When it comes to what software is required for computers, compression software is definitely one. Due to the different needs of each person, the compression software of their choice is also different, such as WinRAR, 360 compression, 7-Zip, BandiZip, fast pressure, etc., of which the completely free and open source 7-Zip is favored by many users. As an open source compression software, 7-Zip was released in 1999, most of the source code is released under the GNU LGPL license, using LZMA and LZMA2 algorithms to make it have a very high compression ratio, and the small size is also a major advantage. 7-Zip boycotted? The callers have defined “three deadly sins”: pseudo-open source, insecurity, and the author is from Russia (Image courtesy of 7-Zip Chinese website) However, a developer named Paul recently published an article calling for a boycott of 7-Zip, the title of which gives the reason for “limited” open source & security issues. 7-Zip boycotted? The callers have defined “three deadly sins”: pseudo-open source, insecurity, and the author is from Russia7-Zip boycotted? The callers have defined “three deadly sins”: pseudo-open source, insecurity, and the author is from Russia Paul Defines the “Three Deadly Sins” for 7-Zip However, after reading this article as a whole, it can be seen that Paul has defined 7-Zip as “three deadly sins”. The first sin: “limited” open source As mentioned at the beginning, most of the 7-Zip source code is released under the GNU LGPL license, and its open source attributes should be unquestionable. Paul considers 7-Zip open source “limited” because the code is not hosted on Github, Gitlab, or any other public code hosting platform, and can only be found in the src .7z of its official Sourceforge page, and “has no history, no committer, no name, no documentation, just an archive.” Paul bluntly says about the only Sourceforge platform that hosts 7-Zip source code: “Sourceforge has been accused of containing spyware and malware in Windows .exe files and self-extracting files. ” As for “no history, no committer, no name, no documentation”, Paul also speculates that this may be because the authors of 7-Zip do not want developers to build applications from source, and having a commit history will make it easier to track any changes and restore any erroneous parts, and it will also be easier to transport some “hidden dark elements”, such as hidden telemetry or backdoors. The second crime: there is a security problem In Paul’s view, 7-Zip not only has many vulnerabilities in the past, but also the previously exposed power-raising vulnerability CVE-2022-29072 has not been fixed so far, which is obviously a security risk. Paul also cites a 2012 comment by the author in response to a user suggestion: “I don’t have time to do these things now, maybe I’ll look at it later.” ” In addition, Paul points out that 7-Zip’s installer never seems to have a signature set up — “the signature verifies the vendor and prevents bad guys from installing the software.” The Third Crime: The software author is a Russian developer The third reason paul did not reflect in the title: 7-Zip was developed by Russian developer Igor Pavlov, “In the current situation, in solidarity with Ukraine, it is best not to use Russian software”. After citing the above “three deadly sins”, Paul finally recommended some alternatives to 7-Zip, such as PeaZip, NanaZip, and Zstd (Zstandard), which is equivalent to 7-Zip. 7-Zip boycotted? The callers have defined “three deadly sins”: pseudo-open source, insecurity, and the author is from Russia Netizen: “Some conspiracy theories are just that” Paul’s boycott of 7-Zip caused a lot of discussion on the reddit forum, but judging from the comments, Paul’s purpose was not achieved: most people thought Paul’s reasons were untenable and attacked Paul’s “conspiracy theories”. 7-Zip boycotted? The callers have defined “three deadly sins”: pseudo-open source, insecurity, and the author is from Russia In the discussion post, the highest number of likes was commented by a netizen named qvop: Even if the 7-Zip source code isn’t hosted on platforms like Github, Gitlab, etc., so what? It’s still open source, and there’s no rule that open source requires hosting code on certain platforms, and I think there’s something wrong with Paul’s own perception. In fact, 7-Zip’s source code on Sourceforge has some (relatively few) documentation, including a changelog and a description of how to compile the program and some of its internal work. And if developers only want to develop alone and don’t want to seek contributions, then these unnecessary things are useless to open source. Paul argues that the 7-Zip authors deliberately prevented developers from building applications from source is also almost a “conspiracy theory” because there is no evidence to support this claim, and instead 7-Zip has more than 20 years of development and maintenance. In addition, it would be foolish to abandon open source software because of the citizenship of 7-Zip authors, especially since there is no indication of any conflicting positions of their authors. All in all, to me, this article is a hodgepodge of rights and conspiracy theories. In addition, many netizens also satirized paul’s blog post: “In a word, the poster does not like the author name of 7-Zip”, “Do not defend this article, the author is an idiot”, “I will continue to use it, thank you, I do not see any reason to stop using it”. “Open source without borders” has always been the slogan called for by the open source community, but in the current international situation, this slogan seems to be somewhat untenable: GitHub bans Russian developer accounts, and the NGINX open source project that started in Russia announces the ban on Russia… These events have made many open source enthusiasts question the nature of “open source”, and Paul’s third reason for calling for a boycott of 7-Zip is even more incomprehensible to many: “Is it true that in the future, we will have to consider the nationality of the author when choosing to use open source software?” It’s really weird. ”

Microsoft WebView2 is a special control for developers to embed web content into applications. It allows the latest improvements and technologies to use the Edge Chromium browser in different programs for Windows 10 and Windows 11, and WebView2 now supports thousands of applications, including Microsoft Office and Cerner.

Reducing developer workload, Microsoft pushes WebView2 to Windows 10

Since Windows 11, Microsoft has built the WebView2 runtime into the operating system, but for Windows 10, developers have previously needed to distribute and install the runtime with applications.

Microsoft recently announced the introduction of the WebView2 runtime to a supported consumer version of Windows 10:

Redistributable runtime deployments allow developers to use WebView2 on devices that do not yet have a runtime, but this has been a pain point for WebView2 developers as development costs increase. Once we’ve completed the WebView2 runtime push that started today, developers can more reliably rely on WebView2 on Windows 10 or later consumer devices in addition to all Windows 11 devices, making the deployment of WebView2 apps more straightforward.

This announcement is not so important to the average consumer, after all, users do not interact directly with the runtime, they can get the necessary files to run a particular program at the same time as the installer. Microsoft pushed WebView2 to Windows 10 this time, mainly for the convenience of developers.

According to an article on the official website, the WebView2 runtime is currently available on consumer versions of Windows 10, with support for Windows 10 Home and Professional editions with version numbers 2004 and later. It has very little impact on disk space because the runtime is tied to the Microsoft Edge browser, which in turn is the default browser on Windows 10 and 11, which means that it takes up disk space for only one product. To ensure the best experience for users and to reduce pressure on Microsoft servers, Microsoft will push WebView2 in batches.

It is worth noting that this push is limited to consumer devices and does not affect domain-joined enterprise devices at this time.

Be the first to comment

Leave a Reply

Your email address will not be published.