Linux

cross-posted from: https://rss.ponder.cat/post/211904

Accidentally exposing secrets like API keys, tokens, or credentials in your code opens the door for threat actors to exploit your systems. Such attackers don't stop at one breach; they automate their attacks, move fast, and can potentially compromise entire infrastructure within minutes.

To tackle such scenarios, MongoDB has come up with an open source solution called "Kingfisher".

What's Happening: Launched as an open source tool for detecting secrets in code, file systems, and Git history, Kingfisher was born out of MongoDB's need for a fast, reliable way to identify exposed credentials and prevent security risks before they spiral out of control.

The tool doesn’t just stop there; it can also validate any secrets it finds, as long as they are from supported services, so developers know which keys are still active and risky.

MongoDB has been using Kingfisher internally throughout its development and deployment processes, helping them detect and fix exposed secrets early.

What to Expect: As for how it works, Kingfisher scans code, files, and Git history using various techniques like entropy analysis, real-time validation, pattern matching, and source code parsing for or accurate detection of exposed secrets.

It’s written in Rust and has many handy features like multi-language source parsing with Tree-sitter, high-speed regex matching with Hyperscan, extensible rulesets, cross-platform support, and over 700 built-in detection rules that cover a wide range of cloud services and secret types.

All of this runs on the user’s own systems or infrastructure, ensuring no sensitive data is sent to third-party servers, and there's cross-platform support for Linux, Windows, and macOS. Using Kingfisher also helps security teams stay aligned with SLSA compliance standards.

If you are up for a longer read, then MongoDB has published a detailed blog post explaining how they built Kingfisher.

From It's FOSS News via this RSS feed

https://flathub.org/statistics

I never thought I’d be this upset to a point I’d be writing an article about something this sensitive with a clickbait-y title. It’s simultaneously demotivating, unproductive, and infuriating. I’m here writing this post fully knowing that I could have been working on accessibility in GNOME, but really, I’m so tired of having my mood ruined because of privileged people spending at most 5 minutes to write erroneous posts and then pretending to be oblivious when confronted while it takes us 5 months of unpaid work to get a quarter of recognition, let alone acknowledgment, without accounting for the time “wasted” addressing these accusations.

I beg you, please keep writing banger posts like fireborn’s I Want to Love Linux. It Doesn’t Love Me Back series and their interluding post. We need more people with disabilities to keep reminding developers that you exist and your conditions and disabilities are a spectrum and not absolute.

cross-posted from: https://rss.ponder.cat/post/210902

ONLYOFFICE is one of two options that comes to mind when I think of a solid Microsoft Office alternative on Linux, the other being LibreOffice. Both offer a range of useful features and support a wide range of document formats.

What sets ONLYOFFICE apart, though, is its focus on collaboration and generally reliable compatibility with Microsoft Office files. With the launch of ONLYOFFICE Docs 9.0, the office suite now introduces a number of new features.

🆕 ONLYOFFICE Docs 9.0: What's New?

At first glance, you will notice that for all the editors, the interface has been redesigned to provide a more intuitive and accessible experience. For taking advantage of this, you have to either enable the "Modern Light" or the "Modern Dark" theme from View ⇾ Interface Theme.

The PDF Editor sees major upgrades aimed at improving productivity. You can now co-edit PDF forms in real time, drag-and-drop pages in the thumbnails panel to quickly reorder a document, and duplicate pages effortlessly with Ctrl + C and Ctrl + V.

AI-powered enhancements also make an appearance with this release, bringing automatic text extraction for PDF files, and smarter automation for macros and formulas in Spreadsheets.

Similarly, the Document Editor gets a few practical upgrades, including a quick-access button for paragraph borders and enhanced Content Controls with improved change tracking and support for custom buttons via plugins.

Automate repetitive tasks – macro creation and VBA conversion – with AI to save time and avoid errors

On the localization front, there’s enhanced support for right-to-left languages, new additions like Urdu language support and an Arabic spellcheck dictionary, plus several tweaks to make language settings more intuitive and user-friendly.

File compatibility has been extended too, now including support for Markdown (.md), Visio (.vsd/.vsdx), OpenDocument Graphics (.odg), and direct editing of Excel Binary (.xlsb) files.

During the launch, Galina Goduhina, Sales Director at ONLYOFFICE, stated that:

With Docs 9.0, our goal was to bring greater ease and functionality to all users, regardless of how or where they work.

📥 Download ONLYOFFICE Docs 9.0

If you are self-hosting, then you can grab the necessary packages from the official website. For regular users, the desktop editors for this release will go live shortly.

ONLYOFFICE Docs 9.0

You can read the release blog and changelog to learn more about this release.

Suggested Read 📖

Surprisingly, Many Linux Users Don’t Know About This Office SuiteDo you know about ONLYOFFICE? We tell you more about it here.It's FOSSAnkush Das

From It's FOSS News via this RSS feed

OC text by @heythatsprettygood@feddit.uk

Had to deal with this recently. The cause is openSUSE's move to SELinux on new installs, which by default blocks the required permissions for the RPM version of Steam. You can correct this with these commands:

ausearch -c 'steam' --raw | audit2allow -a -M my-steam to create the permissions file and semodule -X 300 -i my-steam.pp to apply it.

Hopefully this saves someone else from the wild goose chase I went on earlier.

This blog post is already quite long, so it will omit changes merged for Plasma 6.5 (releasing in October, to be announced in a future post).

With the Plasma 6.2 release, we moved Plasma Dialer and Spacebar to the Plasma release cycle, allowing us to have consistent releases of the two apps. This completes our year long move to having all Plasma Mobile related projects released as part of wider KDE releases, streamlining the work for distributions and taking a load off us on having to maintain a separate release cycle!

In other news, a Fedora spin for Plasma Mobile was released! It will only be targeting devices that can currently boot Fedora (i.e. not ARM phones), but is very exciting nonetheless!