[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"sanity-nB3gPxj32XGop634PVBmVt9c62oNqsQLlEpA3Ooi5CU":3,"sanity-DX4IP7SkAWahUUocRqloJ5mv0rgUkMMlNuM3yc2-UGo":288},{"data":4,"sourceMap":-1},{"latestPodcast":5,"latestReleases":14,"post":39,"recent":263},[6],{"_id":7,"publishedAt":8,"slug":9,"sponsored":12,"title":13},"d81860b7-7b72-4ba5-8ad5-3b77fd9a8e9b","2026-07-14T07:40:00.000Z",{"_type":10,"current":11},"slug","your-ai-is-only-as-responsible-as-you-are",null,"Your AI is only as responsible as you are",[15,21,27,33],{"_id":16,"publishedAt":17,"slug":18,"title":20},"eb5b66eb-9410-4329-83bb-22bbff39402a","2026-04-28T13:00:00.000Z",{"_type":10,"current":19},"turn-scattered-knowledge-into-trusted-intelligence","Turning scattered knowledge into trusted intelligence: Stack Internal 2026.3",{"_id":22,"publishedAt":23,"slug":24,"title":26},"369c2401-b62e-4a37-8ff8-bf603023ecad","2026-03-02T15:03:00.988Z",{"_type":10,"current":25},"what-s-new-at-stack-overflow-march-2026","What’s new at Stack Overflow: March 2026",{"_id":28,"publishedAt":29,"slug":30,"title":32},"5e9053a4-07ea-447c-91ea-29e0b6228537","2026-02-02T15:00:00.000Z",{"_type":10,"current":31},"what-s-new-at-stack-overflow-february-2026","What’s new at Stack Overflow: February 2026",{"_id":34,"publishedAt":35,"slug":36,"title":38},"a1b538eb-a8a6-46d0-80a1-ac70ec9bb935","2026-01-05T10:00:00.000-05:00",{"_type":10,"current":37},"what-s-new-at-stack-overflow-january-2026","What’s new at Stack Overflow: January 2026",{"_createdAt":40,"_id":41,"_rev":42,"_type":43,"_updatedAt":44,"author":45,"body":64,"comments":229,"dateUrl":230,"excerpt":231,"image":232,"legacyBody":235,"product":12,"publishedAt":238,"slug":239,"sponsored":12,"tags":241,"title":262,"visible":229},"2023-05-24T12:50:58Z","wp-post-19423","NR627mkKF39ASec5MIcr3T","blogPost","2025-10-31T17:26:55Z",[46],{"_createdAt":47,"_id":48,"_rev":49,"_system":50,"_type":53,"_updatedAt":54,"avatar":55,"employee":60,"name":61,"slug":62},"2023-05-23T16:27:18Z","wp-author-213","nRfzWrvFg3DIXOd15U9uv8",{"base":51},{"id":48,"rev":52},"9xJoPFf2DISyAMMJXP7Ct6","blogAuthor","2025-07-29T19:37:47Z",{"_type":56,"asset":57},"image",{"_ref":58,"_type":59},"image-e81c84dcaeb58be1002795a6544b595bd6fc8071-1024x1024-jpg","reference","former","Ben Popper",{"current":63},"benpopper",[65,69,80,105,123,142,172,190,218],{"_key":66,"_type":67,"markDefs":12,"url":68},"6d00bad4b226","embed","https:\u002F\u002Fart19.com\u002Fshows\u002F2355b740-4531-4071-a3ab-5907a95a36d3\u002Fepisodes\u002F6c5608b9-406e-4b4b-b45d-37e8f68884ab",{"_key":70,"_type":71,"children":72,"markDefs":78,"style":79},"37d106ca3862","block",[73],{"_key":74,"_type":75,"marks":76,"text":77},"37d106ca38620","span",[],"On today's episode, we chat about the corruption of color.js and faker.js, open source libraries widely used across GitHub and NPM. We explore some of the organizations trying to find ways to better fund and secure open source software and unpack the possibility that these kinds of disruptions will only become more common in the future.",[],"normal",{"_key":81,"_type":71,"children":82,"markDefs":101,"style":79},"ee07c3a1878b",[83,87,93,97],{"_key":84,"_type":75,"marks":85,"text":86},"ee07c3a1878b0",[],"Will no one think of the maintainers? As ",{"_key":88,"_type":75,"marks":89,"text":92},"ee07c3a1878b1",[90,91],"e40169320b10","em","The New Stack",{"_key":94,"_type":75,"marks":95,"text":96},"ee07c3a1878b2",[90]," points out",{"_key":98,"_type":75,"marks":99,"text":100},"ee07c3a1878b3",[],", watching millions of projects fail because of a bug in an open source library has become common enough that we shrug and reply, \"Told you so.