Week 21: May 17- May 23
Yeah I skipped a week – sick & some other things going on. But I had a playlist last week: https://tidal.com/playlist/083834d2-47a4-4814-9808-7b40917c525c
Week 22: May 24 – May 30
Music for Week 22:
https://tidal.com/playlist/d6de86b3-d802-445f-9f46-939ec624f494
Some extras I couldn’t add to the Tidal playlist:
- https://www.wario.style/play?src=bitmidi&id=86523&title=PRINCE.1999++K.mid
- https://www.subvert.fm/sftfmusic/tracks/night-vibe-interlude
- https://www.mutinyaftermidnight.com/
Quick Local (on computer) Transcription – privacy minded:
https://www.wired.com/story/do-you-actually-need-to-pay-for-transcription-software/ made me start thinking about how it might be possible to use Apple Intelligence https://www.apple.com/apple-intelligence for transcription so that I’m not sending a recording to someone else’s servers
- Audio workflow: open Apple Notes (mac) ? drag any mp3 file to a new note ? wait while it transcribes (there’s no progress bar but it does work)
- Video workflow: open QuickTime Player ? File ? Export ? Audio Only ? then follow audio workflow
If you’re going to publish something online though, there may be better / more accurate options that will get you the .srt files (used to create closed captions and subtitles) or .vtt (timestamped transcript that has features that make it work well with web-based video players.)
But a LOT of the transcription services really don’t have privacy in mind.
Links for the week (a lot since it’s two weeks):
- Your code editor or website is a supply chain security risk now:
- Gitea & Forgejo production infrastructure containers exposed CVE-2026-27771: https://www.noscope.com/blog/gitea-instances-exposing-private-container
- Grafana… https://grafana.com/blog/grafana-labs-security-update-latest-on-tanstack-npm-supply-chain-ransomware-incident/
- Just subscribe to some security sites if you’re in tech or even use tech:
- Drupal CVE-2026-9726 &
CVE-2026-9082: - Ghost CVE-2026-26980: https://www.bleepingcomputer.com/news/security/ghost-cms-sql-injection-flaw-exploited-in-large-scale-clickfix-campaign/
- Cpanel CVE-2026-48172: https://www.bleepingcomputer.com/news/security/cisa-gives-feds-4-days-to-patch-actively-exploited-cpanel-plugin-flaw/
- WordPress:
- If you use WordPress, you might want to fill this out – The WP Community Collective “The State of the Community” survey is open May 27 through June 27, 2026: https://www.thewpcommunitycollective.com/press-release-the-wp-community-collective-launches-the-state-of-the-community-survey/ And yes, WordPress market share is in decline: https://www.searchenginejournal.com/wordpress-market-share-in-decline/576042/
- I’m already checking for Meta Glasses anytime someone is wearing thick glasses, now we likely will have Meta pedant necklaces too: https://www.engadget.com/2184224/meta-developing-ai-pendant-more-smart-glass-models/ I’m fine being recorded if I understand I’m being recorded or at a public event. I however think that smart glasses should be run on a local network (maybe a phone for example) instead of all data sent off to a company like Meta.
- I have VERY mixed feelings about drivers licenses on smartphones. On the one hand it could be helpful if your wallet is ever stolen, on the other hand … (not getting into it), and on the other OTHER hand it’s apple wallet. A list of states where it’s expanding: https://9to5mac.com/2026/05/29/apple-wallet-drivers-license-support-expanding-to-virginia/
- Bailey’s LLM post – glass half full or half empty? https://retrobailey.leaflet.pub/3mmsk37ojg22k Related, are we deskilling? https://mastrojs.github.io/blog/2026-05-23-is-AI-causing-a-repeat-of-frontends-lost-decade/
- “No AI” search engine option with duckduckgo: https://www.macrumors.com/2026/05/29/duckduckgo-no-ai-search/ I use the standard DuckDuckGo as my default on the iphone (because it’s easy) and Kagi (which is paid) as my default most of the time on the computer. Yes, I still use Google but less and less.
- Don’t fall for Phishing attempts in Signal: https://www.inc.com/kevin-haynes/the-clever-trick-hackers-are-using-to-break-into-signal-accounts/91353069
- Four Levels Of Customer Understanding: https://www.smashingmagazine.com/2026/05/four-levels-customer-understanding/?ref=uxdesignweekly
- Solar panels as art installations: https://www.designboom.com/design/self-sufficient-solar-lighting-installation-ttal-frankfurt-riverfront/
I wish I had a few more fun things but I don’t this week. I was sick some and there have been some life chaos things.
If you want one of my favorite pens, I love that this has a mechanical pencil, eraser AND four pen colors (which I could also switch out for other specific inks though the base is rather good): https://www.jetpens.com/Zebra-Sarasa-4-Color-0.5-mm-Gel-Multi-Pen-0.5-mm-Pencil-Blue-Green/pd/12796
I have about 6 pen types I’m rotating between given various scenarios. I also may end up buying some Prismacolor or FabreCastle colored pencils soon but I need to dig through some old art supplies first.
Leave a Reply