En plots was er de drang om iets te schrijven. Het is niet nagelezen, het is gewoon mijn gedachtenstroom vandaag, op mijn blog. Klinkt het niet, dan botst het, en dat is ook oké!



fertiliteit

Ik kwam daarnet deze video tegen van de Financial Times:
https://www.youtube.com/watch?v=6lFXmDk-tps

Het gaat over de correlatie tussen smartphonegebruik en het aantal kinderen dat geboren wordt. Hun theorie is dat het aantal vrouwen dat kinderen krijgt daalt, omdat ze meer in de smartphone-influencer wereld leven dan dat ze mensen in levende lijve ontmoeten. Ze maken ook direct de stap naar meer zelfmoordgedachten bij hevig smartphonegebruik.

De paper zelf is van april dit jaar en kan je hier vinden (wel 63 bladzijden):
https://homepages.uc.edu/~moscoshn/Personal_webpage/papers/Smartphone_web.pdf

Ik ga ervan uit dat de cijfers kloppen, dat er inderdaad een correlatie is tussen het invoeren van de smartphone in een land, en de problematiek om een partner te vinden om kinderen mee op de wereld te zetten. En het klopt uiteraard dat iemand die verslaafd is aan Instagram/Tiktok/... een ander beeld heeft van 'de gewone mens' dan iemand die nooit naar deze media kijkt. Maar er is meer aan de hand.



veiligheid

Er is veel angst vandaag, meer dan in de jaren 80 toen de criminaliteit veel hoger lag. (Noot: Er zijn nu meer aangiftes van misbruik, maar het gebeurde vroeger wel vaker denk ik.) De media, zowel de klassieke als de sociale media, lijken mensen uitsluitend in emoties te duwen: bang, bedroefd, boos en soms een keer blij. Wees bang voor mannen, voor terrorisme, voor hoge prijzen. Bedroefd voor ongevallen met kindjes. Boos op Poetin en China, en Israel. Cijfers en statistieken tellen niet meer, de anekdotes vol emotie krijgen alle aandacht. Waar in de jaren 80 de krant nog schreef: "Er zijn 700 bedrijven failliet gegaan deze maand, en 900 nieuwe opgericht!" wordt alles na de komma vandaag niet vermeld. Mensen bang maken levert immers meer 'clicks' en 'views' op.

Zie bijvoorbeeld vandaag op VRTNWS over 'Marie' en 'Katrien', ik durf het geeneens te lezen na 'Valerie' enkele dagen geleden. Ik was kapot na dat Valerie-verhaal, zucht. Die journalist had dat wel verdomd goed geschreven, de beste horror kan er niet tegenop!! Dat soort gruwel verhalen voor vrouwen, veroorzaakt door mannen, is de laatste twintig jaar schering en inslag. Alsof het in mannen-genetica zit.

Lezen op eigen risico:
https://www.vrt.be/vrtnws/nl/2026/06/22/getuigenis-stiekem-genomen-naaktbeelden-fora-en-justitie/

Het deed me denken aan het huidige onveiligheidsgevoel dat (vooral jonge?) mensen hebben. Ja er was ook criminilateit en wreedheden en misbruik in de jaren 80, maar we zagen dat maar eenmaal per dag op TV, tijdens het nieuws om 19u30. Als dat al in het nieuws kwam. Vandaag de dag is er minder criminaliteit in België(*), maar al wie vaak op een smartphone kijkt (incluis de vrtnws app), wordt er wel veel meer mee geconfronteerd. De TV had natuurlijk ook dat effect, maar dat was toch veel langzamer, veel gradueler en jarenlang enkel 's avonds in familiale kring. De smartphone is er als je wakker wordt, als je op de WC zit, als je op de bus wacht, als je niet kan slapen, kortom altijd, en zeker al die tijd die je *alleen* doorbrengt.


