It depends what kind of plants. Many people are allergic to pollen.
Plants also need maintenance, if you let it overgrow - or let it die - all sort of bugs live on the soil.
There was a slight volcanic smog last week, and the plants certainly did not help.
We have 1 air purifier, a cheap one, I placed it in the room of the children. Thankfully the sulfur dioxide in the air has subsided.
Good Monday morning from the Philippines, Nostr
Trump advocating for this, is a negative approach in politics. Instead of, for instance, promising jobs, bolstering the economy, (which are both positive), this approach takes into account the fear, pain and anger of people.
If elected, then we can say with some generally accepted consensus that "the people voted for it".
We are trying to judge the moral acceptability of imposing death penalty on arbitrary items, such as the ones you mentioned above. But it really is a matter that falls on the shoulder of any leadership.
---
22 “What shall I do, then, with Jesus who is called the Messiah?” Pilate asked.
They all answered, “Crucify him!”
From a law enforcement perspective, it depends.... What kind of nation are you trying to create?
I would say that some countries take it too far, to stifle dissent and enforce a heavy hand on a populace. Authoritarian regimes such as Iran come to mind. This could backfire, as the recipients of this could become martyrs. Martyrs make for an unstable political sphere.
In Spanish-era colonial Philippines, it was the death of martyrs that spurned the revolutionary movement. Earlier on, the death of Catholic priests, Gomez, Burgos and Zamora (Garrote).
And of course, the trigger, was the firing squad death of Jose Rizal.
On the other hand, you also have Anders Behring Breivik, who murdered 69 people. He is currently suing the Norway government for violating his human rights...
I live in a country where people were chanting and raising their fists in 2016 when then candidate Rodrigo Duterte promised the people he will turn Manila Bay red, with the blood of people he will kill. People clapped and cheered this.
Most responses in favor of this - comes from a victim mindset.
Like if you were the son or family member of a victim. That said, the topic is multi-faceted. A huge part of it deeply personal.
If you come from a spiritual and religious perspective, and read the part where God was bringing judgment on Cain, God gave him a mark - that is, the Mark of Cain, that forbade other people from seeking retribution.
In predominantly Muslim South of our country, there is such a thing as a "rido" or clan wars. Where tribes or communities, perform revenge killings often to such extent that both sides are almost extinguished.
#reproducible-builds notes 2024-08-22 17:47
Of all the Android apps that I verified (or tried to), bitkey has the most nuanced methodology.
How they do so, is explained step by step (by way of the script ordering) here:
https://github.com/proto-at-block/bitkey/tree/main/app/verifiable-build/android/verification/steps
This is particularly instructive since bitkey uses split apks.
#reproducible-builds notes 2024-08-22 17:48
I had Claude.ai Sonnet 3.5 analyze one of the steps for the script "normalize apk content", and this is its evaluation:
Comprehensive Explanation of APK Content Normalization
Part 1: Choice of Incomparable Files
The script defines an array of "incomparable" files:
bash
`incomparable_files=("AndroidManifest.xml" "stamp-cert-sha256" "BNDLTOOL.RSA" "BNDLTOOL.SF" "MANIFEST.MF" "EMERGENC.RSA" "EMERGENC.SF")`
These files are considered incomparable for several reasons:
AndroidManifest.xml: This file contains essential information about the app, including its package name, version, required permissions, and components. While much of this information remains constant, some elements like versionCode or versionName might change between builds, making it unsuitable for direct comparison.
stamp-cert-sha256: This file likely contains a SHA-256 hash of the certificate used to sign the APK. It will differ between builds, especially if different keys are used for signing (e.g., debug vs. release builds).
BNDLTOOL.RSA, BNDLTOOL.SF, EMERGENC.RSA, EMERGENC.SF: These are signature files. '.RSA' files contain the public key certificate, while '.SF' files contain signature information for the APK contents. They change with each build and signing process.
MANIFEST.MF: This is the manifest file for the JAR (which an APK essentially is). It contains metadata about the files in the APK, including their names and hashes. This changes with any modification to the APK contents.
#reproducible-builds notes 2024-08-22 17:47
Of all the Android apps that I verified (or tried to), bitkey has the most nuanced methodology.
How they do so, is explained step by step (by way of the script ordering) here:
https://github.com/proto-at-block/bitkey/tree/main/app/verifiable-build/android/verification/steps
This is particularly instructive since bitkey uses split apks.
testing android io.bluewallet.bluewallet_v7.0.1 for reproducibility
i like the "feel" of satellite.earth, but somehow the lack of a search is daunting.
