The Git Times

OpenClaw released v2026.3.24, introducing targeted improvements to its self-hosted personal AI assistant.

The update migrates Microsoft Teams support to the official SDK. New capabilities include streaming 1:1 replies, welcome cards with prompt starters, typing indicators, feedback collection, and native AI labeling. Message edit and delete functions are now supported, including in-thread fallbacks when no explicit target is provided.

Tool visibility has been refined. The /tools endpoint shows only those the current agent can use, while the Control UI adds a live "Available Right Now" section so users can check capabilities before querying.

Skill management received significant attention. Bundled skills such as coding-agent, gh-issues, weather and trello now ship with one-click installation recipes. The Control UI introduces status-filter tabs (All, Ready, Needs Setup, Disabled) with counts, replacing inline cards with detailed dialogs that display requirements, toggles, API key fields and source links.

Gateway enhancements add /v1/models and /v1/embeddings endpoints plus proper forwarding of model overrides, improving compatibility with external clients and RAG setups.

These changes make the assistant more reliable for daily operation across the messaging platforms users already inhabit while preserving its emphasis on local control and personal data ownership.

(178 words)

openpilot v0.11.0 introduces a new driving model trained entirely within a learned simulator. The update delivers noticeably smoother longitudinal performance in Experimental mode, tightening acceleration and braking response in varied traffic conditions.

Standby power draw on the comma four has been reduced by 77 percent to 52 mW. The efficiency gain extends usable time for drivers who leave the device installed.

Two new vehicles join the 300-plus supported models. Community contributor royjr added the 2017 Kia K7, while Hacheoy enabled the 2018 Lexus LS. Both integrations follow the project's standard harness and calibration process.

The release maintains the established installation path. Users flash openpilot.comma.ai for the stable branch or openpilot-nightly.comma.ai for bleeding-edge code. Alternative hardware remains possible, though it requires manual configuration.

Written in Python, openpilot operates as a robotics-focused stack that replaces factory driver-assistance software. The v0.11.0 changes reflect a deliberate shift toward simulation-based training to handle edge cases that real-world datasets struggle to cover consistently.

Development continues through GitHub pull requests and Discord coordination. The project accepts both new car ports and core system improvements from contributors.

(178 words)

The dingtalk-plugin for Jenkins has shipped version 2.8.0, delivering code cleanups and permission improvements to its long-standing DingTalk integration.

The plugin connects Jenkins build pipelines to DingTalk's robot API, automatically posting messages about build status, test results, and deployment outcomes directly into enterprise chat channels. Teams using Alibaba's collaboration platform can monitor CI/CD activity without switching tools.

This release removes the custom HTTP SDK, reducing maintenance burden and potential security surface area. It adds dedicated DingTalk permissions for more controlled API access and eliminates an unnecessary color class. Several dependency updates to the Jenkins BOM and core plugin framework were also merged, ensuring continued compatibility with Jenkins 2.479.x and beyond.

Contributor BobDu drove the functional changes across three pull requests, while Dependabot automated routine updates. The simplifications reflect a focus on sustainability for a project first created in 2016.

For enterprises where DingTalk serves as primary communication infrastructure, the plugin remains a practical bridge between automated builds and human teams. The latest changes make it lighter and more maintainable as Jenkins itself evolves.

**

MISP has released version 2.5.35, delivering architectural improvements to its Event View as part of the ongoing "Overmind" UI project. The update decomposes the previous monolithic view() action into multiple lightweight AJAX endpoints, enabling asynchronous loading of distinct event components.

New endpoints include view2() for metadata, viewAttributes(), viewObjects(), viewRelatedEvents(), and viewWarninglistHits(). A dedicated correlation dispatcher now loads data on a per-page basis rather than for the entire event, yielding significant performance gains. Attribute searching has been massively optimized, while installers received critical security hardening.

The release incorporates the latest misp-stix library updates, enhancing indicator and observable fingerprinting. A new EventTest theme demonstrates the changes with paginated attributes, quick filters, and a flatten toggle, though it is currently limited to instances with theming enabled.

More than a decade after its creation, the PHP-based platform continues to serve incident analysts and security teams by collecting, storing, and distributing cyber security indicators. It supports both machine-readable data and detailed Markdown reports with cross-references to objects and attributes. The system integrates with NIDS, SIEMs, and log analysis tools, allowing efficient consumption of shared intelligence.

These targeted changes address real-world bottlenecks when working with large events while maintaining MISP's core strength in structured information exchange.

Vuls has released version 0.38.6, adding Amazon Linux detection through the vuls2 detector and resolving an O(N²) library duplication bug in its Trivy conversion logic for ClassLangPkg handling. Dependencies were also refreshed across the codebase.

The agent-less scanner, written in Go, continues to serve system administrators who must track vulnerabilities without relying on package-manager auto-updates. It identifies issues across Alpine, Amazon Linux, CentOS, Debian, RHEL, Ubuntu, FreeBSD, Windows, macOS, Docker containers, WordPress sites, programming language libraries and network devices.