(*) Ik vind geen goeie cijfers over de evolutie van het aantal misdrijven per jaar sinds de jaren 50-60-70-80 tot nu.
https://www.vrt.be/vrtnws/nl/2023/06/21/studie-nicc-criminaliteit-in-belgie-daalt/



vertrouwen

Toen ik pas mijn rijbewijs had (1989), heb ik honderden lifters meegenomen. Zo goed als altijd tieners, de helft of meer waren meisjes. Zeker in mijn unief periode dat ik vanuit Leuven vrienden afzette in Zoersel, en dus vrijdagavond laat via Sint-Antonius, Westmalle, Oostmalle naar Wechelderzande reed. Ik heb die rit zelden alleen moeten doen, en vaak waren dat leuke gesprekken. Ik had zelf ook jaren gelift, honderden keren meegereden met vreemden, nooit was er enige spanning. Ik heb in vreemde auto's gezeten terwijl de eigenaar een winkel binnen ging, sleutels erop of zelfs met draaiende motor. Dat vertrouwen hadden de volwassenen toen in een onbekende zestienjarige. Logisch dus dat ik een 'pay it forward' mentaliteit had toen ik zelf een rijbewijs had. Gisteren was een vriendin hier heel de dag klimaatvluchteling, die rijdt nog rond met haar auto. Ze zei dat het al twintig jaar geleden was dat ze nog een lifter had meegenomen. Er zijn ook gewoon geen lifters meer.



cancelcultuur

Er zijn uiteraard veel alternatieven zoals Uber/deelwagens/deel-whatever, maar toch. Dat soort vertrouwen in elkaar is weg. Maar dat heeft evenveel te maken met mobiliteit als met de smartphone. Toen wij vroeger 'uit' gingen was dat vaak naar fuiven van 'Union Servet' in Pulderbos/Westmalle/Sint-Antonius. Daar was je dan, op een fuif met een paar honderd mensen, maar ook met je vrienden, je buren, je klasgenoten, de mensen van de harmonie, ... m.a.w. je was in een super veilige omgeving. Je kon als vrouw het 'risico' nemen om met een stoere/stoute man te dansen want je wist dat als die iets te ver ging, dat zowel jouw vrienden als zijn vrienden tussenbeide zouden komen. Je hield elkaar in 't oog, wie gaat met wie buiten, je kende van vele mensen de ouders en wist waar ze woonden. (En die ouders kenden ook uw punten van uw laatste test Frans of wiskunde!)

Dat is op twee zaken een groot contrast met vandaag: Ten eerste ben je op een Tinder/Bumble/Breeze-date vaak alleen, in een vreemde omgeving, wat niet goed is voor je veiligheidsgevoel. Ten tweede is er de cancelcultuur en kan elke misstap leiden tot een eeuwige verbanning. Als op de Servet-fuiven vroeger iemand het uithing, dan kwamen zijn vrienden er wel tussen, en waren die slecht gezind op hem, of toch ene, omdat die hem naar huis moest brengen en dus vroeger weg was van de fuif. Maar... die gast kwam de week nadien wel terug, en kon daarbij aantonen dat die zich wel kon gedragen en nen toffe zijn en een lief vinden.



smartphone

Ligt dat aan de smartphone? De smartphone kan handig en nuttig zijn, zonder schadelijk te zijn. Je kan er je busabbonement op zetten, allerhande betalingen mee doen, mooie foto's nemen, je agenda erin zetten, je moeder mee bellen, de weg naar elkaar vinden in de stad, een taal studeren, boodschappenlijst in spreken, en nog een dozijn andere leuke, toffe, boeiende, leerzame, nuttige dingen.

Maar dat wordt, in uren per app gerekend, nauwelijks gedaan. Of dat is toch wat ik zie als ik eens in de bus of in den tram zit, of in een wachtzaal. Ik zie mensen scrollen, scrollen, scrollen, door een eindeloze scroll van video's, drie a vijf seconden per video en hup devolgende, video's die absoluut niks te maken hebben met hun familie, hun vrienden, of uberhaupt enige link hebben met echte mensen. Gooi er nog een hoop reklame tussen (mooi in beeld gebracht hier: https://youtu.be/e9dZQelULDk?t=141 ). En ja, dan leef je niet langer in een wereld van gewone mensen, dan leef je in een fantasie.



doemscenario

Is dat erg? Is de wereld naar de knoppen? Nee dat denk ik niet. Al wat hierboven staat, verraadt gewoon mijn leeftijd. Het is van alle tijden dat ouderen zeggen dat de wereld naar de knoppen is, dat kinderen niet meer luisteren naar hun ouders, dat regels niet meer gevolgd worden.

