Pleopods Weekly #11 — May 15, 2026
Pleopods Weekly #11 — May 15, 2026
This Week on Lobste.rs
Trending topics: linux web hardware security vibecoding
1. Just Fucking Use Go - Blain Smith go
submitted by zarldev — 179 points (+177 this week) — 267 comments
Go's pragmatism beats complexity theater — single binary deploys, no node_modules horror, goroutines that actually work, and a standard library so complete you don't need a framework ecosystem to ship fast.
2. Sovereign Tech Fund invests over €1 million in KDE software development linux
submitted by zanlib — 172 points (+165 this week) — 21 comments
Germany's Sovereign Tech Fund is putting €1M into KDE's infrastructure — testing, security, and communication frameworks — betting that a viable open-source desktop matters for actual digital sovereignty, not just as a counternarrative.
3. Bambu Lab is abusing the open source social contract hardware law
submitted by yashgarg — 143 points (+134 this week) — 13 comments
Bambu Lab went after an open source fork that bypassed their cloud dependency by claiming impersonation and security risks—even though the fork was built on Bambu's own AGPL code, then blocked the developer from responding publicly.
4. Redis and the Cost of Ambition databases
submitted by coleifer — 135 points (+132 this week) — 40 comments
Redis started as a brilliantly scoped in-memory dictionary with five data types and a protocol you could learn in an hour; it's now a "Real-Time Context Engine for AI Apps" with JSON, streams, modules, and a second protocol (RESP3) that breaks its own fundamental assumptions — a textbook case of ambition turning a focused tool into something that tries to be everything and masters nothing.
5. Debian must ship reproducible packages linux
submitted by fanf — 150 points (+120 this week) — 61 comments
Debian's release team is now blocking packages that can't be built reproducibly — a policy shift that turns reproducible builds from a nice-to-have into a hard requirement for new uploads and any regressions in testing.
6. Dirty Frag: Universal Linux LPE linux security
submitted by lattera — 122 points (+106 this week) — 31 comments
An unpatched kernel vulnerability spanning three networking modules lets unprivileged users write to arbitrary files and escalate to root—since the embargo leaked early, you're stuck disabling ESP4, ESP6, and RXRPC until your distro ships fixes.
7. Mythos finds a curl vulnerability security vibecoding
submitted by andrewnez — 145 points (+95 this week) — 72 comments
Anthropic's Mythos caught a handful of real bugs in curl, but landed squarely in the middle of the pack against existing tools—nothing to suggest it's a breakthrough for automated security scanning.
8. Replacing a 3 GB SQLite database with a 10 MB FST (finite state transducer) binary performance rust
submitted by jmillikin — 95 points (+90 this week) — 12 comments
Swapped a 3 GB SQLite database for a 10 MB FST binary by recognizing that Finnish's heavy suffix patterns compress beautifully with finite-state automata — the trick being that FSTs share both prefixes and suffixes, where tries only share prefixes.
9. I Will Not Add Query Strings to Your URLs web
submitted by susam — 91 points (+90 this week) — 15 comments
The creator of Wander Console removed a tracking parameter he'd built in after realizing Chris Morgan's critique of query string tracking was correct—even though he couldn't quite explain why it bothered him at first.
10. what 262,715 regex questions on stack overflow haven't answered compsci performance
submitted by bradlarsen — 91 points (+87 this week) — 7 comments
Complement and intersection are so commonly needed that people work around their absence with lookaheads—but those workarounds are orders of magnitude slower because they simulate at runtime what should be compiled once.
11. Steering Zig Fmt zig
submitted by vi_mi — 84 points (+80 this week) — 26 comments
Zig's formatter lets you steer its output by varying trailing commas and line breaks in your source — so instead of fighting a rigid formatter's choices, you hint at what you want and it complies.
12. cursed_browser: A web browser with no rendering engine — the VLM reads the HTML and hallucinates the page browsers satire vibecoding
submitted by aoeu — 80 points (+70 this week) — 6 comments
A developer built a joke project that feeds HTML to a vision model to hallucinate what pages should look like, complete with a deadpan roadmap featuring em-dash upgrades and an impossible Acid test score of 100/100.
13. Gram 2.0.0 released editors release
submitted by FedericoSchonborn — 76 points (+70 this week) — 10 comments
Gram's 2.0 fixes some annoying defaults (relative line numbers, theme icons) but makes LSP auto-updates opt-in, so eslint stops working until you flip it back on — a tradeoff that prioritizes version control over convenience.
14. jj v0.41.0 is out release
submitted by giacomo_cavalieri — 75 points (+70 this week) — 27 comments
jj shipped line-range-limited formatting, a --no-integrate-operation flag for background tools, and performance improvements for large repos — plus the usual breaking changes (file search patterns now default to regex).
15. The Most Emacs Bzr Saga emacs historical vcs
submitted by confusedalex — 72 points (+70 this week) — 27 comments
Emacs ran Bazaar 1,800x slower than Git for basic operations because Stallman insisted on using the GNU project, then stuck with it for five years before switching anyway.
16. Points are a weird and inconsistent unit of measure design historical
submitted by hwayne — 63 points (+61 this week) — 23 comments
Typography's "point" means different things in different contexts — web browsers treat it as 1/96th of an inch, while print design uses 1/72nd, and LaTeX has its own system entirely — creating real friction when you need pixels and print to actually agree.
17. taken privacy web
submitted by rcalixte — 73 points (+60 this week) — 56 comments
A website that fingerprints you with data your browser volunteers, then documents exactly how it did it and why — including the tracking techniques it didn't use.
18. Ploopy Bean - external trackpoint hardware
submitted by hawski — 61 points (+59 this week) — 29 comments
Ploopy is selling a $70 CAD standalone trackpoint that's open-source and 3D-printable, and the thing actually works well enough to convert trackpoint skeptics.
19. Setting up a free *.city.state.us locality domain web
submitted by ar-nelson — 70 points (+58 this week) — 31 comments
Turns out you can still claim those weird government domains if you're willing to navigate 1992-era bureaucracy and AWS's free tier—the author walks through the actual steps, which involve a form that probably hasn't changed since Clinton was president.
20. Ratty: A terminal emulator with inline 3D graphics graphics rust show
submitted by orhun — 57 points (+53 this week) — 27 comments
A terminal emulator that renders 3D graphics inline using the GPU — drops WebGPU shaders right into your shell and displays them without leaving the window.
Pleopods is a weekly digest of the top links from Lobste.rs. Unsubscribe | Archive
