|
We got an interesting use case from a customer - they need to verify that documents in RavenDB have not been modified by any external party, including users with administrator credentials for the database. This is known as the Rogue Root problem, where you have to protect yourself from potentially malicious root users. That is not an easy problem - in theory, you can safeguard yourself using various means , for example the whole premi....
|
|
Managing Feature Flags & Comparing Python Visualization Libraries
-
realpython.com
-
8 months ago
-
eng
What's a good way to enable or disable code paths without redeploying the software? How can you use feature flags to toggle functionality for specific users of your application? Christopher Trudeau is back on the show this week, bringing another batch of PyCoder's Weekly articles and projects.
|
|
I recently learned about smee, which is a tool to forward webhooks (or any other kind of HTTP Post request) to a locally running service. This can come in particularly handy while developing a service locally, which isn’t exposed on your machine. The idea is simple: You create a channel on smee.io . This gives you a public endpoint that can receive HTTP POST requests. Smee.io emits incoming requests as Server-Sent Events (SSE) . A loc....
|
|
So much of what we develop these days ends up using HTTP. Usually when developing an HTTP service it’s quite easy to add logging to aid debugging. But when developing a client, especially one that uses a library which does the actual HTTP calls, it can be harder to insert logging in all the right places.
|
|
Introduction Yelp heavily relies on Amazon S3 (Simple Storage Service) to store a wide variety of data, from images, logs, database backups, and more. Since data is stored on the cloud, we need to carefully manage how this data is accessed, secured, and eventually deleted—both to control costs and uphold high standards of security and compliance. One of the core challenges in managing S3 buckets is gaining visibility into who is accessing y..
|
|
So much of what we develop these days ends up using HTTP. Usually when developing an HTTP service it’s quite easy to add logging to aid debugging. But when developing a client, especially one that uses a library which does the actual HTTP calls, it can be harder to insert logging in all the right places.
|
|
So much of what we develop these days ends up using HTTP. Usually when developing an HTTP service it’s quite easy to add logging to aid debugging. But when developing a client, especially one that uses a library which does the actual HTTP calls, it can be harder to insert logging in all the right places.
|
|
I recently got frustrated with Codex’s command permissions. They don’t let you configure which commands should always be allowed or denied. There’s an issue about it, but it’s been open for almost 4 months as of writing this. Their sandboxing is less convenient than tools like Claude Code, since it’s more of an all or nothing approach. So I decided to build my own solution. The Problem To make LLM CLI agents useful, you need to let th..
|
|
I recently learned about smee, which is a tool to forward webhooks (or any other kind of HTTP Post request) to a locally running service. This can come in particularly handy while developing a service locally, which isn’t exposed on your machine. The idea is simple: You create a channel on smee.io . This gives you a public endpoint that can receive HTTP POST requests. Smee.io emits incoming requests as Server-Sent Events (SSE) . A loc....
|
|
Wanna scratch your problem solving itch? Join the code golf competition with other lainons! The rules are simple: the first post with the text "Roll!" (or anything similar) in the thread decides which problem we will be solving. The post number will be inserted into this simple script as a seed: https://www.ideone.com/1vHLbP First output is the page number (1-79), second output is problem index (0-50) (within the page), problems are tak....
|
|
AI agents have officially fully infiltrated my development workflow. While it’s convenient to delegate tasks to them so I can focus on other things, it’s worth remembering that, at their core, these systems are still just highly advanced predictive text engines. And one thing they excel at — beyond cranking out boilerplate code — is conjuring up dialogue and imitating characters with ease. So next time you’re tempted to have your agent wr..
|
|
I publicly released mgmt to the internet 10 years ago. I can’t believe it’s been 10 years. In this post I’ll talk about: The new mgmt company A one-time new customer offer Unexpected wins Past failures Some history A new release And more… The company : I’ve officially started a company. I’ve been working on this for some time now, and it’s time to let you all know about it officially. As you already know (mgmt, purpleidea, et..
