Blender releases their Oscar winning version tool

https://www.blender.org/wp-content/uploads/2025/03/splash.webp
Blender 4.4 的重点是稳定性,并且引入了动作槽(Action Slots)来改进动画工作流程。它还包括各种质量生活升级,例如改进的视频编辑和合成,以及增强的网格拓扑工具。

OpenAI adds MCP support to Agents SDK

https://openai.github.io/openai-agents-python/assets/images/mcp-tracing.jpg
MCP 是一个开放的协议标准,规范向 LLM 提供上下文的方式,类似于 USB-C 端口对 AI 应用程序的标准化。它使得 Agent 可以使用 MCP 服务器,这些服务器为 LLM 提供工具,并且可以缓存以减少延迟。

Debian bookworm live images now reproducible

In a short note to the Reproducible Builds mailing list, Debian developer Roland Clobus announced that live images for Debian 12.10 ("bookworm") are now 100% reproducible. See the reproducible live images and Debian Live todo pages on the Debian wiki for more information on the images.

DJ With Apple Music launches to enable subscribers to mix their own sets

https://www.musicweek.com/cimages/77c3d42812770b442faee3006685fc29.jpeg
DJ with Apple Music,允许订阅者从其100万首歌曲目录中创建和混合节目。该功能与流行的DJ软件和硬件平台集成,实现音乐访问和发现的无缝体验。

A love letter to the CSV format

https://opengraph.githubassets.com/42f5e7d2135f994555a79abffb637d2ab3c729614d611ea9276d1505e7fa5e28/medialab/xan
The author defends CSV as a simple, open, and free data format that can be easily read and edited by humans. Its strengths include being able to stream files row by row, efficiently adding new rows, and allowing flexible parsing across programming languages.

The mysterious flow of fluid in the brain

https://www.quantamagazine.org/wp-content/uploads/2025/03/Glymphatic-Theory-cr.ChanelleNibbelink-Lede.webp
Scientists have long wondered how the brain removes waste, given its protective blood-brain barrier. A recent study suggests that the brain's cerebrospinal fluid may play a key role in this process.

Building a Linux Container Runtime from Scratch

https://cdn.prod.website-files.com/6650e7341072f6452c2cd520/67e1b072d1c82cadb203fc50_Edera%20Styrolite%20(1).png
Edera Protect 的 Styrolite 是一个低级别的容器运行时,具有清洁的 API 用于启动和管理容器。它提供了一个强大的容器化基础,具有最小的开销和更强的安全控制。

Botswana Successfully Launches First Satellite, Botsat-1

http://spaceinafrica.com/wp-content/uploads/2024/12/djibouti-1b-launch.avif
Botswana 的第一颗卫星 BOTSAT-1 于 2025 年 3 月 15 日从 Vandenberg 空军基地发射的 SpaceX 的火箭上升空。该卫星将为 Botswana 的国家发展优先事项提供地球观测数据。

Good-bye core types; Hello Go as we know and love it

https://go.dev/doc/gopher/runningsquare.jpg
Go 1.25 将语言规范中核心类型的概念去除,代之以对泛型操作数的明确规则。这一变化简化了语言规范,并为未来改进开启了大门。

Problems with the heap

User is warning about a potentially hazardous situation involving a newly built playground, likely a metaphor for a newly discovered vulnerability. They're asking people to stop exploiting it to prevent unknown consequences.

Building a Firecracker-Powered Course Platform to Learn Docker and Kubernetes

This is a long overdue post on iximiuz Labs' internal kitchen. It'll cover why I decided to build my own learning-by-doing platform for DevOps, SRE, and Platform engineers, how I designed it, what technology stack chose, and how various components of the platform were implemented. It'll also touch on some of the trade-offs that I had to make along the way and highlight the most ...

MCP server for Ghidra

https://private-user-images.githubusercontent.com/123765654/426415974-4986d702-be3f-4697-acce-aea55cd79ad3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3NDMwMTIyMDksIm5iZiI6MTc0MzAxMTkwOSwicGF0aCI6Ii8xMjM3NjU2NTQvNDI2NDE1OTc0LTQ5ODZkNzAyLWJlM2YtNDY5Ny1hY2NlLWFlYTU1Y2Q3OWFkMy5wbmc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjUwMzI2JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI1MDMyNlQxNzU4MjlaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT1iMTBjMDk5MTJmZDdiZTg5YTgxNDA0ZmFkNDZmYjU4YmIyNWUyYWM1YTMxNjk5Zjk2NTQ2OGU1YjcwMjBmMzFjJlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCJ9.gumySrozz5E0Yf783wKvbG6YBDJ3Q-KZAVhIeKpEGtA
GhidraMCP最新版本并设置GhidraMCP的步骤:

Writing a tiny undo/redo stack in JavaScript

The user created an undo stack implementation in JavaScript that uses two stacks, undoStack and redoStack, to manage undoable and redoable actions without indexing errors. The implementation uses structuredClone to create deep clones of arguments and is robust, small, and efficient, making it suitable for use in drawing applications.

Gemma3 Function Calling

https://ai.google.dev/static/site-assets/images/share.png
To use function calling with Gemma models, construct a prompt that includes a setup section with instructions and a definition section with function names, parameters, and output. The prompt should follow a specific order and structure, with clear and brief instructions to ensure the model understands the expected behavior.

