code is always openly available, the remaining parts of the ecosystem might be further out of reach than you would thinkIn this episode of the My Open Source Experience Podcast, Michael Dexter, Ildiko and Phil explore the open source ecosystem from two perspectives: business and accessibility. Businesses rely on open source software, soemtimes unknowinlgy, all around the globe as digital infrastructure doesn't exist without it any more, and yet, making it integral part of the business strategy is a constant struggle for companies. And yet, even when companies and individuals reach the point of investing their time, money and resources into open source projects it appears to be more difficult than it is supposed to be. Michael, Ildiko and Phil are discussing these challenges and digging into how to address them.Learn more about:- The relationship between open source and business interests- The fragility of funding in the open source ecosystem- The role of open source foundations- Stages of involvement in open source projects- Maintainer shortage and how to bring people (back) into open source projects Hosted on Acast. See acast.com/privacy for more information.

WCCO's Car Care
When to Check Your Oil, Checking the Status of Your Brakes, Proper use of a Battery Maintainer

WCCO's Car Care

Play Episode Listen Later Mar 1, 2025 26:47


Nick calls us from on the road to Proctor. Rear trailing arm bushing replacement. What to do with vehicles without dipsticks? Are modern vehicles more reliable? Packing wheel bearings on a classic car. Low oil pressure alerts. What could cause a car to shake? Easy way to check brake status. Engine making a ticking noise. Can oil additives fix a leak? When to use a battery maintainer. What is the difference between four wheel drive and all wheel drive? How often should the alignment be adjusted? Ask our car care expert Nick Stoffel of Lloyds Automotive. Visit lloydsautomotive.net 651-228-1316

Talking Drupal
Talking Drupal #490 - Drupal Contrib First

Talking Drupal

Play Episode Listen Later Feb 24, 2025 69:23


Today we are talking about Drupal Contribution, how you can approach it within your company, and why a Contrib First approach is important with guest Steve Wirt. We'll also cover Config Importer & Tools as our module of the week. For show notes visit: https://www.talkingDrupal.com/490 Topics What is contrib first How does this help the Drupal community Why is it a good idea for companies How do you explain this to non dev folks like CEOs or Presidents What do you say if a client does not buy in How do you monitor and build confidence in other developers How can someone get started Any tools or tips for someone trying to bootstrap this Resources MOTW https://www.drupal.org/project/confi https://www.drupal.org/project/upgrade_tool Civic Actions Practice Tools - Contrib First Civic Actions Engineering Practice Area - Drupal Contrib First Module Development Codit menu tools Alt text validation - currently being built as Contrib First Bill requiring US agencies to share custom source code with each other becomes law Link shortners http://dgo.re/ or https://dgo.to/ link shorteners for d.o Drupal Contrib Development Contribution to a module Guests Steve Wirt - civicactions.com swirt Hosts Nic Laflin - nLighteneddevelopment.com nicxvan John Picozzi - epam.com johnpicozzi Avi Schwab - froboy.org froboy MOTW Correspondent Avi Schwab - froboy.org froboy Brief description: Have you ever wanted to streamline the management of config changes during your Drupal project deployment - importing individual configuration changes from contrib or custom modules and synchronizing settings across different environments? There's a module for that. Module name/project name: Config Importer and Tools Brief history How old: created in April 2016 by Andrii Podanenko(podarok) Versions available: 3.2.0 version which works with Drupal 9 and 10, D11 fixes are in the queue. Maintainership Actively maintained - although it's a developer module that's been mostly stable, so there have not been many recent changes. Security coverage Test coverage - unit tests Documentation - video documenting the process on the module page and instructions in the project overview Number of open issues: 8 open issues, 3 of which are bugs against the current branch Usage stats: 300 sites Maintainer(s): 7 maintainers across a few different agencies in Ukraine Module features and usage This module has no UI, and all of its work is done using it's config_import services, either importer or param_updater The importer service imports full config files The param_updater service pulls in single parameters from a config file. Both can be used in .install files of contrib modules or on your own site to pull in configuration during database updates, which can be helpful for adding a new feature, modifying existing features, or pushing changes to many sites. There is also a “spiritual successor” to the Confi module called “Upgrade Tool” which has similar functionality with some extra functionality too. https://www.drupal.org/project/upgrade_tool

