'Free Software Awards' Winners Announced: Andy Wingo, Alx Sa, Govdirectory This week the Free Software Foundation honored Andy Wingo, Alx Sa, and Govdirectory with this year's annual Free Software Awards (given to community members and groups making "significant" contributions to software freedom): Andy Wingo is one of the co-maintainers of GNU Guile, the official extension language of the GNU operating system and the Scheme "backbone" of GNU Guix. Upon receiving the award, he stated: "Since I learned about free software, the vision of a world in which hackers freely share and build on each others' work has been a profound inspiration to me, and I am humbled by this recognition of my small efforts in the context of the Guile Scheme implementation. I thank my co-maintainer, Ludovic Courtès, for his comradery over the years: we are just building on the work of the past maintainers of Guile, and I hope that we live long enough to congratulate its many future maintainers." The 2024 Award for Outstanding New Free Software Contributor went to Alx Sa for work on the GNU Image Manipulation Program (GIMP). When asked to comment, Alx responded: "I am honored to receive this recognition! I started contributing to the GNU Image Manipulation Program as a way to return the favor because of all the cool things it's allowed me to do. Thanks to the help and mentorship of amazing people like Jehan Pagès, Jacob Boerema, Liam Quin, and so many others, I hope I've been able to help other people do some cool new things, too." Govdirectory was presented with this year's Award for Projects of Social Benefit, given to a project or team responsible for applying free software, or the ideas of the free software movement, to intentionally and significantly benefit society. Govdirectory provides a collaborative and fact-checked listing of government addresses, phone numbers, websites, and social media accounts, all of which can be viewed with free software and under a free license, allowing people to always reach their representatives in freedom... The FSF plans to further highlight the Free Software Award winners in a series of events scheduled for the new year to celebrate their contributions to free software. <a href="http://twitter.com/home?status='Free+Software+Awards'+Winners+Announced%3A+Andy+Wingo%2C+Alx+Sa%2C+Govdirectory+%3A+https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F14%2F0030234%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F14%2F0030234%2Ffree-software-awards-winners-announced-andy-wingo-alx-sa-govdirectory%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

'Free Software Awards' Winners Announced: Andy Wingo, Alx Sa, Govdirectory - Slashdot

This week the Free Software Foundation honored Andy Wingo, Alx Sa, and Govdirectory with this year

at Slashdot.

'Free Software Awards' Winners Announced: Andy Wingo, Alx Sa, Govdirectory - Slashdot

This week the Free Software Foundation honored Andy Wingo, Alx Sa, and Govdirectory with this year

Applets Are Officially Going, But Java In the Browser Is Better Than Ever "The entire java.applet package has been removed from JDK 26, which will release in March 2026," notes Inside Java. But long-time Slashdot reader AirHog links to this blog post reminding us that "Applets Are Officially Gone, But Java In The Browser Is Better Than Ever." This brings to an official end the era of applets, which began in 1996. However, for years it has been possible to build modern, interactive web pages in Java without needing applets or plugins. TeaVM provides fast, performant, and lightweight tooling to transpile Java to run natively in the browser... TeaVM, at its heart, transpiles Java code into JavaScript (or, these days, WASM). However, in order for Java code to be useful for web apps, much more is required, and TeaVM delivers. It includes a minifier, to shrink the generated code and obfuscate the intent, to complicate reverse-engineering. It has a tree-shaker to eliminate unused methods and classes, keeping your app download compact. It packages your code into a single file for easy distribution and inclusion in your HTML page. It also includes wrappers for all popular browser APIs, so you can invoke them from your Java code easily, with full IDE assistance and auto-correct. The blog post also touts Flavour, an open-source framework "for coding, packaging, and optimizing single-page apps implemented in Java... a full front-end toolkit with templates, routing, components, and more" to "build your modern single-page app using 100% Java." <a href="http://twitter.com/home?status=Applets+Are+Officially+Going%2C+But+Java+In+the+Browser+Is+Better+Than+Ever%3A+https%3A%2F%2Fdevelopers.slashdot.org%2Fstory%2F25%2F12%2F13%2F2316245%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fdevelopers.slashdot.org%2Fstory%2F25%2F12%2F13%2F2316245%2Fapplets-are-officially-going-but-java-in-the-browser-is-better-than-ever%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Applets Are Officially Going, But Java In the Browser Is Better Than Ever - Slashdot

&#34;The entire java.applet package has been removed from JDK 26, which will release in March 2026,&#34; notes Inside Java. But long-time Slashdo...

at Slashdot.

Applets Are Officially Going, But Java In the Browser Is Better Than Ever - Slashdot

&#34;The entire java.applet package has been removed from JDK 26, which will release in March 2026,&#34; notes Inside Java. But long-time Slashdo...

