Weekly recaps
6 itemsThe Sunday-evening synthesis read. 6 editions so far.
Weekly Recap - Jun 14 to Jun 21, 2026
The LND zero-timestamp gossip DoS disclosure dominated the defensive signal this week. No other CVEs followed. Privacy infrastructure iterated quietly: Vanadium tracked Chromium to 149.0.7827, Cashu CDK 0.17.1 fixed proof handling for inactive keysets, and Immich released RC2 for v3.0. AI volume reached 49 items, mostl
Weekly Recap - Jun 7 to Jun 14, 2026
Privacy volume held steady at 58 items while AI delivered 52 and Lightning produced just 7. No CVEs arrived this week. The clustering tells the story: incremental iteration across privacy tooling—Vanadium tracking Chromium, Cashu CDK migrating databases, Bitwarden removing feature flags—while AI infrastructure continue
Weekly Recap - May 31 to Jun 7, 2026
Four CVE-flagged releases arrived early in the week, three shipping urgent patches before the rest of the cadence arrived. AdGuard Home 0.108.0-b.88 disclosed CVE-2026-41448, Tails 7.8.1 carried a kernel and Tor client fix under CVE-2026-43503, HiveTalk SFU removed ngrok for CVE-2025-57282, and Ledger Live Desktop 4.6.
Weekly Recap - May 24 to May 31, 2026
The week was dominated by two currents: a high-urgency OAuth-binding vulnerability in Miniflux and a step-function model release from Anthropic. Miniflux 2.3.1 arrived flagged Patch now for an account-hijack vector in its OAuth implementation, placing it alongside Bitcoin Optech's disclosure of a remote Core Lightning
Weekly Recap - May 17 to May 24, 2026
Three network-adjacent security patches anchored the week. AdGuard Home shipped stable release 0.107.75 and beta 0.108.0-b.86, both flagged for immediate deployment. FreshRSS 1.29.1 arrived as a bug-fix patch with the same urgency. Cashu TS crossed a cryptographic threshold with the first v5.0.0 release candidate intro
Weekly Recap - May 10 to May 17, 2026
The week opened with a coordinated kernel vulnerability wave. Tails and umbrelOS patched DirtyFrag within 48 hours. Qubes followed with QSB-114 addressing separate Intel CPU data exposure. Matrix Synapse shipped fixes for worker lock contention DoS under two CVEs. Beyond the security cluster, Lightning and privacy tool