Data is pulled from NVD, JVN, OVAL feeds maintained by Red Hat, Debian, Ubuntu, SUSE and Oracle Linux, plus vendor security advisories. Scans run without installing agents, producing reports that show exactly which servers are affected by each new disclosure. Administrators schedule these checks via CRON to maintain consistent visibility.

The latest changes matter because Amazon Linux remains prevalent in cloud workloads. By tightening Trivy integration and expanding native detection, the decade-old project reduces blind spots that previously required manual verification. The result is faster, more accurate vulnerability management at scale.

Vuls does not replace patch management but supplies the precise intelligence administrators need to prioritize updates without constant manual monitoring of multiple vulnerability databases.

ProjectDiscovery has shipped version 3.7.1 of nuclei, focusing on stability and performance for its YAML-based vulnerability scanner. The release replaces panics with proper error handling in the template loader, preventing crashes during complex scans. Cluster failure handling was improved, data races in variable evaluation and interactsh functions were eliminated, and headless Chrome teardown races were resolved.

Performance gains come from removing double parsing during template loading. The dependency on github.com/bytedance/sonic was updated to support Go 1.26. The API now exposes cluster ID to template ID mappings, giving developers better visibility when building automated workflows.

These changes matter for teams running frequent scans across expanding attack surfaces. Nuclei enables security professionals to write precise detection logic that simulates real exploitation steps, keeping false positives low. The engine processes requests in parallel across HTTP, DNS, TCP, SSL and other protocols.

Three new contributors submitted their first patches, continuing the project's community-driven model. A new memogen workflow was added to streamline development. The scanner integrates with Jira, Splunk, GitHub and Elastic, allowing results to flow directly into existing security operations.

As cloud and API deployments grow, such maintenance keeps nuclei effective for continuous vulnerability assessment without introducing new friction.

Microsoft has promoted Windows Terminal 1.24 to the stable channel after an extra preview cycle. The release delivers practical refinements to the terminal and the legacy console host that now share a single codebase.

A new page in Settings lets users view and control extensions, including automatic profile detectors and any fragment extensions they have installed. The update also enables relative paths for icons, background images, pixel shaders and sounds in both local configurations and extensions.

Security considerations drove one restriction: the team blocked http, https and ftp URIs plus certain network shares to prevent tracking pixels and information leakage. Command Palette search now operates simultaneously in English and the user's display language, improving usability for non-English speakers.

The release merges four preview builds and contains numerous bug fixes. Automatic SSH host detection is not included. The repository continues to house conhost.exe, shared components, ColorTool and sample projects that demonstrate Console API usage.

Windows Terminal requires Windows 10 2004 or later. The Microsoft Store remains the recommended installation method, delivering automatic upgrades to the latest stable build.

(168 words)

Fuel-core v0.47.3 arrived this week with targeted fixes for Proof of Authority quorum calculations and high-availability failover behavior. The changes, backported from active development, address stability issues that could surface during network partitions or validator set transitions.

As the official Rust full node implementation of the Fuel v2 protocol, fuel-core powers the Ignition mainnet, Testnet, and Devnet. Ignition and Testnet currently run 0.47.1 while Devnet uses 0.47.2, making the new release a logical upgrade path for operators seeking improved resilience.

System requirements remain consistent across platforms. MacOS, Debian, and Arch users must install cmake and clang tooling, then add the wasm32-unknown-unknown Rust target. Nodes can be launched from pre-compiled binaries or built from source using make build after checking out the release tag.

The project continues to emphasize production readiness more than five years after its initial commit. Contributors run source ci_checks.sh before opening pull requests and follow detailed coding standards. Local test networks can be stood up quickly for development, while Ignition node documentation guides operators through persistent mainnet participation.

The incremental release demonstrates Fuel's focus on hardening core infrastructure rather than chasing new features.

Base node operators received version 0.14.9 this week, bringing targeted client updates to the Docker configuration that powers self-hosted instances on the Base network.

The release updates op-geth to v1.101609.1 and op-node to v1.16.7. It is designated as a recommended upgrade specifically for Base Geth nodes. The changes refine L2 execution and rollup synchronization while preserving the existing multi-client architecture.

Reth remains the default execution client, with Geth and Nethermind still supported through the CLIENT environment variable. Operators configure L1 endpoints in .env.mainnet or .env.sepolia files before running docker compose up --build. No alterations were made to the core environment variable requirements.

Production hardware specifications are unchanged. The recommended Reth archive node continues to use AWS i7i.12xlarge instances with RAID 0 NVMe drives formatted as ext4. Storage provisioning must still follow the formula of twice the current chain size plus snapshot and growth buffer.

These client updates ensure nodes remain compatible with ongoing Base network improvements without requiring changes to deployment workflows or minimum hardware thresholds.

(178 words)

The johackim/awesome-indiehackers repository received its latest updates in March 2026, expanding several sections with fresh recommendations. The project serves as a structured directory of resources for independent creators who build and monetize software without employees or venture funding.