Startup Successfully Uses AI to Find New Geothermal Energy Reservoirs A Utah-based startup announced last week it used AI to locate a 250-degree Fahrenheit geothermal reservoir, reports CNN. It'll start producing electricity in three to five years, the company estimates — and at least one geologist believes AI could be an exciting "gamechanger" for the geothermal industry. [Startup Zanskar Geothermal & Minerals] named it "Big Blind," because this kind of site — which has no visual indication of its existence, no hot springs or geysers above ground, and no history of geothermal exploration — is known as a "blind" system. It's the first industry-discovered blind site in more than three decades, said Carl Hoiland, co-founder and CEO of Zanskar. "The idea that geothermal is tapped out has been the narrative for decades," but that's far from the case, he told CNN. He believes there are many more hidden sites across the Western U.S. Geothermal energy is a potential gamechanger. It offers the tantalizing prospect of a huge source of clean energy to meet burgeoning demand. It's near limitless, produces scarcely any climate pollution, and is constantly available, unlike wind and solar, which are cheap but rely on the sun shining and the wind blowing. The problem, however, has been how to find and scale it. It requires a specific geology: underground reservoirs of hot water or steam, along with porous rocks that allow the water to move through them, heat up, and be brought to the surface where it can power turbines... The AI models Zanskar uses are fed information on where blind systems already exist. This data is plentiful as, over the last century and more, humans have accidentally stumbled on many around the world while drilling for other resources such as oil and gas. The models then scour huge amounts of data — everything from rock composition to magnetic fields — to find patterns that point to the existence of geothermal reserves. AI models have "gotten really good over the last 10 years at being able to pull those types of signals out of noise," Hoiland said... Zanskar's discovery "is very significant," said James Faulds, a professor of geosciences at Nevada Bureau of Mines and Geology.... Estimates suggest over three-quarters of US geothermal resources are blind, Faulds told CNN. "Refining methods to find such systems has the potential to unleash many tens and perhaps hundreds of gigawatts in the western US alone," he said... Big Blind is the company's first blind site discovery, but it's the third site it has drilled and hit commercial resources. "We expect dozens, to eventually hundreds, of new sites to be coming to market," Hoiland said.... Hoiland says Zanskar's work shows conventional geothermal still has huge untapped potential. Thanks to long-time Slashdot reader schwit1 for sharing the article. <a href="http://twitter.com/home?status=Startup+Successfully+Uses+AI+to+Find+New+Geothermal+Energy+Reservoirs%3A+https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F13%2F2211227%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F13%2F2211227%2Fstartup-successfully-uses-ai-to-find-new-geothermal-energy-reservoirs%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Startup Successfully Uses AI to Find New Geothermal Energy Reservoirs - Slashdot

A Utah-based startup announced last week it used AI to locate a 250-degree Fahrenheit geothermal reservoir, reports CNN. It

at Slashdot.

Startup Successfully Uses AI to Find New Geothermal Energy Reservoirs - Slashdot

A Utah-based startup announced last week it used AI to locate a 250-degree Fahrenheit geothermal reservoir, reports CNN. It

Firefox Survey Finds Only 16% Feel In Control of Their Privacy Choices Online Choosing your browser "is one of the most important digital decisions you can make, shaping how you experience the web, protect your data, and express yourself online," says the Firefox blog. They've urged readers to "take a stand for independence and control in your digital life." But they also recently polled 8,000 adults in France, Germany, the UK and the U.S. on "how they navigate choice and control both online and offline" (attending in-person events in Chicago, Berlin, LA, and Munich, San Diego, Stuttgart): The survey, conducted by research agency YouGov, showcases a tension between people's desire to have control over their data and digital privacy, and the reality of the internet today — a reality defined by Big Tech platforms that make it difficult for people to exercise meaningful choice online: — Only 16% feel in control of their privacy choices (highest in Germany at 21%) — 24% feel it's "too late" because Big Tech already has too much control or knows too much about them. And 36% said the feeling of Big Tech companies knowing too much about them is frustrating — highest among respondents in the U.S. (43%) and the UK (40%) — Practices respondents said frustrated them were Big Tech using their data to train AI without their permission (38%) and tracking their data without asking (47%; highest in U.S. — 55% and lowest in France — 39%) And from our existing research on browser choice, we know more about how defaults that are hard to change and confusing settings can bury alternatives, limiting people's ability to choose for themselves — the real problem that fuels these dynamics. Taken together our new and existing insights could also explain why, when asked which actions feel like the strongest expressions of their independence online, choosing not to share their data (44%) was among the top three responses in each country (46% in the UK; 45% in the U.S.; 44% in France; 39% in Germany)... We also see a powerful signal in how people think about choosing the communities and platforms they join — for 29% of respondents, this was one of their top three expressions of independence online. "For Firefox, community has always been at the heart of what we do," says their VP of Global Marketing, "and we'll keep fighting to put real choice and control back in people's hands so the web once again feels like it belongs to the communities that shape it." At TwitchCon in San Diego Firefox even launched a satirical new online card game with a privacy theme called Data War. <a href="http://twitter.com/home?status=Firefox+Survey+Finds+Only+16%25+Feel+In+Control+of+Their+Privacy+Choices+Online%3A+https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F13%2F2114221%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F13%2F2114221%2Ffirefox-survey-finds-only-16-feel-in-control-of-their-privacy-choices-online%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Firefox Survey Finds Only 16% Feel In Control of Their Privacy Choices Online - Slashdot

Choosing your browser &#34;is one of the most important digital decisions you can make, shaping how you experience the web, protect your data, and ...

at Slashdot.

Firefox Survey Finds Only 16% Feel In Control of Their Privacy Choices Online - Slashdot

Choosing your browser &#34;is one of the most important digital decisions you can make, shaping how you experience the web, protect your data, and ...

