sam 0.2.0 released

May 25, 2013 2 min #ooc · #programming

👋 This page was last updated ~13 years ago. Just so you know.

Today I decided to release sam 0.2.0. There are only a handful of new features in there but it’s still releaseworthy! See the for more information on the tool itself.

Source path and lib folders

Let’s take a look at what sam tells us when launching it.

sam version 0.2.0 Usage: sam [update|get|status|promote] Commands * update: update sam's grimoir of formulas * get [USEFILE]: clone and/or pull all dependencies * status [USEFILE]: display short git status of all dependencies * promote [USEFILE]: replace read-only github url with a read-write one for given use file * clone [--no-deps] [REPONAME]: clone a repository by its formula name Note: All USEFILE arguments are optional. By default, the first .use file of the current directory is used Copyleft 2013 Amos Wenger aka @nddrylliog

Changes to “clone”

One thing that’s new is that sam clone will now also clone dependencies by default. So if you do sam clone dye by example, you’ll get a copy of my graphics framework and all its dependencies.

In my case, because I already have dye, it’ll only update:

$ sam clone dye [dye:master] Repository /Users/amos/Dev/dye exists already. Pulling... > Current branch master is up to date. [sdl2:master] (<= dye) > Current branch master is up to date. [stb-image:master] (<= dye) > Current branch master is up to date. [freetype2:master] (<= dye) > Current branch master is up to date. [deadlogger:master] (<= dye) > Current branch master is up to date.

If you want to only clone or update one the formula you specify and none of its dependencies, you can use the --no-deps option.

Changes to “update”

Previously, sam update only updated its library of formulas (also called grimoir). Now it also recompiles it. It’s still pretty fast though:

$ sam update Pulling repository /Users/amos/Dev/sam > Current branch master is up to date. Recompiling sam > Cleaning up outpath and .libs > Build order: [sam, sdk] > [ OK ]

This takes around 6s on my system - and most of that is spent waiting for SSL negotiation with GitHub!

So there you have it, from now on you’ll be able to sam update to keep both your grimoir up-to-date and sam itself.

(JavaScript is required to see this. Or maybe my stuff broke)

Did you know I also make videos? Check them out on PeerTube and also YouTube!

Here's another article just for you:

Thumbnail for crates.io phishing attempt

crates.io phishing attempt

Sep 12, 2025
1 min #rust · #security

Earlier this week, an npm supply chain attack.

It’s turn for crates.io, the main public repository for Rust crates (packages).

The phishing e-mail looks like this:

A phishing e-mail: Important: Breach notification regarding crates.io Hi, BurntSushi! We recently discovered that an unauthorized actor had compromised the crates.io infrastructure and accessed a limited amount of user information. The attacker's access was revoked, and we are currently reviewing our security posture. We are currently drafting a blog post to outline the timeline and the steps we took to mitigate this. In the meantime, we strongly suggest you to rotate your login info by signing in here to our internal SSO, which is a temporary fix to ensure that the attacker cannot modify any packages published by you.
Andrew Gallant on BlueSky

And it leads to a GitHub login page that looks like this:

A fake GitHub sign-in page.
Barre on GitHub

Several maintainers received it — the issue is being discussed on GitHub.

The crates.io team has acknowledged the attack and said they’d see if they can do something about it.

Read more
Discord GitHub Sponsors Patreon
Bluesky Mastodon PeerTube YouTube
TikTok Instagram RSS
About Legal Notice Privacy Policy Terms and Conditions