ExcitingAds! Planet Debian

exim4 · Please consider supporting my work in Debian and elsewhere through Liberapay

  Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Corporation UEFI CA 2011
  Validity
    Not Before: Jun 27 21:22:45 2011 GMT
    Not After : Jun 27 21:32:45 2026 GMT

[ Zbigniew Jędrzejewski-Szmek ]
* Add a local version of the (deprecated) os.path.commonprefix method.

usage: debvulns [-h] [-s {critical,high,medium,low,negligible}] [-f {json,csv}] [--sort-by {package,cve}] [--vuln-url VULN_URL] [--epss-url EPSS_URL] [--suite SUITE]
                [--cache-dir CACHE_DIR] [--no-cache] [-v]

debvulns - CLI Debian Vulnerabilities Tracker

options:
    -h, --help            show this help message and exit
    -s, --severity {critical,high,medium,low,negligible}
                          Filter vulnerabilities by severity
    -f, --format {json,csv}
                          Output format (default: json)
    -sort-by {package,cve}
                          Sort vulnerabilities by 'package' or 'cve'
    --vuln-url VULN_URL   Custom URL or local path for Debian Security Tracker data
    --epss-url EPSS_URL   Custom URL or local path for EPSS scores data
    --suite SUITE         Debian suite name (e.g. bookworm, sid). Auto-detected by default.
    --cache-dir CACHE_DIR
                          Directory to cache fetched and parsed data (default: /var/cache/debvulns)
    --no-cache            Do not use cached data, force downloading and parsing
    -v, --verbose         Enable verbose debug logging (sent to stderr)

[ Chris Lamb ]
* Fix compatibility with Ocaml 5.4.1.

[ Chris Lamb ]
* Support androguard 4 and previous versions. Thanks, linsui!
  (Closes: #1140016)
* Use --long-form arguments when calling apktool in order to support apktool
  version 3. Thanks again to linsui. (Closes: #1140015)
* Update copyright years.

$ pkgcli search editor
Querying                  [████████████████████████████████████████] 100%
▣ ace-of-penguins 1.5~rc2-7.amd64 [debian-testing-main]
▣ acorn-fdisk 3.0.6-14.amd64 [debian-testing-main]
▣ ardour 1:9.2.0+ds-1.amd64 [debian-testing-main]
✔ audacity 3.7.7+dfsg-1.amd64 [manual:debian-testing-main]
✔ audacity-data 3.7.7+dfsg-1.all [auto:debian-testing-main]
▣ augeas-tools 1.14.1-1.1.amd64 [debian-testing-main]
▣ emacs 1:30.2+1-3.all [debian-testing-main]
▣ gedit 48.1-9+b1.amd64 [debian-testing-main]
▣ gedit-common 48.1-9.all [debian-testing-main]
▣ gedit-dev 48.1-9+b1.amd64 [debian-testing-main]
[...]

$ pkgcli show nano
Package: nano
Version: 9.0-1
Summary: small, friendly text editor inspired by Pico
Description: GNU nano is an easy-to-use text editor originally designed as
 a replacement for Pico, the ncurses-based editor from the non-free mailer
 package Pine.
[...]
URL: https://www.nano-editor.org/
Group: publishing
Installed Size: 2.9 MB
Download Size: 646.0 KB
$ pkgcli search name python3
$ pkgcli refresh && pkgcli list-updates
Loading cache            [████████████████████████████████████████] 100%
▲ cme 1.048-1.all [debian-testing-main]
▲ gir1.2-gdm-1.0 50.1-2.amd64 [debian-testing-main]
▲ imagemagick 8:7.1.2.24+dfsg1-1.amd64 [debian-testing-main]
▲ imagemagick-7-common 8:7.1.2.24+dfsg1-1.all [debian-testing-main]
▲ imagemagick-7.q16 8:7.1.2.24+dfsg1-1.amd64 [debian-testing-main]
▲ libdlrestrictions1 0.22.0.amd64 [debian-testing-main]
▲ libfftw3-bin 3.3.11-1.amd64 [debian-testing-main]
▲ libfftw3-dev 3.3.11-1.amd64 [debian-testing-main]
$ pkgcli list-depends inkscape  # list what inkscape depends on
$ pkgcli list-requiring libappstream5  # list what requires libappstream5
$ pkgcli what-provides "gstreamer1(decoder-video/x-av1)"
✔ gstreamer1.0-plugins-bad 1.28.3-1.amd64 [auto:debian-testing-main]
$ pkgcli --json list-updates | jq -r '.name'
cme
gir1.2-gdm-1.0
imagemagick
imagemagick-7-common
imagemagick-7.q16
libdlrestrictions1
libfftw3-bin
libfftw3-dev
libfftw3-double3
    for i in range(2**32-1):
[ Jochen Sprickerhof ]
* Improve header detection for Sphinx documentation projects.

