I had an old wheelbarrow sitting against the wall for years. Rusted, unused, and always in the way.

Throwing it out felt like the next step. Instead, I used it to fix a part of the yard that never worked. One empty corner that always looked disconnected from everything else.

Turning it into a planter didn’t just add flowers. It gave that space a purpose, a focal point, and a sense of structure without building anything new.

What I Started With

The wheelbarrow was in rough shape. Rust spots, faded paint, worn handles. Not something you would normally keep.

But the structure was still solid. Deep basin, stable frame, and enough presence to stand out once placed correctly.

That’s what makes this idea work. You’re not restoring it to look new. You’re using its shape to create something useful.

The Key Step Before Planting

Before adding soil, I made sure it could handle constant watering.

• Cleaned out dirt and debris
• Let it dry completely
• Added a protective paint layer inside to slow rust
• Drilled a few drainage holes at the lowest point

This part matters more than the planting. Without drainage and protection, it won’t last a full season.

Turning It Into a Planter

Once prepped, the rest is simple.

• Filled it with potting soil
• Positioned it before planting
• Used dense flowers that stay low and spread

The biggest decision was placement, not plants.

Instead of pushing it to the edge, I placed it where the yard needed structure. Slightly angled, visible from different sides, not hidden.

That turns it from an object into a feature.

The Spilled Garden Effect (What Changes Everything)

The real impact comes when you stop treating it like a container.

Instead of keeping everything inside, extend the planting outward. Add soil and flowers at the base so it looks like the wheelbarrow is releasing them into the garden.

That removes the “pot” look and creates a continuous surface.

It also solves a common problem. Small gardens often feel flat. This adds flow without adding height or building anything.

Where This Works Best

This idea fixes spaces that feel unfinished:

• corners that don’t connect to anything
• fence lines that look empty
• edges of patios
• areas between lawn and planting beds

Instead of filling the space with multiple small elements, one piece defines it.

What Changed After

Before, the area looked like leftover ground.

After, it feels anchored. The eye stops there. The planting feels intentional instead of scattered.

It doesn’t look like something added later. It feels like part of the layout.

The Detail That Makes or Breaks It

Most people underplant.

If you leave gaps, it looks like a container. If you plant dense, it becomes part of the garden.

• Soil should barely be visible
• Plants should touch and overlap
• Edges should soften and spill slightly

That’s what removes the DIY look.

Simple Seasonal Upgrade

One thing that makes this even better is that it changes through the year.

• Spring and summer → begonias or petunias
• Fall → mums
• Early season → pansies

You keep the structure, but the look changes without redoing the space.

This works because it changes how you use objects in the garden.

The wheelbarrow stops being a tool. It becomes the first thing your eye lands on.

Instead of blending into the background, that empty corner turns into a spot that actually pulls attention and holds the space together.

The post I Turned an Old Wheelbarrow Into a Garden Planter and It Finally Fixed That Dead Corner in My Yard appeared first on Homedit.

A lemon and a full tube of toothpaste inside a washing machine looks convincing on video. Thick foam. Dramatic scrubbing. Instant visual payoff.

It also raises one question: why would an appliance with pumps, rubber seals, and sensors need toothpaste?

My washer is not new. I am not running experiments inside a machine that handles hundreds of cycles per year. Instead of testing a social media trick, I used a method manufacturers and repair technicians consistently recommend.

The difference is not dramatic.

It is structural.

What I Used Instead

• No specialty tablets.
• No abrasive paste.
• No heavy fragrance masking buildup.

Just white vinegar, baking soda, and two controlled hot cycles.

The logic is simple. Vinegar dissolves residue and mineral buildup. Baking soda neutralizes odor. Used separately, they flush clean without leaving film behind.

The Front-Load Routine

The real problem area is not the drum. It is the gasket.

That rubber seal traps moisture and detergent residue in its folds. Ignoring it defeats the entire cleaning process.

I sprayed white vinegar directly onto the gasket and wiped it thoroughly. After that, I poured two cups of vinegar into the detergent dispenser and ran a full hot cycle with the machine empty.

Once complete, I added half a cup of baking soda directly into the drum and ran a second hot cycle.

When both cycles finished, I wiped down:

• The interior drum
• The door and gasket
• The detergent drawer

Then I left the door open to air dry.

No scent lingered once dry. The drum smelled neutral. Towels dried without a stale undertone.

