bordalix's avatar
bordalix
bordalix@joaobordalo.com
npub1vt80...8cxv
Moving pixels @ArkLabs
bordalix's avatar
bordalix 1 month ago
Buenos días! Saturday assorted links: Helios Voting Helios offers verifiable online elections. Helios elections are: - private: no one knows how you voted. - verifiable: each voter gets a tracking number. - proven: Helios is open-source, vetted by top-tier experts, and in use by major organizations. 🔗
Helios Voting
 --- Jmail, logged in as jeevacation@gmail.com A phony Gmail interface that, rather than showing you your email, shows you Jeffrey Epstein’s emails 🔗
Jmail
Jmail, logged in as jeevacation@gmail.com
You are logged into jeevacation@gmail.com, Jeffrey Epstein's email. Sourced from the November 2025 House Oversight Committee data release.
 --- Best Free Fonts Best Free Fonts is a curated selection of free fonts. Including serif, sans serif, script and monospace. 🔗
Best Free Fonts
Best Free Fonts is a curated selection of free fonts. Including serif, sans serif, script and monospace.
bordalix's avatar
bordalix 1 month ago
Добрае раніца! Friday assorted links: raw₿it A visual, node-based editor where you can drag-and-drop predefined nodes on canvas to build Bitcoin transactions from scratch. What you can do today in raw₿it: - Build raw Bitcoin transactions visually by connecting nodes on a canvas - See the exact Python code running behind every single calculation node - Step through script execution and watch the stack mutate at each opcode - Change amounts, locktimes, scripts and instantly see preimages, signatures, witnesses, TXID/WTXID update - Comes with 10 hands-on lessons (P2PKH, multisig, timelocks, SegWit, payment channels, etc.) — all transactions broadcast to testnet for verification. 🔗
raw₿it
 --- Bitcoin Core technical security audit report Over a four-month period (May - September 2025), Quarkslab conducted a 100 man day technical review of Bitcoin Core. Their focus was on the most security-critical components of the software, including the peer-to-peer networking layer, mempool, chain management, and consensus logic. The auditors at Quarkslab reported no critical, high, or medium-severity issues. 🔗 https://ostif.org/wp-content/uploads/2025/11/25-05-2133-REP-bitcoincore-security-assessment-V1.3.pdf
bordalix's avatar
bordalix 1 month ago
Ohayō gozaimasu! Thursday assorted links: EchoFeed - Cross post your RSS feed to Mastodon, Bluesky, Micro.blog, Discord, and more! It supports reading RSS & Atom & JSON feeds and then posting those items to Mastodon & Micro.blog & Bluesky & GitHub & Discord & LinkAce & LinkDing. Or it can send them as Webmentions & Webhooks 🔗
EchoFeed - Cross post your RSS feed to Mastodon, Bluesky, Micro.blog, Discord, and more!
Send your posts all over the web
 --- Cypherpunks Hall of Fame These are the heroes that built the tools to protect us all. They showed that cryptography is a quiet declaration of freedom. 🔗
Cypherpunks Hall of Fame
 --- diVine Web - Short-form Looping Videos on Nostr Watch and share 6-second looping videos on the decentralized Nostr network. 🔗
diVine Web - Short-form Looping Videos on Nostr
Watch and share 6-second looping videos on the decentralized Nostr network.
bordalix's avatar
bordalix 1 month ago
Buenos días! Monday assorted links: GitHub - jonasstrehle/supercookie: ⚠️ Browser fingerprinting via favicon! Supercookie uses favicons to assign a unique identifier to website visitors. Unlike traditional tracking methods, this ID can be stored almost persistently and cannot be easily cleared by the user. 🔗
GitHub
GitHub - jonasstrehle/supercookie: ⚠️ Browser fingerprinting via favicon!
⚠️ Browser fingerprinting via favicon! Contribute to jonasstrehle/supercookie development by creating an account on GitHub.
bordalix's avatar
bordalix 1 month ago
Добрае раніца! Sunday assorted links: How to \officially\ deprecate methods with Node.js utilities If you maintain a Node.js library or framework that's consumed by people downstream, you know the pain of introducing breaking changes and deprecating existing functionality. People get mad very quickly and the only solution is to communicate very early that things might change or will disappear in a future version. 🔗
How to "officially" deprecate methods with Node.js utilities
Use the Node.js' `deprecated` utility to deprecated methods.
bordalix's avatar
bordalix 1 month ago
Guten Morgen! Saturday assorted links: Search the Epstein Files Search the Epstein Files 🔗
Search the Epstein Files
Search the Epstein Files
 --- PUBPAY.me - Request and receive Lightning payments on Nostr Whether you're collecting donations, splitting bills, or selling services, PubPay lets you create payment requests that can be paid with just a few clicks. 🔗
PUBPAY.me - Payment Requests
PUBPAY.me - Request and receive Lightning payments on Nostr
 --- Handy Handy is a cross platform, open-source, speech-to-text application for your computer 🔗
Handy
Handy
Handy is a cross platform, open-source, speech-to-text application for your computer
 --- Publish Youtube Music track as music status on nostr via NIP7 extension Just paste this code into your browser console 🔗
Gist
Publish Youtube Music track as music status on nostr via NIP7 extension
Publish Youtube Music track as music status on nostr via NIP7 extension - yt-music.js
bordalix's avatar
bordalix 1 month ago
Good Morning! Friday assorted links: GitHub - jermanuts/bad-opsec: Collection of links on bad opsec The best way to learn about opsec is to learn how people fail. 🔗
GitHub
GitHub - jermanuts/bad-opsec: Collection of links on bad opsec
Collection of links on bad opsec. Contribute to jermanuts/bad-opsec development by creating an account on GitHub.
