HackerTrans
TopNewTrendsCommentsPastAskShowJobs

n_e

no profile record

Submissions

Universal Paperclips (2017)

decisionproblem.com
3 points·by n_e·letzten Monat·0 comments

New text generator built by OpenAI considered too dangerous to release (2019)

techcrunch.com
4 points·by n_e·vor 3 Monaten·0 comments

Why 'Atomic Habits' may not be working for you (2023)

krishnabharadwaj.info
2 points·by n_e·vor 3 Monaten·0 comments

The Linux Foundation Certificate of Origin Is recursive

developercertificate.org
2 points·by n_e·vor 4 Monaten·1 comments

Deploy from GitHub Actions without Storing Secrets (Using OIDC)

even.li
1 points·by n_e·vor 4 Monaten·0 comments

Show HN: Pg-typesafe – Strongly typed queries for PostgreSQL and TypeScript

github.com
69 points·by n_e·vor 5 Monaten·34 comments

comments

n_e
·vor 18 Tagen·discuss
> There is general agreement among participants that he has engaged in off-wiki canvassing and is not here to constructively build the encyclopedia. There is also a significant concern shared by many editors that his actions constitute calls for outing.
n_e
·vor 21 Tagen·discuss
You have web workers, and for shared memory and synchronisation respectively SharedArrayBuffer and the Atomics namespace.
n_e
·vor 24 Tagen·discuss
Interestingly, despite the QUERY request being safe, the RFC says it's subject to preflight requests:

> A QUERY request from user agents implementing Cross-Origin Resource Sharing (CORS) will require a "preflight" request, as QUERY does not belong to the set of CORS-safelisted methods (see [FETCH]).
n_e
·letzten Monat·discuss
As a user, I like when things appear to sync instantly and perfectly, such as in Google Docs.

As a developer, I hated the article and many of the comments I read thus far because:

- Having clients and a server properly sync and not lose data in the event of a network failure amounts to having a consistent distributed system which is not easy to do, and the commenters don't seem to have understood that

- I hate having written a long document and then losing it because the sync code is buggy, so the previous point becomes even more important.

So reading many of the things here has been mildly infuriating.

That being said, none of these people are likely affiliated with Linear, and given the overall quality of the product I'm pretty sure it works properly.
n_e
·letzten Monat·discuss
Unfortunately it's not limited to the trendy topics. For example there is a huge amount of factually wrong comments on the topic of npm vulnerabilities. I'm sure it's the same on topics I know less about.
n_e
·letzten Monat·discuss
> The app would look up in both databases. If it exists in any, there would be a session.

And if you find the session with differing values in both databases, how do you know which one is up-to-date?

You need an algorithm to pick which data is right, such as electing a master instance.

And that brings us back to the original discussion: to manage sessions (unlike caches) in a highly available way, you need to setup HA (or reimplement it, which obviously is a bad idea). You can't read round robin from multiple non-HA instances.
n_e
·letzten Monat·discuss
Redis is used for plenty of things, not just memory caches.

For example if you use it for session storage, you can't have your application read from a random instance that may or may not contain the session.
n_e
·letzten Monat·discuss
Yes (assuming they're doing frontend dev and including the resources from the page). The code is fetched and executed from the browser, so It'll have to escape the browser sandbox to do something nefarious.
n_e
·letzten Monat·discuss
It works when the phone is in landscape mode.

I think the idea is that a site has no use for the status and address bars in portrait mode since the areas are already filled with controls.
n_e
·vor 2 Monaten·discuss
> It runs code that Node et al can't run

What kind of code can't node run?
n_e
·vor 2 Monaten·discuss
The problem with crappy frontend code is not only the maintenance. It's that stuff such as responsive design, accessibility or cross-browser compatibility that work nearly for free with elegant code won't work at all.
n_e
·vor 2 Monaten·discuss
> Made me wonder why the packages even need build scripts

As the name implies it's for building stuff. Most (all?) packages that use C++ FFI with node-gyp need it. A popular package that needs it is re2.

Many newer packages bundle prebuilt native code as transitive dependencies, so build scripts are less needed than before.
n_e
·vor 2 Monaten·discuss
The figure is likely wrong.

My Mac is currently using 9GB of RAM including 6.5GB of cached files with Safari and a few other apps opened. They likely forgot to subtract the cache from the used memory.
n_e
·vor 2 Monaten·discuss
> it used to be that projects that pinned deps were called out as being less secure due to not being able to receive updates without a publish.

This is still the right advice for libraries. For security it doesn’t matter a whole lot anymore as package managers can force the transitive dependencies version, but it allows for much better transitive dependency de duplication.

For non-libraries it doesn’t matter as the exact versions get pinned in the package-lock.
n_e
·vor 2 Monaten·discuss
> Yes, you can lock deps in NPM/Cargo/etc. but that's not the default. It is the default in Go.

How is it not the default in npm?
n_e
·vor 2 Monaten·discuss
I'm not sure what to make of the graph.

On the one hand the acquisition of GitHub may have caused the availability to be worse.

On the other hand, the 100.00% availability before the acquisition looks suspicious, wondering if it's not just the status page being better updated.

(I'm aware of the recent availability problems with GitHub, but on the graph the problems start in 2020 and don't seem to worsen significantly)
n_e
·vor 2 Monaten·discuss
Why not use swarm? On a single node it isn't really more complicated than compose, and you get scaling and rolling deployments.
n_e
·vor 2 Monaten·discuss
enums and decorators mainly. There are also subtleties such as having the ts file extension in imports. Also imports aren't transpiled in cjs so you need to need es modules.

I'm using it in my projects with no issues.
n_e
·vor 2 Monaten·discuss
The reply looks like it was written by an LLM. Not that this excuses anything.
n_e
·vor 3 Monaten·discuss
The explanation is at the end of the article: another GoDaddy customer asked for the transfer of a similar-looking domain name, and they transferred the wrong domain.