I am making a copy here of a correspondence I am trying to establish with Tangem.
Context: I am trying to verify the reproducibility of the Tangem bitcoin Android app by first attempting to build it.
tldr: it does not build, and fails at updating the submodules. I wait for their response on reddit. I am mostly ignored on twitter.
--BEGIN--
Hello, Danny here from walletscrutiny.com.
I tried to post an `issue` in the appropriate GitHub repository but sadly, there was no `issue` tab there. On Twitter I am mostly ignored.
So I start with bare bones docker image, with the latter parts commented out since I am having problems in those areas:
# Use an official image as a base
FROM ubuntu:22.04
# Install dependencies
RUN apt-get update && apt-get install -y \
openjdk-11-jdk \
curl \
wget \
git \
unzip \
lib32stdc++6 \
lib32z1 \
gradle \
&& apt-get clean
# Set environment variables
ENV ANDROID_SDK_ROOT=/opt/android-sdk
ENV PATH=$ANDROID_SDK_ROOT/cmdline-tools/latest/bin:$ANDROID_SDK_ROOT/platform-tools:$PATH
ENV GRADLE_USER_HOME=/opt/gradle
# Download and install Android SDK command line tools
RUN mkdir -p $ANDROID_SDK_ROOT/cmdline-tools && \
wget https://dl.google.com/android/repository/commandlinetools-linux-9477386_latest.zip -O sdk-tools.zip && \
unzip -d $ANDROID_SDK_ROOT/cmdline-tools && \
mv $ANDROID_SDK_ROOT/cmdline-tools/cmdline-tools $ANDROID_SDK_ROOT/cmdline-tools/latest && \
rm
# Set up Android SDK
RUN yes | sdkmanager --licenses && \
sdkmanager "platform-tools" "platforms;android-31" "build-tools;31.0.0"
# Clone the Tangem Android app repository
WORKDIR /workspace
# RUN git clone .
# Update submodules to use HTTPS instead of SSH
# RUN sed -i 's/git@github.com:/https:\/\/github.com\//g' .gitmodules
# Initialize and update submodules
# RUN git submodule init && git submodule update
# Build the app
# RUN ./gradlew clean assembleDebug
# Set entrypoint for manual build
CMD ["/bin/bash"]
sdk-tools.zipsdk-tools.ziphttps://github.com/tangem/tangem-app-android.git
I build it, run it and then clone the repository:
docker run -it tangem-build:tag
Then I clone the repository:
root@cf9fc947579d:/workspace# git clone
Cloning into 'tangem-app-android'...
remote: Enumerating objects: 188837, done.
remote: Counting objects: 100% (13415/13415), done.
remote: Compressing objects: 100% (4324/4324), done.
remote: Total 188837 (delta 5181), reused 12167 (delta 4442), pack-reused 175422 (from 1)
Receiving objects: 100% (188837/188837), 75.85 MiB | 25.47 MiB/s, done.
Resolving deltas: 100% (102794/102794), done.https://github.com/tangem/tangem-app-android
Then update the submodules:
root@cf9fc947579d:/workspace/tangem-app-android# git submodule update --init --recursive
Submodule 'app/src/main/assets/tangem-app-config' (git@github.com:tangem/tangem-app-config.git) registered for path 'app/src/main/assets/tangem-app-config'
Submodule 'tangem-android-tools' (git@github.com:tangem/tangem-android-tools.git) registered for path 'tangem-android-tools'
Cloning into '/workspace/tangem-app-android/app/src/main/assets/tangem-app-config'...
The authenticity of host 'github.com (140.82.121.3)' can't be established.
ED25519 key fingerprint is SHA256:+DiY3wvvV6TuJJhbpZisF/zLDA0zPMSvHdkr4UvCOqU.
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added 'github.com' (ED25519) to the list of known hosts.
git@github.com: Permission denied (publickey).
fatal: Could not read from remote repository.
Please make sure you have the correct access rights
and the repository exists.
fatal: clone of 'git@github.com:tangem/tangem-app-config.git' into submodule path '/workspace/tangem-app-android/app/src/main/assets/tangem-app-config' failed
Failed to clone 'app/src/main/assets/tangem-app-config'. Retry scheduled
Cloning into '/workspace/tangem-app-android/tangem-android-tools'...
git@github.com: Permission denied (publickey).
fatal: Could not read from remote repository.
