11. 无畏 CORS:CORS 中间件库的设计理念(以及 Go 实现) Fearless CORS: a design philosophy for CORS middleware libraries (and a Go implementation) (jub0bs.com)
14. 利用 24H2 中的 NT 内核:旧代码中的新漏洞和针对 KASLR 的侧信道 Exploiting the NT Kernel in 24H2: New Bugs in Old Code & Side Channels Against KASLR (exploits.forsale)
22. 可靠的 HTTP:用 Webhooks 战胜两位将军 Reliable HTTP: Outsmarting the Two Generals with Webhooks (antman-does-software.com)
26. 全职开发 Rust 游戏 3 年后的经验教训,以及为什么我们要放弃 Rust Lessons learned after 3 years of fulltime Rust game development, and why we're leaving Rust behind (loglog.games)
27. 在 FreeBSD 上维护 Netflix 全球最快的 CDN Maintaining the world’s fastest CDN at Netflix on FreeBSD (freebsdfoundation.org)
31. 索尼克用于 Go 语言交易的低延迟异步网络库 Sonic: A low-latency asynchronous networking library for trading in Go (www.talos.com)
33. 使用 SQLite 构建高可用搜索引擎 Building a highly-available search engine using SQLite (www.philipotoole.com)
35. Heed v0.20:最安全、维护最多的 LMDB 键值存储 Rust 封装器 Heed v0.20: The safest and most maintained Rust wrapper for the LMDB key-value store (github.com)
37. 数据库迁移系统:数据库迁移系统:概述(2021) Database Migration Systems: An Overview (2021) (bruceoutdoors.wordpress.com)
39. 西蒙娜将 YouTube 视频转换成博客文章,重新利用这些视频 simone: Repurpose your YouTube videos by converting them into blog posts (github.com)
40. X-CMD | 轻便的 POSIX 脚本,用于管理工具(500 多种),并在开源环境中提供经典命令扩展功能 X-CMD | Lightweight POSIX script for managing tools (500+) and providing classic command extensions in an open-source environment (www.x-cmd.com)
43. 为什么我的 CPU 使用率总是 100%? (升级 Chumby 8 内核第 9 部分) Why is my CPU usage always 100%? (Upgrading my Chumby 8 kernel part 9) (www.downtowndougbrown.com)
45. 为 Lua 爱好者打造的 Hilbish 月亮交互式外壳 Hilbish the Moon-powered interactive shell for Lua fans (rosettea.github.io)
47. 覆盖引导模糊测试--扩展仪器以更快地发现错误 Coverage Guided Fuzzing - Extending Instrumentation to Hunt Down Bugs Faster (blog.includesecurity.com)
52. GPT-4、双子座 1.5、克劳德 3 等系统提示泄露内幕 Inside the Leaked System Prompts of GPT-4, Gemini 1.5, Claude 3, and More (levelup.gitconnected.com)
58. 无需 Nix 即可静态链接 Haskell 可执行文件 Getting your Haskell executable statically linked without Nix (hasufell.github.io)
59. Effectful - 易于使用、性能良好的可扩展特效库 Effectful – An easy to use, performant extensible effects library (flora.pm)
60. 使用 QEMU 在 MacOS 苹果硅上创建 Debian 虚拟机 Create a Debian VM on MacOS Apple Silicon with QEMU (sleepymug.me)
67. 注意补丁漏洞:利用 Ubuntu 中的 io_uring 漏洞 Mind the Patch Gap: Exploiting an io_uring Vulnerability in Ubuntu (blog.exodusintel.com)
68. Ruby 可能比你想象的更快 - John Hawthorn Ruby might be faster than you think - John Hawthorn (www.johnhawthorn.com)
72. 46 中的通知及其他 - GNOME Shell & Mutter Notifications in 46 and beyond – GNOME Shell & Mutter (blogs.gnome.org)
76. 乌克兰编码员的新编程语言:一个大数据结构 Ukrainian Coder's New Programming Language: One Big Data Structure (thenewstack.io)
77. 转储和提取 SpaceX Starlink 用户终端固件 Dumping and extracting the SpaceX Starlink User Terminal firmware (www.esat.kuleuven.be)
79. 您的编程语言是由多维等离子体构成的吗? Is your programming language made of multidimensional plasma? (cygni.ghost.io)
81. 借用检查、RC、GC 和其他十一种(!)内存安全方法 Borrow checking, RC, GC, and the Eleven (!) Other Memory Safety Approaches (verdagon.dev)
85. OpenELM:带有开源训练和推理框架的高效语言模型系列 OpenELM: An Efficient Language Model Family with Open-source Training and Inference Framework (arxiv.org)
86. 否,LLM 代理无法自主利用单日漏洞 No, LLM Agents can not Autonomously Exploit One-day Vulnerabilities (struct.github.io)