2144316 root      20   0       0      0      0 I  26.6   0.0   0:36.76 kworker/u88:20-btrfs-endio-write                                                                                                                                                                             
2221470 root      20   0       0      0      0 I  23.7   0.0   0:01.85 kworker/u88:12-gfx                                                                                                                                                                                           
2221436 root      20   0       0      0      0 I  15.1   0.0   0:07.48 kworker/u88:8-btrfs-compressed-write                                                                                                                                                                         
2166191 root      20   0       0      0      0 I  12.8   0.0   0:15.80 kworker/u88:23-btrfs-compressed-write                                                                                                                                                                        
2126387 root      20   0       0      0      0 I  10.2   0.0   1:29.11 kworker/u88:4-events_unbound 
# chrt -p $(pidof -s einstein_O4MD_2.01_x86_64-pc-linux-gnu)
pid 2974874's current scheduling policy: SCHED_IDLE
pid 2974874's current scheduling priority: 0
#!/bin/bash
set -euo pipefail

nsdir=/var/namespaces
nsfile=$nsdir/backup
nsfilex="$(echo $nsfile | sed 's#/#\\/#'g)"

private_propagation() {
    findmnt -o+PROPAGATION "$nsdir" | grep -q private
}
nsfs_is_mounted() {
    test "nsfs" = "$(awk "/$nsfilex/ { print \$3 }" /proc/mounts)"
}

if ! nsfs_is_mounted; then

    if ! private_propagation; then
        mkdir -p "$nsdir"
        mount --bind --make-private "$nsdir" "$nsdir"
    fi

    touch "$nsfile"
    unshare --mount="$nsfile" true

    nsenter --mount=/var/namespaces/backup mount /dev/phobos_backup/backup /backup
fi

ExecStart=/usr/bin/nsenter \
        --mount=/var/namespaces/backup \
        borgmatic -v 1 prune create

$ sudo apt install qemu-user qemu-user-binfmt debootstrap
$ fakeroot debootstrap --foreign --arch=i386 debian-i386
$ sudo chroot debian-i386
# inside the chroot 
# /debootstrap/debootstrap --second-stage 
# exit

$ sudo mount --bind /dev/ debian-i386/dev/
$ sudo mount --bind /dev/pts debian-i386/dev/pts
$ sudo mount -t proc none  debian-i386/proc/

$ sudo chroot debian-i386

# export LANG=C
# cat /etc/apt/sources.list
deb http://deb.debian.org/debian stable main contrib non-free
# apt update && apt install --yes steamcmd 
# useradd --create-home --shell /bin/bash steam
# su - steam
$ steamcmd 
... will download an updated version of the tool, and print a lot of tracing information

Steam> quit

type rib struct {
    tree          *bart.Table[prefixIndex]
    routes        map[routeKey]route
    nlris         *intern.Pool[nlri]
    nextHops      *intern.Pool[nextHop]
    rtas          *intern.Pool[routeAttributes]
    nextPrefixID  prefixIndex
    freePrefixIDs []prefixIndex
}

type prefixIndex uint32
type routeIndex uint32
type routeKey uint64

type route struct {
    peer       uint32
    nlri       intern.Reference[nlri]
    nextHop    intern.Reference[nextHop]
    attributes intern.Reference[routeAttributes]
    prefixLen  uint8
}

type nlri struct {
    family bgp.Family
    path   uint32
    rd     RD
}
type nextHop netip.Addr
type routeAttributes struct {
    asn              uint32
    asPath           []uint32
    communities      []uint32
    largeCommunities []bgp.LargeCommunity
}

type generation uint32
type prefixRef struct {
    idx prefixIndex
    gen generation
}
type rib struct {
    mu     sync.Mutex
    tree   atomic.Pointer[bart.Table[prefixRef]]
    shards []*ribShard
}