Please make sure you have the correct access rights
and the repository exists.
fatal: clone of 'git@github.com:tangem/tangem-android-tools.git' into submodule path '/workspace/tangem-app-android/tangem-android-tools' failed
Failed to clone 'tangem-android-tools'. Retry scheduled
Cloning into '/workspace/tangem-app-android/app/src/main/assets/tangem-app-config'...
git@github.com: Permission denied (publickey).
fatal: Could not read from remote repository.
Please make sure you have the correct access rights
and the repository exists.
fatal: clone of 'git@github.com:tangem/tangem-app-config.git' into submodule path '/workspace/tangem-app-android/app/src/main/assets/tangem-app-config' failed
Failed to clone 'app/src/main/assets/tangem-app-config' a second time, aborting
Can you help me with this? Thanks!
-- END --
Update 16:52. They responded, but want it private in email.
Comment: I have qualms about this, as "Open Source" matters should be discussed in public for others to verify, corroborate and witness, and not through email.
I am making a copy here of a correspondence I am trying to establish with Tangem.
Context: I am trying to verify the reproducibility of the Tangem bitcoin Android app by first attempting to build it.
tldr: it does not build, and fails at updating the submodules. I wait for their response on reddit. I am mostly ignored on twitter.
--BEGIN--
Hello, Danny here from walletscrutiny.com.
I tried to post an `issue` in the appropriate GitHub repository but sadly, there was no `issue` tab there. On Twitter I am mostly ignored.
So I start with bare bones docker image, with the latter parts commented out since I am having problems in those areas:
# Use an official image as a base
FROM ubuntu:22.04
# Install dependencies
RUN apt-get update && apt-get install -y \
openjdk-11-jdk \
curl \
wget \
git \
unzip \
lib32stdc++6 \
lib32z1 \
gradle \
&& apt-get clean
# Set environment variables
ENV ANDROID_SDK_ROOT=/opt/android-sdk
ENV PATH=$ANDROID_SDK_ROOT/cmdline-tools/latest/bin:$ANDROID_SDK_ROOT/platform-tools:$PATH
ENV GRADLE_USER_HOME=/opt/gradle
# Download and install Android SDK command line tools
RUN mkdir -p $ANDROID_SDK_ROOT/cmdline-tools && \
wget https://dl.google.com/android/repository/commandlinetools-linux-9477386_latest.zip -O sdk-tools.zip && \
unzip -d $ANDROID_SDK_ROOT/cmdline-tools && \
mv $ANDROID_SDK_ROOT/cmdline-tools/cmdline-tools $ANDROID_SDK_ROOT/cmdline-tools/latest && \
rm
# Set up Android SDK
RUN yes | sdkmanager --licenses && \
sdkmanager "platform-tools" "platforms;android-31" "build-tools;31.0.0"
# Clone the Tangem Android app repository
WORKDIR /workspace
# RUN git clone .
# Update submodules to use HTTPS instead of SSH
# RUN sed -i 's/git@github.com:/https:\/\/github.com\//g' .gitmodules
# Initialize and update submodules
# RUN git submodule init && git submodule update
# Build the app
# RUN ./gradlew clean assembleDebug
# Set entrypoint for manual build
CMD ["/bin/bash"]
sdk-tools.zipsdk-tools.ziphttps://github.com/tangem/tangem-app-android.git
I build it, run it and then clone the repository:
docker run -it tangem-build:tag
Then I clone the repository:
root@cf9fc947579d:/workspace# git clone
Cloning into 'tangem-app-android'...
remote: Enumerating objects: 188837, done.
remote: Counting objects: 100% (13415/13415), done.
remote: Compressing objects: 100% (4324/4324), done.
remote: Total 188837 (delta 5181), reused 12167 (delta 4442), pack-reused 175422 (from 1)
Receiving objects: 100% (188837/188837), 75.85 MiB | 25.47 MiB/s, done.
Resolving deltas: 100% (102794/102794), done.https://github.com/tangem/tangem-app-android
Then update the submodules:
root@cf9fc947579d:/workspace/tangem-app-android# git submodule update --init --recursive
Submodule 'app/src/main/assets/tangem-app-config' (git@github.com:tangem/tangem-app-config.git) registered for path 'app/src/main/assets/tangem-app-config'
Submodule 'tangem-android-tools' (git@github.com:tangem/tangem-android-tools.git) registered for path 'tangem-android-tools'
Cloning into '/workspace/tangem-app-android/app/src/main/assets/tangem-app-config'...