Nee, onderschat de jeugd niet, die overleven dat wel. Het is een nieuwe wereld, eentje die angst inboezemt, maar het komt wel goed. Dingen veranderen nu eenmaal, en dat geldt ook voor die overweldigende verslaving aan sociale media op de smartphone: op een dag is dat gedaan. Vandaag niet, morgen waarschijnlijk ook niet, maar op een dag is dat geschiedenis en gaan mensen weer bij elkaar zitten.

Het ging even heel snel en dan heb ik het niet over de nieuwe technologie, maar over de nieuwe verslaving aan sociale media. Deze verslaving heeft iedereen op snelheid gepakt, en de impact is enorm, zowel op wereldvlak als in persoonlijke interacties met mensen. Ik geloof dat het omgekeerde ook kan. Ik geloof dat mensen in staat zijn, op een dag, om die smartphone te gebruiken voor de nuttige en leuke dingen, en niet meer om oneindig te scrollen in een fake wereld.

28 Jun 2026 7:57am GMT

Un petit mot de nos sponsors…

Comme pour les stades ou les équipes cyclistes, il est important de nommer les vagues de chaleur et les canicules selon les sponsors qui ont rendu cela possible. C'est après tout la moindre des choses.

Ne dites plus « la vague de chaleur de mai 2026 » ou « la canicule de juin 2026 » mais « la canicule Bolloré 26 » et « la canicule TotalEnergies 26 ».

Avouez que « TotalEnergies 26 a déjà fait 115 morts » en gras dans la presse, ça fournit une belle visibilité médiatique au sponsor !

Du coup, Patlabar s'est improvisé public-reléchionne pour les sponsors et a fait de chouettes stickers à imprimer et à coller là où le rappel est le plus utile. J'espère qu'il va leur envoyer sa facture.

La canicule de juin 2026 vous a été offerte par TotalEnergies.

Il a également fait les stickers pour celle de mai :

La canicule de mai 2026 vous a été offerte par Bolloré.

Et il prévoit déjà celle de juillet :

La canicule de juillet 2026 vous a été offerte par Lafarge.

En 2026, TotalEnergies a clairement écrasé Bolloré. Lafarge pourra-t-elle tenir le niveau ? Rien n'est moins sûr, les supporters lancent déjà les paris.

Pour les prochains stickers, vous pouvez suivre Patlabar sur Mastodon:

• @patlabar sur Mastodon

PS: À propos de sponsor, l'équipe cycliste Israël-Startup Nation avait, en 2025, subit les foudres du public sur la Vuelta, entraînant son retrait de l'épreuve et le changement de sponsor pour 2026. Je me demande si on verra un jour des protestations similaires pour des équipes comme TotalEnergie ou Uno-X, qui sponsorisent le vélo en vendant de l'essence.

28 Jun 2026 7:57am GMT

Earlier this week, in "Drupal's role in agentic workflows", I argued that Drupal's AI future has two parts: helping people with AI inside Drupal, and helping agents use Drupal from the outside.

So we are splitting Drupal's AI strategy into two workstreams. Inside AI is led by Christoph Breidert, who has been driving that work already. Outside AI, the new workstream, is led by Scott Falconer.

The easiest way to think about the difference: with Inside AI, a person uses Drupal, and Drupal uses AI to help. With Outside AI, a person uses an agent, and the agent uses Drupal.

We launched the Drupal AI Initiative one year ago, in June 2025, with a published strategy. A year later it spans 32 organizations and more than 50 contributors, shipping against a public 2026 roadmap through two paid delivery teams.

So far, most of that work has focused on Inside AI, though much of the foundation also supports Outside AI.