~/.config/hraesvelgr/config.ini like this:

[server]
url=https://some.llm.example.com:8080/v1/
model=Qwen/Qwen3.6-27B-FP8

With this configuration in place (you can also specify these values
directly on the command line), you can specify a pattern and a file to
process like this:

% bin/hraesvelgr --pattern explain_code bin/hraesvelgr
EXPLANATION:
This Python script is a client tool for interacting with an AI
service (likely a local LLM server) to process text using prompts
defined in the "AI Fabric" repository. It reads system and user
prompts from markdown files, sends them along with input text to a
chat completion API endpoint, and prints the generated response.

Key components:
1. It uses argparse for command-line argument parsing
2. The `send_chat_completion_request` function formats messages
   (system, user, query) into JSON and sends them via HTTP POST to
   an AI service endpoint
3. `read_file` function reads markdown files, replacing placeholders
   like {{lang_code}} with actual values from arguments
4. In main():
 - Parses command-line arguments for input file, API base URL,
   pattern type, language code, and debug flag
 - Ensures the base URL ends with a slash
 - Reads system prompt from data/patterns/{pattern}/system.md
 - Optionally reads user prompt from data/patterns/{pattern}/user.md
 - Reads input text either from stdin (when "-" is passed) or a file
 - Handles encoding fallback to ISO-8859-1 if UTF-8 fails
 - Sends the formatted request to the AI service and prints the response

The script assumes it's running in a directory containing a git
clone of https://github.com/danielmiessler/fabric/, which contains
the necessary prompt files.

This tool is designed to interface with local LLM servers that
support OpenAI-compatible chat completion APIs.
%

The list of available patterns can be viewed by running
bin/hraesvelgr --list-patterns.  I have found the
summarize, translate,
improve_writing, review_code, and
explain_terms_and_conditions patterns particularly
useful.  For example using the latter combined with a text based web
browser capable of dumping a page as plain text, can be done like this
(originally formatted in markdown, I converted to HTML using pandoc
for easier readability):

% w3m  -dump https://runbox.com/about/terms-service/ | \
  hraesvelgr --pattern explain_terms_and_conditions
Executive Summary
This is a transparent, privacy-focused contract from
a Norwegian provider that generally respects user data rights and
operates under strict EU/EEA standards. However, it carries
strict liability limitations and an aggressive
data-deletion policy upon cancellation. The vibe is “Professional &
Privacy-First,” but you must manage your own backups and understand that
the company heavily shields itself from financial responsibility during
technical failures.
Key Takeaways

🛡 Your Data Stays Yours: Section 10.2 explicitly
states Runbox will never use your transmitted or stored data for
commercial purposes. This is a major privacy win.

[... trimmed output, as it is not the focus of this blog post ...]

If you sign:

🔒 Set up automated backups
immediately. Use IMAP sync to a local drive or a secondary
email provider before storing any critical documents or emails.
Do not rely on Runbox as your only archive.
📅 Mark your
calendar for the 30-day trial end date. Miss the payment
window, and access closes instantly with no recovery period.
💰
Monitor price changes at renewal. Since they can adjust
fees anytime, check their pricing page a few days before your
subscription renews to avoid unexpected charges.

NO FORCED ARBITRATION CLAUSE FOUND.

REFUND POLICY IS STRICTLY CONDITIONAL (see Sections 4.2–4.5).

As you might have already noticed, I name  my project
after the Norse God of Wind.  I found a nice description of the
origin of the name on
Wikipedia:

In Vafþrúðnismál (The Lay of Vafþrúðnir), Odin questions the wise
jötunn Vafþrúðnir about the origin of the wind, and the jötunn
answers:

He is called Hræsvelg,
who sits at heaven’s end,
a giant, in the shape of an eagle;
from his wings
they say the wind comes over all people.