The World's Electric Car Sales Have Spiked 21% So Far in 2025 Electrek reports: EV and battery supply chain research specialists Benchmark Mineral Intelligence reports that 2.0 million electric vehicles were sold globally in November 2025, bringing global EV sales to 18.5 million units year-to-date. That's a 21% increase compared to the same period in 2024. Europe was the clear growth leader in November, while North America continued to lag following the expiration of US EV tax credits. China, meanwhile, remains the world's largest EV market by a wide margin. Europe's EV market jumped 36% year-over-year in November 2025, with BEV sales up 35% and plug-in hybrid (PHEV) sales rising 39%. That brings Europe's total EV sales to 3.8 million units for the year so far, up 33% compared to January-November 2024... In North America, EV sales in the US did tick up month-over-month in November, following a sharp October drop after federal tax credits expired on September 30, 2025. Brands including Kia (up 30%), Hyundai (up 20%), Honda (up 11%), and Subaru (232 Solterra sales versus just 13 the month before) all saw gains, but overall volumes remain below levels when the federal tax credit was still available... [North America shows a -1% drop in EV sales from January to November 2025 vs. January to November 2024] Year-to-date, EV sales in China are up 19%, with 11.6 million units sold. One of the biggest headlines out of China is exports. BYD reported a record 131,935 EV exports in November, blowing past its previous high of around 90,000 units set in June. BYD sales in Europe have jumped more than fourfold this year to around 200,000 vehicles, doubled in Southeast Asia, and climbed by more than 50% in South America... "Overall, EV demand remains resilient, supported by expanding model ranges and sustained policy incentives worldwide," said Rho Motion data manager Charles Lester. Beyond China, Europe, and North America, the rest of the world saw a 48% spike in EV sales in 2025 vs the same 11 months in 2024, representing 1.5 million EVs sold. "The takeaway: EV demand continues to grow worldwide," the article adds, "but policy support — or the lack thereof — is increasingly shaping where this growth shows up." <a href="http://twitter.com/home?status=The+World's+Electric+Car+Sales+Have+Spiked+21%25+So+Far+in+2025%3A+https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F13%2F0041234%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F13%2F0041234%2Fthe-worlds-electric-car-sales-have-spiked-21-so-far-in-2025%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

The World

Electrek reports: EV and battery supply chain research specialists Benchmark Mineral Intelligence reports that 2.0 million electric vehicles were ...

at Slashdot.

The World

Electrek reports: EV and battery supply chain research specialists Benchmark Mineral Intelligence reports that 2.0 million electric vehicles were ...

How a 23-Year-Old in 1975 Built the World's First Handheld Digital Camera In 1975, 23-year-old electrical engineer Steve Sasson joined Kodak. And in a new interview with the BBC, he remembers that he'd found the whole photographic process "really annoying.... I wanted to build a camera with no moving parts. Now that was just to annoy the mechanical engineers..." "You take your picture, you have to wait a long time, you have to fiddle with these chemicals. Well, you know, I was raised on Star Trek, and all the good ideas come from Star Trek. So I said what if we could just do it all electronically...?" Researchers at Bell Labs in the US had, in 1969, created a type of integrated circuit called a charge-coupled device (CCD). An electric charge could be stored on a metal-oxide semiconductor (MOS), and could be passed from one MOS to another. Its creators believed one of its applications might one day be used as part of an imaging device — though they hadn't worked out how that might happen. The CCD, nevertheless, was quickly developed. By 1974, the US microchip company Fairchild Semiconductors had built the first commercial CCD, measuring just 100 x 100 pixels — the tiny electronic samples taken of an original image. The new device's ability to capture an image was only theoretical — no-one had, as yet, tried to take an image and display it. (NASA, it turned out, was also looking at this technology, but not for consumer cameras....) The CCD circuit responded to light but could only form an image if Sasson was somehow able to attach a lens to it. He could then convert the light into digital information — a blizzard of 1s and 0s — but there was just one problem: money. "I had no money to build this thing. Nobody told me to build it, and I certainly couldn't demand any money for it," he says. "I basically stole all the parts, I was in Kodak and the apparatus division, which had a lot of parts. I stole the optical assembly from an XL movie camera downstairs in a used parts bin. I was just walking by, you see it, and you take it, you know." He was also able to source an analogue to digital converter from a $12 (about £5 in 1974) digital voltmeter, rather than spending hundreds on the part. I could manage to get all these parts without anybody really noticing," he says.... The bulky device needed a way to store the information the CCD was capturing, so Sasson used an audio cassette deck. But he also needed a way to view the image once it was saved on the magnetic tape. "We had to build a playback unit," Sasson says. "And, again, nobody asked me to do that either. So all I got to do is the reverse of what I did with the camera, and then I have to turn that digital pattern into an NTSC television signal." NTSC (National Television System Committee) was the conversion standard used by American TV sets. Sasson had to turn only 100 lines of digital code captured by the camera into the 400 lines that would form a television signal. The solution was a Motorola microprocessor, and by December 1975, the camera and its playback unit was complete, the article points out. With his colleague Jim Schueckler, Sasson had spent more than a year putting together the "increasingly bulky" device, that "looked like an oversized toaster." The camera had a shutter that would take an image at about 1/20th of a second, and — if everything worked as it should — the cassette tape would start to move as the camera transferred the stored information from its CCD [which took 23 seconds]. "It took about 23 seconds to play it back, and then about eight seconds to reconfigure it to make it look like a television signal, and send it to the TV set that I stole from another lab...." In 1978, Kodak was granted the first patent for a digital camera. It was Sasson's first invention. The patent is thought to have earned Eastman Kodak billions in licensing and infringement payments by the time they sold the rights to it, fearing bankruptcy, in 2012... As for Sasson, he never worked on anything other than the digital technology he had helped to create until he retired from Eastman Kodak in 2009. Thanks to long-time Slashdot reader sinij for sharing the article. <a href="http://twitter.com/home?status=How+a+23-Year-Old+in+1975+Built+the+World's+First+Handheld+Digital+Camera%3A+https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F13%2F0652226%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F13%2F0652226%2Fhow-a-23-year-old-in-1975-built-the-worlds-first-handheld-digital-camera%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

How a 23-Year-Old in 1975 Built the World

In 1975, 23-year-old electrical engineer Steve Sasson joined Kodak. And in a new interview with the BBC, he remembers that he

at Slashdot.

