Honnip

An official announcement will come soon, but if you are using the #Lix package manager, it's recommended you upgrade NOW.

For more details, read https://lix.systems/blog/2025-06-24-lix-cves/.

This blog post will be updated with more information as we go (PRs in nixpkgs, etc.).

#NixOS

Security pre-disclosure:

A critical security advisory for #Nix and #Lix (and #Guix) will be published tomorrow at 14:00 UTC.

If you're building untrusted derivations, you must upgrade to ensure your systems remain secure.

Lix versions 2.91, 2.92, 2.93, and main will receive upgrades on all known channels to Lix. Lix 2.90 WILL NOT receive upgrades.

More details are available in the pre-disclosure post:
https://discourse.nixos.org/t/pre-disclosure-announcement-security-advisory-for-nix-and-lix-on-june-24-2025/65831

Please stay alert for the full announcement tomorrow at 14:00 UTC.

@liaizon As a person living in Iran, I can explain the situation. For almost 3 days, our connection to global websites was blocked completely (it's a bit better now on home WiFis, but still a living nightmare), and only the local websites hosted on Iranian servers worked. We didn't have Google, GitHub or any other websites; we couldn't connect to our servers outside of Iran through SSH. The only way a very small number of people had access to the internet was that they bought...

in case someone here didn't hear about this, it seems there will be a security release for lix, nix and guix on the 24th

EDIT: Patches have been released for lix and nix now
- https://lix.systems/blog/2025-06-24-lix-cves/
- https://discourse.nixos.org/t/security-advisory-privilege-escalations-in-nix-lix-and-guix/66017

#lix #nix #guix #nixos

- ko=、
+ ko=, 

“Five Guys are zero-indexed” is probably the most trivial technical fact I will learn today.

Discovered Turbo Overpass has a route diagram generator. Might help quality control of the bus stops I'm looking at. Except it generates 2 labels per stop, it seems. Trying to discern if the data are really bad or what. #OSM
https://overpass-api.de/api/sketch-line?network=BaltimoreLink&ref=59&operator=

이제 그놈 지도에서 한국 길 찾기가 된다 😲

https://floss.social/@VolkerKrause/114680359341615893

HourlyFoxes present:
#fox #bot

이제 가습기는 정리해야겠다.

오픈스트리트맵에서 폐쇄된 따릉이 대여소를 정리했다. 지도 데이터는 너무나 빨리 썩어버리지만 썩은 데이터를 골라내기는 너무 어렵다.

changeset/167490539, changeset/167490402, changeset/167490319, changeset/167490264, changeset/167489738, changeset/167489667, changeset/167489584, changeset/167488790

#OSM #OpenStreetMap #오픈스트리트맵

카카오맵에 초정밀 지하철 기능이 생겼는데, 예전에 인상 깊게 본 Mini Tokyo 3D가 떠올랐다.

나도 저런 걸 만들고 싶어져서 3D는 어려워도 2D 지도 위에 그리는 건 어떻게든 할 수 있지 않을까, 생각했지만 한국에는 관련 API가 없어서 삽도 못 뜨고 포기했던 것도 기억났다 😅

IP/Port: 99.251.254.190:5900
Hostname: pool-99-251-254-190.cpe.net.cable.rogers.com
Client Name: chipi chipi chapa chapa
Location: Willowdale, Ontario, CA 🇨🇦
ASN: AS812 Rogers Communications Canada Inc.
VNC Password: N/A
ID: 23981179
Added to DB: 05/06/2025, 10:39:46 PM (UTC)
Last seen: 05/06/2025, 06:52:41 PM (UTC)
https://computernewb.com/vncresolver/browse#id/23981179

​​

{
  boot.initrd.luks.devices."...".bypassWorkqueues = true;
}

I wish there was an easier way to save posts

@seungjin @sung-il-kim.com 네. 브릿지에 연결해야 전송이 되는 것 같네요

It’s 24 degrees and SUPER sunny… but also 30kph winds. We need a name for this weather condition of “sunny but feels like a typhoon.” I propose 해풍 (日風)😎

@seungjin @sung-il-kim.com AI가 그대로 배워서 다를 게 없다는 말씀인 것 같습니다.

Our website is live, over at https://nixseoul.club! We have a form up for anyone who's interested in attending!

AMA!

Feel free to ask about my projects, Nix things, etc!

I'm collecting all 242 unique treasures in #Pikmin 2 across the three regions (US, JP, and PAL). I've created this web page which automatically updates as I collect more treasures while playing on real #GameCube hardware.

👉 https://sethmlarson.dev/pikmin-2-international-treasure-hoard

이게 다 초록병 소주 때문이다 (덕분이다?)

https://bsky.brid.gy/r/https://bsky.app/profile/did:plc:7fbikvxjgwiomstwwnd2gp42/post/3lqoj2z7y2s2l

Let's recap the last #NixOS release period from the Go perspective. There have been quite important changes to the Go ecosystem in nixpkgs, let's start with the one that will affect most users and maintainers of Go package:

buildGoModule now supports a self-referencing finalAttrs: parameter containing the final arguments including overrides. This allows packaging configuration to be overridden in a consistent manner by providing an alternative to rec {} syntax. This pattern will fix many issues people previously had overridden Go packages as it is adopted in nixpkgs. If you are maintaining a Go package, please check if you already updated it to use finalAttrs. The Go section of the manual has been updated for this and all examples now use finalAttrs.

#NixOS #Nix #nixpkgs #Go

카카오톡을 Wine과 Flatpak으로 패키징할 수 있을까? 🤔

Here's a picture of a Fox!
#fox #bot

Copilot, now with doxxing

https://simonwillison.net/2025/May/26/github-mcp-exploited/

This is why:
`Telegram 'surprised' as Vietnam orders messaging app to be blocked`
https://www.reuters.com/sustainability/society-equity/vietnam-acts-block-messaging-app-telegram-government-document-seen-by-reuters-2025-05-23/

Packet - Quick Share 클라이언트, GTK4 + Libadwaita

새로운 퀵 쉐어 앱이 나왔다. 이제 iOS 앱만 나오면 대통합을 이룰 수 있는 건가..

@hongminhee 아.. Nodejs에도 태스크 러너가 있군요 😅

@hongminhee pnpm에서는 옵션이 따로 있어요: https://pnpm.io/cli/run#shellemulator

yarn도 지원했던 거 같은데 기억이 잘 안 나네요