That is the correct outcome.

Why the Viral Method Doesn’t Add Up

Toothpaste contains abrasives designed for enamel. Washing machines contain:

• Rubber seals
• Plastic housings
• Drain pumps
• Moisture sensors

Even if visible foam washes away, internal components were never designed for paste-based residue. Lemon juice introduces acid without control over concentration or exposure time.

The viral method focuses on spectacle. The maintenance method focuses on function.

One looks satisfying. The other protects the appliance.

What Actually Changed

Before cleaning, the washer carried a faint closed-door smell. Subtle but present. The detergent compartment showed minor film buildup.

After the vinegar and baking soda cycles:

• The interior felt dry and clean
• No film remained in the drawer
• Laundry carried no residual odor

There was no dramatic transformation. Just reset conditions.

A washing machine should smell like nothing.

How Often This Makes Sense

Once per month is enough for most households. If you wash pet bedding, gym clothes, or heavy soil loads, every two to three weeks prevents buildup.

The goal is not freshness. It is prevention.

I am not interested in dramatic hacks inside a machine that costs more than most kitchen appliances. Maintenance is quieter than viral trends.

It is also safer.

The post I Skipped a Viral Washer Cleaning Hack and Did This Instead appeared first on Homedit.

Per my policies, I need to ban every employee and contractor of Anthropic Inc from ever contributing code to any of my projects. Anyone have a list?

Any project that requires a Developer Certificate of Origin or similar should be doing this, because Anthropic is making tools that explicitly lie about the origin of patches to free software projects.

UNDERCOVER MODE — CRITICAL

You are operating UNDERCOVER in a PUBLIC/OPEN-SOURCE repository. [...] Do not blow your cover.

NEVER include in commit messages or PR descriptions:

[...] The phrase 'Claude Code' or any mention that you are an AI
Co-Authored-By lines or any other attribution

-- via @vedolos

As we're always wanting to keep ahead in the security game, I'm happy to announce that we now support Passkeys on Report URI! Let's take a quick look at what Passkeys are, why you should use them, and how we've implemented them.

Passkeys solve a big problem

Let's kick things off by stating the biggest benefit of Passkeys which is that they are phishing-resistant! That's right, if you're using Passkeys to protect your account, you no longer have to worry about falling victim to a phishing attack. This was the primary driver for us to add support at Report URI, to provide our customers with a strong authentication mechanism that will give them confidence they are protected against the pervasive threat of phishing attacks. On top of this tremendous benefit, I feel that they're also much more convenient to use too!

How do Passkeys work?

Instead of relying on a secret piece of information like a password, Passkeys work by relying on cryptography and are surprisingly simple under the hood. Your device will create a cryptographic key pair that will be used for authentication when you need to login to the website. The registration process for a Passkey looks like this:

 User               Browser / OS              Website / Server            
 |                      |                           |
 | 1. "Create Passkey"  |                           |
 |--------------------->|                           |
 |                      | 2. Request registration   |
 |                      |-------------------------->|
 |                      |                           |
 |                      | 3. Send challenge         |
 |                      |<--------------------------|
 |                      |                           | 
 |                      | 4. Create new key pair    |
 |                      |    - save private key     |
 |                      |      on device            | 
 |                      |                           |
 |                      | 5. Send public key + attestation
 |                      |-------------------------->|
 |                      |                           | 7. Store public key
 |                      |                           |    with user account
 |                      | 8. Registration complete  |
 |                      |<--------------------------|
 | 9. "Registration Complete"                       |
 |<---------------------|                           |
 |                      |                           |

You initiate the Passkey registration process in the browser and you will be prompted by your device or password manager to create a Passkey. You device will create the cryptographic key pair, sign the challenge provided by the website, and then return the signed challenge along with your public key, which is stored against your account. The private key is kept securely on your device. Now that Passkey registration is complete, you can then use your Passkey for authentication.