Outside AI will serve three kinds of users:

• Developers new to Drupal. They ask an AI agent to build a website, and the agent chooses what to build on. Agents reach for whatever they can spin up in seconds, so the opportunity is to make Drupal that easy to install, configure, and use.
• Experienced Drupal developers. They already know Drupal is the right tool, and they want agents to take on more of the work. For Drupal agencies, Outside AI should turn AI into a stronger advantage: helping teams move faster, win more work, protect profitability, and get more value from their Drupal talent.
• External agentic systems and workflow automation tools. These systems coordinate work across many tools, but when they touch content, they need a trusted system of record for workflows, permissions, revisions, and publishing. Rather than rebuilding that governance elsewhere, they should call into Drupal.

If we are successful, agents will recommend Drupal to new users, help Drupal developers move faster, help agencies win more work, and use Drupal as the trusted layer for content management and governance.

Thank you to everyone who helped bring the Drupal AI Initiative to this point. Together, the community has turned an ambitious idea into real momentum.

I'm excited about what comes next! Want to get involved? Join the #ai-initiative channel on Drupal Slack.

28 Jun 2026 7:57am GMT

While watching a YouTube video I saw an advert for the Plaud AI Note Taker [1]. The Plaud device looks pretty good for what it does, taking notes and managing them, using some sort of LLM function to manage the notes. The devices all cost about $300 which is an amount that doesn't seem unreasonable for someone who's in a lot of meetings. One of the models is the "NotePin" that seems comparable to the Humane AI Pin I previously blogged about [2].

The business model for Plaud is based on only allowing 5 hours per month of free transcriptions, then charging $16.25/month for 20 hours per month and $33.33/month for unlimited use. That's quite expensive for any serious use.

The number of people in the market for an audio recording system that automatically transcribes things may be greater than the number of people in the market for all the stuff that the Humane AI Pin did, but it still may not be enough to run a profitable business when competing with apps on mobile phones.

While the product does look decent it seems that they are making the same mistakes as the original Humane developers did, of wanting to lock it down as a subscription based service which reduces the usability of the device. If they had sold an Android hand-held computer with their own app pre-loaded and allowed the user to install a different app then it would have been much more usable. If they had sold Android devices designed for the note taking market and allowed people to choose their own apps to install then their products would have a much longer life expectancy.

The majority of Android devices in use are probably out of support but still working while the Humane AI pin can't be used any more and at some time in the not too distant future the Plaud devices will also become unusable. People who buy devices like the Plaud seem to be unaware of the history of such things and the expected future for them. But possibly some people just consider $300 for a year of use to be an acceptable price. If someone wanted to purchase a new high end phone every year and sell their previous one they would probably have a net cost of about $500/year.

Maybe I should look for work with a company with an implausible AI based business plan. It would be fun developing such a device if you weren't emotionally invested in the project. Just develop new technology, earn a heap of money, play with fun computers, and move on to the next thing when it collapses. Just like all the Internet companies about 25 years ago.

• [1] https://www.plaud.ai/
• [2] https://etbe.coker.com.au/2024/04/26/humane-ai-pin/

28 Jun 2026 5:39am GMT

After getting a HP Z4 G4 tower server/workstation to house my Intel Battlemage GPU [1] I've been playing around with some GPU stuff. For years I've been just buying GPUs based on the resolution and price and not bothering about anything else due to lack of ability to measure what cards are doing. The nvidia-smi program is really good for NVidia/CUDA setups but I hadn't been aware of anything similar for AMD cards. As I prefer AMD cards for my workstations due to driver issues with NVidia that was a problem for me.

I've recently discovered that the program nvtop (Debian package nvtop) shows the GPU use of multiple GPU types, for me it's worked on AMD and Intel discrete GPUs and shows some information on Intel integrated GPUs, I don't have others convenient for testing at the moment. Currently BOINC has the Einstein@Home [2] project running on the HP Z4 G4 and it's using between 66% and 100% of GPU compute power and 1.6G of GPU RAM. Using 100% GPU compute power allegedly takes 62W of power out of the 190W quoted TDP. I presume that the power use reported by nvtop is very inaccurate.