Talking Drupal
Talking Drupal #487 - Single Directory Components Workflow

Talking Drupal

Play Episode Listen Later Feb 3, 2025 71:16


Today we are talking about Single Directory Components, How best to work with them, and their future with Drupal with guest Brian Perry. We'll also cover Embedded Content as our module of the week. For show notes visit: https://www.talkingDrupal.com/487 Topics What are Single Directory Components (SDC) Why the switch to SDCs What is there in common between decoupled and SDCs Can you give us an overview of your workflow Common pitfalls How should someone get started working with SDCs Does it work with Paragraphs and Blocks? Does it need to be all at once How do you think SDCs will evolve Do you see this leading to more Decoupled front ends What contrib modules make working with SDCs easier Resources My Single Directory Components Workflow Pico CSS Open Props Twig Tweak No Markup SDC Styleguide Radix Theme SDC Block UI Patterns 2.x Astro TAC Guests Brian Perry - brianperry.dev brianperry Hosts Nic Laflin - nLighteneddevelopment.com nicxvan John Picozzi - epam.com johnpicozzi Scott Weston - scott-weston MOTW Correspondent Jacob Rockowitz - jrockowitz.com jrockowitz Embedded Content Brief description: The Embedded Content module allows site builders to select, create, and update content embedded within HTML inside CKEditor. For developers, the EmbeddedContent plugin is like a Block plugin without context. There is a demo on YouTube https://www.youtube.com/watch?v=GxOn-P3Q5Gg There is support embedding of single directory component in progress. Conceptually, this is already possible, the same way one would render a single directory component in Block plugin. Brief history The concept and code started as the CKEditor5 Embedded Content module, created in August 2022. In October 2023, CKEditor5 Embedded Content was renamed to Embedded Content. Versions available: 2.0.3 - January 22nd, 2025 Works with Drupal: ^9 ^10 ^11 Maintainership Actively maintained? yes Security coverage? Yes Test coverage? Yes Documentation? Video and an example module Number of open issues: All issues: 6 open, 17 total Bug report: 6 open, 15 total Usage stats: 509 sites report using this module 1,263 sites report using this module (using old version) Maintainer(s): Teun van Veggel (nuez) https://www.drupal.org/u/nuez Module features and usage Insert themed content in Ckeditor5 using Drupal plugins without having to write rich HTML and CSS Render these results directly in the CKEditor Create 'inline' embedded content that sits inline with the text, like footnotes. Provides Embedded Content plugin CKeditor 5 plugin. Ecosystem Embedded Content: Examples for examples of how to build your own plugins. Embedded Content: Entity for embedding content entities Embedded Content: SDC for single directory components (under development) Potential Challenges Example of the embedded content tag.   Translations via TMS (data is serialized via an attribute)

The PowerShell Podcast
Exploring PnP PowerShell Updates with MVP Gautam Sheth

The PowerShell Podcast

Play Episode Listen Later Jan 6, 2025 38:08


In this episode of the PowerShell Podcast, we're joined by Gautam Sheth, Microsoft MVP and M365 developer extraordinaire, to explore the latest improvements to the PnP PowerShell module and how to get started with it. Gautam shares his unique perspective on automating SharePoint, working with Microsoft 365, and leveraging Microsoft Graph through PowerShell. We discuss practical use cases, best practices, and the significance of PnP PowerShell for modern IT and development workflows. From SharePoint tips to automation strategies, this episode is packed with insights for PowerShell enthusiasts and M365 developers alike. Whether you're just starting or looking for advanced techniques, Gautam provides actionable advice and plenty of inspiration! Guest Bio and links:  Developer at Staffbase and Microsoft 365 Dev MVP. Maintainer of PnP .NET libraries and PnP PowerShell, with a focus on M365 development and emerging Copilot technologies. Passionate about all things development, from frontend and backend to infrastructure and DevOps. https://github.com/pnp/powershell https://www.youtube.com/watch?v=Grr0FlC8SQA&ab_channel=ZeeMusicCompany https://bsky.app/profile/gautamdsheth.bsky.social https://www.linkedin.com/in/gautamdsheth/ PowerShell Podcast Home page: https://www.pdq.com/resources/the-powershell-podcast/ The PowerShell Podcast on YouTube: https://youtu.be/cuq1UL5h-aw  

