1. 经典键盘输入BASIC游戏经重构后可在浏览器中运行 Old type-in BASIC games refactored and playable in-browser (basic-code.bearblog.dev)
3. Linux内核SMB零日漏洞CVE-2025-37899通过ChatGPT发现 Linux Kernel SMB 0-Day Vulnerability CVE-2025-37899 Uncovered Using ChatGPT o3 (www.upwind.io)
6. 山寨软件何在?为何人工智能编程的宣称难以自圆其说 Where''s the Shovelware? Why AI Coding Claims Don''t Add Up (substack.com)
8. Git exclude,一个你可能不知道的实用功能 Git exclude, a handy feature you might not know about (marijkeluttekes.dev)
10. Slint 1.13 发布,新增 Rust 和 C 的实时预览功能 Slint 1.13 Released with Live-Preview for Rust and C (slint.dev)
13. BASIC-M6502:适用于6502微处理器的Microsoft BASIC - 版本1.1 BASIC-M6502: Microsoft BASIC for 6502 Microprocessor - Version 1.1 (github.com)
17. Cookie混乱:如何绕过__Host和__Secure Cookie前缀 Cookie Chaos: How to bypass __Host and __Secure cookie prefixes (portswigger.net)
19. Mach-O的解剖:结构、代码签名与PAC The Anatomy of a Mach-O: Structure, Code Signing, and PAC (oliviagallucci.com)
25. 历经十六载艰辛历程——"耗费时间、金钱,屡屡走错方向,屡屡遭遇挫折"——终于成功复刻先锋LaserActive激光打印机。 The 16 year odyssey of "time, money, wrong turns and frustration" it took to finally emulate the Pioneer LaserActive (www.readonlymemo.com)
26. 人工智能领域的老概念“世界模型”卷土重来 ‘World Models,’ an Old Idea in AI, Mount a Comeback (www.quantamagazine.org)
29. WheelNext 与轮式变体:更新公告及反馈征集 WheelNext & Wheel Variants: An update, and a request for feedback (discuss.python.org)
34. 内核漏洞利用演练及针对Linux内核CVE-2024-50264漏洞的新型利用方法 Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel (a13xp0p0v.github.io)
36. matrix.org 重大故障 - 数据库事件(2025年9月2日) matrix.org Major Outage - Database Incident (September 2nd 2025) (status.matrix.org)
38. 利用人工智能编码助手发现漏洞:优势、劣势及严重一致性问题 Using AI Coding Agents for finding vulnerabilities: strengths, weaknesses, and serious consistency problems (semgrep.dev)
40. Python的异步编程已问世十年——为何它仍不普及? Python has had async for 10 years -- why isn''t it more popular? (tonybaloney.github.io)
41. Ada入门:基于Rosetta的项目式探索 Introduction to Ada: a project-based exploration with rosettas (blog.adacore.com)
43. ClonOS:基于FreeBSD的虚拟主机平台及设备发行版 ClonOS: FreeBSD based distro for virtual hosting platform and appliances (clonos.convectix.com)
54. 饱和与历史的胜利:2016年以来科技领袖的大部分行为如何能用智能手机市场饱和来解释 Saturation and the Triumph of History: How most of the behavior of Tech Leaders since 2016 can be explained by smartphone market saturation (notes.hella.cheap)
56. 在Linux系统上使用LLD链接器时,1.90.0稳定版可实现更快的链接时间 Faster linking times with 1.90.0 stable on Linux using the LLD linker (blog.rust-lang.org)
59. 自动更新 Spotify 状态... 无需 JavaScript Automatic updating Spotify status... without JavaScript (lina.sh)
68. zfsbackrest:为ZFS文件系统提供pgbackrest风格的加密备份 zfsbackrest: pgbackrest style encrypted backups for ZFS filesystems (github.com)
86. 我们需要认真思考如何处理C模块 We need to seriously think about what to do with C modules (nibblestew.blogspot.com)
87. 通过CSS注入实现的Windows版Google Web Designer客户端远程代码执行漏洞 Client-side RCE via CSS Injection in Google Web Designer for Windows (balintmagyar.com)
97. "本电报必须经过严格的措辞调整后方可传达给任何人。"为什么? "This telegram must be closely paraphrased before being communicated to anyone." Why? (history.stackexchange.com)
101. 为基层政治组织构建无代码软件三年 Three years of building no-code software for grassroots political organizations (write.as)
