copygirl

JavaScript is already sandboxed. You can only execute functions where there is an actual API defined by the browser to do so, for example Date.getTime(). There is / should be no way to get, say, your device ID. (With the exception of unpatched exploits that allow executing arbitrary code. But keep in mind browsers are likely one of the if not the most security tested software.)

What you linked to here appears to specific to Google Tag Manager in a way that I don’t fully understand, but is not related to how websites usually execute JavaScript code.

Can you link to a source that confirms this information can be collected with JavaScript (with browser comparison, ideally)? That seems outrageous if it was actually possible.

What is meant by “sensitive information” here? Browsers can’t just willy-nilly access your local files or something like that. The one thing I can think of is using JavaScript to collect information that can be used to identify you. (Is that “sensitive”? I’d put that in “identifying information”.) My honest suggestion is to keep using NoScript and just allow as few domains as possible. The next best option is to stop using websites that break without JavaScript when there’s no reason why they’d need it.

I can imagine there being a plugin that spoofs some common ways that allow sites to identify you cross-sessions / browser / websites without your consent, but blocking JavaScript (by default) is likely one of the best ways to reduce the amount of information collected about you. When you do find such a plugin, check out one of the “browser fingerprint” testing sites to see how unique your fingerprint is.

(That is, if I even understood the request properly in regards to the “sensitive information” bit.)

There is something called “local storage” that allows applications to store more information than just a cookie. Cookies are sent to the server, while local storage, as the name implies, stays local. (That doesn’t mean that this data can’t be sent to the server via JavaScript.) But local storage makes it possible to make 100% offline applications if the whole webpage is cached / downloaded (assuming no online functionality is required).

edit: As for deleting this, if I click on the lock icon in the address bar in Firefox, I have an option to clear cookies and site data for the current site. I assume the “site data” is the local storage I mentioned. If you’re using a Chrome based browser, you can probably google how to do the same thing.

I have a bigender partner who identifies and presents more femme online and more masc in real-life.
However you feel about and choose to express yourself is valid.

I happened across a podcast episode that was about AI, that I was listening to with friends. I don’t know if you want to take away anything from it but I figured I’d mention it here in case anyone wants to. Look for Serious Inquiries Only episode 477, “Debunking Bad AI Research, and Bad Coverage of AI Research”. For you it might not be super interesting, since it’s trying to explain the matter to those who might not already know much, debunking some bad studies, but towards the end they talk about the environmental impact. And this is with two experts, I believe.

One thing that pops up there is that training a “moderately large” model requires produces twice the CO₂ output of an average American over their entire lifetime. They mention water usage is really bad, too. And “moderately large” refers to what a University research team might be cooking up. Big companies have magnitudes more environmental impact from training their huge models.

(There is also a part 2, with the followup episode.)

As that post’s title suggests, it is a recreation of this one, not the other way around. Check the post dates.

You’re just reaffirming that AI bros don’t understand art.

I’ve heard some scary numbers when it comes to waste, but I don’t have a source, nor do I intend to go digging for one because I’m already depressed enough. But you addressed neither of my other grievances. In the end I’d just prefer a future where work is automated, and not creativity nor thinking. I will speak up in this small space where I might be heard, when I believe corporations are betting on getting people hooked on AI because they’ve never learned to think or bothered to create for themselves, just so they can extract massive profits.

By all means, keep investing and being interested in specialized AI, AI research and AI ethics. But stay away from generative (text/image/video) AI.

Yes.

Find a fitting meme template or create a new one. You don’t need amazing photoshop skills. Or share your idea and let someone else do it.

Don’t waste electricity and water, or legitimize generative AI to get your point across.

AI is distasteful to artists, disrespectful to our environment, and dangerous for the creativity of future generations.

The comic is giving me generative AI vibes.

A lot of the C# ecosystem is open source (thank goodness), but the official debugger isn’t, hence it only being available in the proprietary version of VSCode.

From what I read online, Matrix is not very good with its federated moderation tools. Apparently, a quirk of it can cause the state of a federated channel to reset in time, thus also undoing removing of messages. Here is a blog post criticizing Matrix.

Sweeeeet! Can they be embedded into the article?

The videos aren’t from their channel and they probably won’t be able to get the rights to rehost them all.

That’s probably the “just one step above” part. You do have the option to inspect the script you’re executing before you do so with curl | sh too, if you know what you’re doing. If you don’t, then you’d be pretty likely to just skip the prompt from yay as well. (Automatic diffs are nice tho.) Note: I use paru instead so I don’t know what yay does.

To be fair, that’s why they said

in terms of security.

The comments are worth a giggle but the AI voice ruins it. Also horrible choice of music.

Presumably this is because a block is different from the content being removed. It simply means the servers stop communicating with each other regarding new communities, posts and comments. This could allow the instance to be unblocked and the old content to continue existing – say for example when an instance has been acting badly, but it gets fixed some time later.

Blocked instances should probably not show up in search, but if you have a direct link to an old post, perhaps this should still be available? Not being able to block a community when its instance is already blocked makes sense, and probably doesn’t matter if you mostly check for new content, but I can see it being a bother when its shows up in other situations. One could call this a bug, or an oversight, but I suppose it depends on what the intended result is.

Politicians decide things, but to actually make stuff happen, the government needs to collect taxes to pay for services that are then provided to the public. I think the idea here is to take out the middleman. You won’t solve the problem country wide, but you’ll help some people, and that’s still worth it. Work together without like-minded people locally, be an inspiration, and show that it works. I’ve only been very briefly part of an activist group (specialized in food saving), so probably best to look elsewhere for good advice on how to do this well.