91. GQL 的崛起:图形查询语言的 ISO 新标准 The Rise of GQL: A New ISO Standard in Graph Query Language (www.tigergraph.com)
97. 从 Windows 转向 FreeBSD,Beckhoff 实现了更小的内存占用(1.5GB 对 2.0GB)。 Beckhoff Achieves Smaller (1.5GB vs. 2.0GB) RAM Footprint by Switching from Windows to FreeBSD (freebsdfoundation.org)
102. 用于证明新基础集合论与 ZFC 等价的精益定理证明器 lean theorem prover used to show that New Foundations set theory is equiconsistent with ZFC (leanprover-community.github.io)
104. 追踪富士通 LIFEBOOK AH532 上的 UEFI 怪癖 Tracking down a UEFI quirk on the Fujitsu LIFEBOOK AH532 (blog.timschumi.net)
108. Spritely Goblins v0.13.0:对象持久化和更简单的 IO Spritely Goblins v0.13.0: Object persistence and easier IO (spritely.institute)
118. Docker 的双刃剑:平衡效益与风险 Double Edged Sword of Docker: Balancing Benefits and Risks (it-notes.dragas.net)
122. 帮助我们发明 CSS 网格第 3 级,又称 "砖石 "布局 Help us invent CSS Grid Level 3, aka “Masonry” layout (webkit.org)
128. 实证软件设计的日常实践 - Kent Beck - (2023) A Daily Practice of Empirical Software Design - Kent Beck - (2023) (www.youtube.com)
131. sdt:使用热补丁的 SDT 探测器原型实现 sdt: Prototype implementation of SDT probes using hot-patching (reviews.freebsd.org)
134. udev-hid-bpf:使用 eBPF 修复 HID 设备的快速入门工具 udev-hid-bpf: quickstart tooling to fix your HID devices with eBPF (who-t.blogspot.com)
136. 瞬间完成 LLM:利用有限内存进行高效大型语言模型推理 LLM in a flash: Efficient Large Language Model Inference with Limited Memory (arxiv.org)
141. 发布 Beatrice:最终实现无标记、依赖类型、自我感知的编程语言 Announcing Beatrice: A finally tagless, dependently typed, self-aware programming language (hirrolot.github.io)
145. 建筑工人更幸福了,但人工智能接管后会发生什么? Builders Are Happier But What Happens When AI Takes Over (cybernetist.com)
147. 先到先得:文件位置对代码审查的影响(2022年) First Come First Served: The Impact of File Position on Code Review (2022) (arxiv.org)
149. 使用 LLM 从终端访问 Llama 3 的选项 Options for accessing Llama 3 from the terminal using LLM (simonwillison.net)
153. LogTape:用于 Deno/Node.js/Bun/browsers 的零依赖简单日志库 LogTape: Simple logging library with zero dependencies for Deno/Node.js/Bun/browsers (github.com)
157. 就早期微处理器、游戏产业和性能优化问题采访 Matt Godbolt Interview with Matt Godbolt on early microprocessors, the games industry, and performance optimization (microarch.club)
158. 深入了解 PostgreSQL 可见性检查机制 A Deeper Look Inside PostgreSQL Visibility Check Mechanism (www.highgo.ca)
171. 数据流分析和使用数据流分析的编译器优化 - Embedded in Academia Dataflow Analyses and Compiler Optimizations that Use Them, for Free – Embedded in Academia (blog.regehr.org)
172. Lunatik:Lunatik 是一个用 Lua 编写 Linux 内核脚本的框架 lunatik: Lunatik is a framework for scripting the Linux kernel with Lua (github.com)
173. glibc CVE-2024-2961:iconv 中的缓冲区溢出 glibc CVE-2024-2961: Buffer overflow in iconv (www.openwall.com)
177. Thetawave:使用 Rust 和 Bevy 引擎制作的基于物理的太空射击游戏 thetawave: A physics based, space shooter game made with Rust and the Bevy engine (github.com)
189. 利用典型对数线实现快速灵活的可观测性(2019 年) Fast and flexible observability with canonical log lines (2019) (stripe.com)
193. GWP-ASan:基于采样检测生产中的内存安全漏洞 GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production (arxiv.org)
196. FreeBSD:使用 DTrace 跟踪已启动的进程和已使用的文件 FreeBSD: Using DTrace to Track Down Started Processes and Used Files (www.youtube.com)
207. 原始流量流和模糊格式围绕 5.25 英寸软盘成像的进一步工作 Raw flux streams and obscure formats: Further work around imaging 5.25-inch floppy disks (digitalpreservation-blog.lib.cam.ac.uk)