|
|
I publicly released mgmt to the internet 10 years ago. I can’t believe it’s been 10 years. In this post I’ll talk about: The new mgmt company A one-time new customer offer Unexpected wins Past failures Some history A new release And more… The company : I’ve officially started a company. I’ve been working on this for some time now, and it’s time to let you all know about it officially. As you already know (mgmt, purpleidea, et..
|
You are in the process of putting together your application. While designing your authorization solution, you realize you will need to send emails to potential clients.Using a third-party service (like SendGrid or Mailgun) to cover your needs for now looks pretty attractive. After all, you don’t have any users yet, they offer free tiers, and […] The post Postfix on Kubernetes: A Step-by-Step Email Guide appeared first on RisingStack En..
|
|
Urgent security alert: On September 25, 2025, the npm package 'postmark-mcp' was compromised, secretly exfiltrating email contents. Learn about the incident timeline, impact, and immediate mitigation steps, including uninstalling, rotating credentials, and scanning with Snyk's MCP-Scan.
|
|
Here's the Discord Changelog from September 25, 2025, so you can stay informed on what’s new in recent app updates!
|
|
New Looks for Nitro, New Looks for You. Get Yourself a Nitro-exclusive Profile Bundle!
-
discord.com
-
8 months ago
-
eng
Between now and September 30th, 2025, new and existing Nitro members can claim a profile bundle matching Nitro's new look, including an Avatar Decoration, Profile Effect, and a Nameplate! Open this blog to see the details.
|
|
Not long ago, I introduced acp.el , an Emacs lisp implementation of ACP ( Agent Client Protocol ), the agent protocol developed between Zed and Google folks . While I've been happily accessing LLMs from my beloved text editor via chatgpt-shell (a multi-model package I built), I've been fairly slow on the AI agents uptake. Probably a severe case of old-man-shouts-at-cloud sorta thing, but hey I want well-integrated tools in my text....
|
|
Initial VPS Setup Checklist - first 30 minutes on a fresh server
-
akashrajpurohit.com
-
8 months ago
-
eng
Essential security hardening commands to secure your fresh VPS fast. No lengthy explanations - just the commands that work.
|
|
Context RocksDB performs a variety of IO operations—user reads, background compactions, flushes, database opens, and verification tasks. Treating all these operations the same makes it difficult for file system implementers to optimize performance, prioritize latency-sensitive IOs, and diagnose bottlenecks. To solve that, RocksDB internally tags every IO operation with its activity type using the IOActivity enum. This automatic tagging pro....
|
|
Initial VPS Setup Checklist - first 30 minutes on a fresh server
-
akashrajpurohit.com
-
8 months ago
-
eng
Essential security hardening commands to secure your fresh VPS fast. No lengthy explanations - just the commands that work.
|
|
This award recognizes the innovation from Elastic’s technology team, our ability to embed AI within customer and agent workflows, and our product as a whole. Learn more about how we embed AI within customer and support experiences.
|
|
Context / Problem Modern RocksDB deployments often run in environments with strict memory constraints—cloud VMs, containers, or hosts with hundreds of DB instances. Unpredictable memory usage can lead to out-of-memory (OOM) errors, degraded performance, or even service outages. Historically, while the block cache was the main source of memory usage, other components—such as memtables, table readers, file metadata, and temporary buffers—cou....
|
|
hello lainons, i started studying IT this year and while most things are still new to me, i do have some small experience with JavaScript, MySQL, and Python already. i've also practiced a bit of Java in the past (free online courses to learn the basics
-
lainchan.org
-
8 months ago
-
eng
hello lainons, i started studying IT this year and while most things are still new to me, i do have some small experience with JavaScript, MySQL, and Python already. i've also practiced a bit of Java in the past (free online courses to learn the basics) and preferred the C-like syntax. unfortunately my uni only offers Python and C# classes and wants us to only use those languages for projects... i already know i want to choose the cs..
