Express v5 finally ships after ten years with security improvements, better promise support and a growing backlog for contributors
|
|
Express v5 finally ships after ten years with security improvements, better promise support and a growing backlog for contributors
|
|
Express v5 finally ships after ten years with security improvements, better promise support and a growing backlog for contributors
|
|
OpenStack + pre-commit Many OpenStack projects, including Ironic and many SDK and oslo projects, now utilize pre-commit to perform linting at commit time. This tool has a major downside: git hooks have to be enabled locally. If you’re someone who can easily forget things, and works in many diverse repos, this can lead to not utilizing this tool, which is unfortunate. Luckily, I’ve found a solution! Templates are supported for git con..
|
|
This article will explain how the blog is organized at a technical level, and show how I implemented various IndieWeb features. Table of Contents: Motivation Structure and Deployment Static search index Running scripts via GitHub Actions Social media syndication and the “shortform” section Links to syndicated versions at the end of each post Warning for a too-long first paragraph Triggering this workflow automatically after deployment Blogr..
|
|
This article will explain how the blog is organized at a technical level, and show how I implemented various IndieWeb features. Table of Contents: Motivation Structure and Deployment Static search index Running scripts via GitHub Actions Social media syndication and the “shortform” section Links to syndicated versions at the end of each post Warning for a too-long first paragraph Triggering this workflow automatically after deployment Blogr..
|
|
This article will explain how the blog is organized at a technical level, and show how I implemented various IndieWeb features. Table of Contents: Motivation Structure and Deployment Static search index Running scripts via GitHub Actions Social media syndication and the “shortform” section Links to syndicated versions at the end of each post Warning for a too-long first paragraph Triggering this workflow automatically after deployment Blogr..
|
|
On October 31st, 2024, another package compromise and cryptocurrency hijack story unfolded for a popular npm package. Scan open source dependencies and container images in the CLI or your SCM with Snyk to determine if you're using one of the vulnerable versions of lottie-player, and potentially uncover any other security vulnerabilities you may have in your projects.
|
|
Introduction: Welcome to Episode 3 of JSON for Engineers! In this episode, Miki Tebeka explores the intricacies of JSON field mapping and value handling, especially when working in strongly typed languages like Go. This session covers the practical challenges of matching JSON fields to Go struct fields, distinguishing between missing and zero values, and using default values to ensure robust JSON parsing. These strategies are crucial for e..
|
|
Table of Contents Recap: What’s The Outbox Pattern? Implementation Considerations Polling vs. Log-Based CDC The Outbox Table pg_logical_emit_message() Format Considerations Backfills Idempotency for Consumers Criticisms of the Outbox pattern Database Overhead Complexity Latency Discussion Alternatives to the Outbox Pattern Dapr Read-yourself Stream Processing on "Raw" Change Event Streams 2PC Du....
|
|
Recently I found a good use case for AI when migrating my dotfiles to another theme. This is a short post about it.
|
|
In early October, I gave a presentation on platform thinking at an onsite for Salesloft’s product experience team—what it is and what it enables.
|
|
You want to check for strict consistency ( linearizability ) for your project but you don't want to have to deal with the JVM . Porcupine , used by a number of real-world systems like etcd and TiDB, has you covered! Importantly, neither Jepsen projects nor Porcupine can prove linearizability. They can only help you build confidence that you aren't obviously violating linearizability. The Porcupine README is pretty good but doesn....
|
|
Repository: @knadh/yesqlr GitHub release page: v0.2.0 What’s Changed lib, query: remove manual implementation by @flouthoc in https://github.com/knadh/yesqlr/pull/1 New Contributors @flouthoc made their first contribution in https://github.com/knadh/yesqlr/pull/1 Full Changelog : https://github.com/knadh/yesqlr/compare/v0.1.0...v0.2.0
|
|
Table of Contents Recap: What’s The Outbox Pattern? Implementation Considerations Polling vs. Log-Based CDC The Outbox Table pg_logical_emit_message() Format Considerations Backfills Idempotency for Consumers Criticisms of the Outbox pattern Database Overhead Complexity Latency Discussion Alternatives to the Outbox Pattern Dapr Read-yourself Stream Processing on "Raw" Change Event Streams 2PC Du....
