Week 26, 2025

Sat, Jun 28, 2025

VSScan proactively analyze Visual Studio Code extensions for security vulnerabilities and ensure a safer development environment. VSCode extensions run with full access to your system, including file system, network, and credentials. Well, malicious extensions have already made it into the marketplace, and are silently compromising devices.

VSScan is a free tool that scans VSCode (and Cursor/Windsurf) extensions for;

Hidden malware and obfuscated code
Dangerous permissions and API misuse
Vulnerable dependencies and suspicious network connections

Video Intro from FilMaster

FilMaster is bridging cinematic principles and generative ai for automated film generation. Paper

FilMaster apply cinematic principles in camera language design, cinematic rhythm control to create high-quality films, including a rich, dynamic audio landscape. They automates the entire process, from script analysis to final render, and delivers project files compatible with professional editing software.

UV is an “extremely fast” Python package and project manager, written in Rust. It tries to be that one tool to replace pip, pip-tools, pipx, poetry, pyenv, twine, virtualenv, etc.

The popular image format, PNG, which was neglected for a very long time is now back in action with a new spec - Third Edition. The last PNG spec was released over 20 years ago.

A team of researchers at MIT has published quite the study. An eye-opener, and a soul-crashing one - AI Makes Us Worse. And Dumber. (archive)

In response to the surging popularly of Claude Code, Google released their own Gemini CLI. If you are shopping, Aider is also a good contender and is Open Source.

Magnitude uses vision AI to enable you to control your browser with natural language. You can use it to automate tasks on the web, integrate between apps without APIs, extract data, test your web apps, or as a building block for your own browser agents. source

Snow emulates classic (Motorola 680x0-based) Macintosh computers. It features a graphical user interface to operate the emulated machine and provides extensive debugging capabilities. The aim of this project is to emulate the Macintosh on a hardware-level as much as possible, as opposed to emulators that patch the ROM or intercept system calls. Currently it emulates the Macintosh 128K/512K, Plus, SE, Classic and the Macintosh II. source