The authenticity of host 'github.com (140.82.121.3)' can't be established.
ED25519 key fingerprint is SHA256:+DiY3wvvV6TuJJhbpZisF/zLDA0zPMSvHdkr4UvCOqU.
This key is not known by any other names
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added 'github.com' (ED25519) to the list of known hosts.
git@github.com: Permission denied (publickey).
fatal: Could not read from remote repository.
Please make sure you have the correct access rights
and the repository exists.
fatal: clone of 'git@github.com:tangem/tangem-app-config.git' into submodule path '/workspace/tangem-app-android/app/src/main/assets/tangem-app-config' failed
Failed to clone 'app/src/main/assets/tangem-app-config'. Retry scheduled
Cloning into '/workspace/tangem-app-android/tangem-android-tools'...
git@github.com: Permission denied (publickey).
fatal: Could not read from remote repository.
Please make sure you have the correct access rights
and the repository exists.
fatal: clone of 'git@github.com:tangem/tangem-android-tools.git' into submodule path '/workspace/tangem-app-android/tangem-android-tools' failed
Failed to clone 'tangem-android-tools'. Retry scheduled
Cloning into '/workspace/tangem-app-android/app/src/main/assets/tangem-app-config'...
git@github.com: Permission denied (publickey).
fatal: Could not read from remote repository.
Please make sure you have the correct access rights
and the repository exists.
fatal: clone of 'git@github.com:tangem/tangem-app-config.git' into submodule path '/workspace/tangem-app-android/app/src/main/assets/tangem-app-config' failed
Failed to clone 'app/src/main/assets/tangem-app-config' a second time, aborting
Can you help me with this? Thanks!
-- END --
🍮
Hello nostr:npub1az9xj85cmxv8e9j9y80lvqp97crsqdu2fpu3srwthd99qfu9qsgstam8y8 Just a minor question. In the GitHub tags, CCMK4 has 2024-07-05T1349-v5.3.3, but this doesn't exist in the coldcard.com/downloads website. What we have is 2024-07-05T1348-v5.3.3-mk4-coldcard.dfu.
Perhaps a typo?
Thank you.
Anybody else having problems accessing x?
Airgap Vault currently doesn't have the latest build tag/release for version 3.32.1. Will try to verify reproducibility by using git revision: 60feba0bfd7cf3129587ec2b0e39a48eb70503ef
Verify the reproducibility of your AirGap Vault bitcoin wallet with walletscrutiny. Visit https://walletscrutiny.com/android/it.airgap.vault/
One of the first steps in bitcoin wallet or device security is reproducibility. Come help us verify.
1. Join our discord - https://discord.gg/r6CegwKMFs
2. clone the WalletScrutiny.com repository - https://gitlab.com/walletscrutiny/walletScrutinyCom
3. Start building and verifying your favorite wallet.
4. Post your opinion about bitcoin apps and wallets via nostr on walletscrutiny.com
The results:
```
Built v2.3.0-reproducibility binary sha256 hash:
db160a44f538e8f030252a2076f8f6ed4927549ac4403834c6a39d43c7b400de ports/stm32/build-Passport/firmware-MONO.bin
Expected v2.3.0-reproducibility build hash:
db160a44f538e8f030252a2076f8f6ed4927549ac4403834c6a39d43c7b400de
ports/stm32/build-Passport/firmware-MONO.bin: OK
v2.3.0-reproducibility release binary sha256 hash:
sha256sum: ../v2.3.0-reproducibility-founders-passport.bin: No such file or directory
Expected v2.3.0-reproducibility release binary hash:
98833fdb3202ed09921d7bab43d77199ef66e7a87fc201cdbd8368bafcb9ba46
sha256sum: ../v2.3.0-reproducibility-founders-passport.bin: No such file or directory
../v2.3.0-reproducibility-founders-passport.bin: FAILED open or read
sha256sum: WARNING: 1 listed file could not be read
Comparing v2.3.0-reproducibility stripped release binary hash:
dd: failed to open '../v2.3.0-reproducibility-founders-passport.bin': No such file or directory
Expected v2.3.0-reproducibility build hash:
db160a44f538e8f030252a2076f8f6ed4927549ac4403834c6a39d43c7b400de
sha256sum: no-header-v2.3.0-reproducibility-founders-passport.bin: No such file or directory
no-header-v2.3.0-reproducibility-founders-passport.bin: FAILED open or read
sha256sum: WARNING: 1 listed file could not be read
```
Checking for the reasons why the file or directories were not built.