A friend installed a LLM on that system and the libraries used for the LLM were sufficient that BOINC just started using the GPU.

On my workstation running an AMD "[Radeon RX 460/560D / Pro 450/455/460/555/555X/560/560X]" (actually R560) with 4G of GPU RAM I have mpv taking 1G of GPU RAM to play a FullHD video expanded to a full screen window on my 5120*2160 display. I also have about 2G used by the kwin_wayland process (the Wayland server for KDE). That doesn't leave enough GPU RAM to allow Einstein@Home to use the GPU. When playing the FullHD video in question (which is 1.2G for 42 minutes - about 500KB/s) at 1.5* speed (a common playback speed I use) that takes about 30% of the compute power on my GPU.

I had installed the rocm-opencl-icd package on my workstation (with a 5120*2160 monitor) and restarted boinc-client.service which is all that's needed to allow BOINC to use an AMD GPU. Then the screen started flickering as the Einstein process repeatedly core dumped which I initially assumed to be it's reaction to not having enough GPU RAM available. On every core dump the screen flickered so it went through a process of dozens of screen flickers until it had caused a sufficient number of core dumps and BOINC gave up running that job.

Another annoyance is that the boincmgr program (the graphical program for managing BOINC systems) launches two webkit processes that each use about 400M of GPU RAM, so even if other things weren't using all my GPU RAM the boincmgr process would stop the BOINC jobs from using the GPU. I shut down some of the programs that were using GPU RAM until there was 2G free and the BOINC process kept crashing so it seems that there is some other issue.

On another system with a 4K monitor there were Chrome and Chromium GPU process taking 1.1G and 500M of GPU RAM respectively and the KWin Wayland process was taking 1G of GPU RAM. So that's well over half the GPU RAM for just browsers and Wayland. With programs like Kitty (terminal emulator) and Nheko (Matrix client) taking over 100M of GPU RAM it seems that 4G is the bare minimum for GPU RAM with modern software and a 4K or similar display.

I also noticed the kscreenlocker_greet process taking 440M of GPU RAM. I wonder if a hostile web server could make a web browser take more GPU RAM and starve the screenlocker of GPU RAM, could that allow forcing a screen lock operation to fail?

It seems that 4G is the minimum for modern systems, which isn't necessarily a problem as GPUs that are capable of driving 4K displays tend to have no less than 4G. My local computer store has new GPUs with 4G starting at $120 but 12G seems to be the next option up which starts at about $400.

Ebay currently has a selection of AMD GPUs with 8G of RAM under $200. I've had some problems with the GPU in my workstation crashing as described in my previous post where I thought it was driver issues [3]. I now believe that there are hardware issues and will look into buying one of the cards with 8G.

Further Investigation

I need to determine which of the AMD GPUs that are currently going cheap on ebay are best. While my current PC has support for 150W PCIe power I'd rather something less power hungry than that. I have occasional issues of mpv reporting that my system is too slow for a video so slightly more compute power on the GPU would be good, but I think that every available option has significantly more compute power.

I need to find out what the relationship is between screen resolution and GPU memory. If I get an 8K display or an array of 4*4K displays (which is quite plausible as 27″ 4K displays go for $230 each) will I find 16G of GPU RAM as limiting as I find 4G now?

The nvtop program tracks PCIe data transfers for AMD GPUs, I haven't yet seen more than 25MB/s and I need to do more tests to see what the maximum is. Running on an Intel Battlemage card nvtop doesn't report PCIe data transfer speed which is a missing feature in either the driver or the program. I need to find out where the problem is and report a bug if someone hasn't already done so.

The GPU RAM use of some applications seems excessive. 440M for a lockscreen? 100M+ for a terminal emulator? 320M for Thunderbird?