How a 23-Year-Old in 1975 Built the World

In 1975, 23-year-old electrical engineer Steve Sasson joined Kodak. And in a new interview with the BBC, he remembers that he

More of America's Coal-Fired Power Plants Cease Operations New England's last coal-fired power plant "has ceased operations three years ahead of its planned retirement date," reports the New Hampshire Bulletin. "The closure of the New Hampshire facility paves the way for its owner to press ahead with an initiative to transform the site into a clean energy complex including solar panels and battery storage systems." "The end of coal is real, and it is here," said Catherine Corkery, chapter director for Sierra Club New Hampshire. "We're really excited about the next chapter...." The closure in New Hampshire — so far undisputed by the federal government — demonstrates that prolonging operations at some facilities just doesn't make economic sense for their owners. "Coal has been incredibly challenged in the New England market for over adecade," said Dan Dolan, president of the New England Power Generators Association. Merrimack Station, a 438-megawatt power plant, came online in the1960s and provided baseload power to the New England region for decades. Gradually, though, natural gas — which is cheaper and more efficient — took over the regional market... Additionally, solar power production accelerated from 2010 on, lowering demand on the grid during the day and creating more evening peaks. Coal plants take longer to ramp up production than other sources, and are therefore less economical for these shorter bursts of demand, Dolan said. In recent years, Merrimack operated only a few weeks annually. In 2024, the plant generated just0.22% of the region's electricity. It wasn't making enough money to justify continued operations, observers said. The closure "is emblematic of the transition that has been occurring in the generation fleet in New England for many years," Dolan said. "The combination of all those factors has meant that coal facilities are no longer economic in this market." Meanwhile Los Angeles — America's second-largest city — confirmed that the last coal-fired power plant supplying its electricity stopped operations just before Thanksgiving, reports the Utah News Dispatch: Advocates from the Sierra Club highlighted in a news release that shutting down the units had no impact on customers, and questioned who should "shoulder the cost of keeping an obsolete coal facility on standby...." Before ceasing operations, the coal units had been working at low capacities for several years because the agency's users hadn't been calling on the power [said John Ward, spokesperson for Intermountain Power Agency]. The coal-powered units "had a combined capacity of around 1,800 megawatts when fully operational," notes Electrek, "and as recently as 2024, they still supplied around 11% of LA's electricity. The plant sits in Utah's Great Basin region and powered Southern California for decades." Now, for the first time, none of California's power comes from coal. There's a political hiccup with IPP, though: the Republican-controlled Utah Legislature blocked the Intermountain Power Agency from fully retiring the coal units this year, ordering that they can't be disconnected or decommissioned. But despite that mandate, no buyers have stepped forward to keep the outdated coal units online. The Los Angeles Department of Water and Power (LADWP) is transitioning to newly built, hydrogen-capable generating units at the same IPP location, part of a modernization effort called IPP Renewed. These new units currently run on natural gas, but they're designed to burn a blend of natural gas and up to 30% green hydrogen, and eventually100% green hydrogen. LADWP plans to start adding green hydrogen to the fuel mix in 2026. "With the plant now idled but legally required to remain connected, serious questions remain about who will shoulder the cost of keeping an obsolete coal facility on standby," says the Sierra Club. One of the natural gas units started commerical operations last Octoboer, with the second starting later this month, IPP spokesperson John Ward told Agency]. the Utah News Dispatch. <a href="http://twitter.com/home?status=More+of+America's+Coal-Fired+Power+Plants+Cease+Operations%3A+https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F13%2F0254253%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F13%2F0254253%2Fmore-of-americas-coal-fired-power-plants-cease-operations%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

More of America

New England

at Slashdot.

More of America

New England

Rust in Linux's Kernel 'is No Longer Experimental' Steven J. Vaughan-Nichols files this report from Tokyo: At the invitation-only Linux Kernel Maintainers Summit here, the top Linux maintainers decided, as Jonathan Corbet, Linux kernel developer, put it, "The consensus among the assembled developers is that Rust in the kernel is no longer experimental — it is now a core part of the kernel and is here to stay. So the 'experimental' tag will be coming off." As Linux kernel maintainer Steven Rosted told me, "There was zero pushback." This has been a long time coming. This shift caps five years of sometimes-fierce debate over whether the memory-safe language belonged alongside C at the heart of the world's most widely deployed open source operating system... It all began when Alex Gaynor and Geoffrey Thomas at the 2019 Linux Security Summit said that about two-thirds of Linux kernel vulnerabilities come from memory safety issues. Rust, in theory, could avoid these by using Rust's inherently safer application programming interfaces (API)... In those early days, the plan was not to rewrite Linux in Rust; it still isn't, but to adopt it selectively where it can provide the most security benefit without destabilizing mature C code. In short, new drivers, subsystems, and helper libraries would be the first targets... Despite the fuss, more and more programs were ported to Rust. By April 2025, the Linux kernel contained about 34 million lines of C code, with only 25 thousand lines written in Rust. At the same time, more and more drivers and higher-level utilities were being written in Rust. For instance, the Debian Linux distro developers announced that going forward, Rust would be a required dependency in its foundational Advanced Package Tool (APT). This change doesn't mean everyone will need to use Rust. C is not going anywhere. Still, as several maintainers told me, they expect to see many more drivers being written in Rust. In particular, Rust looks especially attractive for "leaf" drivers (network, storage, NVMe, etc.), where the Rust-for-Linux bindings expose safe wrappers over kernel C APIs. Nevertheless, for would-be kernel and systems programmers, Rust's new status in Linux hints at a career path that blends deep understanding of C with fluency in Rust's safety guarantees. This combination may define the next generation of low-level development work. <a href="http://twitter.com/home?status=Rust+in+Linux's+Kernel+'is+No+Longer+Experimental'%3A+https%3A%2F%2Flinux.slashdot.org%2Fstory%2F25%2F12%2F13%2F0347245%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Flinux.slashdot.org%2Fstory%2F25%2F12%2F13%2F0347245%2Frust-in-linuxs-kernel-is-no-longer-experimental%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Rust in Linux

Steven J. Vaughan-Nichols files this report from Tokyo: At the invitation-only Linux Kernel Maintainers Summit here, the top Linux maintainers ...

at Slashdot.

