mastodon-e2ee-specification
gitlab
mastodon-e2ee-specification | gitlab | |
---|---|---|
11 | 448 | |
195 | - | |
- | - | |
10.0 | - | |
over 1 year ago | - | |
GNU Affero General Public License v3.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
mastodon-e2ee-specification
-
The Apes Shitstorm Shelter (ASS) - the censorship state of reddit and subreddits - Part 2
No end to end encryption in mastodon: https://github.com/soatok/mastodon-e2ee-specification
- Mozilla’s setting up shop on Mastodon and trying to reinvent content moderation
- Discussion Thread
- Is that all you need?
-
Towards End-to-End Encryption for Direct Messages in the Fediverse
What Moxie wrote was about his decisions with Signal. It's not that relevant to this post for distinct two reasons:
1. One of the stated anti-tenets of what I'm proposing is competing with Signal. https://github.com/soatok/mastodon-e2ee-specification#anti-t...
2. Cryptography has matured greatly since Moxie wrote that post.
I feel confident about rolling out a v1 E2EE protocol for the Fediverse in 2023, and then a v2 in 2024 or later.
Migration is a two-putt, but it's tractable. I've worked on similar message format migrations before.
1. Roll out read-only support for v2.
2. Enable writing. Now people can start using v2.
3. Later, once the new version is ubiquitous for the scope of your concern, disable v1.
It's not as fast as if you own the whole stack (like Signal does).
-
AMA with Eugen Rochko, Founder and lead developer of Mastodon, a decentralized, open-source social media platform based on open web protocols. Ask your questions here!
This is a very hard problem to solve. I know it's being worked on by some smart people though, see https://soatok.blog/2022/11/22/towards-end-to-end-encryption-for-direct-messages-in-the-fediverse/
-
End-to-end encrypted messages need more than libsignal
Related: https://soatok.blog/2022/11/22/towards-end-to-end-encryption...
-
tankies mad about sites that actually have ToS
The good news is that because Mastodon is open source, and development is done in the open, anyone with the needed skills and interest could implement it right, and there is a project spearheaded by cryptography experts to do just that. https://github.com/soatok/mastodon-e2ee-specification
gitlab
-
Gitlab Duo
Since the relevant code appears to be in the "ee" directory <https://gitlab.com/gitlab-org/gitlab/-/blob/v16.11.0-ee/ee/l...> and is not present in the foss repo, I'm guessing the answer is no, at least for now. They do have a history of "releasing" features from EE back to CE but my suspicion is not for LLM stuff
- Code Search Is Hard
- XZ Backdoor Investigation Request to Gitlab Team
-
Client side Git hooks 101
(Side note: Issues are usually hash-prefixed like #1234 both on GitLab and GitHub. However, commit messages must not begin with a hash, they would be considered a comment and ignored. Therefore, GitHub has introduced the alternative prefix GH- and I've contributed a similar prefix GL- to GitLab a while ago.)
- Assign Issue to an AI Developer
-
BuildKit in depth: Docker's build engine explained
and its "oh, you want multi-arch, do you?" friend. While prosecuting this <https://gitlab.com/gitlab-org/gitlab/-/issues/339567> I learned that https://hub.docker.com/layers/multiarch/qemu-user-static/7.2... actually mutates the binfmt_misc in buildx's context in order to exec the static copy of qemu in it https://github.com/multiarch/qemu-user-static/blob/v7.2.0-1/...
and, that the buildx plugin itself has some qemu magick in it, which got addressed in a minor version bump but I couldn't track down the relevant GitHub issue this second (I've flushed it from my mind, only recalling that there were a lot of actors in that tire fire)
-
Gitlab password reset bug leaves more than 5.3K servers up for grabs
This is actually a follow-up refactor, the fix is here: https://gitlab.com/gitlab-org/gitlab/-/commit/abe79e4ec43798...
- ExifTool CVE-2021-22204 – Arbitrary Code Execution
- Critical Gitlab vulnerability exposes 2FA-less users to account takeovers
- Upcoming critical Gitlab security issue
What are some alternatives?
mastodon - A glitchy but lovable microblogging server
Gitea - Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD
GpgFrontend - A free, open-source, robust yet user-friendly, compact and cross-platform tool for OpenPGP encryption. It stands out as an exceptional GUI frontend for the modern GnuPG (gpg).
Harbor - An open source trusted cloud native registry project that stores, signs, and scans content.
mls-architecture - MLS architecture
onedev - Git Server with CI/CD, Kanban, and Packages. Seamless integration. Unparalleled experience.
user_pinger_2 - Bot + accessory services for pinging groups on a subreddit
rich-markdown-editor - The open source React and Prosemirror based markdown editor that powers Outline. Want to try it out? Create an account:
joinmastodon - The official Mastodon project homepage
gitlab-foss
mastodon-block-tools - An attempt to list as many different projects/tools/scripts related to Mastodon & fediverse block management as possible
chatwoot - Open-source live-chat, email support, omni-channel desk. An alternative to Intercom, Zendesk, Salesforce Service Cloud etc. 🔥💬