\" It's gotten so bad, big tech companies are visiting the White House to discuss the issue as a matter of national security.",[102],{"_key":90,"_type":103,"href":104,"reference":12},"link","https:\u002F\u002Fthenewstack.io\u002Flog4j-is-one-big-i-told-you-so-for-open-source-communities\u002F",{"_key":106,"_type":71,"children":107,"markDefs":121,"style":79},"7c2f5e4cb1d5",[108,112,117],{"_key":109,"_type":75,"marks":110,"text":111},"7c2f5e4cb1d50",[],"There is a great ",{"_key":113,"_type":75,"marks":114,"text":116},"7c2f5e4cb1d51",[115],"31ba23c7da61","post",{"_key":118,"_type":75,"marks":119,"text":120},"7c2f5e4cb1d52",[]," up on the Stack Overflow blog examining this issue, but it's not about color.js, it's about Log4J. Traffic to questions on this logging library grew more than 1000% percent after the recent revelations about a new vulnerability.",[122],{"_key":115,"_type":103,"href":104,"reference":12},{"_key":124,"_type":71,"children":125,"markDefs":139,"style":79},"159e6a6b06dd",[126,130,135],{"_key":127,"_type":75,"marks":128,"text":129},"159e6a6b06dd0",[],"Also discussed in this episode: cryptographer and Signal creator Moxie Marlinspike stepped down from his role as CEO of the encrypted messaging service. That's news, but he actually made bigger waves in tech circles with an unrelated ",{"_key":131,"_type":75,"marks":132,"text":134},"159e6a6b06dd1",[133],"7fdd5bc86b36","blog post",{"_key":136,"_type":75,"marks":137,"text":138},"159e6a6b06dd2",[]," detailing his first experience with Web3. Spoiler alert: it's not as decentralized or divorced from Web2 as you might have thought.",[140],{"_key":133,"_type":103,"href":141,"reference":12},"https:\u002F\u002Fmoxie.org\u002F2022\u002F01\u002F07\u002Fweb3-first-impressions.html",{"_key":143,"_type":71,"children":144,"markDefs":167,"style":79},"854e9feefa7d",[145,149,154,158,163],{"_key":146,"_type":75,"marks":147,"text":148},"854e9feefa7d0",[],"You can find Cassidy Williams on ",{"_key":150,"_type":75,"marks":151,"text":153},"854e9feefa7d1",[152],"ad53d3f05d64","Twitter",{"_key":155,"_type":75,"marks":156,"text":157},"854e9feefa7d2",[]," and her ",{"_key":159,"_type":75,"marks":160,"text":162},"854e9feefa7d3",[161],"d17bd24a2f51","website",{"_key":164,"_type":75,"marks":165,"text":166},"854e9feefa7d4",[],".",[168,170],{"_key":152,"_type":103,"href":169,"reference":12},"https:\u002F\u002Ftwitter.com\u002Fcassidoo?ref_src=twsrc%5Egoogle%7Ctwcamp%5Eserp%7Ctwgr%5Eauthor",{"_key":161,"_type":103,"href":171,"reference":12},"https:\u002F\u002Fcassidoo.co\u002F",{"_key":173,"_type":71,"children":174,"markDefs":187,"style":79},"a80c159b5a1b",[175,179,184],{"_key":176,"_type":75,"marks":177,"text":178},"a80c159b5a1b0",[],"Ben Popper can be found on Twitter ",{"_key":180,"_type":75,"marks":181,"text":183},"a80c159b5a1b1",[182],"ce7388f6a94b","here",{"_key":185,"_type":75,"marks":186,"text":166},"a80c159b5a1b2",[],[188],{"_key":182,"_type":103,"href":189,"reference":12},"https:\u002F\u002Ftwitter.com\u002Fbenpopper",{"_key":191,"_type":71,"children":192,"markDefs":213,"style":79},"5bf8ccddcff7",[193,197,201,205,210],{"_key":194,"_type":75,"marks":195,"text":196},"5bf8ccddcff70",[],"Ryan Donovan can be found on ",{"_key":198,"_type":75,"marks":199,"text":153},"5bf8ccddcff71",[200],"88f6b99a5a1a",{"_key":202,"_type":75,"marks":203,"text":204},"5bf8ccddcff72",[],", or