Rust in Linux

Steven J. Vaughan-Nichols files this report from Tokyo: At the invitation-only Linux Kernel Maintainers Summit here, the top Linux maintainers ...

Arizona City Rejects Data Center After Lobbying Push Chandler, Arizona unanimously rejected a proposed AI data center despite heavy lobbying from Big Tech interests and former Sen. Kyrsten Sinema. Politico reports: The Chandler City Council last night voted down a request by a New York developer to rezone land to build a data center and business complex. The local battle escalated in October after Sinema showed up at a planning commission meeting to offer public comment warning officials in her home state that federal authority may soon stomp on local regulations. "Chandler right now has the opportunity to determine how and when these new, innovative AI data centers will be built," she told local officials. "When federal preemption comes, we'll no longer have that privilege." Explaining her no vote, Chandler Vice Mayor Christine Ellis said that she had long framed her decision about the local benefits rather than the national push to build AI. She recalled a meeting with Sinema where she asked point-blank, "what's in it for Chandler?" "If you can't show me what's in it for Chandler, then we are not having a conversation," Ellis said before voting against the project. [...] The project, along with Sinema's involvement, attracted significant community opposition, with speakers raising concerns about whether the project would use too much water or raise power prices. Residents packed the council chambers, with many holding up signs reading "No More Data Centers." According to the city's planning office, more than 200 comments were filed against the proposal compared to just eight in favor. <a href="http://twitter.com/home?status=Arizona+City+Rejects+Data+Center+After+Lobbying+Push%3A+https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F12%2F234225%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F12%2F234225%2Farizona-city-rejects-data-center-after-lobbying-push%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Arizona City Rejects Data Center After Lobbying Push - Slashdot

Chandler, Arizona unanimously rejected a proposed AI data center despite heavy lobbying from Big Tech interests and former Sen. Kyrsten Sinema. Pol...

at Slashdot.

Arizona City Rejects Data Center After Lobbying Push - Slashdot

Chandler, Arizona unanimously rejected a proposed AI data center despite heavy lobbying from Big Tech interests and former Sen. Kyrsten Sinema. Pol...

Framework Raises DDR5 Memory Prices By 50% For DIY Laptops Framework Computer raised DDR5 memory prices for its Laptop DIY Editions by 50% due to industry-wide memory shortages. Phoronix reports: Framework Computer is keeping the prior prices for existing pre-orders and also is foregoing any price changes for their pre-built laptops or the Framework Desktop. Framework Computer also lets you order DIY laptops without any memory at all if so desired for re-using existing modules or should you score a deal elsewhere. Due to their memory pricing said to be more competitive below market rates, they also adjusted their return policy to prevent scalpers from purchasing DIY Edition laptops with memory while then returning just the laptops. The DDR5 must be returned now with DIY laptop order returns. Additional details can be found via the Framework Blog. <a href="http://twitter.com/home?status=Framework+Raises+DDR5+Memory+Prices+By+50%25+For+DIY+Laptops%3A+https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F12%2F2258200%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fhardware.slashdot.org%2Fstory%2F25%2F12%2F12%2F2258200%2Fframework-raises-ddr5-memory-prices-by-50-for-diy-laptops%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Framework Raises DDR5 Memory Prices By 50% For DIY Laptops - Slashdot

Framework Computer raised DDR5 memory prices for its Laptop DIY Editions by 50% due to industry-wide memory shortages. Phoronix reports: Framework...

at Slashdot.

Framework Raises DDR5 Memory Prices By 50% For DIY Laptops - Slashdot

Framework Computer raised DDR5 memory prices for its Laptop DIY Editions by 50% due to industry-wide memory shortages. Phoronix reports: Framework...

Doom Studio id Software Forms 'Wall-To-Wall' Union id Software employees voted to form a wall-to-wall union with the CWA, covering all roles at the Doom studio. "The vote wasn't unanimous, though a majority did vote in favor of the union," notes Engadget. From the report: The union will work in conjunction with the Communications Workers of America (CWA), which is the same organization involved with parent company ZeniMax's recent unionization efforts. Microsoft, who owns ZeniMax, has already recognized this new effort, according to a statement by the CWA. It agreed to a labor neutrality agreement with the CWA and ZeniMax workers last year, paving the way for this sort of thing. From the onset, this union will look to protect remote work for id Software employees. "Remote work isn't a perk. It's a necessity for our health, our families, and our access needs. RTO policies should not be handed down from executives with no consideration for accessibility or our well-being," said id Software Lead Services Programmer Chris Hays. He also said he looks forward to getting worker protections regarding the "responsible use of AI." <a href="http://twitter.com/home?status=Doom+Studio+id+Software+Forms+'Wall-To-Wall'+Union%3A+https%3A%2F%2Fgames.slashdot.org%2Fstory%2F25%2F12%2F12%2F2316202%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fgames.slashdot.org%2Fstory%2F25%2F12%2F12%2F2316202%2Fdoom-studio-id-software-forms-wall-to-wall-union%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Doom Studio id Software Forms

id Software employees voted to form a wall-to-wall union with the CWA, covering all roles at the Doom studio. &#34;The vote wasn

at Slashdot.