(translated by John Lindow in Norse Mythology: A Guide to Gods,
Heroes, Rituals, and Beliefs 2002)

The latest version of the code can be found at
https://codeberg.org/pere/hraesvelgr/.  Perhaps you will find it as useful as I did?

As usual, if you use Bitcoin and wish to show your support of my
activities, please send Bitcoin donations to my address
15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.
** Xxxx, Yyyyy
- Documentation :: [[./Xxxx-Yyyyy/README.md][README.md]]
- Files :: [[./Xxxx-Yyyyy/LeerArchivo.py][LeerArchivo.py]]
- Concurrency / Synchronization ::
- Interface ::
- Comments ::
- Technical Highlights ::

Series:	White Space #3
Publisher:	Saga Press
Copyright:	June 2025
ISBN:	1-6680-7812-0
Format:	Kindle
Pages:	483

Series:	Murderbot Diaries #8
Publisher:	Tor
Copyright:	2026
ISBN:	1-250-82701-9
Format:	Kindle
Pages:	245

	Z640 (1 socket)	Z4G4	Z6G4 (1 socket)	Z8G4
DIMM slots	4	8	6	24
Max DDR4 speed	2400	2666/2933	2666/2933	2666/2933
Max DIMM size	32G	64G	64G	64G/128G
System Max Ram	128G	512G	192G/384G	1.5T/3T
CPU Socket	LGA2011-3	LGA2066	LGA3647	LGA3647
Best CPU	E5-2699A v4	W-2195/W-2295	Platinum 8180/W-3275	Platinum 8180/8280
Motherboard NVMe	0	2	2	?

System	BOINC	Compression	CPU Time	Elapsed	CPU%
Z640	no	8	248.82user 55.58system	1:23.88elapsed	362%CPU
Z4G4	no	5	245.15user 34.63system	1:24.93elapsed	329%CPU
Z640	no	5	244.75user 34.87system	1:25.98elapsed	325%CPU
Z4G4	no	10	245.21user 35.64system	1:29.63elapsed	313%CPU
Z640	no	8	248.71user 55.90system	1:33.01elapsed	327%CPU
Z640	no	10	250.90user 55.78system	1:42.12elapsed	300%CPU
Z640	yes	8	298.19user 69.30system	1:59.77elapsed	306%CPU
Z640	yes	10	300.58user 68.90system	2:01.53elapsed	304%CPU
Z420	no	5	359.01user 44.95system	2:07.33elapsed	317%CPU
Z640	yes	5	322.40user 71.82system	2:34.66elapsed	254%CPU
Z420	yes	5	372.03user 42.95system	2:42.15elapsed	255%CPU
Z640	yes	15	299.26user 67.18system	2:59.77elapsed	203%CPU
Z640	no	15	250.05user 54.60system	3:07.61elapsed	162%CPU

System	BOINC	Compression	CPU Time	Elapsed	CPU%
Z840	no	10	6549.21user 89.46system	4:18.90elapsed	2564%CPU
Z840	no	5	6533.81user 90.50system	4:19.24elapsed	2555%CPU
Z640	no	5	7040.87user 183.12system	7:13.50elapsed	1666%CPU
Z840	yes	5	8039.52user 169.62system	8:02.86elapsed	1700%CPU
Z640	yes	5	7486.44user 205.03system	11:09.97elapsed	1148%CPU
Z4G4	no	5	7891.32user 74.45system	17:48.03elapsed	745%CPU
Z4G4	no	10	7942.10user 77.43system	17:58.72elapsed	743%CPU

Build	HT	Compression	CPU Time	Elapsed	CPU%
Warzone	yes	5	7891.32user 74.45system	17:48.03elapsed	745%CPU
Warzone	yes	10	7942.10user 77.43system	17:58.72elapsed	743%CPU
Warzone	no	5	4492.45user 59.09system	19:59.01elapsed	379%CPU
Warzone	no	10	4497.28user 59.46system	20:07.15elapsed	377%CPU
Refpolicy	yes	5	245.15user 34.63system	1:24.93elapsed	329%CPU
Refpolicy	yes	10	245.21user 35.64system	1:29.63elapsed	313%CPU
Refpolicy	no	5	180.84user 29.74system	1:32.30elapsed	228%CPU
Refpolicy	no	10	180.29user 30.07system	1:35.01elapsed	221%CPU

Publisher:	Ace
Copyright:	2025
ISBN:	0-593-81593-9
Format:	Kindle
Pages:	353

ExcitingAds! Planet Debian

Russell Coker: Plaud

Russell Coker: Some GPU Stuff

Further Investigation

Steve McIntyre: It's dead, Jim!