writing for the Stack Overflow ",{"_key":206,"_type":75,"marks":207,"text":209},"5bf8ccddcff73",[208],"d11925cedb4c","blog",{"_key":211,"_type":75,"marks":212,"text":166},"5bf8ccddcff74",[],[214,216],{"_key":200,"_type":103,"href":215,"reference":12},"https:\u002F\u002Ftwitter.com\u002Frthordonovan",{"_key":208,"_type":103,"href":217,"reference":12},"https:\u002F\u002Fstackoverflow.blog\u002Fauthor\u002Frdonovan\u002F",{"_key":219,"_type":71,"children":220,"markDefs":226,"style":79},"f095e63880bd",[221],{"_key":222,"_type":75,"marks":223,"text":225},"f095e63880bd0",[224],"141a5dc15cce","TRANSCRIPT",[227],{"_key":224,"_type":103,"href":228,"reference":12},"https:\u002F\u002Fthe-stack-overflow-podcast.simplecast.com\u002Fepisodes\u002Fnpm-fakerjs-colorjs-open-source-security-funding\u002Ftranscript\u002F",true,"2022\u002F01\u002F21","Are occasional disasters among widely used open source projects inevitable, or can we find a way to better fund maintainers and security? ",{"_type":56,"asset":233},{"_ref":234,"_type":59},"image-6f6591e18674cee2e570564767f3f8ca14c19158-3000x1575-png",{"code":236,"language":237},"\u003C!-- wp:html -->\n\u003Ciframe height=\"200px\" width=\"100%\" frameborder=\"no\" scrolling=\"no\" seamless=\"\" src=\"https:\u002F\u002Fplayer.simplecast.com\u002Fb677b38d-50df-4ae3-afc5-3646e69a2ba9?dark=false\">\u003C\u002Fiframe>\n\u003C!-- \u002Fwp:html -->\n\n\u003C!-- wp:paragraph -->\n\u003Cp>On today's episode, we chat about the corruption of color.js and faker.js, open source libraries widely used across GitHub and NPM. We explore some of the organizations trying to find ways to better fund and secure open source software and unpack the possibility that these kinds of disruptions will only become more common in the future.\u003C\u002Fp>\n\u003C!-- \u002Fwp:paragraph -->\n\n\u003C!-- wp:paragraph -->\n\u003Cp>Will no one think of the maintainers? As&nbsp;\u003Ca href=\"https:\u002F\u002Fthenewstack.io\u002Flog4j-is-one-big-i-told-you-so-for-open-source-communities\u002F\">\u003Cem>The New Stack\u003C\u002Fem>&nbsp;points out\u003C\u002Fa>, watching millions of projects fail because of a bug in an open source library has become common enough that &nbsp;we shrug and reply, \"Told you so.\" It's gotten so bad, big tech companies are visiting the White House to discuss the issue as a matter of national security.\u003C\u002Fp>\n\u003C!-- \u002Fwp:paragraph -->\n\n\u003C!-- wp:paragraph -->\n\u003Cp>There is a great&nbsp;\u003Ca href=\"https:\u002F\u002Fthenewstack.io\u002Flog4j-is-one-big-i-told-you-so-for-open-source-communities\u002F\">post\u003C\u002Fa>&nbsp;up on the Stack Overflow blog examining &nbsp;this issue, but it's not about color.js, it's about Log4J. &nbsp;Traffic to questions on this logging library grew more than 1000% percent after the recent revelations about a new vulnerability.&nbsp;\u003C\u002Fp>\n\u003C!-- \u002Fwp:paragraph -->\n\n\u003C!-- wp:paragraph -->\n\u003Cp>Also discussed in this episode: cryptographer and Signal creator Moxie Marlinspike stepped down from his role as CEO of the encrypted messaging service. &nbsp;That's news, but he actually made bigger waves in tech circles with an unrelated&nbsp;\u003Ca href=\"https:\u002F\u002Fmoxie.org\u002F2022\u002F01\u002F07\u002Fweb3-first-impressions.html\">blog post\u003C\u002Fa>&nbsp;detailing &nbsp;his first experience with Web3. Spoiler alert: it's not as decentralized or divorced from Web2 as you might have thought.