Doom Studio id Software Forms

id Software employees voted to form a wall-to-wall union with the CWA, covering all roles at the Doom studio. &#34;The vote wasn

Russian Hackers Debut Simple Ransomware Service, But Store Keys In Plain Text The pro-Russian CyberVolk group resurfaced with a Telegram-based ransomware-as-a-service platform, but fatally undermined its own operation by hardcoding master encryption keys in plaintext. The Register reports: First, the bad news: the CyberVolk 2.x (aka VolkLocker) ransomware-as-a-service operation that launched in late summer. It's run entirely through Telegram, which makes it very easy for affiliates that aren't that tech savvy to lock files and demand a ransom payment. CyberVolk's soldiers can use the platform's built-in automation to generate payloads, coordinate ransomware attacks, and manage their illicit business operations, conducting everything through Telegram. But here's the good news: the ransomware slingers got sloppy when it came time to debug their code and hardcoded the master keys -- this same key encrypts all files on a victim's system -- into the executable files. This could allow victims to recover encrypted data without paying the extortion fee, according to SentinelOne senior threat researcher Jim Walter, who detailed the gang's resurgence and flawed code in a Thursday report. <a href="http://twitter.com/home?status=Russian+Hackers+Debut+Simple+Ransomware+Service%2C+But+Store+Keys+In+Plain+Text%3A+https%3A%2F%2Fit.slashdot.org%2Fstory%2F25%2F12%2F12%2F2140258%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fit.slashdot.org%2Fstory%2F25%2F12%2F12%2F2140258%2Frussian-hackers-debut-simple-ransomware-service-but-store-keys-in-plain-text%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Russian Hackers Debut Simple Ransomware Service, But Store Keys In Plain Text - Slashdot

The pro-Russian CyberVolk group resurfaced with a Telegram-based ransomware-as-a-service platform, but fatally undermined its own operation by hard...

at Slashdot.

Russian Hackers Debut Simple Ransomware Service, But Store Keys In Plain Text - Slashdot

The pro-Russian CyberVolk group resurfaced with a Telegram-based ransomware-as-a-service platform, but fatally undermined its own operation by hard...

New Kindle Feature Uses AI To Answer Questions About Books - And Authors Can't Opt Out An anonymous reader shares a report: Amazon has quietly added a new AI feature to its Kindle iOS app -- a feature that "lets you ask questions about the book you're reading and receive spoiler-free answers," according to an Amazon announcement. The company says the feature, which is called Ask this Book, serves as "your expert reading assistant, instantly answering questions about plot details, character relationships, and thematic elements without disrupting your reading flow." Publishing industry resource Publishers Lunch noticed Ask this Book earlier this week, and asked Amazon about it. Amazon spokesperson Ale Iraheta told PubLunch, "The feature uses technology, including AI, to provide instant, spoiler-free answers to customers' questions about what they're reading. Ask this Book provides short answers based on factual information about the book which are accessible only to readers who have purchased or borrowed the book and are non-shareable and non-copyable." As PubLunch summed up: "In other words, speaking plainly, it's an in-book chatbot." [...] Perhaps most alarmingly, the Amazon spokesperson said, "To ensure a consistent reading experience, the feature is always on, and there is no option for authors or publishers to opt titles out." <a href="http://twitter.com/home?status=New+Kindle+Feature+Uses+AI+To+Answer+Questions+About+Books+-+And+Authors+Can't+Opt+Out%3A+https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F12%2F2046226%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F12%2F2046226%2Fnew-kindle-feature-uses-ai-to-answer-questions-about-books---and-authors-cant-opt-out%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

New Kindle Feature Uses AI To Answer Questions About Books - And Authors Can

An anonymous reader shares a report: Amazon has quietly added a new AI feature to its Kindle iOS app -- a feature that &#34;lets you ask questions ...

at Slashdot.

New Kindle Feature Uses AI To Answer Questions About Books - And Authors Can

An anonymous reader shares a report: Amazon has quietly added a new AI feature to its Kindle iOS app -- a feature that &#34;lets you ask questions ...

Amazon Prime Video Pulls AI-Powered Recaps After Fallout Flub An anonymous reader shares a report: Amazon Prime Video has pulled its AI-powered video recap of Fallout after viewers noticed that it got key parts of the story wrong. The streaming service began testing Video Recaps last month, and now they're missing from the shows included in the test, including Fallout, The Rig, Tom Clancy's Jack Ryan, Upload, and Bosch. The feature is supposed to use AI to analyze a show's key plot points and sum it all in a bite-sized video, complete with an AI voiceover and clips from the series. But in its season one recap of Fallout, Prime Video incorrectly stated that one of The Ghoul's (Walton Goggins) flashbacks is set in "1950s America" rather than the year 2077, as spotted earlier by Games Radar. <a href="http://twitter.com/home?status=Amazon+Prime+Video+Pulls+AI-Powered+Recaps+After+Fallout+Flub%3A+https%3A%2F%2Fentertainment.slashdot.org%2Fstory%2F25%2F12%2F12%2F2036218%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fentertainment.slashdot.org%2Fstory%2F25%2F12%2F12%2F2036218%2Famazon-prime-video-pulls-ai-powered-recaps-after-fallout-flub%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Amazon Prime Video Pulls AI-Powered Recaps After Fallout Flub - Slashdot

An anonymous reader shares a report: Amazon Prime Video has pulled its AI-powered video recap of Fallout after viewers noticed that it got key part...

at Slashdot.

Amazon Prime Video Pulls AI-Powered Recaps After Fallout Flub - Slashdot

An anonymous reader shares a report: Amazon Prime Video has pulled its AI-powered video recap of Fallout after viewers noticed that it got key part...

