Replied in thread
#chromium
4 innlegg4 deltakere0 innlegg i dag
Anyone know why -webkit-text-stroke doesn't work on Chrome browsers? Is there a work around?
Min (web browser)
"Min is written entirely with CSS and JavaScript using Electron"
minbrowser.orgMin | A fast, minimal browser that protects your privacy
Chromium adds Wayland color-management-v1 support, allowing HDR rendering on supported platforms with a default-enabled feature flag.
https://linuxiac.com/hdr-video-playback-lands-in-chromium-on-wayland/
Microsoft listed three vulnerabilities yesterday, all affecting Chromium-based Edge.
Microsoft security guide:
- Chromium: CVE-2025-7657 Use after free in WebRTC https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-7657
- Chromium: CVE-2025-7656 Integer overflow in V8 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-7656
- Chromium: CVE-2025-6558 Incorrect validation of untrusted input in ANGLE and GPU https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-6558 #Microsoft #Chromium #cybersecurity #infosec
msrc.microsoft.comSecurity Update Guide - Microsoft Security Response Center
Better be fast: Alle #Chromium-basierten #Browser leiden zurzeit (soweit noch nicht gepatcht) an einer kritischen und bereits aktiv ausgenutzten #Sicherheitslücke, die den Ausbruch aus der Sandbox ermöglicht. Dadurch kann theoretisch Schadcode auf dem Zielsystem zur Ausführung gebracht werden.
Betroffen sind neben Chrome auch Microsoft #Edge, Vivaldi und Brave - Updates sind in Teilen bereits verfügbar und sollten möglichst rasch eingespielt werden:
https://www.golem.de/news/google-warnt-zero-day-luecke-in-chrome-laesst-hacker-aus-sandbox-ausbrechen-2507-198152.html #cybersecurity
Golem.de · Sicherheitslücke: Hacker attackieren Chrome-Nutzer per Sandbox-Escape - Golem.de
Replied in thread
@TechCrunch The only one promising in that list is #Ladybird https://ladybird.org New browser. New engine.
I truly hope they can break help break the monopoly of #Chromium / #Chrome browser and the #Blink engine.
ladybird.orgLadybirdLadybird is a truly independent web browser, backed by a non-profit.
Exclusive-OpenAI to release web browser in challenge to Google Chrome • Reuters
「 OpenAI's browser is built atop Chromium, Google's own open-source browser code, two of the sources said. Chromium is the source code for Google Chrome, as well as many competing browsers including Microsoft's Edge and Opera 」
Fortsettelse av samtale
"#Mozilla can press on with independent subprojects such as #Thunderbird owners #MZLA #Technologies #Corporation. The popular #Electron #framework is based on #Chromium. It's too late to change that, even if maybe #Servo may one day offer an #alternative. But if #Thunderbird sucked in #Libpurple, it wouldn't matter if #Slack and #Teams and so on used #Electron, as Thunderbird could talk to the servers directly."
"But pointing at what we'd like to see is attempting to #treat the #symptoms and not the #disease. Is there a way to #encourage Mozilla to be an #organized, #focused, #professional #business, with #eyes keenly set on a clearly defined #goal? Perhaps that's the wrong #question. Perhaps that shouldn't be the goal at all. For all that the #Linux business is #huge, no #company #develops the #kernel. They all #cooperate on it. The #Linux #Foundation #funds it, but doesn't really #guide it."
"One #observer has been #spectating and #commentating on Mozilla since before it was a foundation – one of its original co-#developers, #JamieZawinksi. He has been accurately #cataloging Mozilla's #failings for #years."
U.S. #CISA adds #Google #Chromium V8 flaw to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/179682/hacking/u-s-cisa-adds-google-chromium-v8-flaw-to-its-known-exploited-vulnerabilities-catalog.html
#securityaffairs #hacking
Security Affairs · U.S. CISA adds Google Chromium V8 flaw to its Known Exploited Vulnerabilities catalogU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Chromium V8 vulnerability to its Known Exploited Vulnerabilities catalog.
Fortsettelse av samtale
In my "testing" #XFCE has been running very well with no noticeable issues. #Gnome looked good but ran slow and #LXDE had lots of glitches with the DE setup. I installed #JWM (have not tested) and plan to install #KDE to try out if available.