113. Condor的Cuzco RISC-V内核亮相Hot Chips 2025 Condor’s Cuzco RISC-V Core at Hot Chips 2025 (old.chipsandcheese.com)
116. gershwin-desktop:专为GhostBSD打造的类OS X桌面环境,作为社区版本独家提供 gershwin-desktop: OS X-like Desktop Environment available exclusively in GhostBSD as a community flavor (github.com)
122. A16-熔断器旁路:生产环境中启用调试逻辑(Apple Silicon) A16-FuseBypass: Debug Logic Enabled on Production Apple Silicon (github.com)
142. 致所有与我发生过争执的人的公开信——安德鲁·凯利 An Open Letter to Everyone I''ve Butted Heads With - Andrew Kelley (andrewkelley.me)
147. 解构被攻破的密钥:或许是数十年来最牵强的研究 Unpacking Passkeys Pwned: Possibly the most specious research in decades (arstechnica.com)
152. 您不再需要JavaScript:现代CSS如此强大的核心优势解析 You no longer need JavaScript: an overview of what makes modern CSS so awesome (lyra.horse)
156. 在基于代理的系统中模拟财富分配 Simulating wealth distribution in an agent-based system (notebooks.manganiello.tech)
162. 优化可维护性——Gleam在Strand的正式部署 Optimising for maintainability - Gleam in production at Strand (gleam.run)
165. superfly:一款面向微型计算机的功能性低级语言编译器 superfly: A compiler for a functional low-level language, targeting tiny computers (codeberg.org)
168. Anthropic的自动点击AI Chrome扩展引发浏览器劫持担忧 Anthropic’s auto-clicking AI Chrome extension raises browser-hijacking concerns (arstechnica.com)
170. 鲁珀特的房产:在多面体上切出一个足够大的孔,让一个完全相同的副本能够滑入其中。 Rupert’s property: cut a hole in a polyhedron big enough for an identical copy to slide through (johncarlosbaez.wordpress.com)
171. 组借用:零成本内存安全,限制更少 Group Borrowing: Zero-Cost Memory Safety with Fewer Restrictions (verdagon.dev)
176. 桌面隐喻必须重获新生。它正遭受攻击!(2020) The desktop metaphor must be restored. It’s under attack! (2020) (medium.com)
180. 关于隐藏的Performa 550恢复分区的更新 An update about the hidden Performa 550 recovery partition (www.downtowndougbrown.com)
182. 曾是TLM,因我收到太多请求而被迫降级为EM Hacker News Former TLM that was involuntarily reclassified as an EM because I had too many r... Hacker News (news.ycombinator.com)
186. doxx - 终端中用于查看 Microsoft Word .docx 文件的查看器 doxx - A viewer for Microsoft Word .docx files in the terminal (terminaltrove.com)
194. 恶意版本的Nx及其部分支持插件已被发布 Malicious versions of Nx and some supporting plugins were published (github.com)
196. Nx系统遭入侵:恶意软件利用Claude代码CLI探索文件系统 Nx compromised: malware uses Claude code CLI to explore the filesystem (semgrep.dev)
198. 双向问责制:多数组织回避的领导力转型 Bi-Directional Accountability: The Leadership Shift Most Organizations Avoid (www.alnewkirk.com)
200. 面向软件开发者的LLM(来自我在NWRUG演讲的笔记) LLMs for Software Developers (notes from my talk at NWRUG) (theartandscienceofruby.com)
201. 采用高度优化的程序实现可执行文件体积最小化的前沿技术 State of the art for reducing executable size with heavily optimized program (discourse.llvm.org)
202. 从零开始在Gleam构建游戏引擎的经验教训 Lessons from Building a Game Engine from Scratch in Gleam (www.youtube.com)
205. shared_ptr:具有(非始终)原子性的引用计数智能指针(2019) shared_ptr: the (not always) atomic reference counted smart pointer (2019) (snf.github.io)
209. 这么多会议都平平无奇。为什么BSC 2025如此出色? So many conferences are mid. Why was BSC 2025 so good? (bgthompson.codeberg.page)
213. “特殊寄存器组”如何在数十年来入侵计算机词典(2019) How "special register groups" invaded computer dictionaries for decades (2019) (www.righto.com)
220. 基于SQL的组合Datalog:环境关系代数 Compositional Datalog on SQL: Relational Algebra of the Environment (www.philipzucker.com)