'Apple Tax is Dead in the USA' The Ninth Circuit Court of Appeals has almost entirely upheld a scathing April ruling that found Apple in willful violation of a 2021 injunction meant to open up iOS App Store payments in its long-running legal battle against Epic Games. A three-judge panel affirmed that Apple's 27% fee for developers using outside payment options had a "prohibitive effect" and that the company's design restrictions on external payment links were overly broad. The appeals court also agreed that Apple acted in "bad faith" by rejecting viable, compliant alternatives in internal discussions. One divergence from the lower court: the appeals court ruled that Apple should still be able to charge a "reasonable fee" based on its actual costs to ensure user security and privacy, rather than charging nothing at all. What qualifies as "reasonable" remains to be determined. Epic CEO Tim Sweeney told reporters he believes those fees should be "super super minor," on the order of "tens or hundreds of dollars" every time an iOS app update goes through Apple for review. "The Apple Tax is dead in the USA," he wrote on social media. Sweeney also alleged that a widespread "fear of retaliation" has kept many developers paying Apple's default 30% fees, claiming the company can effectively "ghost" apps by delaying reviews or burying them in search results. <a href="http://twitter.com/home?status='Apple+Tax+is+Dead+in+the+USA'%3A+https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F12%2F1655239%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F12%2F1655239%2Fapple-tax-is-dead-in-the-usa%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

'Apple Tax is Dead in the USA' - Slashdot

The Ninth Circuit Court of Appeals has almost entirely upheld a scathing April ruling that found Apple in willful violation of a 2021 injunction me...

at Slashdot.

'Apple Tax is Dead in the USA' - Slashdot

The Ninth Circuit Court of Appeals has almost entirely upheld a scathing April ruling that found Apple in willful violation of a 2021 injunction me...

The Immediate Post-College Transition and its Role in Socioeconomic Earnings Gaps A new study of roughly 80,000 bachelor's degree recipients from a large urban public college system finds that characteristics of a graduate's first job can explain nearly two-thirds of the otherwise-unexplained earnings gap between students from low-income and high-income families five years after graduation. The research [PDF], published as an NBER working paper by economists at Columbia University, tracked graduates from 2010 to 2017 using administrative education data linked to state unemployment insurance records. Low-income students -- defined as those receiving Pell grants throughout their undergraduate enrollment -- earned about 12% less than their high-income peers at the five-year mark. A substantial gap of roughly $4,900 persisted even after the researchers controlled for GPA, college attended, major, and other pre-graduation characteristics. That residual gap fell to about $1,700 once first-job variables entered the equation. Graduates from lower-income families tended to start at employers paying lower average wages and were less likely to have their first job secured before graduation. Just 34% of low-income graduates continued at a pre-graduation employer compared to 40% of their higher-income peers. The firms employing low-income graduates paid average wages that were 18% lower than those employing high-income graduates. The researchers say that while the study cannot establish causation, the patterns suggest that supporting low-income students during their transition from college to the labor market may be a fruitful area for policy intervention. <a href="http://twitter.com/home?status=The+Immediate+Post-College+Transition+and+its+Role+in+Socioeconomic+Earnings+Gaps%3A+https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F12%2F1537259%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F12%2F1537259%2Fthe-immediate-post-college-transition-and-its-role-in-socioeconomic-earnings-gaps%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

The Immediate Post-College Transition and its Role in Socioeconomic Earnings Gaps - Slashdot

A new study of roughly 80,000 bachelor

at Slashdot.

The Immediate Post-College Transition and its Role in Socioeconomic Earnings Gaps - Slashdot

A new study of roughly 80,000 bachelor

Hollywood Director Found Guilty of Blowing $11 Million Netflix Budget on Crypto and Ferraris Carl Rinsch, the director behind the 2013 Keanu Reeves film "47 Ronin," has been found guilty of defrauding Netflix out of $11 million that was meant to fund a science fiction series called "Conquest," which the streaming company ultimately cancelled in 2021 after Rinsch failed to meet any production milestones. A jury in the Southern District of New York convicted the 48-year-old on seven charges: one count each of wire fraud and money laundering, and five counts of transacting in illicitly obtained property. Prosecutors alleged that Rinsch funneled the $11 million through multiple bank accounts into a personal brokerage account, lost more than half of it on securities within two months, and then began speculating on cryptocurrency. Court records show he also spent $2.4 million on a Ferrari and five Rolls Royces, $3.3 million on furniture and antiques, and $387,000 on a Swiss watch. Netflix has written off $55 million in total and has not recovered any funds. Rinsch faces up to 90 years in prison and is scheduled for sentencing on April 17, 2026. <a href="http://twitter.com/home?status=Hollywood+Director+Found+Guilty+of+Blowing+%2411+Million+Netflix+Budget+on+Crypto+and+Ferraris%3A+https%3A%2F%2Fyro.slashdot.org%2Fstory%2F25%2F12%2F12%2F1428243%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fyro.slashdot.org%2Fstory%2F25%2F12%2F12%2F1428243%2Fhollywood-director-found-guilty-of-blowing-11-million-netflix-budget-on-crypto-and-ferraris%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Hollywood Director Found Guilty of Blowing $11 Million Netflix Budget on Crypto and Ferraris - Slashdot

Carl Rinsch, the director behind the 2013 Keanu Reeves film &#34;47 Ronin,&#34; has been found guilty of defrauding Netflix out of $11 million that...

at Slashdot.

Hollywood Director Found Guilty of Blowing $11 Million Netflix Budget on Crypto and Ferraris - Slashdot

Carl Rinsch, the director behind the 2013 Keanu Reeves film &#34;47 Ronin,&#34; has been found guilty of defrauding Netflix out of $11 million that...

