http://www.rasadacrea.comrss feed aggregated news on web services and technologies by RasadaCrea France : Category en_web sites companyFri, 12 Jun 2026 15:31:18 GMTPyRSS2Gen-1.0.0http://blogs.law.harvard.edu/tech/rsshttps://sethmlarson.dev/are-insecure-code-completions-a-vulnerability?utm_campaign=rssThree months ago I saw that PyCharm shipped with a “ Full Line Completion ” plugin that “uses a local deep learning model to suggest entire lines of code”. These suggestions manifest as whole-line suggestions after you start typing and can be accepted with Tab . Essentially auto-complete for entire lines. I decide to test this functionality. I started by writing import urllib3 , created a new line, and then typed u and received a suggested completion for the line marked below with a dashed border . I was not impressed by the result: import urllib3 u rllib3 . disable_warnings ( urllib3 . exceptions . InsecureRequestWarning ) Accepting this line would mean that any insecure requests made with urllib3 would not result in a user-visible warning. I didn't accept this suggestion and then began to instantiate a urllib3.PoolManager and what I feared would come next was confirmed: import urllib3 urllib3 . PoolManager ( cert_reqs = 'CERT_NONE' , The suggestion offered to disable certificate verification ( CERT_NONE ) which would make every request made by the PoolManager susceptible to monster-in-the-middle (MITM) attacks. Accepting this code as-is would mean the program I am writing has a severe vulnerability. .. cntdWed, 10 Jun 2026 00:00:00 GMThttps://nedbatchelder.com/blog/202605/pycon_us_2026Last week was PyCon US in Long Beach California. As always, it was a jam-packed intense time. I'll try to report on my experience. The videos aren't uploaded yet, but I'll link to them later when they are. This recap is longer than I've done in the past. I don't know why, it's just how it came out. I want to convey a sense of what I get out of PyCon and what you can get out of PyCon. Thursday Opening reception I came with five of my colleagues from Netflix. I got to the Thursday night reception with Anika (first PyCon) and Josey (first PyCon with me). They said, "we're going to count how many people Ned says hi to!" They were at 16 after five minutes and gave up. I don't blame them. The reception is a very social time, and I have lots of friends I really enjoy seeing there. New friends and backpacks Besides seeing old friends, one of the great things about unstructured time like the opening reception is meeting new people. Tower Research Capital was giving away full-size Osprey backpacks at their booth. This was easily the most appreciated swag at PyCon. At the booth a clump of us were wondering what was required to get one. While there I met Maria , Camila , and Vinícius . They are from Brazil, and were very friendly. They will .. cntdSun, 24 May 2026 11:04:21 GMThttps://www.hongkiat.com/blog/hermes-desktop-gui-for-hermes-agent/A new app called Hermes Desktop makes Hermes Agent easier to use for people who do not want to stay in the terminal. If you have been looking for a cleaner way to install and use an agent on your own machine, this sits in the same wider conversation as how people run AI locally with lighter setup friction. This is not an official Nous Research desktop app. Hermes Desktop is a separate open-source project created by GitHub user fathah. It sits on top of Hermes Agent and gives it a native interface for setup, chat, and day-to-day management. It is a third-party desktop companion for Hermes Agent, not the upstream project itself. What Is Hermes Desktop? Hermes Desktop is a native app for installing, configuring, and chatting with Hermes Agent without doing everything by hand from the command line. According to the project's GitHub repo, it uses the official Hermes install script, stores Hermes under ~/.hermes , and provides screens for chat, sessions, profiles, memory, skills, tools, schedules, and messaging gateways. That makes it less of a simple wrapper and more of a desktop control panel for Hermes. What Can the App Do? Based on the repo and release notes, Hermes Desktop already goes well beyond a basic chat .. cntdWed, 22 Apr 2026 10:00:00 GMT