…and here it is in digital form: the Senet/Guardian collab with all the best board-game recommendations.

Accepted! Go 1.26 will introduce per-state goroutine metrics: running, waiting, in syscalls, etc. Developers can use them to catch problems early without needing full traces. antonz.org/accepted/gor...

"Where Do the Children Play?" – unpublishablepapers.substack.com/p/where-do-t... (by @eselster.bsky.social)

Here are the 2024/2025 supply chain compromises I found. XZ Utils Shai-Hulud Nx S1ingularity npm debug/chalk/color polyfill[.]io MavenGate eslint-config-prettier [@]solana/web3.js rustfoundation[.]dev React Native ARIA & gluestack-ui lottie-player rand-user-agent Am I missing any?

I'm working on an interactive Go 1.25 tour, but there are so many changes in json/v2 that I decided to cover them in a separate blog post. Plenty of interactive examples ahead! antonz.org/go-json-v2

Offline PKI using 3 YubiKeys and an ARM single board computer. With a touch of Nix. vincent.bernat.ch/en/blog/2025...

"some knights live to grow old and some fight with honor, but rarely both"

I should learn to watch a fireplace the way I watch television or stare at my telephone. Everything else is unnecessary elaboration.

2024 was a big year for atproto! We've got an update looking back at progress that has been made, and some protocol work in progress. Will have a 2025 roadmap to share soon.

"2024 in Reuters Pictures" – www.reuters.com/investigates...

Well, it's been 2/3 of a year since the xz attack. Is software safer now? Serious question. What improvements have we made?

"Movies directed by Andrey Tarkovsky" – www.youtube.com/playlist?lis...