Thank you @federicomena for reminding people how to disclose security vulnerabilities (especially in FOSS projects) in a way that is beneficial for everyone.
We need people who check open source code for security vulnerabilities, because bugs only become shallow if enough eyeballs actually turn to them.
But we also need those people to report them in a way that does not do harm.
@TheFuzzStone I want banks to go away as much as the next guy, but Bitcoin feels to me like it replaced one evil with another.
I'm still hopeful for a more egalitarian currency to prevail.
@TheFuzzStone I meant "allow" on a technical level, not on a regulation level. Speculation is built into the way it works.
I still think that's a bad idea, because what it did was mostly favor those who are already rich and an afford to invest in either mining or buying Bitcoin.
And it costs a huge amount of energy as well as resources needed to build crypto-mining hardware on top of that. Not exactly what we need in the time of a global climate and environmental crisis.
@TheFuzzStone The problem that I see with Bitcoin is that it does allow for speculation in the first place.
That has led to the situation that it's used primarily for speculation (plus some black-market trade) and not as a replacement for state-issued currency.
There are still very few places where you can pay with Bitcoin, mostly because people who have them want to hold on to them in hopes that they will gain in value, rather than actually using them to pay for stuff.
Last month, in order to block a climate bill, Oregon Republicans fled the state and threatened to attack police sent out to retrieve them.
That's one fine democracy you have there, America...
@kaidan Yay, the second Kirigami-powered iOS app (that I'm aware of)!
@brandon Okay, I just read that legal guardians weren't allowed at the event.
While I can see the reason for it being that LGBT+ kids may feel uncomfortable at such an event with their parents around, an also see this making parents nervous.
I'm sure they could have found a way to solve it, though, e.g. by agreeing on trusted overseers who both the parents and kids are comfortable with.
@brandon It's also tragically comic how something which is considered perfectly normal in other cultures is made a huge deal out of in North America.
In Germany (especially East Germany), for example, nude beaches are very common, most of them do not have a minimum age to visit at all, yet I'm not aware of any case of child molestation happening there.
Germany's recent massive child molestation scandal happened at a regular, non-nude camping ground instead.
@brandon The whole campaign against the "all bodies swim" is in itself - to use PNN's words - a thinly veiled attempt to brand anything that doesn't fit into the conservative world view with something that is universally considered "evil".
I can see that parents may feel uncomfortable with such an event, but if they don't trust the venue's personnel to prevent attempts at child molestation during the event, they could have just sent someone to keep an eye out on the children.
@nicksellen Getting people paid to work on FOSS is also something that KDE does, though our approach is mostly getting companies involved in it and hiring people.
Which then of course means these companies need to be ethical (beyond just letting people work on FOSS).
But yeah, in an ideal world, people would only work on things they are passionate about instead of for money. We should work towards that world, but in the meantime also try to find jobs that are paid but also ethical.
I love Mycroft but I wish they'd develop a product and have it ready before they start selling it. They're still trying to get the Mark II working, and it was supposed to have shipped last December. Still, they're the best player in the open source assistant market, and I feel like they deserve our support. There are several ways to help out, many that don't involve money. If you can, please do.
"Real Companies Ship Product - Mycroft"
@utf8equalsX The whole etiquette stuff is outdated anyway. I want to live in a world where saying "Hello everyone" is fine and we don't need to waste thoughts on how to address unknown people.
@utf8equalsX It doesn't sound less polite to me. It sounds equally polite, and more inclusive because it's not restricted to binary gender definitions.
@nicksellen What I (and I'm sure you as well) often experience is that ethical people work on ethical FOSS in their spare time but don't find a suitable paying job in FOSS (or other ethical companies), so they still make their money working for not-so-ethical companies.
That's why I believe that compelling existing companies to be more ethical is still valuable, in addition to working on ethical alternatives.
Plus: Just because the software is ethical doesn't necessarily make the company ethical
@nicksellen Yeah, the idea isn't really a job board (at least not at the moment), it's more to show to companies that if they behave ethically, they'll have a much better chance at recruiting good talent.
@nicksellen The idea that is currently emerging from the replies to this toot is to have a set of criteria / areas of ethics which both companies and professionals can identify with / fulfill, so that people could be matched to companies based on it.
I really like that idea!
I wonder why none of the job networks I know have such a thing.
As for the indicators: I think we can borrow a lot from criteria that various NGOs have already developed, no need to re-invent the wheel. There are already criteria for various areas of corporate responsibility out there, we just need to select the ones that make most sense for us.
KDE UX designer and member of the board of directors of KDE e.V.
Freelance UX designer and researcher.
Fosstodon is a Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.