Sustain
Episode 258: Devin Stein on using AI to maintain OSS with Dosu

Sustain

Play Episode Listen Later Nov 29, 2024 37:53


Guest Devin Stein Panelist Richard Littauer Show Notes In this episode of Sustain, host Richard Littauer talks with Devin Stein, CEO and Founder of Dosu. Today, they discuss the challenges of sustaining open source software, the role of AI and LLMs (Large Language Model) in automating support and maintenance, and the ethical considerations surrounding AI usage. Devin explains Dosu's approach to creating a living knowledge base to assist engineering teams and open source maintainers. Also, the conversation dives into how Dosu interacts with users, maintains quality control, and addresses the environmental impact of AI. Hit download now to hear more! [00:01:43] Devin discusses Dosu's purpose which helps engineering teams' software by structuring engineering knowledge into a knowledge base, and the tool supports open source by addressing common questions, triaging issues, and identifying project ownership. [00:02:46] We hear about how Dosu uses LLMs to create a “living knowledge base” that supports open source workflows, such as issue resolution and knowledge sharing. [00:04:48] Devin explains that Dosu is focused on automating support tasks, not generating code directly, and he fills us in the user base and funding. [00:06:17] Devin tells us that revenue comes from platform teams and open core companies using Dosu internally and through a per-seat pricing model. [00:08:03] We learn how Dosu aims to reduce maintainer burnout by handling repetitive inquires, allowing maintainers to focus on unique issues. [00:10:38] There's a discussion on users' positive reception to fast responses via Dosu and how Dosu aims to assist, not replace maintainers, providing first-pass answers or guidance. [00:12:00] Richard expresses a “net positive” sentiment but admits to initial scepticism about GitHub Actions and automation in open source. Devin shares a similar story of entering open source for community interaction, initially contributing through GitHub, and receiving positive feedback. [00:14:49] Richard inquires about managing customer expectations for accuracy and Devin acknowledges the challenge and explains that Dosu is designed to adapt by learning from past issues and solutions, and how human-in-the-loop workflows help maintainers refine Dosu's responses. [00:18:19] A question on ethical and legal use of LLMs is brought up, as Devin hopes for more transparency and alignment on LLM licensing and legal frameworks in the future. [00:21:14] Devin explains that Dosu's knowledge base will soon be accessible, providing transparency for users and maintainers about its data sources. [00:24:49] Richard questions about how AI companies are ensuring their models don't reinforce these biases and asks about measures in place to improve AI responses. Devin emphasizes their approach to LLMs, which focuses on treating the AI as a tool rather than imitating human behavior. [00:26:55] The topic of addressing human elements and consistency is brought up and Devin explains that Dosu's design keeps responses consistent and supportive, and maintainers and users can provide feedback and adjust responses to align with community needs. [00:31:23] Devin talks about Dosu's strategy focusing on helping become contributors without taking over human roles in open source, and maintainers still have the primary role in guiding substantial project changes or complex contributions. [00:33:34] Devin acknowledges the environmental concerns around AI usage and hopes for more sustainable practices and optimizations in the future. [00:34:30] Find out where you can follow Devin and Dosu online. Spotlight [00:34:59] Richard's spotlight is Avatar: The Last Airbender. [00:35:25] Devin's spotlight is sqlc. Links SustainOSS (https://sustainoss.org/) podcast@sustainoss.org (mailto:podcast@sustainoss.org) richard@sustainoss.org (mailto:richard@sustainoss.org) SustainOSS Discourse (https://discourse.sustainoss.org/) SustainOSS Mastodon (https://mastodon.social/tags/sustainoss) Open Collective-SustainOSS (Contribute) (https://opencollective.com/sustainoss) Richard Littauer Socials (https://www.burntfen.com/2023-05-30/socials) Devin Stein LinkedIn (https://www.linkedin.com/in/devstein/) Devin Stein X (https://x.com/devstein64) Devin Stein GitHub (https://github.com/devstein) Dosu (https://dosu.dev/) SOPS (https://github.com/getsops/sops) Sustain Podcast-Episode 61: Melissa Logan on Marketing Open Source Effectively and Sustainably (https://podcast.sustainoss.org/guests/melissa) Maintainer.io (https://maintainer.io/) OSS Maintenance as a Service: Helping maintainers maintain their code by Richard Littauer (https://medium.com/@richlitt/oss-maintenance-as-a-service-helping-maintainers-maintain-their-code-f9717e4990ad) Open source contributor agent architecture repo-Oscar (https://go.googlesource.com/oscar) Avatar: The Last Airbender (https://en.wikipedia.org/wiki/Avatar:_The_Last_Airbender) sqlc: A SQL Compiler (https://github.com/sqlc-dev/sqlc) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guest: Devin Stein.