• [1] https://etbe.coker.com.au/2026/06/21/hp-z4-g4/
• [2] https://einsteinathome.org/
• [3] https://etbe.coker.com.au/2025/11/09/amd-video-driver-issues/

28 Jun 2026 5:22am GMT

I previously wrote about the upcoming UEFI CA rollover. Well, it's happened now - the old Microsoft UEFI CA from 2011 expired yesterday:

Third Party Marketplace Root (used for signing option ROMs and other software)

  Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=Microsoft Corporation UEFI CA 2011
  Validity
    Not Before: Jun 27 21:22:45 2011 GMT
    Not After : Jun 27 21:32:45 2026 GMT

It's dead - it's not coming back...

The world doesn't seem to have ended yesterday, so I guess we did ok? :-)

How did we do?

After a lot of prodding behind the scenes, Debian and many other distributions managed to get new shim binaries dual-signed with both the old and new CAs. The members of the shim-review team did a sterling job with reviews in the last few weeks. Since I started pushing people in May, we've had 21 reviews accepted successfully - see here for the list. Great stuff! Microsoft have also been working quickly - many of those shim submissions were accepted and signed by Microsoft very quickly too, with a turnaround time of less than 1 day in some cases.

Not all of those signed shims have been published and used by the distros involved yet, but expect to see them in the wild in the coming weeks and months.

These binaries should be good for people to use for the foreseeable future, until either we need to do another CA rollover or (sadly, more likely) we find an issue in shim that necessitates a new release.

What's next?

We already have one of our new dual-signed shim binaries in place in Debian, in unstable and testing (Forky) right now. In a couple of weeks from now, we'll be rolling out very similar new dual-signed shim binaries in the next point releases for Debian 12 (bookworm) and Debian 13 (trixie). We'll also be upgrading fwupd in both those point releases, to make DB and KEK updates work better.

For more information about these updates, see https://wiki.debian.org/SecureBoot/CAChanges. For your own safety, validate that your systems are updated when possible. If you don't, they may fail to boot in future.

27 Jun 2026 9:33pm GMT

I saw that there was some argument over how much slower slot access is than struct access, so I just decided to measure it naively. I made a two slot sruct and a CLOS version of a CONS cell with car and cdr slots and I ran LTAK using regular lists, `lists' made from CLOS conses, and `lists' made from structs. Here are the results:

D:\repositories\clos-benchmark>sbcl --script run-benchmarks.lisp
Benchmark: ltak over native cons cells, CLOS my-cons nodes, and my-cons-struct nodes
Inputs: x=15 y=9 z=4 repeats=35

Scenario                   min-ms     mean-ms      max-ms      ratio
--------------------------------------------------------------------
native standard               0.129      0.146      0.186
clos standard                 1.346      1.365      1.475       9.37x
struct standard               0.172      0.175      0.179       1.20x
native optimized              0.068      0.069      0.073
clos optimized                0.411      0.414      0.419       6.04x
struct optimized              0.068      0.069      0.073       1.01x

In this naive use case, structs are same as native cons cells, but CLOS objects are one ninth the speed of a struct or cons cell if you just use it unoptimized, and one sixth the speed if optimizations are turned on.

But the CLOS instance is more functional than the cons cell in mimics. For instance, I could add a slot to the class and all the instances would be lazily updated with the new slot. I can also subclass the CLOS class and the selector functions will continue to work. Finally, I can redefine the CLOS closs while I'm developing it and all the instances will be uppdated. THe machinery to keep all this running is costing us our factor of 9.

But this might be worth the cost if we are running on a netwerk where the bulk of the time will be transmitting the answer down the pipe once it is computed. Taking a few extra milliseconds to compute the answer might be worth the convenience features of CLOS.

25 Jun 2026 4:11pm GMT

Back in the day, the US government had a program called SBIR (Small Business Innovation Research) that funded small businesses to do research and development. I recall sitting in our dorm in college, reading through a giant printed catalog of SBIR grants just to amuse ourselves by brainstorming solutions over bad pizza.

.

So, I got curious the other day: what does the SBIR landscape look like now?

I can tell you right now: do not even try to read an SBIR solicitation on your local machine. You are opening yourself up to a world of absolute, unmitigated pain.