222. 基于P语言的分布式系统模型化测试(2021) Model-based Testing Distributed Systems with P Language (2021) (www.mydistributed.systems)
230. 使用JIT编译和Rust在软件中模拟aarch64架构 Emulating aarch64 in software using JIT compilation and Rust (pitsidianak.is)
237. 精准编码像素:一种小巧而强大的像素艺术压缩方法 Precision-Encoded Pixels: a tiny yet powerful pixel art compression method (github.com)
239. 谷歌希望通过验证开发者身份来提升侧载安卓应用的安全性。 Google wants to make sideloading Android apps safer by verifying developers’ identities (www.androidauthority.com)
240. 以硬核方式扩展Kafka(第一部分) 荒野之中 Extending Kafka the Hard Way (Part 1) Middle of Nowhere (blog.evacchi.dev)
241. 一个用作聊天界面的MD文件,支持可编辑的聊天记录/上下文,并可调用工具。 An md file as a chat interface, with editable history/context, and tool calling (github.com)
243. 在棘手的问题上纠缠不休——MLS既非皇室也非裸体 Barking Up The Ratchet Tree – MLS Is Neither Royal Nor Nude (soatok.blog)
246. macOS 配置文件不应存放在 /Library/Application Support 目录下。 macOS dotfiles should not go in /Library/Application Support (becca.ooo)
248. gzip 在物联网网页访问中能节省多少带宽? How much power does gzip save on IoT web access? (bitbanksoftware.blogspot.com)
256. 从西方的管道故事:一款从HDMI到Gardena的实用适配器 jhauser.de Once Upon a Pipe in the West: A working adapter from HDMI to Gardena jhauser.de (jhauser.de)
261. 不要为嵌入式网络选择奇怪的子网,使用VRFs。 Don''t pick weird subnets for embedded networks, use VRFs (blog.brixit.nl)
263. 马歇尔疯狂:Ruby反序列化漏洞的简要历史 Marshal madness: A brief history of Ruby deserialization exploits (blog.trailofbits.com)
266. anubis_offload:用户脚本,用于将Anubis PoW任务卸载至原生CPU或GPU代码。 anubis_offload: userscript to offload Anubis PoW to native CPU or GPU code (github.com)
273. SQLite(启用WAL)在默认设置下不会在每次提交时调用fsync。 SQLite (with WAL) doesn''t do fsync on each commit under default settings (avi.im)
276. 与乔恩·科伯特(Jon Corbett)的访谈:克里语#、祖先代码与原住民计算框架 Interview with Jon Corbett: Cree#, Ancestral Code, and an Indigenous Computing Framework (esoteric.codes)
277. SurrealDB 为了让基准测试结果看起来更好,牺牲了数据持久性。 SurrealDB is sacrificing data durability to make benchmarks look better (blog.cf8.gg)
278. Coinbase首席执行官解雇了拒绝使用人工智能的工程师。 Coinbase CEO fired engineers who refused to use AI (www.techspot.com)
280. 一家德国互联网服务提供商(ISP)篡改了其域名系统(DNS),具体目的是破坏我的网站。 A German ISP tampered with their DNS - specifically to sabotage my website (lina.sh)
281. 《伟大的吉安娜姐妹》(COMMODORE 64) The Great Giana Sisters (COMMODORE 64) (retrovania-vgjunk.blogspot.com)
282. Linux 内核内存一致性模型说明 Explanation of the Linux-Kernel Memory Consistency Model (raw.githubusercontent.com)
285. 种子:基于Common Lisp的交互式软件环境 seed: Interactive software environment based on Common Lisp (github.com)
287. 我黑入了Monster Energy并获取了他们的员工培训材料 I Hacked Monster Energy and Uncovered Their Employee Training Material (bobdahacker.com)
289. 逆向工程Roadsearch Plus,或用8位CPU进行道路探索 Reverse-engineering Roadsearch Plus, or, roadgeeking with an 8-bit CPU (oldvcr.blogspot.com)
291. TaMaRa:面向Yosys的三重模块冗余通过方法 TaMaRa: Towards a Triple Modular Redundancy Pass for Yosys (blog.yosyshq.com)
294. 微点:适用于 Python 和 MicroPython 的超小型 Web 框架 microdot: The impossibly small web framework for Python and MicroPython (github.com)
295. SXO :: 优化服务器端 JSX。简化构建。加速开发。 SXO :: Optimized Server-Side JSX. Build Simple. Build Fast (github.com)
298. io_uring、kTLS 和 Rust 用于实现零系统调用 HTTPS 服务器 io_uring, kTLS and Rust for zero syscall HTTPS server (blog.habets.se)