How did we do?

What's next?

Jonathan McDowell: onak 0.6.5 released

Russ Allbery: Review: The Folded Sky

Jonathan Wiltshire: Streamlining Debian Updates with AI: The Stable Update Adviser

Try it out

Russ Allbery: Review: Platform Decay

Reproducible Builds (diffoscope): diffoscope 322 released

Dirk Eddelbuettel: tl-0.0.1 on CRAN: New Package

Changes in version 0.0.1 (2025-06-17)

Tim Retout: seL4 repo relationships

Dirk Eddelbuettel: RcppArmadillo 15.4.0-1 on CRAN: New Upstream Minor

Changes in RcppArmadillo version 15.4.0-1 (2026-06-17)

Vasudev Kamath: Releasing debvulns: CLI for listing Debian vulnerabilities

Why a new CLI?

What else is NEW?

What Next?

Russell Coker: HP Z4 G4

Hardware

Variants

Conclusion

Russell Coker: Font Sizes

The Problem

What I’ve Learned

The Current Situation

Conclusion

Gunnar Wolf: systemd for Linux SysAdmins

Wouter Verhelst: Agentic coding and Free Software

Problems

Paradigm shift

A technically positive evolution

A threat to free software?

Where to go from here

Junichi Uekawa: looking for last.

Freexian Collaborators: Monthly report about Debian Long Term Support, May 2026 (by Santiago Ruano Rincón)

Activity summary

Individual Debian LTS contributor reports

Thanks to our sponsors

Reproducible Builds (diffoscope): diffoscope 321 released

Reproducible Builds (diffoscope): diffoscope 320 released

Mike Gabriel: Commenting on the recent Ubuntu Touch review done by @SwitchandClickOfficial on Youtube

Many Issues amended in upcoming 24.04-2.0 Release

Ubuntu Touch App Ecosystem

App Ecosystems are also a Matter of Perspective

Ubuntu Touch's root filesystem (rootfs) is Immutable

Joey Hess: best of the web

Dirk Eddelbuettel: rspdlite 0.1.0-1 on CRAN: New Package!

Changes in version 0.1.0-1 (2025-06-08)

Mike Gabriel: Ubuntu Touch development - 24.04-2.0 Beta and Meaning of Branching-Off

Ubuntu Touch 24.04-2.0 Beta is Now Available

What does 'Branching-Off' Mean?

Warning of Breaking Changes arriving soon in 26.04-1.x Daily Development UT Images

The Ubuntu Touch 24.04-2.0 Release Schedule

Vincent Bernat: Building a Soviet Nail Factory: how KPIs killed efficiency

The first years

The collapse

Tim Retout: In memoriam commit-email.py

Dirk Eddelbuettel: rbenchmark 1.0.1 on CRAN: New(ly Adopted) Package!

Freexian Collaborators: Debian Contributions: Go default compatibility, Trimming build-essential, Python upstream engagement and more! (by Anupa Ann Joseph)

Debian Contributions: 2026-05

Go default compatibility, by Helmut Grohne

Trimming build-essential, by Helmut Grohne

Python upstream engagement, by Stefano Rivera

Miscellaneous contributions

Jonathan Dowland: HeroQuest

Matthias Klumpp: Introducing pkgcli: A nicer command-line interface for PackageKit

Why a new tool?

Why not pkgctl?

Examples!

Try it

Gunnar Wolf: Rey Ubu - Carro de Comedias, UNAM

Mike Gabriel: Ayatana Indicators: Call for Translations

Tim Retout: seL4 clock magic

Reproducible Builds (diffoscope): diffoscope 319 released

Michael Ablassmeier: vmsync

Why not `pkgctl`?