97% of Buildings On Earth 3D-Mapped Longtime Slashdot reader Gilmoure shares a report from Nature: Scientists have produced the most detailed 3D map of almost all buildings in the world. The map, called GlobalBuildingAtlas, combines satellite imagery and machine learning to generate 3D models for 97% of buildings on Earth. The dataset, published in the open-access journal Earth System Science Data on December 1, covers 2.75 billion buildings, each mapped with footprints and heights at a spatial resolution of 3 meters by 3 meters. The 3D map opens new possibilities for disaster risk assessment, climate modeling and urban planning, according to study co-author Xiaoxiang Zhu, an Earth observation data scientist at the Technical University of Munich in Germany. "Imagine a video game with the world's buildings already mapped in basic spatial dimensions!" writes Gilmoure. <a href="http://twitter.com/home?status=97%25+of+Buildings+On+Earth+3D-Mapped%3A+https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F11%2F2333243%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fnews.slashdot.org%2Fstory%2F25%2F12%2F11%2F2333243%2F97-of-buildings-on-earth-3d-mapped%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

97% of Buildings On Earth 3D-Mapped - Slashdot

Longtime Slashdot reader Gilmoure shares a report from Nature: Scientists have produced the most detailed 3D map of almost all buildings in the w...

at Slashdot.

97% of Buildings On Earth 3D-Mapped - Slashdot

Longtime Slashdot reader Gilmoure shares a report from Nature: Scientists have produced the most detailed 3D map of almost all buildings in the w...

Over 10,000 Docker Hub Images Found Leaking Credentials, Auth Keys joshuark shares a report from BleepingComputer: More than 10,000 Docker Hub container images expose data that should be protected, including live credentials to production systems, CI/CD databases, or LLM model keys. After scanning container images uploaded to Docker Hub in November, security researchers at threat intelligence company Flare found that 10,456 of them exposed one or more keys. The most frequent secrets were access tokens for various AI models (OpenAI, HuggingFace, Anthropic, Gemini, Groq). In total, the researchers found 4,000 such keys. "These multi-secret exposures represent critical risks, as they often provide full access to cloud environments, Git repositories, CI/CD systems, payment integrations, and other core infrastructure components," Flare notes. [...] Additionally, they found hardcoded API tokens for AI services being hardcoded in Python application files, config.json files, YAML configs, GitHub tokens, and credentials for multiple internal environments. Some of the sensitive data was present in the manifest of Docker images, a file that provides details about the image.Flare notes that roughly 25% of developers who accidentally exposed secrets on Docker Hub realized the mistake and removed the leaked secret from the container or manifest file within 48 hours. However, in 75% of these cases, the leaked key was not revoked, meaning that anyone who stole it during the exposure period could still use it later to mount attacks. Flare suggests that developers avoid storing secrets in container images, stop using static, long-lived credentials, and centralize their secrets management using a dedicated vault or secrets manager. Organizations should implement active scanning across the entire software development life cycle and revoke exposed secrets and invalidate old sessions immediately. <a href="http://twitter.com/home?status=Over+10%2C000+Docker+Hub+Images+Found+Leaking+Credentials%2C+Auth+Keys%3A+https%3A%2F%2Fyro.slashdot.org%2Fstory%2F25%2F12%2F11%2F2328238%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fyro.slashdot.org%2Fstory%2F25%2F12%2F11%2F2328238%2Fover-10000-docker-hub-images-found-leaking-credentials-auth-keys%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Over 10,000 Docker Hub Images Found Leaking Credentials, Auth Keys - Slashdot

joshuark shares a report from BleepingComputer: More than 10,000 Docker Hub container images expose data that should be protected, including live c...

at Slashdot.

Over 10,000 Docker Hub Images Found Leaking Credentials, Auth Keys - Slashdot

joshuark shares a report from BleepingComputer: More than 10,000 Docker Hub container images expose data that should be protected, including live c...

Trump Signs Executive Order For Single National AI Regulation Framework, Limiting Power of States President Trump signed an executive order establishing a single federal AI regulatory framework that preempts state-level rules, aiming to centralize oversight of the rapidly growing AI industry. "The Trump administration, with the aid of AI and crypto czar David Sacks, has been pursuing a path that would allow federal rules to preempt state regulations on AI, a move meant to keep big Democratic-led states like California and New York from exerting their control over the growing industry," notes CNBC. Developing... <a href="http://twitter.com/home?status=Trump+Signs+Executive+Order+For+Single+National+AI+Regulation+Framework%2C+Limiting+Power+of+States%3A+https%3A%2F%2Fyro.slashdot.org%2Fstory%2F25%2F12%2F11%2F2352215%2F%3Futm_source%3Dtwitter%26utm_medium%3Dtwitter" rel="nofollow"><img src="https://a.fsdn.com/sd/twitter_icon_large.png"></a> <a href="http://www.facebook.com/sharer.php?u=https%3A%2F%2Fyro.slashdot.org%2Fstory%2F25%2F12%2F11%2F2352215%2Ftrump-signs-executive-order-for-single-national-ai-regulation-framework-limiting-power-of-states%3Futm_source%3Dslashdot%26utm_medium%3Dfacebook" rel="nofollow"><img src="https://a.fsdn.com/sd/facebook_icon_large.png"></a>

Trump Signs Executive Order For Single National AI Regulation Framework, Limiting Power of States - Slashdot

President Trump signed an executive order establishing a single federal AI regulatory framework that preempts state-level rules, aiming to centrali...

at Slashdot.

Trump Signs Executive Order For Single National AI Regulation Framework, Limiting Power of States - Slashdot

President Trump signed an executive order establishing a single federal AI regulatory framework that preempts state-level rules, aiming to centrali...