The Big Show Hosted By Brad Hanewich
#308 : Sale Day Podcast : 911 Cattle Company Of Northeast Colorado Selling Mafia Max Maintainer Females Tonight On SC

The Big Show Hosted By Brad Hanewich

Play Episode Listen Later Nov 3, 2024 13:20


Guests: Brandon Kroskob & Taylor LopezSale Link:https://www.sconlinesales.com/Bids/AuctionsListing/39330

Sustain
Episode 252: Nolan Lawson of PouchDB on what it feels like to be a maintainer

Sustain

Play Episode Listen Later Oct 18, 2024 36:33


Guest Nolan Lawson Panelist Richard Littauer | Eric Berry | Justin Dorfman Show Notes In this episode of Sustain, Richard, Justin, and Eric revisit an unreleased interview with Nolan Lawson from 2020. They discuss Nolan's experience as a former maintainer of PouchDB, the emotional labor of being an open source maintainer, and the challenges that led him to step away from such high-profile projects. Nolan also shares his thoughts on the impact of reputation-driven development, open source community dynamics, and his journey towards a healthier relationship with open source. The conversation delves into the candid realities of burnout and the personal sacrifices often made by unpaid open source contributors. Nolan highlights his transition to more sustainable open source practices and his new interests including his work on a Mastodon client called Pinafore. Download now to hear more! [00:01:43] Nolan explains his background with PouchDB and shares his fascination with databases and browser technologies. [00:02:58] Richard shares his personal connection to PouchDB, mentioning how he discovered Nolan through his work on the project. [00:03:26] Nolan talks about his blog post form 2017 titled, “What it feels like to be an open source maintainer,” which reflected on the emotional toll and burnout he experienced for maintaining PouchDB. [00:05:33] Justin reflects on the impact of Nolan's blog post, describing it as a “shot heard around the world” in the open source community. [00:06:48] Eric asks why Nolan and other maintainers stay involved in open source despite the challenges. Nolan explains that reputational benefits and personal interest in the technology were initial motivators for staying involved. [00:10:27] Eric asks Nolan how he realized it was time to step away from maintaining PouchDB. Nolan shares that personal life changes helped him reassess his involvement in open source and reflects on advice he received from other maintainers. [00:14:36] Richard emphasizes the personal and emotional investment many maintainers have in their projects and Nolan acknowledges the privilege of being able to work on open source, but also the challenges it poses for maintainers who feel they cannot leave. [00:21:13] Nolan shares stepping away from PouchDB has improved his mental health and personal relationships and he maintains smaller open source projects. [00:24:00] Nolan explains the importance of being personally invested in a project and realizing when it's time to move on and Justin reflects on his own experience of stepping away from maintaining a project after years of involvement. [00:26:00] Eric asks if funding could have made a difference for Nolan's involvement in open source, and Nolan shares that he avoided funding, preferring to keep his work as a “labor of love.” [00:26:52] What is Nolan currently doing? He talks about maintaining a Mastodon client and focusing on personal projects that bring him joy. [00:30:00] Richard discusses the importance of balancing open source work with personal life and the need for a sustainable approach to maintaining projects. [00:30:46] Eric highlights the vulnerability and self-awareness Nolan has shown in discussing his open source journey, thanking him for sharing his experiences. [00:33:13] Find out where you can follow Nolan on the internet. Spotlight [00:33:41] Justin's spotlight is Metabase. [00:34:16] Eric's spotlight is Parametric. [00:35:08] Richard's spotlight is IPFS. [00:35:22] Nolan's spotlight is fake-indexeddb. Links SustainOSS (https://sustainoss.org/) podcast@sustainoss.org (mailto:podcast@sustainoss.org) richard@sustainoss.org (mailto:richard@sustainoss.org) SustainOSS Discourse (https://discourse.sustainoss.org/) SustainOSS Mastodon (https://mastodon.social/tags/sustainoss) Open Collective-SustainOSS (Contribute) (https://opencollective.com/sustainoss) Richard Littauer Socials (https://www.burntfen.com/2023-05-30/socials) Justin Dorfman X (https://twitter.com/jdorfman?ref_src=twsrc%5Egoogle%7Ctwcamp%5Eserp%7Ctwgr%5Eauthor) Eric Berry X (https://x.com/coderberry?lang=en) Nolan Lawson Blog (https://nolanlawson.com/) Nolan Lawson Mastodon (https://toot.cafe/@nolan) “What it feels like to be an open source maintainer” (Blog post by Nolan) (https://nolanlawson.com/2017/03/05/what-it-feels-like-to-be-an-open-source-maintainer/) PouchDB (https://pouchdb.com/) Pinafore (https://pinafore.social/) Salesforce (https://www.salesforce.com/) Working in Public: The Making and Maintenance of Open Source Software by Nadia Eghbal (https://press.stripe.com/working-in-public) Metabase (https://www.metabase.com/) Parametric (https://github.com/ismasan/parametric) IPFS (https://www.ipfs.com/) fake-indexeddb (GitHub) (https://github.com/dumbmatter/fakeIndexedDB) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guest: Nolan Lawson.