Web browsers are a very meh. #Dillo works okay, but is not great for "modern" websites. #Chromium (from Orange Pi) works okay but is very slow; standard Chromium is not available. #Epiphany was sooooo slow that is was not usable. #Konqueror installed but was missing dependencies to function. #Surf is working okay; good for basic sites but chugs on more demanding sites like Youtube.
Terminal apps all seem to be working fine. Simple apps like #GoodVibes and #Kpat work with out issues.
3D Games were not playable if they even loaded up. #Minetest opened but was like 1 frame per 3 seconds. #TuxCart installed but would not open.
So far on the #OrangePiRV2 the definitive winners are XFCE, Sakura (teminal), GoodVibes, Kpat, and #plank
I struggled a bit adding the #NoAI version of #DuckDuckGo search to my #Chromium based browser. Simply changing the shortcut from 'duckduckgo.com' to 'noai.duckduckgo.com' didn't do the trick. 
Turns out you need to add a 'https://' to the shortcut to make it work. 
Give your tab stacks a custom colour, access tab actions faster, and set up per-browser DNS settings in the latest release of the Vivaldi web browser.
https://www.omgubuntu.co.uk/2025/07/vivaldi-7-5-browser-update-changes?v1
OMG! Ubuntu · Vivaldi 7.5 Brings Colourful Tab Stacks & New DNS SettingsColourful tab stacks and concise tab context menu are the headline changes on offer the latest update to the Vivaldi web browser.
Une extension indispensable signée Next pour lutter contre la désinformation massive des IA génératives
Bonjour,
Au cours de nos revues sur l’IA, un point a vite été constaté : les IA génératives (ChatGPT et consorts) produisent énormément de contenus erronés (appelés hallucinations), ce qui peut mener à de la désinformation. Nous considérons d’ailleurs ces outils comme mauvais pour s’informer sur un sujet ou suivre l’actualité, comme dit dans les tests effectués en Mars 2025 pour savoir si on était plus efficace ou non avec une IA générative.
Si les modèles de langages utilisés ont évolué depuis, cela ne corrige pas le problème. C’est tout le contraire même, c’est de pire en pire comme constaté et partagé par OpenAI et évoqué dans cet article écrit en Mai.
On a aussi eu récemment l’audition de Luc Julia (concepteur de Siri) au Sénat affirmant que les IA ne sont pas fiables, sont de plus en plus mauvaises et qu’il est impératif de relire ce qu’elles génèrent. Ci-dessous l’extrait vidéo :
Le plus simple serait donc de ne pas utiliser ces outils pour s’informer ou d’être très attentifs à ce qui est pondu et de vérifier ce qui est dit systématiquement.
Le problème, c’est que le contenu généré par IA gangrène le web et ne se limite plus à ces outils… On peut donc y être confronté sans forcément s’en rendre compte.
Pour prendre un exemple récent, le 12 Juin dernier un Boeing 787 s’est écrasé en Inde faisant de nombreuses victimes. Google AI Overview qui est intégrée dans le moteur de recherche Google (aux US du moins), est une IA proposant une réponse positionnée avant les résultats de recherche traditionnels. Eh bien, grâce à l’IA, le crash est devenu celui d’un Airbus A330 !
Il y a encore plus vicieux, aujourd’hui des sites sont entièrement générés par l’IA et se présentent à tort comme des sites d’information. Il est donc plus difficile de déceler le vrai du faux, surtout que certains articles sont référencés dans Google Actualités.
Heureusement, il existe des solutions pour tenter d’y voir plus clair. En dehors du fait que je déconseille fortement l’utilisation directe de l’IA pour faire de la recherche d’informations, je conseille également d’installer sur vos navigateurs l’excellente extension « Alerte sur les sites GenAI » développée par Next et disponible sur Firefox (et dérivés comme Librewolf) et Chromium (et ceux basés dessus comme Chrome ou Vivaldi).
Cette extension a pour but d’alerter si vous visitez une site généré en partie ou totalement par de l’IA. Lorsque c’est le cas, une pop-up comme ci-dessous s’affiche :
Cela permet de sensibiliser quant à la véracité du contenu et également de rappeler que bientôt, en Europe, les sites présentant du contenu généré par une IA auront l’obligation de l’afficher clairement. Une fois la pop-up fermée, le site est accessible et vous pouvez accéder au contenu si vous le souhaitez. Aucun blocage donc, juste un avertissement pour savoir dans quoi on embarque.
Personnellement, j’aime beaucoup cette extension ! Dès que je vois ce bandeau, je ne cherche pas à comprendre et je vais directement chercher l’information ailleurs vu que je n’accorde aucune confiance au contenu généré par IA et que je ne souhaite pas m’attarder davantage sur un site recourant à cela.
