Paolo Barbolini

Let's depend on a 9 year old unmaintained library for a security sensitive function. What could go wrong.

PostgreSQL 18.1, 17.7, 16.11, 15.15, 14.20, and 13.23 Released! The PostgreSQL Global Development Group has released an update to all supported versions of PostgreSQL, including 18.1, 17.7, 16.11, 15.15, …

New PostgreSQL minor release
www.postgresql.org/about/news/p...

Rust in Android: move fast and fix things Posted by Jeff Vander Stoep, Android Last year, we wrote about why a memory safety strategy that focuses on vulnerability prevention in ...

“We adopted #rustlang for its security and are seeing a 1000x reduction in memory safety vulnerability density ... with Rust changes having a 4x lower rollback rate and spending 25% less time in code review, the safer path is now also the faster one.”

security.googleblog.com/2025/11/rust...

The source of the standard Rust Hello World program with the generated assembly before and after the change. The before version has 11 instructions and stores 56 bytes on the stack. The after version has 3 instructions and stores no data on the stack.

🦀 I've improved the implementation behind all the string formatting macros in Rust: println, panic, format, write, log::info, etc. (Everything using format_args!().) They will compile a bit faster, use a bit less memory while compiling, result in smaller binaries, and produce more efficient code! 🎉

The video for my #taloscon2025 keynote is now up!
www.youtube.com/watch?v=Cum5...

What happened today? Behind closed doors, the Law Enforcement Working Party group approved the revised Danish Chat Control compromise with broad support. While mandatory scanning had officially been dropped, Article 4 of the new text reframes and reintroduces it by obliging providers of e-mail, chat, and messenger services to take “all appropriate risk mitigation measures”. This effectively forces providers to scan all messages, including private, end-to-end encrypted content. The same article outlaws anonymous communication by requiring every citizen to verify their age before accessing a service, kneecapping whistleblowers, journalists, political activists, and people seeking help who depend on anonymity. Article 6 further imposes a digital house arrest and would ban minors from installing software which comes with a significant risk of grooming, such as WhatsApp, Instagram, and online games like Roblox. What happens next? The legislation now moves to the Coreper (Committee of Permanent Representations) for approval. Without major political objections, the Council will formally adopt its position. At this stage, both the Council and Commission unite in imposing mass surveillance on all 450 million citizens of the European Union and we enter a rushed trilogue. Unfortunately, while the mandate of the European Parliament does not suffer from the same flaws, the Parliament is traditionally known for giving in. What now? We raise our voices. Louder.

Ihre Daten. Ihre Kontrolle. Digitaler Arbeitsplatz mit E-Mail, Cloud, Office & Meet – 100 % sicher & DSGVO-konform für Unternehmen, Behörden und Privatpersonen. ▶ Jetzt testen!

Mailbox.org finally has a web interface worthy of a modern email service. Still not as good as Fastmail but close

Interesting stuff to try in the next nightly
github.com/rust-lang/ru...

Con tutte le pubblicità shady che becco YouTube secondo me è uguale se non peggio

SMTP still writes them in the "standard" casing

Today everything is broken

I'm so tired of docker breaking stuff at random. We had something based on `docker save` + `docker load`. I know it's not great, but it worked.

The latest docker release broke it.

I haven't updated our lists in a while but these too are useful.

1. await_holding_refcell_ref
2. semicolon_if_nothing_returned

Typst: Automated PDF Generation with Typst – Typst Blog Setting up automated PDF generation is a daunting task – but it does not need to be. Learn how you can create a scalable generation pipeline for customized PDFs...

Using Typst to autogenerate PDFs is pretty popular. And many of you ARE DOING IT WRONG!! We have put together a new blog post with the best approach to PDF generation using Typst (hint: don't use an external script to generate Typst markup).

typst.app/blog/2025/au...

Monorepos are fun

It's incredible how simple and straightforward updown.io is compared to many other overengineered, buggy or lazy uptime monitoring platforms.

I wish I'd seen it sooner @european-alternatives.eu. Maybe some attributes are missing, like the Green Energy or EU Hosted?

Today I saw Heldin (2025) at the local cinema for the second time. Strong recommend.

All good things must come to an end! 🌅
🦀 RustLab wrapped up after three incredible days full of learning and connections. ⚡

🤎 Thank you to everyone who joined us!

🗓️ Mark your calendars: see you in Bologna, November 2026! ✨

#RustLab2025 #RustLang

Waiting for HDMI...

There's also a company in Italy that resells APIs, their name: Openapi. Makes conversations very easy.

A domani

impl<'a> From<&'a dyn Stream> for StreamAdapter<'a> { #[allow(invalid_reference_casting)] fn from(stream: &'a dyn Stream) -> Self { let stream = &*stream as *const dyn Stream as *mut dyn Stream; let stream = unsafe { &mut *stream }; Self { stream } } }

so glad I can be learning Rust from the experts at Adobe, their beautiful elegant code is really an inspiration 😊

ladies and gentlemen...we got him

There are so many dependencies with build scripts 😫

I'm not sure if they're waiting a bit more before switching to the next hardware generation, or if they lost interest in Ampere and they won't be adding new servers to the lineup. The Cost-Optimized category is limited availability, and some days only the smallest instance size is available.

ARM VMs are only available in the old hardware generations category, and dedicated servers are completely unavailable www.hetzner.com/dedicated-ro....

Is Hetzner giving up on ARM?

Linux maintainers should really step back and think why programming language library managers happened instead of ranting on stage that they exist.

Did they call it "remote code execution" again?

Just switched ISP from Eolo to Dimensione. Now I'm back with proper 100 Mbps / 20 Mbps over FWA. Also happy to be in the 18.2% of Italy with IPv6