Your Unapologetic Career Podcast
170 Maintainers- 5 Steps Ahead of the Chaos (Career Dynamics Series Part 4)

Your Unapologetic Career Podcast

Play Episode Listen Later Oct 15, 2024 34:11


You can text us here with any comments, questions, or thoughts!Welcome back to the show! Today, we are exploring the third career dynamic in our ongoing series: The MAINTAINERS.  Often overlooked, maintainers are the unsung heroes who hold up the ceiling, keeping structures strong and allowing others to focus on their roles. Maintainers also excel at off-boarding outdated ideas and people, absorbing vital information from routine meetings, and enforcing new work culture standards. Tune in as Kemi does a deep dive of how maintainers ensure stability, manage change, and keep structures strong through the lens of self-leadership roles, breaking down the Worker Bee, Scientist, and CEO. If you identify as a MAINTAINER, we'd love to hear from you! Text us with your thoughts and questions. MENTIONED: Episode 169: Travelers (Career Dynamics Part 3) Episode 168: Builders Builders Builders (Career Dynamics Part 2) Episode166: Introducing the Career Dynamics Series - A Deeper Dive Episode 143: 4 Career Dynamics: Builders, Travelers, Maintainers, Adapters  If you'd like to learn more foundational career navigation concepts for women of color in academic medicine and public health, sign up for our KD Coaching Foundations Series: www.kemidoll.com/foundations.   REMINDER: Your Unapologetic Career Podcast now releases episode every other week! Can't wait that long? Be sure you are signed up for our newsletter (above) where there are NEW issues every month! 

The Ordinal Show
Interview w/ Raph, Lead Maintainer of Ordinals & Runes Protocol

The Ordinal Show

Play Episode Listen Later Oct 11, 2024 52:03


In this conversation, Raph, the core contributor to the Ordinals and Runes protocol, discusses the development and impact of these innovations on the Bitcoin ecosystem. Raph shares his journey from a junior developer to becoming a lead maintainer, emphasizing the growth and success of the protocol, especially with their unexpected adoption and influence. Raph highlights recent updates like the release of the latest version of Ord, which aims to enhance developer experience and indexing performance. He touches on intriguing features such as burning mechanism to ensure collection immutability, and possible applications for off-chain activities like gaming and voting. The Ordinal Show is a series of regular Twitter Spaces featuring conversations with amazing people from the Bitcoin Ordinals community. Every Mon at 10:30am ET & Wed at 6:30pm ET. Hosted by Trevor.btc, Jan and Leonidas. Follow us on Twitter: https://twitter.com/TheOrdinalShow Subscribe to our Substack: https://theordinalshow.substack.com