 --- Randomness Testing Guide Test the randomness of random number generators. 🔗
Randomness Testing Guide
Randomness Testing Guide
Test the randomness of random number generators.
bordalix's avatar
bordalix 1 month ago
Namaste! Wednesday assorted links: Pikaday A friendly guide to front-end date pickers! 🔗
pikaday.dbushell.com
Pikaday
A friendly guide to front-end date pickers!
 --- The overengineered Solution to my Pigeon Problem :: Max Nagy TL;DR: I built a wifi-equipped water gun to shoot the pigeons on my balcony, controlled over the internet by a python script running openCV reading the camera image of my old iPhone. 🔗
Max Nagy
The overengineered Solution to my Pigeon Problem
TL;DR: I built a wifi-equipped water gun to shoot the pigeons on my balcony, controlled over the internet by a python script running openCV reading...
bordalix's avatar
bordalix 1 month ago
Buenos días! Tuesday assorted links: Recommend | book.sv Input books you've read and receive recommendations on what to read next from our model. Only books that meet a popularity threshold are included in the search results and generated recommendations 🔗
book.sv
Recommend | book.sv
Great book recommendations.
 --- S2, the durable stream API The serverless API for unlimited, durable, real-time streams 🔗
S2
S2, the durable stream API
The serverless API for unlimited, durable, real-time streams
bordalix's avatar
bordalix 1 month ago
Bonjour! Monday assorted links: Image Compare Web Component A tiny, zero-dependency web component for comparing two images using a slider. Built with a focus on accessibility, performance, and progressive enhancement. 🔗
Image Compare Web Component
A tiny, zero-dependency web component for comparing two images using a slider. Built with a focus on accessibility, performance, and progressive en...
 --- iOS Icon Gallery Showcasing beautiful icon designs from the iOS App Store 🔗
iOS Icon Gallery
Showcasing beautiful icon designs from the iOS App Store
 --- PingStalker – Advanced Network & Port Scanner PingStalker is the ultimate toolkit for the Wi-Fi and network engineer. 🔗
NetViews – Advanced Network & Port Scanner
bordalix's avatar
bordalix 2 months ago
Bom dia! Saturday assorted links: MuSig 2 Explained Schnorr multisignatures in 2 rounds instead of 3 -> no malleability, DoS-resistant, and secure against rogue-key attacks. 🔗
Stacker News
MuSig 2 Explained \ stacker news
MuSig2 Explained Schnorr multisignatures in 2 rounds instead of 3 -> no malleability, DoS-resistant, and secure against rogue-key attacks. If you m...
 --- GitHub - archistico/ShadeOfColor2 A simple cross-platform tool to hide files inside PNG images 🔗
GitHub
GitHub - archistico/ShadeOfColor2: A simple cross-platform tool to hide files inside PNG images
A simple cross-platform tool to hide files inside PNG images - archistico/ShadeOfColor2
bordalix's avatar
bordalix 2 months ago
Good Morning! Friday assorted links: I may have found a way to spot U.S. at-sea strikes before they’re announced—using public satellite heat data : OSINT Over the last month the U.S. has carried out several interdiction strikes on narco-trafficking boats in the Eastern Pacific and Caribbean. These are usually acknowledged the next day, described vaguely as “in international waters,” with no coordinates. I’ve been experimenting with NASA’s VIIRS thermal anomaly feed (FIRMS) to see if any of these events are visible as they happen. 🔗 https://old.reddit.com/r/OSINT/comments/1opjjyv/i_may_have_found_a_way_to_spot_us_atsea_strikes/ --- HTML Slides with notes HTML Slides with notes ... in 22 lines of JavaScript 🔗 https://nbd.neocities.org/slidepresentation/Slide%20presentation%20about%20slides
bordalix's avatar
bordalix 2 months ago
Nǐ hǎo! Wednesday assorted links: Your privacy friendly ISP and Domain Registrar | IncogNET IncogNET is a privacy-focused ISP and Domain Registrar with a commitment to free speech and privacy. Explore our web hosting, VPN, domain registration, and email hosting services today. Accepts Lightning 🔗
IncogNET
Privacy-Focused Web Hosting & VPS | IncogNET
IncogNET provides privacy-focused web hosting, KVM virtual servers, WireGuard VPN, and domain registration. Host with confidence on our free speech...