\u003C\u002Fp>\n\u003C!-- \u002Fwp:paragraph -->\n\n\u003C!-- wp:paragraph -->\n\u003Cp>You can find Cassidy Williams on&nbsp;\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fcassidoo?ref_src=twsrc%5Egoogle%7Ctwcamp%5Eserp%7Ctwgr%5Eauthor\">Twitter\u003C\u002Fa>&nbsp;and her&nbsp;\u003Ca href=\"https:\u002F\u002Fcassidoo.co\u002F\">website\u003C\u002Fa>.\u003C\u002Fp>\n\u003C!-- \u002Fwp:paragraph -->\n\n\u003C!-- wp:paragraph -->\n\u003Cp>Ben Popper can be found on Twitter&nbsp;\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fbenpopper\">here\u003C\u002Fa>.\u003C\u002Fp>\n\u003C!-- \u002Fwp:paragraph -->\n\n\u003C!-- wp:paragraph -->\n\u003Cp>Ryan Donovan can be found on&nbsp;\u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Frthordonovan\">Twitter\u003C\u002Fa>, or writing for the Stack Overflow&nbsp;\u003Ca href=\"https:\u002F\u002Fstackoverflow.blog\u002Fauthor\u002Frdonovan\u002F\">blog\u003C\u002Fa>.\u003C\u002Fp>\n\u003C!-- \u002Fwp:paragraph -->\n\n\u003C!-- wp:paragraph -->\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fthe-stack-overflow-podcast.simplecast.com\u002Fepisodes\u002Fnpm-fakerjs-colorjs-open-source-security-funding\u002Ftranscript\u002F\">TRANSCRIPT\u003C\u002Fa>\u003C\u002Fp>\n\u003C!-- \u002Fwp:paragraph -->","html","2022-01-21T05:30:00.000Z",{"current":240},"whos-going-to-pay-to-fix-open-source-security",[242,251,257],{"_createdAt":243,"_id":244,"_rev":245,"_type":246,"_updatedAt":247,"slug":248,"title":250},"2023-05-23T16:43:21Z","wp-tagcat-open-source","usBIUY8SfRoXafnkrDdaLh","blogTag","2025-02-28T11:18:45Z",{"current":249},"open-source","Open Source",{"_createdAt":243,"_id":252,"_rev":253,"_type":246,"_updatedAt":243,"slug":254,"title":256},"wp-tagcat-podcast","9HpbCsT2tq0xwozQfkc4ih",{"current":255},"podcast","The Stack Overflow Podcast",{"_createdAt":243,"_id":258,"_rev":253,"_type":246,"_updatedAt":243,"slug":259,"title":261},"wp-tagcat-the-stack-overflow-podcast",{"current":260},"the-stack-overflow-podcast","the stack overflow podcast","Who's going to pay to fix open source security? (Ep. 409)",[264,270,276,282],{"_id":265,"publishedAt":266,"slug":267,"sponsored":12,"title":269},"76c9771b-34e6-4d98-8641-ecefc711f0ef","2026-07-06T15:23:34.559Z",{"_type":10,"current":268},"when-the-sensor-starts-thinking-snortml-agentic-ai-and-the-evolving-architecture-of-intrusion-detection","When the sensor starts thinking: SnortML, agentic AI, and the evolving architecture of intrusion detection",{"_id":271,"publishedAt":272,"slug":273,"sponsored":12,"title":275},"28e560af-f0aa-4d46-bd90-f435ad604aa7","2026-06-26T14:00:27.102Z",{"_type":10,"current":274},"paging-charity-how-can-engineering-leaders-avoid-becoming-bond-villains","Paging Charity! How can engineering leaders avoid becoming Bond villains?",{"_id":277,"publishedAt":278,"slug":279,"sponsored":12,"title":281},"4b22c2a3-3779-4966-93eb-5230391dbdce","2026-06-23T14:08:58.595Z",{"_type":10,"current":280},"your-ai-shipped-a-backend-that-boots-that-is-the-whole-problem","Your AI shipped a backend that boots. That is the whole problem.",{"_id":283,"publishedAt":284,"slug":285,"sponsored":12,"title":287},"5cf362e1-fe7b-45af-b69c-914731c6a052","2026-06-23T14:00:00.000Z",{"_type":10,"current":286},"the-2026-developer-survey-is-now-open-for-human-developers-only","The 2026 Developer Survey is now open (for human developers only)!",{"data":289,"sourceMap":-1},{"count":290,"lastTimestamp":12},0]