|
|
I just got access to the new ChatGPT search feature on macOS! Excited to compare how it stacks up against my go-to tool, Perplexity, for research. Gave it a spin with a few examples and shared my thoughts on the strengths and weaknesses of both. Check it out!
|
|
The Common Vulnerabilities and Exposures (CVE) program, launched in late October 1999, has not only marked its presence but has become a pivotal force in shaping how we perceive and manage cybersecurity threats. A Journey Through Time The CVE program emerged as a beacon, standardizing how vulnerabilities are identified, shared, and mitigated. From its inception with just 321 entries, it has ballooned to over 240,000 records, showcasing a re....
|
|
I wish I had read this paper by Felienne Hermans and Ari Schlesinger before going to SPLASH . Felienne’s blog post is worth reading as an introduction , and here’s the stream of her presentation , which I highly recomend -- she's an excellent compelling communicator. I don't have much to add, beyond a few quotes I felt worthwhile to share: Coming back to my insider-outsider perspective, I sometimes wonder what we are even re..
|
|
Just tried out Anthropic's Computer Use demo in a Docker setup! It can control a virtual machine and run tasks like adding a knowledge base for our bots. Super impressive, but it did trip up on some commands and interactions. Excited to see where this tech goes!
|
|
From the Board Games Study Journal : Mathematical analysis of the Royal Game of Ur Despite many discoveries and proposals for rules for the ancient board game known as the Royal Game of Ur (RGU), no mathematical analysis has yet been performed investigating those rules. In an attempt to fill that gap, this paper presents an initial mathematical analysis of the RGU from an introductory point of view. The paper deduces the overall ....
|
|
From the Board Games Study Journal : Mathematical analysis of the Royal Game of Ur Despite many discoveries and proposals for rules for the ancient board game known as the Royal Game of Ur (RGU), no mathematical analysis has yet been performed investigating those rules. In an attempt to fill that gap, this paper presents an initial mathematical analysis of the RGU from an introductory point of view. The paper deduces the overall ....
|
I make generative art with Swift and use tiling in many pieces. Truchet tiles are generally arranged randomly and contain everything appearing in the final image. What I do differently is to separate the layout of tiles from colorizing the image. I call this technique "Color-After Tiling." For
|
|
Speed Up Code Remediation with AI-Powered Tools. Learn about the top 5 SAST auto-fixing tools and their features to streamline your development workflow. Discover how Snyk Agent Fix can slash your remediation time by 84% or more.
|
|
By integrating security practices into the development lifecycle, providing continuous education and training, and automating security workflows, organizations can effectively mitigate risks from open-source supply chain incidents, AI-generated code, and emerging threats. Snyk provides the tools and resources to establish a proactive security culture and ensure application security.
|
|
Before You Can Have Smalltalk, You Must First Defeat Capitalism.
-
www.mgaudet.ca
-
1 year ago
-
eng
At SPLASH 2024 there were a few talks and sessions that felt a bit like lamentations. Richard P. Gabriel’s keynote Alan Kay’s interview with Gilad Bracha , as part of REBASE Bracha’s own talk later in the day Konrad Hinsen’s Onward! essay talk. A common theme across these was that abandonment of “Programming Systems” and the rise of systems without elegance, introspection, trust or capability. At the end of Hinsen’s talk,....