 --- Njalla — Worlds most notorious privacy provider for domains, VPS' and VPNs. Accepts Lightning 🔗
Njalla — Worlds most notorious privacy provider for domains, VPS' and VPNs.
Njalla — Considered the worlds most notorious &quote;Privacy as a Service&quote; provider for domains, VPS
 --- Suites | Unit Testing Framework for Dependency Injection Suites automates mocking and simplifies test setup for dependency injection frameworks like NestJS and InversifyJS, reducing boilerplate code. 🔗
Suites
Suites - A Modern Unit Testing Framework
A unit testing framework for TypeScript backends working with inversion of control and dependency injection
bordalix's avatar
bordalix 2 months ago
Namaste! Tuesday assorted links: Pagefind | Pagefind — Static low-bandwidth search at scale Pagefind is a fully static search library that aims to perform well on large sites, while using as little of your users’ bandwidth as possible, and without hosting any infrastructure. 🔗
Pagefind — Static low-bandwidth search at scale
Pagefind | Pagefind — Static low-bandwidth search at scale
Pagefind is a fully static search library that aims to perform well on large sites, while using as little of your users’ bandwidth as possible, a...
 --- a11y.css’ documentation | a11y.css Pronounced \Alix\. This CSS file intends to warn developers about possible risks and mistakes that exist in HTML code. It can also be used to roughly evaluate a site's quality by simply including it as an external stylesheet. 🔗
a11y.css’ documentation | a11y.css
This CSS file intends to warn developers about possible risks and mistakes that exist in HTML code. It can also be used to roughly evaluate a site
 --- Port of Linux to WebAssembly The Linux kernel, booting in your browser, powered by WebAssembly (Wasm). The included programs (shell and standard commands) are provided by BusyBox, backed by a musl libc implementation. The terminal emulator is provided by Xterm.js. This is a proof-of-concept to get a discussion started, not a stable nor a secure system. 🔗 https://joelseverin.github.io/linux-wasm/ --- A heatmap diff viewer for code reviews Pull request viewer that color-codes every diff line/token by how much human attention it probably needs 🔗
A heatmap diff viewer for code reviews
Pull request viewer that color-codes every diff line/token by how much human attention it probably needs
bordalix's avatar
bordalix 2 months ago
Buenos días! Monday assorted links: You’re loading fonts wrong (and it’s crippling your performance) - Jono Alderson Fonts are one of the most visible, most powerful parts of the web. And yet: almost everyone gets them wrong. 🔗
Jono Alderson
You’re loading fonts wrong (and it’s crippling your performance)
Fonts are one of the most visible, most powerful parts of the web. And yet: almost everyone gets them wrong.
 --- The Naked Man Problem and the Secret to Never Forgetting Numbers Crap. Where did I put my stuff? Every time I go to the gym, it’s the same thing - a sea of identical lockers. And I have no idea which is mine. I can’t solve this by picking a favorite, because there’s always a potential naked man standing next to... 🔗
Ninjas and Robots on Svbtle
The Naked Man Problem and the Secret to Never Forgetting Numbers • Ninjas and Robots
Crap. Where did I put my stuff? Every time I go to the gym, it’s the same thing - a sea of identical lockers. And I have no idea which is mine. I...
 --- Your URL Is Your State A deep dive into how thoughtful URL design can enhance usability, shareability, and performance. Learn what state belongs in URLs, common pitfalls to avoid, and practical patterns for modern web apps. 🔗
Ahmad Alfy
Your URL Is Your State
A deep dive into how thoughtful URL design can enhance usability, shareability, and performance. Learn what state belongs in URLs, common pitfalls ...
 --- Security vulnerabilities in AI-powered web browsers AI-enabled browsers add an agentic layer across email, calendars, and connected apps. Or just allow mechanisation of a web browser via AI. Having been a routine user of web browser automation tools since 15+ years, I appreciate the new potential. However, it is important to note that the web platform, and web browsers, are complicated beasts. The effect on user's security and privacy is that the threat model shifts: attacks pivot on how intent is parsed and which inputs the agent trusts. 🔗
Security, Privacy & Tech Inquiries
Security vulnerabilities in AI-powered web browsers
AI-enabled browsers add an agentic layer across email, calendars, and connected apps. Or just allow mechanisation of a web browser via AI. Having b...
bordalix's avatar
bordalix 2 months ago
Buenos días! Sunday assorted links: Start implementing view transitions on your websites today - Piccalilli The View Transition API allows us to animate between two states with relative ease. I say relative ease, but view transitions can get quite complicated fast. 🔗
Piccalilli
Start implementing view transitions on your websites today
Browser support for view transitions is rocketing and there
 --- GitHub - jofpin/brash: Chromium Browser DoS Attack via document.title Exploitation 🔗
GitHub
GitHub - jofpin/brash: Chromium Browser DoS Attack via document.title Exploitation
Chromium Browser DoS Attack via document.title Exploitation - jofpin/brash