You might think, what harm could there be in simply opening a file?

Well, in the modern compliance panopticon, any manipulation of digital information that comes from the govenment has the potential to spawn CUI (Controlled Unclassified Information). CUI is basically a digital pathogen; once you download that file, *anything whatsover* derived from it, including notes and metadata, instantly becomes CUI by association. The moment you read an SBIR on your computer, you've infected your system, rendering you subject to a nightmare of Byzantine federal regulations.

These days, the amount of beurocratic red tape surrounding CUI is insane. To even look at the file legally, you need a dedicated, air-gapped machine completely disconnected from the internet, conforming to a massive, expensive slew of NIST standards covering everything from hardware-level encryption to strict access controls. Alternatively you could contract with a cloud company that offers a pre-certified "CUI-compliant" environment.

And assuming you actually shell out the cash and jump through the hoops to set up this digital containment zone just to read a PDF, you must meticulously audit and account for every single action you take in its presence. Under current federal auditing logic, you are explicitly assumed to be attempting to defraud the government unless you can produce a mountain of paper proving otherwise. Want to bring in a partner to bounce ideas around? You can't just "know a guy." You have to navigate a labyrinth of federal subcontracting regulations.

I had intended on amusing myself by reading some SBIRs and daydreaming about solutions that might involve Lisp (an impossibility in the modern enterprise stack for entirely separate, depressing reasons). Instead, I quickly discovered I did not even own the physical hardware required to even read an SBIR without running afoul of federal regulations.

I wanted to read some clever and inspiring engineering proposals. I ended up reading a lot of very dry and boring compliance regulations.

18 Jun 2026 11:48am GMT

Last year I wrote some Lisp related AI apps. There was a syntax highlighter that used the LLM to determine how to colorize and highlight syntax, and a prompt refiner that takes a wimpy LLM prompt and creates more elaborate prompt from them.

I took the apps down last week. They were `vibe coded' and therefore approximate and had bugs (but that's to be expected), but they had a security hole where you could hijack the LLM processing with your own prompt turning my app into an open relay using my API key. Last week I discovered that my AI spend on video creation was becoming serious. This is odd because I never create AI video. It turned out that my app was being hijacked by a proxy in Luxembourg and was generating videos on my dime.

So I shut down the apps. I knew they had the potential of being abused, and I was willing to tolerate a small amount of abuse, but it didn't occur to me that syntax highlighter could be hijacked to generate gigabytes of video at my expense. Future applications will be careful to obtain the API key from the user.

01 Jun 2026 7:00am GMT

All video recordings from FOSDEM 2026 that are worth publishing have been processed and released. Videos are linked from the individual schedule pages for the talks and the full schedule page. They are also available, organised by room, at video.fosdem.org/2026. While all released videos have been reviewed by a human, it remains possible that one or more issues fell through the cracks. If you notice any problem with a video you care about, please let us know as soon as possible so we can look into it before the video-processing infrastructure is shut down for this edition. To report any舰

25 Apr 2026 10:00pm GMT

Are you ready for another challenge? We're excited to host the second yearly edition of our treasure hunt at FOSDEM! Participants must solve five sequential challenges to uncover the final answer. Update: the treasure hunt has been successfully solved by multiple participants, and the main prizes have now been claimed. But the fun doesn't stop here. If you still manage to find the correct final answer and go to Infodesk K, you will receive a small consolation prize as a reward for your effort. If you're still looking for a challenge, the 2025 treasure hunt is still unsolved, so舰

29 Jan 2026 11:00pm GMT

With FOSDEM just a few days away, it is time for us to enlist your help. Every year, an enthusiastic band of volunteers make FOSDEM happen and make it a fun and safe place for all our attendees. We could not do this without you. This year we again need as many hands as possible, especially for heralding during the conference, during the buildup (starting Friday at noon) and teardown (Sunday evening). No need to worry about missing lunch at the weekend, food will be provided. Would you like to be part of the team that makes FOSDEM tick?舰

26 Jan 2026 11:00pm GMT