The Virtual Coffee Podcast
Open Source Maintainer Challenges and Benefits

The Virtual Coffee Podcast

Play Episode Listen Later Oct 8, 2024 24:42 Transcription Available


In this episode of the Virtual Coffee Podcast, hosts Bekah and Dan delve into the benefits and challenges of being a maintainer in open source projects, particularly during Hacktoberfest. They discuss the excitement and responsibility of maintaining projects, the joy of welcoming new contributors, and the importance of community building. The hosts also highlight the preparation involved in enhancing project onboarding and documentation, and the growth opportunities for maintainers. The episode also emphasizes strategies to attract contributors and the impact of efficiently managing open source projects.Links:https://opensauced.pizza/learnBecoming an Open Source MaintainerSponsor Virtual Coffee! Your support is incredibly valuable to us. Direct financial support will help us to continue serving the Virtual Coffee community. Please visit our sponsorship page on GitHub for more information - you can even sponsor an episode of the podcast! Virtual Coffee: Virtual Coffee: virtualcoffee.io Podcast Contact: podcast@virtualcoffee.io Bekah: dev.to/bekahhw, Twitter: https://twitter.com/bekahhw, Instagram: bekahhw Dan: dtott.com, Twitter: @danieltott

Open Source Security Podcast
Episode 447 - The Tidelift 2024 open source maintainer report

Open Source Security Podcast

Play Episode Listen Later Sep 23, 2024 38:52


Josh and Kurt talk about the 2024 Tidelift maintainer report. The report is pretty big and covers a ton of ground. We focus in a few of the statistics that should worry anyone who uses open source. We've known for a while developers are struggling, and the numbers back that up. This one feels like the old "we've tried nothing and we're all out of ideas". Show Notes THE 2024 TIDELIFT STATE OF THE OPEN SOURCE MAINTAINER REPORT Canadian passport Changelog Interviews #433 Pandas CVE

Talking Drupal
Talking Drupal #467 - Config Actions System

Talking Drupal

Play Episode Listen Later Sep 16, 2024 78:29


Today we are talking about The Config Actions System, What it does, and how it helps with Drupal Recipes with guests Alex Pott and Adam Globus-Hoenich. We'll also cover the Events recipe as our module of the week. For show notes visit: www.talkingDrupal.com/467 Topics Explain Config Actions Is this related to the Actions UI How are config actions used in Drupal How will the average user interact with Config Actions What does non-desctructive mean Where did the Config Action system come from Future of the Config Action system How can people help out How does the Config Action system help with Drupal CMS Resources Event platform Config action list Guests Alex Pott - alexpott Adam Globus-Hoenich - phenaproxima Hosts Nic Laflin - nLighteneddevelopment.com nicxvan John Picozzi - epam.com johnpicozzi Nate Dentzau - dentzau.com nathandentzau MOTW Correspondent Martin Anderson-Clutz - mandclu.com mandclu Brief description: Have you ever wanted to set up and configure a robust events system in your Drupal website, in just a few seconds? There's a recipe for that. Module name/project name: Events Brief history How old: originally created in Mar 2013 as a distribution, but reborn as a recipe in July 2024 Versions available: 1.0.0-alpha3, compatible with Drupal 10.3 and 11 Maintainership Actively maintained Security coverage? - no stable release Documentation in the works Number of open issues: 1 open issue, which is a bug Usage stats: not tracked for recipes Maintainer(s): mandclu Module features and usage Listeners probably won't be surprised to hear that Smart Date is at the heart of what you'll get when you apply the Events recipe You will have an Event content type, and a view to list upcoming and past events The recipe will also set up add-to-calendar links on your event page, making it easy for your site visitors to be reminded of when your event will take place There are companion recipes to add a calendar view, to be able to associate locations (with maps), and to add event registration A modified version of the Events recipe has already been integrated into Drupal CMS, so it will be even easier to apply for a site based on that Internally it makes use of the createIfNotExists and setComponents config actions, which is why I thought it would be relevant to today's discussion