It opens with definitions and profiles of active practitioners including Marc Lou, Tony Dinh, Pieter Levels, Arvid Kahl and Jakob Greenfeld. The blogs section points to Plausible, Marketing Examples, Stacking The Bricks and The Bootstrapped Founder. Recommended books feature Zero To Sold, The Mom Test, The $100 Startup, The Minimalist Entrepreneur and The Almanack of Naval Ravikant.

Podcasts listed range from Indie Bites and Ramen FM to My First Million, Software Social and The Bootstrapped Founder. Communities include WIP, Ramen Club, Hacker News, Product Hunt and MicroFounder. The courses category directs users to No Code MVP, 30x500 Academy, Practical Customer Development and marketing instruction from Justin Jackson and Amy Hoy.

YouTube channels from MicroConf, Sahil Lavingia and Florin Pop complete the collection. All entries are maintained in a single Markdown file, allowing developers to scan topics quickly or submit additions through standard pull requests.

With rising interest in micro-SaaS and solopreneur models, the list supplies concrete starting points rather than generic advice. Its continued maintenance reflects the maturing ecosystem of bootstrapped development.

(178 words)

Maker.js has received its latest incremental update with the release of version 0.9.17. The TypeScript library, which creates 2D vector line drawings using geometry and drafting primitives, now offers improved environment detection for consistent behavior in both Node.js and browser runtimes.

Rotation operations default to the [0, 0] origin, while path convergence selects the closest line endpoint. These changes reduce unexpected results in complex models. Bug fixes address path expansion, text centering within models, and SVG layer export, producing cleaner output files for manufacturing equipment.

The library represents drawings as simple JavaScript objects composed of paths—lines, arcs, circles and Bézier curves—that combine into models. These can be grouped in layers by color or tool type, connected into continuous chains, and manipulated through scaling, mirroring, boolean operations and fillets. Built-in models include rectangles, polygons, bolt circles, ellipses and dogbone joints.

Designs serialize cleanly to JSON, export to DXF, SVG and PDF, and convert to OpenJSCAD formats for 3D workflows. For engineers preparing files for CNC mills and laser cutters, the refinements eliminate common export errors and improve geometric precision without altering the project's established API.

(178 words)

The CocktailPi 1.9.1 release improves the Java-based control system for DIY Raspberry Pi cocktail makers. It coordinates pumps assigned to specific ingredients through a Vue.js web interface accessible from browsers or touchscreens.

The project, active since 2020, enables users to craft custom cocktails. Recipes incorporate multiple production steps, with ingredients in the same step dispensed together. Order is easily modified via drag and drop.

Administrators manage users and roles for secure access. The latest version bolsters support for extensive hardware configurations, handling up to 153 pumps using GPIO expanders without software restrictions.

Additional functions include virtual stirring, manual ingredient prompts, pump activation for maintenance, and recipe substitutions. Users organize drinks into categories and collections, with adjustable filters.

An event system permits custom automations. These features make the platform robust for both personal use and small gatherings, highlighting its utility in home automation projects.

The magictools repository remains a key reference for game developers seeking curated resources. Its latest update adds new entries on procedural tools and contemporary engines, addressing the needs of current projects.

Organized into sections like Graphics, Code and Audio, the list uses license indicators to clarify terms of use. The Graphics area recommends assets including the 2D Cartoon Mobile Game UI Pack and 420 Pixel Art Icons for RPGs. It also covers spritesheet tools, character generators and tile editors.

For programming, it lists engines and frameworks, AI solutions for pathfinding and decision making, plus music and audio editors. Terrain generators, voxel editors and modeling software appear in dedicated subsections.

Beyond the technical tools, the list directs users to must-see blogs and portals, books, magazines, videos and podcasts. It includes information on upcoming game jams, project management options and complete game sources for study. Active communities provide spaces for collaboration and advice.

In an era of increasing indie development and frequent game jams, having such a centralized list proves essential. It enables rapid discovery of both free and commercial options, supporting efficient workflow for solo creators and small teams alike. The project's longevity demonstrates its value in a fast-changing field.

Material Maker has shipped version 1.5p1, a maintenance update that corrects more than a dozen bugs affecting its core workflow. The release focuses on reliability rather than new features, with fixes for command-line material export, folder picker path display, transparency handling in previews, and undo/redo operations for node framing.

The tool, built directly on the Godot engine in GDScript, lets users construct textures and brushes by wiring nodes together in a graph interface. Each node graph generates GLSL shaders that render in real time, supporting both procedural texture synthesis and direct painting on imported 3D models. This integration keeps artists inside the Godot ecosystem instead of switching between separate applications.

The update addresses UI inconsistencies across FloatEdit controls, connection style buttons, tooltip display, and theme rendering. Several fixes, contributed primarily by williamchange, also resolve issues with the Tones node minimization, LoD updates, share-asset dialog sizing on HiDPI screens, and controller input errors.

For a project now in its eighth year, these incremental improvements matter because they reduce friction for users building production assets. Game developers and technical artists continue to rely on material-maker for its open-source nature and tight coupling with Godot's material pipeline. The latest release is available through itch.io, Scoop, Chocolatey, and Homebrew.

**