Oracle customers confirm data stolen in alleged cloud breach is valid

https://www.bleepstatic.com/content/hl-images/2025/03/21/Oracle.jpg
Oracle 拒绝了 6,000,000 个用户账户被泄露的说法,但多家公司确认泄露的数据是有效的。威胁行为者声称使用 CVE-2021-35587 漏洞入侵了 Oracle 云服务器。

Europen Union creates Fedora-based Linux distribution for the public sector

https://www.linuxjournal.com/sites/default/files/styles/360_250/public/nodeimage/story/Screenshot%202025-03-25%20at%205.36.29%20PM.png?itok=sQTVsP7L
A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, ...

War story: the hardest bug I ever debugged

https://substackcdn.com/image/fetch/w_520,h_272,c_fill,f_auto,q_auto:good,fl_progressive:steep,g_auto/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2Fa655bf2a-96bd-4cd3-8d6c-688ee74d9051_710x403.jpeg
When I was on the Google Docs team, we did a weekly bug triage where we’d look for new issues and randomly assign them to teammates to investigate. One week, we had a new top error by a wide margin. It was a fatal error. This means that it prevented the user from editing without reloading. It didn’t correspond to a Google Docs release. The stack trace added very little information. There ...

Writing Programs with Ncurses

by Eric S. Raymond and Zeyd M. Ben-Halim updates since release 1.9.9e by Thomas Dickey This document is an introduction to programming with curses. It is not an exhaustive reference for the curses Application Programming Interface (API); that role is filled by the curses manual pages. Rather, it is intended to help C programmers ease into using the package. This document is aimed at C ...

NotaGen: Symbolic Music Generation

https://electricalexis.github.io/notagen-demo/static/images/model/data-representation.png
NotaGen已在160万首音乐中进行预训练,并在8948首古典音乐中进行微调。 CLaMP-DPO通过直接偏好优化来增强NotaGen的音乐性和可控性。

Malware found on NPM infecting local package with reverse shell

https://www.reversinglabs.com/hubfs/Imported_Blog_Media/authors/lucija-valentic-blog-author.webp
npm包ethers-provider2和ethers-providerz被发现,包含了复杂的恶意软件,能够将反向shell注入到合法包中。这些包被RL的Spectra平台轻松检测到,但移除这些包并不能完全移除恶意功能。

'Naive' science fan faces jail for plutonium import

https://s.yimg.com/ny/api/res/1.2/pFRMoZwwZLL8e4U1P0hI8A--/YXBwaWQ9aGlnaGxhbmRlcjt3PTEyMDA7aD02NzU-/https://media.zenfs.com/en/aap.com.au/8fd590027ec4b40503f1a8b63c6b0ded
24岁的男子,埃曼努尔·利登(Emmanuel Lidden),因违反核不扩散法规,运送钚到他的父母家中,可能面临10年的监禁。利登的律师称他是“无辜的收藏家”,在事件发生后失去了工作。

Has the decline of knowledge work begun?

Please enable JS and disable any ad blocker

Weave (YC W25) is hiring a founding product engineer

https://bookface-images.s3.amazonaws.com/small_logos/983cb16d6906fc1a691557bf84b21313870ce3d0.png
Weave是一家资金充足的创业公司,正在招聘一名创始产品工程师来为工程团队开发软件。该职位要求具有强大、务实和同情心的工程师,具有优秀的沟通技巧。该角色涉及设计、规划和实施新功能、与客户合作以及推动增长机会。

Sharding Pgvector

https://pgdog.dev/assets/images/wikipedia_en.png
PgDog是一个开源项目,它将Postgres分片用于向量数据库,如pgvector,允许在语义搜索中实现快速和好的召回率。它使用IVFFlat将向量空间分成各个部分,围绕中心点分组,并且可以在每个分片中使用IVFFlat或HNSW索引。

Collapse OS

Collapse OS是一款基于Forth的操作系统,旨在通过文明崩溃时保留编程能力。它旨在自给自足,并且可以使用最少的工具从废弃零件中构建。

Heap-overflowing Llama.cpp to RCE

If you are an exploitation enthusiast, this write-up will be a perfect source of entertainment. I spent ~30h on exploiting the heap-overflow to remote-code execution. At the same time, I had already spent around 2 weeks prior researching/understanding Llama.cpp source regarding its very own RPC & Memory implementations. Since Llama.cpp has such a special heap-management system, special ...

How to Delete Your 23andMe Data

https://www.eff.org/files/2025/03/26/picture1.png
23andMe申请破产,用户的基因数据面临被出售的风险。用户应下载并删除自己的数据以防止潜在滥用。

The long-awaited Friend Compound laws in California

https://substackcdn.com/image/fetch/w_520,h_272,c_fill,f_auto,q_auto:good,fl_progressive:steep,g_auto/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F7865f0e7-d62b-4a76-a455-6eeece1c9d51_1201x1021.png
SB 684和2025年的“清理法案”,使得在多户家庭用地上建造4-10栋房屋和ADU变得更容易。这使个人能够在小地块上拥有起步房屋,并获得个人贷款,简化共有权和融资。

A glitch in an online survey replaced the word 'yes' with 'forks'

https://www.pewresearch.org/wp-content/uploads/sites/20/2025/03/d_25.03.21_forks_feature.png?w=640
Pew Research Center 发现了他们 2024 年在线调查中的一个技术故障,其中 "是" 被翻译为 "叉子",这是由于浏览器翻译问题引起的。这个故障很少见,并且没有影响调查数据,这一点通过与之前调查中的相似问题的回应进行比较得到了确认。

Matrix Profiles

https://aneksteind.github.io/images/mp-series.jpg
Lately I’ve been thinking about time series analysis to aid in Reflect’s insights features. Towards this end, I’ve had a Hacker News thread about anomaly detection bookmarked in Later. I finally got to looking at it and there was a comment that mentioned the article left out matrix profiles, which I had never heard of, so I decided to look into them. A matrix profile is a vector that ...