Made by Mikal

Is this the standard of behavior we get from Debian now?

Post author:mikal
Post published:June 14, 2026
Post category:Debian

So… a really really long time ago I wrote a small set of PNG utilities called pngtools. They’re not particularly complicated or anything, but a few distros decided to package them, including Debian (and therefore Ubuntu), Gentoo, Mint, and so forth. I’ve talked previously here about resurrecting the old subversion commit history and attempting to modernize the code.

And then something weird happened. A couple of weeks ago a github issue was filed against pngtools. The entire bug report is a single sentence pointing to the Debian bug tracker where people are being… weird. I think perhaps I accidentally overlapped with two things — a slightly entitled user, and people who appear to “karma farm” by pushing bug reports from Debian upstream with the minimum possible level of detail. Certainly when I look at the github history for these users they do not have a good hit rate for reporting bugs which actually result in a fix upstream. I am unclear on why they would be doing this thing if their goal isn’t either to acquire a fix or to earn some sweet sweet made up internet points.

(more…)

Early assessment of Fable, Anthropic’s new “slightly safer” LLM model

Post author:mikal
Post published:June 12, 2026
Post category:Machine learning OpenStack

This is obviously not a scientifically valid assessment, but it is my general early impressions. This started as a really really long slack message, but it became pretty clear that slack wasn’t the right place for something like this — so here it is as a blog post instead.

(more…)

System Collapse

Post author:mikal
Post published:May 31, 2026
Post category:Book

Once again a relatively short but enjoyable Murderbot book. I think its endearing that Murderbot continues to develop as a character, even if some of the tropes are feeling a little worn around the edges. Yes they get injured, yes they do some combat, yes they're sarcastic. On the other hand I think this story line is both unique compared to the previous ones, and builds reasonably upon the previous book. Honestly though, this and the previous book probably should have been one volume.

The first public release of instar

Post author:mikal
Post published:May 10, 2026
Post category:Instar Shaken Fist

I got brave this morning and made the first public release of instar, version 0.2. Here’s a snippet from what I sent to the openstack-discuss mailing list about this:

(more…)

Lunar Outfitters

Post author:mikal
Post published:May 2, 2026
Post category:Book

This book is the story of the makers of the Apollo Program space suits, International Latex Corporation (ILC). The book is written from the perspective of a former employee, so presumably it's not entirely unbiased, but it's still an interesting read. At a time where more traditional aerospace companies were either focused on converting rubber pressure suits intended for high flying military aircraft, or things which resembled the love child of a space craft and a garbage can, ILC was actively working on what we now recognize as a space suit -- something protective and pressurized that still allowed as much joint mobility as possible. ILC had their stumbles, especially when forced to pair with more traditional aerospace companies who looked down on ILC's background as a garment manufacturer. However, it seems pretty clear in hindsight that they were by far the best prepared in terms of making something actually usable. Ultimately ILC also suffered pretty severely from reduced government funding as the US Federal Government reduced investment in the space program at the end of the Apollo era -- it turns out there aren't heaps of buyers for space suits. This book is both detailed but at the same…

War bodies

Post author:mikal
Post published:April 25, 2026
Post category:Book

I am conflicted about this book. I bought it impulsively in a book shop because the review sounded really good, and I hadn't read any Neal Asher before, but within the first 50 pages has decided the premise was silly and the writing two dimensional even for a science fiction book. I persisted, largely because of sunk cost fallacy. Its rare for me to give up on a book, but this was one of them. In the end it was off to the charity box for it.

Claude Code is scary good at APK reverse engineering

Post author:mikal
Post published:April 2, 2026
Post category:Machine learning

A couple of weekends ago, Cat and I had a Bluetti home battery installed. Bluetti seems to be taking the open source community fairly seriously, and there was already a Home Assistant integration available on github, which is impressive. Before installation it was hard to tell if my EP760 inverter with "PBOX" IoT dongly thing was well supported or not, so we just kind of YOLO'ed it. Sadly, the existing open source Bluetti projects I looked at had pretty poor support for this model. However, I've spent a fair bit of time in the last year reading and watching tutorials on YouTube about Android reverse engineering, so I knew at least that JADX existed and how to run it to extract source code. I've also been playing around a lot with Claude Code, and it had done a fairly good job at analyzing malicious APKs from the courses I'd done, so I thought perhaps I could do something interesting here. Its super common for APKs to be obfuscated with commercial tools, but notably Claude is also pretty good at unwinding that obfuscation in a way in which its probably no longer a particularly effective technique for stopping analysis of otherwise…

Coding agents and deep learning

Post author:mikal
Post published:March 1, 2026
Post category:Machine learning

Andy sent me this post about how Carl Kolon uses and thinks about coding agents. The post is pretty interesting, and when I went to reply to Andy I realized that at seven paragraphs perhaps the reply is better suited to here than a signal message. Also, because that is more friendly than replying to messages with links to your blog to drive traffic and the adoration of your readers? This is of course a forward looking statement for me, I do indeed hope one day to have a reader here but baby steps. Similarly to Carl I certainly started using LLMs as "smarter search", cutting and pasting queries into claude.ai, and waiting patiently for an answer. I think this should make Google very worried, especially as its so good at finding answers. The improved performance over a "raw Google" is largely because of persistence -- the LLM doesn't perform single search, it will keep searching until it finds the answer. The decreasing levels of supervision Carl talks about is what I am talking about when I talk about prompts and planning, which has been my favourite LLM topic for the last few weeks. Increasingly I am writing a plan for…

I have a new respect for gitlab admins

Post author:mikal
Post published:February 21, 2026
Post category:gitlab

It is hard to transition from one gitlab machine to another, especially if you have a stupidly large OCI registry using the new metadata database. If you happen to need to dump the metadata postgresql database from an omnibus container, may I comment this pattern to you: $ docker exec -u registry -it gitlab /bin/bash $ cd /var/opt/gitlab/postgresql/ $ pg_dump -U registry -h /var/opt/gitlab/postgresql registry > registry.sql That's an hour of my life I'm never getting back right there.

I think I just experienced my first hallucinated security vulnerability

Post author:mikal
Post published:February 17, 2026
Post category:Linux Machine learning OpenStack Security

Yesterday my time I experienced what I think was my first LLM hallucinating a responsible security disclosure. Honestly it was no curl situation, but I think it was still interesting. The bug is on launchpad.net if you're interested in taking a look. I think in total I spent a couple of hours on the whole thing, with the hardest bit being trying to understand what the author was claiming. Fundamentally they had conflated being able to change the state of memory and other hardware inside their virtual machine with changing the state of those things for the hypervisor. They did not seem to understand that the video memory of the guest was not the video memory of the host for example. That said, I tried to be nice and I hope my replies were perhaps a little useful to them.