What Edu is reading this week (March 2 to 8, 2026)

This week’s reading list is a mix of high stakes security post mortems, ranging from the XZ backdoor to recent GitHub Actions exploits, alongside the rapid evolution of the OpenClaw ecosystem and some surprising hardware moves from Apple.

AI, Agents & Tools

• OpenClaw: Our Comprehensive Guide for Beginners A deep dive into the open source framework for building proactive, personalized AI assistants that live in your messaging apps.
• SumeLabs/clawra OpenClaw as your AI girlfriend or companion.
• bytedance/deer-flow ByteDance’s super agent harness for orchestrating sub agents with long term memory and sandboxed execution environments.
• GitHub Copilot CLI is now Generally Available The terminal native Copilot experience has graduated to GA, offering a full agentic development environment directly in the CLI.
• googleworkspace/cli / Discussion A dynamic, agent friendly CLI for Google Workspace that uses Discovery Service to manage Drive, Gmail, and Sheets.
• openclaw-agents A deployment kit featuring nine specialized AI agents for collaborative R&D tasks within the OpenClaw ecosystem.
• NVIDIA PersonaPlex 7B on Apple Silicon Real time, full duplex speech to speech interaction running natively on Mac using MLX.
• The Open Source AI Definition 1.0 The Open Source Initiative’s official standard for what truly constitutes Open Source AI.
• BullshitBench v2 Explorer An interactive dashboard comparing the ability of various LLMs to detect plausible sounding nonsense across domains.
• KeygraphHQ/shannon / Shannon Lite An autonomous AI agent designed to identify and execute real world exploits in web applications and APIs.
• PentestGPT A specialized tool leveraging LLMs to automate the entire penetration testing lifecycle from recon to exploitation.

Security & Systems

• The Internet Was Weeks Away From Disaster and No One Knew A chilling retrospective on the XZ Utils backdoor that nearly compromised the global Linux supply chain.
• Trivy Security Incident 2026 03 01 A detailed breakdown of a security breach targeting the Trivy repository via GitHub Actions.
• Hackerbot Claw: AI Powered GitHub Actions Exploitation A look at an automated attack campaign where AI bots targeted open source repositories via GitHub Actions.
• Clinejection: When Your AI Tool Installs Another A security analysis of a supply chain attack involving prompt injection in GitHub issue titles.
• Mozilla is working on a big Firefox redesign / Gabriele Svelto Firefox’s upcoming Nova visual overhaul featuring vertical tabs and a modernized UI.
• Asahi Alarm An Arch Linux ARM distribution tailored specifically for Apple Silicon Macs, building on the Asahi Linux foundation.

Cloud, Kubernetes & Infrastructure

• My MCP Server Setup: A Practical Guide A comprehensive walkthrough of a setup featuring numerous Model Context Protocol servers.
• Using Terraform on macOS to manage KVM VMs A technical Gist demonstrating how to use the libvirt provider to manage KVM virtual machines from a Mac.

Development, Web & Tools

• wedow/ticket A fast, git native ticket tracking system implemented as a single bash script using Markdown and YAML.
• rothgar/awesome tuis A massive, categorized list of high quality Terminal User Interface projects.
• Building a new Flash An ambitious project to create a modern, open source 2D animation tool compatible with classic Flash files.
• FOSDEMflix A polished, Netflix like interface for browsing the extensive library of recorded talks from FOSDEM.

Gaming, Fun & Misc

• The Standup Podcast Why OpenClaw users buy Mac minis discussing the trend of dedicated hardware for AI agents.
• Say hello to MacBook Neo Apple’s new laptop featuring the A18 Pro chip, bringing the Mac experience to a wider audience.
• frenck/home assistant doom An AI written integration that lets you play the original DOOM directly in your Home Assistant dashboard.
• Ray Bans Privacy Concerns An investigation into how human annotators review sensitive footage from Meta’s smart glasses.