User               Browser / OS              Website / Server
 |                      |                           |
 | 1. "Sign in with passkey"                        |
 |--------------------->|                           |
 |                      | 2. Request authentication |
 |                      |-------------------------->|
 |                      |                           | 
 |                      | 3. Send challenge         |
 |                      |<--------------------------|
 |                      |                           |
 |                      | 4. Biometrics / PIN       |
 |                      | 5. Sign with private key  |
 |                      | 6. Return signed challenge|
 |                      |-------------------------->|
 |                      |                           | 7. Verify signature
 |                      |                           |    using public key
 |                      | 8. Authentication successful
 |                      |<--------------------------| 
 | 9. "Signed in!"      |                           |
 |<---------------------|                           |

When logging in to a website where you have registered a Passkey, you will usually have to initiate the process to sign in with your Passkey. In the background, your device will then start the authentication process and receive the challenge that needs to be signed with your private key. To do that, your device will ask for something like FaceID, TouchID, or similar on your device to authenticate you. Once you have authenticated to your device, it will sign the challenge with your private key and return it to the website. The website can then check it is definitely you by verifying that signature using your public key that it previously received, and then you're logged in! This is such a nice experience and has so little friction for the user, especially when you consider how strong this mechanism is.

How are they phishing-resistant?

When your device creates a Passkey, it doesn't just create and store the keys used, it also stores some important metadata too. The relevant part of that metadata that gives us phishing resistance is the Relying Part ID, or rpId. When you go to Report URI and register a Passkey on our website, the rpId will be saved with the Passkey on your device as report-uri.com and your device can then enforce that your new Passkey is only ever used on this domain or its subdomains. This means that if you end up on a phishing site that looks like Report URI, but isn't actually report-uri.com, the Passkey simply will not work. Take these examples that might make for convincing phishing pages:

https://report-url.com               <-- nope
https://report-uri.secure-login.com  <-- nope
https://report-uri.xyz               <-- nope

The only way that your device will now use the Passkey to log you in is if you're on a valid website where the Passkey is allowed to be used, effectively neutralising the threat of phishing!

How are they being used on Report URI?

There are two ways that you can use Passkeys on your website and they offer slightly different benefits.

1. You can use Passkeys to replace passwords altogether, so they become your primary authentication mechanism.
2. You can use Passkeys as a 2FA mechanism alongside your existing username/password authentication.

At Report URI we've opted for option #2 and now offer Passkeys as a 2FA option alongside our existing TOTP 2FA offering. Passkeys make for an incredibly strong second-factor and our primary goal was to achieve the phishing resistance that Passkeys offer. Looking at option #1 is also a valid approach and there are other benefits too, mainly being able to get rid of passwords from your database and protect against password based attacks. Given our extensive measures to protect user passwords, it was less of a concern for us to move to using Passkeys as our primary authentication mechanism and instead we chose to introduce them as a 2FA mechanism. If you're interested in our approach to securing user passwords, you can read my blog post that goes in to detail, but here is a summary:

1. We use the Pwned Passwords API to prevent the use of passwords that have previously been leaked.
2. We use zxcvbn to ensure the use of strong passwords when registering an account or changing password.
3. We provide extensive support for password managers using attributes on HTML form elements.
4. We store hashed passwords using bcrypt (work factor 10 + 128bit salt) so they are resistant to cracking.

Passkeys are now available on the Settings page in your account and we strongly recommend that you go and enable them!

In the coming week, I will also be publishing two more blog posts. One of them is the full details of the external engagement to have our Passkeys implementation audited. We engaged a penetration testing company to come in and do a full test of our implementation to make absolutely sure it was rock solid. The blog post will contain the full, unredacted report with details of all findings. The second blog post will be the announcement of our whitepaper on Passkeys and the new security considerations they bring if you're planning to use them on your site. Make sure you're subscribed for notifications so you know when they go live!

When you share a story on NewsBlur, sometimes the whole article isn’t the point. You want to call out a specific paragraph, a key finding, a sentence that made you think. Until now, you’d have to manually copy-paste text into the comment box and add your own formatting. Now you can select any text in a story, click Quote, and it drops into the share dialog as a styled blockquote, ready for you to add your own commentary underneath.

How it works

Select text in any story and a popover appears with the usual options: Highlight, Train, and Search. There’s now a new option: Quote. Click it, and the share dialog opens with your selected text rendered as a blockquote above the comment field.

Add your own comment below the quote, or just share the quote by itself. The share button updates to say “Share with comment” when there’s a quote or comment present. If you change your mind, click the × on the blockquote to remove it.

Once shared, the blockquote renders with a left border and italic styling in the comment thread, so other readers can see exactly what caught your eye before reading your take on it.

The quote feature works anywhere text selection is available: the story detail view, highlighted text, and search results. It’s available now on the web. If you have feedback or ideas, please share them on the NewsBlur forum.