Programming By Stealth
PBS Tidbit 8 – Interview with jq Maintainer Mattias Wadman

Programming By Stealth

Play Episode Listen Later Aug 6, 2024 65:19


In this Tidbit version of Programming By Stealth, Bart Busschots interviews Mattias Wadman, one of the maintainers of the jq project. This was great fun as we just finished learning jq in Programming By Stealth. Read an unedited, auto-generated transcript with chapter marks: PBS_2024_08_06 You can find out more about Mattias & the various projects he is working on at the links below: Follow Mattias on Mastodon: @wader@fosstodon.org Mattias' GitHub Profile which hosts some notable jq-related projects: fq for querying binary files with the jq language: github.com/wader/fq A list of presentations about fq — github.com/… The fork of the Go version of jq that powers fq — github.com/… The language definition file for adding jq support to IDEs like VS Code: github.com/wader/jq-lsp jq implemented in jq: github.com/wader/jqjq Some notable jq commits & files mentioned during the interview: The very first commit in Haskel The switch to C jq's main function which is written in jq — https://github.com/… A version of jq implemented in Go: github.com/itchyny/gojq A version of jq implemented in Rust by Michael Färber: github.com/01mf02/jaq Michael's formal specification of the jq language — github.com/… The “Denotational Semantics and a Fast Interpreter for jq” academic paper by Michael

Woice with Warikoo Podcast
You have found a partner

Woice with Warikoo Podcast

Play Episode Listen Later Aug 1, 2024 4:54


 In this episode, we delve into the concept of the IBM mix - Innovator, Builder, Maintainer. Discover how every individual and company possesses a unique balance of these roles and how this balance evolves over time. Learn about the importance of aligning your personal IBM mix with that of your company's to find satisfaction in your work. Tune in every Thursday for new episodes on career, relationships, personal finance, and more. 00:00 Introduction to Woice With Warikoo 00:30 The IBM Mix: Innovator, Builder, Maintainer 00:53 Evolution of the IBM Mix in Companies 01:35 Personal Evolution: Mapping Your IBM Mix 02:30 Aligning Personal and Company IBM Mix 04:38 Conclusion and Call to Action

Critical Thinking - Bug Bounty Podcast
Episode 74: Supply Chain Attack Primer - Popping RCE Without an HTTP Request (feat 0xLupin)

Critical Thinking - Bug Bounty Podcast

Play Episode Listen Later Jun 6, 2024 98:20


Episode 74: In this episode of Critical Thinking - Bug Bounty Podcast Justin sits down with Roni "Lupin" Carta for a deep dive into supply chain attacks and dependency confusion. We explore the supply chain attacks, the ethical considerations surrounding maintainers and hosting packages on public registries, and chat about the vision and uses of his new tool Depi.Follow us on twitter at: @ctbbpodcastWe're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.ioShoutout to YTCracker for the awesome intro music!------ Links ------Follow your hosts Rhynorater & Teknogeek on twitter:https://twitter.com/0xteknogeekhttps://twitter.com/rhynorater------ Ways to Support CTBBPodcast ------Hop on the CTBB Discord at https://ctbb.show/discord!We also do Discord subs at $25, $10, and $5 - premium subscribers get access to private masterclasses, exploits, tools, scripts, un-redacted bug reports, etc.Today's Guest: https://x.com/0xLupinResources:Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companieshttps://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610git-dumphttps://github.com/tomnomnom/dotfiles/blob/master/scripts/git-dumpDepihttps://www.landh.tech/depiWeak links of Supply Chainhttps://arxiv.org/pdf/2112.10165Timestamps:(00:00:00) Introduction(00:07:13) Overveiw of Supply Chain Flow(00:15:14) Getting our Scope(00:23:46) Depi(00:29:12) Types of attacks and finding the 80/20(00:45:06) Maintainer attacks(01:10:40) Regestries, artifactories, and an npm bug(01:31:51) Grafana NPX Confusion