Et ce qui me rassure, c’est que pour le moment, je n’ai vu ce pop-up que sur des liens que l’on m’a envoyé donc mes lectures habituelles semblent bien être réalisées par des êtres humains !
Bonne découverte et utilisation 
I just updated #Anubis for the @FreeCAD infrastructure. There's now support for challenges without requiring client-side #JavaScript, and a "success... failure!"-type bug affecting #Chromium should now be fixed. Please let me know if you run into any issues! #FreeCAD
Microsoft security advisories, posted yesterday, affecting six Chromium-based Edge vulnerabilities.
Microsoft security update guide: https://msrc.microsoft.com/update-guide #Microsoft #cybersecurity #infosec #Chromium
msrc.microsoft.comSecurity Update Guide - Microsoft Security Response Center
Replied in thread
@Tutanota
I post this just to show how I wanted to reply to the last post in the conversation from the screenshot, but I couldn't because @Azarilh blocked me.
“I admit this
If this would happen (which I really hope will not) I will stay with #VivaldiBrowser for as much as it would be able to survive, and then move to a #GeckoBrowserEngine-based #browser.
After all, #Chromium doesn't invade my #privacy, as #Bing, #Google, #Yahoo etc. do.”
Am I wrong?
What would it cost to pay a contributor to #Chromium to fix a specific audio bug for me? I am, like, half serious about this. It is so annoying and occasionally painful.
I sometimes watch YouTube videos in a browser on my 2nd monitor while I game. When I pause a video, it will sometimes randomly increase in volume. I then un-pause it and *blam* the audio has jumped in volume.
This has happened in multiple browser for me, all based on Chromium currently, @Vivaldi
An annoying SVG animation bug in Chrome
https://shkspr.mobi/blog/2025/06/an-annoying-svg-animation-bug-in-chrome/
Writing web standards is hard0. You have to write a formal specification which is useful for machines, humans, and web developers1.
I recently stumbled across what I think is a little bug which might be caused by a misreading of the SVG Animation specification. Here you should see two overlapping circles gradually appear:
If you're on Chrome, you might only see one circle animate. Why? Bloody semicolons! The bane of every programmer's existence2.
The specification for SVG Animation has this text for human readers:
keyTimes
A semicolon-separated list of time values used to control the pacing of the animation. Each time in the list corresponds to a value in the ‘values’ attribute list, and defines when the value is used in the animation function.
[…]
If the last semicolon separator is followed by either just white space or no more characters, ignore both the separator and the trailing white space.
To me, that isn't ambiguous. The text keyTimes="0; 1;" has a final semicolon with nothing after it. Therefore it should be ignored. Instead, Chrome throws an hissyfit and says Error: <animate> attribute keyTimes: Invalid value, "0; 1;".
But maybe the humans who wrote the description were sloppy. There's also a machine-readable formal specification. It defines the acceptable sequence as being:
<number> [; <number>]* ;?
This isn't quite Backus–Naur form3, but rather CSS Values.
- The
<number>is a component. - The
[and]are grouping combinators. - The
*and?are component multipliers*"indicates that the preceding type, word, or group occurs zero or more times."?"indicates that the preceding type, word, or group is optional (occurs zero or one times)."
- The
;is just a semicolon4.
Reading the definition tells us that a valid value will be a number, followed by zero-or-more groups of "semicolon and another number" with an optional final semicolon.
So, based on my reading, I think Chrome is wrong to throw an error here. Both Firefox and Safari work with a trailing semicolon.
Accordingly, I've raised a bug with the Chromium team. If you think I have erred in this matter, please let me know.
I do have some experience in this matter. ↩︎
Back in 2006, Catharine A. MacKinnon provokatively asked "Are Women Human?". Her argument (which I shall badly summarise) is that if women were human, then they'd be protected by universal human rights. Given the state of the world then (and now) it is hard to argue that women receive as great a level of attention as the default male. I don't intend to trivialise MacKinnon's work - but I do find it interesting that developers are often treated separately from other humans. ↩︎
I imagine English literature students also find them confusing; everyone does. ↩︎
Also the bane of programmers everywhere! ↩︎
Just like how sometimes a cigar is just a cigar. ↩︎
Terence Eden’s Blog · An annoying SVG animation bug in Chrome
Mer fra 
Terence Eden