209. 在 Ryzen7 Framework 笔记本电脑上,Ubuntu 24.04 比 Windows 11 优势 20 Ubuntu 24.04 yields a 20% advantage over Windows 11 on Ryzen7 Framework laptop (www.phoronix.com)
210. Hydradancer:用于 Facedancer 的更快 USB 仿真 Hydradancer: Faster USB Emulation for Facedancer (blog.quarkslab.com)
212. CHERI C 的正式机制化语义:能力、未定义的行为和出处 Formal Mechanised Semantics of CHERI C: Capabilities, Undefined Behaviour, and Provenance (dl.acm.org)
213. cronometro:由 HDR 直方图驱动的简单基准测试套件 cronometro: Simple benchmarking suite powered by HDR histograms (github.com)
214. Ruff v0.4.0:Python 手工编写的递归下降解析器 Ruff v0.4.0: a hand-written recursive descent parser for Python (astral.sh)
216. 我们需要谈谈桌面日历软件的现状 We Need to Talk About the State of Calendar Software on Desktop (nadim.computer)
217. CVE-2024-20356:越狱思科设备以运行 DOOM CVE-2024-20356: Jailbreaking a Cisco appliance to run DOOM (labs.nettitude.com)
222. Rails 上的 SQLite:优化性能的方法和原因 SQLite on Rails: The how and why of optimal performance (fractaledmind.github.io)
225. AArch64 上的 seL4 现已通过功能正确性验证 seL4 on AArch64 is now verified for functional correctness (proofcraft.systems)
230. 韦兰,2024年我们在哪里?成为默认值有什么好处吗? Wayland, where are we in 2024? Any good for being the default? (www.dedoimedo.com)
232. 制作自己的后门CFLAGS 代码注入、Makefile 注入、pkg-config Make your own backdoor: CFLAGS code injection, Makefile injection, pkg-config (www.openwall.com)
247. Palo Alto Networks 自三月起被利用零日漏洞后门防火墙 Palo Alto Networks zero-day exploited since March to backdoor firewalls (www.bleepingcomputer.com)
251. 无法与用户交谈时进行用户研究的 5 个想法 5 ideas for user research when you can't talk to users (www.pixelfridge.digital)
256. 2024 年人工智能指数报告 - 人工智能指数 AI Index Report 2024 – Artificial Intelligence Index (aiindex.stanford.edu)
258. 笔记本系列展示了使用克劳德的一些有趣而有效的方法 Collection of notebooks showcasing some fun and effective ways of using Claude (github.com)
259. PostgreSQL 中使用最少锁定合并和拆分分区的用例 17 Use Cases for Merging and Splitting Partitions With Minimal Locking in PostgreSQL 17 (andyatkinson.com)
269. 人性化人工智能 - Pico 激光投影 - 2.3 亿美元人工智能旧骗局的新变化 Humane AI – Pico Laser Projection – $230M AI Twist on an Old Scam (kguttag.com)
270. 巨齿鲨无限制上下文长度的高效 LLM 预训练和推理 Megalodon: Efficient LLM Pretraining and Inference with Unlimited Context Length (arxiv.org)
271. gcloud-lite 轻量级 Google 云平台 CLI 发行版 gcloud-lite lightweight Google Cloud Platform CLI distro (github.com)
273. 推定计算机正常运行的法律规则--不可预见和不公正的后果(2022年) The legal rule that computers are presumed to be operating correctly – unforeseen and unjust consequences (2022) (www.benthamsgaze.org)
274. 为什么模糊测试未检测到 OpenSSL punycode 漏洞 CVE-2022-3602 Why OpenSSL punycode vulnerability CVE-2022-3602 was not detected by fuzz testing (allsoftwaresucks.blogspot.com)
277. ATAC: 终端中的简单应用程序接口客户端(类似 postman ATAC: A simple API client (postman like) in your terminal (github.com)
284. 通过 InstantView | TeleSec 执行 Telegram 任意代码 Telegram Arbitrary Code Execution via InstantView | TeleSec (www.telesec.top)
289. 虚拟现实浏览器 Wolvic 从 Gecko 转向 Chromium VR Browser Wolvic Switches from Gecko to Chromium (wolvic.com)
291. 掌握可观察性:我们如何在短短 15 分钟内解决一个重大 Bug Mastering Observability: How We Solved a Major Bug in Just 15 Minutes (jaywhy13.hashnode.dev)
292. 试用 Cloudflare 的 Rust`foundations` 库 Trying Out Cloudflare's `foundations` Library for Rust (cprimozic.net)
300. 连续剖析解决方案 Elastic Universal Profiling 代理现已开源 Elastic Universal Profiling agent, a continuous profiling solution, is now open source (www.elastic.co)