TECH NEWS

Homebrew 6.0 released with new security mechanism, Linux sandbox and more

Homebrew logo

Homebrew was "less vulnerable 10 years ago than npm is today," project lead tells us

The Homebrew team has released version 6.0 of this popular open-source package manager for macOS and Linux, with a new mechanism for trusting packages and support for sandboxing on Linux, to align with existing sandboxing on macOS.

Homebrew 6.0 introduces tap trust, a "tap" being a collection of formulae, casks (a package of pre-compiled binaries) and commands which usually reside in a Git repository. The tool trusts official Homebrew taps by default, but requires an explicit agreement before it will trust third-party taps (which can include arbitrary Ruby code) before they install or run any code.

Tap trust is part of Homebrew’s approach to supply chain security, which has a number of distinctive features. Package maintainers are Homebrew maintainers, not the authors of the package. Names are maintainer-curated, so typosquats (giving a...

Copyright of this story solely belongs to theregister.com. To see the full text click HERE

https://hothardware.com/contentimages/NewsItem/70891/content/16x9_2142x1205_highres-apple-tv-shows.jpg

How To Score Apple TV For $5.99 Per Month And What To Watch First

Summer is about to be sizzling with deals once Amazon's Prime Day sales event kicks off next week. In the meantime, we're seeing plenty of bargains show up early, both on Amazon and at competing retailers. One of those deals is a discounted Apple TV membership.

https://hothardware.com/contentimages/NewsItem/70892/content/16x9_2135x1201_highres-beats-studio-buds.jpg

Apple Firmware Fixes Severe Beats Mic Exploit As AirPods Get Mystery Patch

Apple has quietly released a wave of wireless audio updates, deploying critical software patches to its flagship AirPods and Beats devices to safeguard user data and optimize performance. The most urgent update targets the Beats Studio Buds. Running on new firmware (version 1B211), this patch addresses an alarming security flaw

https://storage.googleapis.com/gweb-cloudblog-publish/images/Gemini_Generated_Image_33hpsi33hpsi33hp.max-2600x2600.png

Build and Deploy a Remote MCP Server to GKE in 30 Minutes

Abdelfettah Sghiouar Cloud Developer Advocate, Google Cloud Integrating context from tools and data sources into LLMs can be challenging, which impacts the ease of development for AI agents. To address this challenge, Anthropic introduced the Model Context Protocol (MCP), which standardizes how applications provide context to these models. Developers often

Lego Unveils Its First Working Pinball Machine

The 2,273-piece Lego Icons Arcade Pinball Machine goes on sale in July. Lego has unveiled a cute new set, which happens to be its first working pinball machine. The Lego Icons Arcade Pinball Machine features a spring-loaded ball launcher, functional flippers, spinning bumpers and a ramp bridge. It has

Read more

How To Score Apple TV For $5.99 Per Month And What To Watch First

Apple Firmware Fixes Severe Beats Mic Exploit As AirPods Get Mystery Patch

Build and Deploy a Remote MCP Server to GKE in 30 Minutes

Lego Unveils Its First Working Pinball Machine