GitHub Copilot privacy in VSCode - here’s what I found

A deep dive into minimizing telemetry, blocking Copilot in sensitive files, and clarifying the real (non-)function of .copilotignore.

https://paulsorensen.io/github-copilot-vscode-privacy/

good thing the US is gutting beneficial ownership regulations that would make it easier to understand who actually owns US trusts and corporations while simultaneously trashing both crypto enforcement at the DOJ but also more generally cyber defense

"The companies, Blocknovas LLC and Softglide LLC, were set up in the states of #NewMexico and New York using fake personas and addresses."

* Reuters: https://www.reuters.com/sustainability/boards-policy-regulation/north-korean-cyber-spies-created-us-firms-dupe-crypto-developers-2025-04-24/
* Technical details from Silent Push: https://www.silentpush.com/blog/contagious-interview-front-companies/

Automated PR reviews from GitHub CoPilot might be one of the best features it gives. Just found a very stupid mistake that way.

So currently I'm hosting gptel-org-tools on my own forge...

https://git.bajsicki.com/phil/gptel-org-tools

I can't seem to find a good way for people to create issues.

I thought that creating issues via email was a thing with Forgejo, but it appears not.

So here's a poll. Despite my hatred of Microsoft, is it for the best to move the repo to GitHub?

Or is there some way to federate with GitHub users so I don't need to open public sign-ups on my git?

I'm not exactly clear on what the move is here.

#Emacs #gptel #gitforge #forgejo #github #microsoft #foss

We migrated the Pixelix repository to the Ghostbyte organisation account.

This is the new link: https://github.com/ghostbyte-dev/pixelix

Please feel free to tell me if I forgot to update the link anywhere.

Save Detection Code & Metadata to Custom Repositories – Source: socprime.com https://ciso2ciso.com/save-detection-code-metadata-to-custom-repositories-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #SOCPrimePlatform #MITREATT&CK #socprimecom #socprime #GitHub #GitLab #CI-CD #Blog

Machinet is "a developer of context-aware AI coding assistants with more than 100,000 downloads in the JetBrains ecosystem." You'd be trading one AI for another.

VentureBeat: Zencoder buys Machinet to challenge GitHub Copilot as AI coding assistant consolidation accelerates https://venturebeat.com/ai/zencoder-buys-machinet-to-challenge-github-copilot-as-ai-coding-assistant-consolidation-accelerates/ @venturebeat #GitHub #AI #Microsoft

I've just released PMD Extension for bld version 1.2.3

#bld #buildsystem #buildtool #github #java

https://github.com/rife2/bld-pmd/releases/tag/1.2.3

lynn/trans-pride

This should have 41K stars, not 41 stars…

#flag, #github, #pride, #trans

Fellow #GitHub users ! I need your help!

Context: More and more people are trying out @radicle as a #decentralized #GitHub alternative.

#Radicle has a different identity system than Microsoft's, so when moving projects over to Radicle it is important to know which GH user the Radicle projects belong to.

What would be a way you would use to link your Radicle and GitHub identities?

(Radicle identity is based on #SSH keys, specifically `did:key`).

Boosts for reach - appreciated.

Thanks to @botteaap's #gradle version catalogue update plugin, I now have a replacement for #GitHub #Dependatbot, which means we're on feature parity for our #Forgejo instance .

Thanks Hugo

https://github.com/littlerobots/version-catalog-update-plugin

The amount of spam and phishing attempts I receive through my github-only email address is too damn high!

Some of it is directly through github tickets!

The platform itself is annoying me to enable my "github copilot".

#github

https://ploum.net/2023-02-22-leaving-github.html

Uh, how the heck does one delete an unwanted pasted image from a #Github wiki page?

New Open-Source Tool Spotlight

Scopify is a Python-based recon tool for pentesters, leveraging `netify.ai` to analyze CDNs, hosting, and SaaS infra of target companies. Optional OpenAI integration adds AI-guided insights for deeper testing. Built by @Jhaddix & Arcanum-Sec. #CyberSecurity #BugBounty

Project link on #GitHub https://github.com/Arcanum-Sec/Scopify

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

—
P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking

"How I made $64k from deleted files — a bug bounty story"

https://medium.com/@sharon.brizinov/how-i-made-64k-from-deleted-files-a-bug-bounty-story-c5bd3a6f5f9b

"...built an automation that cloned and scanned tens of thousands of public #GitHub repos for leaked secrets."

Infat – Declaritive application assocation manager for macOS

https://github.com/philocalyst/infat

Anyone here working with #nix and #github actions?
I am not building with nix. Just using nix flakes to have all the tooling installed and services running for local dev.

I want to see if I can get nix devshell cached properly.
But because of the way nix flakes work I dont want my entire repo to end up in public cachix for example...

Files Deleted From GitHub Repos Leak Valuable Secrets – Source: www.securityweek.com https://ciso2ciso.com/files-deleted-from-github-repos-leak-valuable-secrets-source-www-securityweek-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #secretsscanning #securityweekcom #Dataprotection #secretssprawl #securityweek #dataleak #GitHub