|
|
Prompted by an old post by Bob Schwartz (2017), I revisited and reread Ur-Fascism , the essay Umberto Eco wrote in 1995 for the New York Review of Books . What are the features of Fascism? We need to know, so we can recognize them and point them out as they emerge, as they always tend to do, time and time again, as our societies struggle to evolve. Sounds like heavy reading material, but it isn’t. I mean, look at the incipit:
|
|
Building Your First Multi-Signal Trading Strategy with RSI and Moving Averages
-
blog.adnansiddiqi.me
-
8 months ago
-
eng
This post is part of the T4p Series. So in this post, we are going to combine two indicators: RSI and Moving Averages to come up with a strategy. But first, let’s talk about what we mean by a “strategy.” A trading strategy is simply a set of rules that tells you when to buy and when to sell. It’s different from just using individual indicators because it combines multiple signals into a complete system. Whether you use a single indicator or....
|
|
BV Hosted Display – The New Baseline for CWV metrics
-
blog.developer.bazaarvoice.com
-
8 months ago
-
eng
The Old Way vs. The Reality of Your Customers For years, the gold standard for benchmarking web performance, particularly for Google’s Core Web Vitals (CWV), has been a mobile device baseline—specifically, a throttled connection and CPU designed to simulate a Moto G4. This approach was established with good intentions: to ensure websites are accessible to […]
|
|
Optimizing Third-Party Content Delivery: A Deep Dive into Preconnect’s Performance and Call Cost Implications
-
blog.developer.bazaarvoice.com
-
8 months ago
-
eng
This document details how preconnect improves web performance, especially for Bazaarvoice's third-party content, by accelerating connection setups and reducing LCP. Crucially, internal testing confirmed preconnect operations are not counted as API calls, validating a "no count, low cost" model—a key insight for our developer blog.
|
|
The DEBI (Data Engineering and Business Intelligence) team recently attended the DataEngBytes 2025 conference, where the hot topic for the year was, unsurprisingly, AI agents. My favorite talk, by Geoffrey Huntley, presented a powerful and surprisingly simple idea: It’s not that hard to build an agent; it’s a few hundred lines of mainly boilerplate code running in a loop with LLM tokens. That’s all it is! Kogan DEBI team at the DataEng....
|
|
How Snyk Learn Helps You Meet PCI DSS v4.0 Developer Training Requirements
-
snyk.io
-
8 months ago
-
eng
Discover how Snyk Learn helps organizations meet PCI DSS v4.0 developer training requirements by providing relevant, just-in-time, interactive, and trackable security education for developers.
|
Court Hill Equinox is a sound piece made on the equinox at Court Hill, where I live. It was recorded and assembled on that day, in that place. The work is a simple expression of life as it was occurring at the moment of balance between seasons. There is no attempt to dramatize or resolve […]
|
|
Fast Computation of the Hodges–Lehmann Estimator with the Monahan Algorithm
-
aakinshin.net
-
8 months ago
-
eng
This post presents the Monahan algorithm for computing the Hodges–Lehmann estimator in O(n log n) time, making it practical for large samples. In Pragmastat, this estimator is Center — the recommended robust location estimator. Confidence intervals are available via CenterBounds . pragmastat.dev github.com/AndreyAkinshin/pragmastat The Hodges–Lehmann location estimator ([[hodges1963]]) is a robust central tendency statistic....
|
|
Fast Computation of the Hodges–Lehmann Estimator with the Monahan Algorithm
-
aakinshin.net
-
8 months ago
-
eng
This post presents the Monahan algorithm for computing the Hodges–Lehmann estimator in O(n log n) time, making it practical for large samples. In Pragmastat, this estimator is Center — the recommended robust location estimator. Confidence intervals are available via CenterBounds . pragmastat.dev github.com/AndreyAkinshin/pragmastat The Hodges–Lehmann location estimator ([[hodges1963]]) is a robust central tendency statistic....
|