I wrote my last post on fpdf2 18 months ago. We released 7 more versions of fpdf2 since then!

This article will present some of the major features introduced since v2.7.3 to v2.8.1 of fpdf2: click on the buttons below to reveal the various changes brought …

European Alternatives is a project that collects and analyzes European alternatives to digital services and products, such as cloud services and SaaS products. We regularly receive advice and suggestions from European Alternatives users, so feel free to reach out!

• Web analytics services
• Cloud computing platforms
• Content delivery network (CDN) services
• Email providers
• Virtual private server (VPS) hosters
• Search engines
• Transactional email service
• Domain name registrars
• Time tracking apps
• Navigation apps
• Uptime monitoring services
• File hosting services
• Machine translation services
• Object storage providers
• Microblogging services
• VPN services
• Managed DNS providers
• Professional networking platforms
• Function as a service (FaaS) providers
• Platform as a service (PaaS) providers
• Error tracking services
• Electronic signature software
• Public DNS resolvers
• Payment service providers
• Captcha services
• Spelling and grammar checkers
• Password managers
• Instant messaging apps
• Version control services
• Identity and access management (IAM) services
• Live chat software
• Web browsers
• Video conferencing software
• Document collaboration services
• Calendar services
• Email marketing services
• Font services
• WordPress hosting providers
• Team communication services
• Managed Kubernetes services
• Video hosting services
• Video platforms
• Maps API services
• Tag management systems
• DDoS protection services
• Session recording tools
• ACME SSL certificate providers
• Survey tools
• Marketing automation software
• Project Management Software
• SMS APIs

An open-source guide to help you write better command-line programs, taking traditional UNIX principles and updating them for the modern day.

Gauguin is a Sudoku-like game where you solve grids via calculation and logic.

Open-source version of Puzzle Bobble for android.

Over a period of over two years, an attacker using the name “Jia Tan” worked as a diligent, effective contributor to the xz compression library, eventually being granted commit access and maintainership. Using that access, they installed a very subtle, carefully hidden backdoor into liblzma, a part of xz that also happens to be a dependency of OpenSSH sshd on Debian, Ubuntu, and Fedora, and other systemd-based Linux systems that patched sshd to link libsystemd.
That backdoor watches for the attacker sending hidden commands at the start of an SSH session, giving the attacker the ability to run an arbitrary command on the target system without logging in: unauthenticated, targeted remote code execution.

The attack was publicly disclosed on March 29, 2024 and appears to be the first serious known supply chain attack on widely used open source software. It marks a watershed moment in open source supply chain security, for better or worse.

This post is a detailed timeline that I have constructed of the social engineering aspect of the attack, which appears to date back to late 2021.

A breakdown of what constitutes the software supply chain and how to secure each stage

Software Supply-Chain (SCC) attacks has become so critical that it has been driven by the government. The Biden Administration, in its second year in office, released an executive order on SSC risks. This has created a tailwind that has led to a proliferation of companies aiming to protect the supply chain and enable companies to comply with this legislation.

Bundling software components and dependencies into a deployable format and distributing it for installation on target systems. We discuss Software Bill of Materials (SBOM), code provenance and signatures, and artifact repositories.

tomato is a python script to glitch AVI files
It was designed to operate video frame ordering, substraction and duplication.

AAAAXY is a nonlinear 2D puzzle platformer taking place in impossible spaces.

This is a port of Simon Tatham’s Portable Puzzle Collection, a collection of 40 single-player logic games. It’s free, with no ads, and is playable offline. All games are generated on demand with adjustable size and difficulty, so you’ll never run out of puzzles.

I wrote my latest post on fpdf2 almost a year ago. As we just released a new version, v2.7, this is the time to mention some recent additions to this library! 😊

This article will present some of the major features introduced between v2.5.3 & v2.7.3 of …

Universal pencil puzzle editor capable of drawing many different kinds of pencil puzzles. You can also solve problems in the software.

Following last week animated PDF adventure, I have been reading a series of one page dungeons... And yesterday I had the opportunity to play the best one in my opinion: The Sky-Blind Spire by Michael Prescott.

It has everythng I love on one page: a maze to explore, mysteries to …

Join us in sending a token of appreciation to your favorite open source developers and projects.
Here’s how:

1. Choose a card
2. Log in with GitHub
3. Choose recipient
4. Send your card

permet de modifier de façon subtile et imperceptible une image, de sorte qu'elle ne puisse pas être rattachée à un visage sur une autre photo [...] : il retouche très légèrement les traits principaux du visage afin de tromper la reconnaissance faciale. Le procédé s'appuie sur une base de données contenant des visages de célébrités.

En utilisant des visages de stars ressemblant très peu aux photographies originales, les images s'en trouvent étrangement transformées.
«Les changements apportés à [mes] photos sont visibles à l'œil nu. Sur les images modifiées, j'ai l'air morte, ma fille de 3 ans a du duvet sur le visage et mon mari a l'air d'avoir un œil au beurre noir.»

Githup repo: https://github.com/fawkesrobotics/fawkes

Un outil comme celui-ci est utile pour fournir une version texte d'un fichier média (audio ou vidéo). L'objectif de ce programme est de fournir un outil simple et rapide pour permettre de récupérer un texte et l'utiliser comme version numérique.

Au commencement était le projet de communs numériques "Common Voice" initié par la fondation Mozilla [...] Puis vint le projet du logiciel libre Vosk, à l'initiative d'un collectif de chercheurs (Alpha Cephei) [...] Enfin, vint le projet de transcription de Tykayn, contributeur de l'association "April" [...] Pour finir, vint le projet Scribe, à l'initiative de l'équipe SI des Ceméa qui créa cette interface, simple et fonctionnelle, basique pour proposer aux utilisateur·rices de bénéficier de l'ensemble de ces fonctionnalités sous une forme plus conviviale.

Today I made a small addition to a Javascript library I sometimes use to generate nonograms.

This tool can now build a solvable grid in the form of a valid QR Code that, once decoded, reveals some text:

To find more about it: Nonogram JS demo page.

Note that I've …