|
|
A quick post about transclusion, partial transclusion, The Tag That Shall Not Be Named, and whitespace
|
|
A quick post about transclusion, partial transclusion, The Tag That Shall Not Be Named, and whitespace
|
|
A quick post about transclusion, partial transclusion, The Tag That Shall Not Be Named, and whitespace
|
|
A quick post about transclusion, partial transclusion, The Tag That Shall Not Be Named, and whitespace
|
|
Introduction: As you embark on the journey from C or C++ to Rust, you’ll discover a world of exciting possibilities. Rust’s emphasis on safety, concurrency, and performance can significantly enhance your programming toolkit. This beginner’s guide on transitioning from C and C++ to Rust will provide a structured approach to making that transition, addressing essential concepts and practical applications. Let’s dive in! Step 1: Understandin..
|
|
I thought it would be useful to sit down and write up some of my thoughts on SPLASH 2024 while they are still fresh. Due to happy nuptials (& a pressing desire to get home), I was only able to attend Splash for 2.5 days; Wednesday, Thursday and Friday morning. The beauty of any conference is of course the Hallway Track, so I have many papers and presentations I need to read or watch that I missed. In this write-up I’ll just highligh....
|
|
I’ve given this blog a new look by switching the theme from Noteworthy to Long Form , the latter a theme of my own design. Why the change? I adopted the Noteworthy theme at the onset of this blog and maintained a branch with some fixes (primarily KaTeX support). Since it is a cliche that engineering blogs will write more about the blog’s infrastructure than actual content, I wanted to first establish a track record of content before sp....
|
|
I’ve given this blog a new look by switching the theme from Noteworthy to Long Form , the latter a theme of my own design. Why the change? I adopted the Noteworthy theme at the onset of this blog and maintained a branch with some fixes (primarily KaTeX support). Since it is a cliche that engineering blogs will write more about the blog’s infrastructure than actual content, I wanted to first establish a track record of content before sp....
|
|
Building apps with LLMs and agents like Replit has been incredibly productive. The generated code is often vanilla and repetitive, raising questions about the future of frameworks. While frameworks offer abstractions and accelerate development, LLMs seem to disregard these patterns, focusing on implementation. This shift in software development driven by agents may lead to a world where direct code manipulation is unnecessary. It remains t..
|
|
Building apps with LLMs and agents like Replit has been incredibly productive. The generated code is often vanilla and repetitive, raising questions about the future of frameworks. While frameworks offer abstractions and accelerate development, LLMs seem to disregard these patterns, focusing on implementation. This shift in software development driven by agents may lead to a world where direct code manipulation is unnecessary. It remains t..
|
|
Introduction Large language models are fantastic tools for unstructured text, but what if your text doesn’t fit in the context window? Bazaarvoice faced exactly this challenge when building our AI Review Summaries feature: millions of user reviews simply won’t fit into the context window of even newer LLMs and, even if they did, it would […]
|
|
Imagine halving the resource costs of AI and what that could mean for the planet and the industry -- based on extreme estimates such savings could reduce the total US power usage by over 10% by 2030 1 . At Intel we've been creating a new analyzer tool to help reduce AI costs called AI Flame Graphs : a visualization that shows an AI accelerator or GPU hardware profile along with the full software stack, based on my CPU flame graphs . Our....
|
|
The mapping of integers to integers is a fair summary of the work of programming. A blog about computer science, history of computing, engineering, game theory, and other things that attract my interest. Contact / Social Links E-Mail LinkedIn GitLab GitHub Google Scholar
|
|
The mapping of integers to integers is a fair summary of the work of programming. A blog about computer science, history of computing, engineering, game theory, and other things that attract my interest. Contact / Social Links E-Mail LinkedIn GitLab GitHub Google Scholar
|
|
I created my website and started blogging in 2019. The decision to create a website was inspired by 2 posts - Why I Have a Website and You Should Too by Jamie Tanna and Writing HTML in HTML by John Ankarström . While I haven’t gotten to writing HTML in HTML as mentioned in John’s post, I have been thinking about incorporating the end results in Hugo. This was 5 years ago. So is bloggin dead now? People have been predicting it’s death....
|