HackerTrans
TopNewTrendsCommentsPastAskShowJobs

AlwaysNewb23

no profile record

Submissions

Why software engineers are resistant to change

doppler.com
2 points·by AlwaysNewb23·2 anni fa·0 comments

Write Better Blog Content for Software Engineers

doppler.com
2 points·by AlwaysNewb23·2 anni fa·0 comments

Secrets Management Mistakes Developers Make

doppler.com
2 points·by AlwaysNewb23·2 anni fa·0 comments

Ask HN: What software dev skill has helped you the most?

3 points·by AlwaysNewb23·2 anni fa·5 comments

Ask HN: What's the most unique job perk you've had?

26 points·by AlwaysNewb23·2 anni fa·27 comments

How to Create Good Documentation

doppler.com
1 points·by AlwaysNewb23·2 anni fa·0 comments

Ask HN: What does engineering leadership typically do wrong?

13 points·by AlwaysNewb23·2 anni fa·17 comments

Ask HN: What developer tool has the best website?

1 points·by AlwaysNewb23·2 anni fa·3 comments

Ask HN: Could Cloudstrike ever regain customer trust?

2 points·by AlwaysNewb23·2 anni fa·2 comments

Ask HN: Do you review the security of imported code?

3 points·by AlwaysNewb23·2 anni fa·0 comments

Ask HN: How do you balance security with fast development?

2 points·by AlwaysNewb23·2 anni fa·2 comments

Classifying Pull Requests to Enhance Effectiveness

withinboredom.info
1 points·by AlwaysNewb23·2 anni fa·0 comments

Ask HN: Does Compliance Equate with Security?

3 points·by AlwaysNewb23·2 anni fa·3 comments

[untitled]

1 points·by AlwaysNewb23·2 anni fa·0 comments

Self-healing material for cosmic ray damaged satellites

theconversation.com
3 points·by AlwaysNewb23·2 anni fa·0 comments

Can we preserve the first footprint on the moon?

scmp.com
5 points·by AlwaysNewb23·2 anni fa·0 comments

A Developer Cheat Sheet for GDPR

doppler.com
1 points·by AlwaysNewb23·2 anni fa·0 comments

[untitled]

1 points·by AlwaysNewb23·2 anni fa·0 comments

[untitled]

1 points·by AlwaysNewb23·2 anni fa·0 comments

If Processes Don't Create Ownership, What Does?

florianbellmann.com
1 points·by AlwaysNewb23·2 anni fa·0 comments

comments

AlwaysNewb23
·2 anni fa·discuss
If you stretch the definition a bit, I still like the site as an example of a site that appeals to developers and isn't just marketing fluff.
AlwaysNewb23
·2 anni fa·discuss
I really like Midjourney (https://www.midjourney.com) just because it looks cool.
AlwaysNewb23
·2 anni fa·discuss
This is why you should use a secrets manager like Doppler (https://doppler.com) or AWS Key Management Service (AWS KMS). Hardcoding your secrets or storing them in .env files will always risk something like this happening.
AlwaysNewb23
·2 anni fa·discuss
How hard would it be to add support for Doppler (https://doppler.com)?
AlwaysNewb23
·2 anni fa·discuss
Good point. I'm going to trim some of the fluff off of that tldr.
AlwaysNewb23
·2 anni fa·discuss
I wouldn't have expected to see Augmented Reality (AR) Marketing as one of the trends listed in this post. I think we're a little far off from it being a truly viable tactic.
AlwaysNewb23
·2 anni fa·discuss
Yeah this article title is a little misleading.
AlwaysNewb23
·2 anni fa·discuss
At least they didn't blame 'supply chain' issues.
AlwaysNewb23
·2 anni fa·discuss
I like the design of Heinz's 404 page. Mostly because of the clever use of ketchup in the design. https://www.heinz.com/404
AlwaysNewb23
·2 anni fa·discuss
Did anyone else need to read the pricing a few times to understand it?
AlwaysNewb23
·2 anni fa·discuss
You should know what they are doing and keep an eye on them, but I think it's important to be careful not to copy them and solve problems in your own way.
AlwaysNewb23
·2 anni fa·discuss
We've been using commit messages to tell a story using our git history and it's improved our code review process. By doing this, we've created a commit history that clearly details all the steps leading up to each change. By organizing our commits this way, we’re making our PRs easier for others to understand and giving ourselves a chance to refine our work. We also often spot opportunities to simplify or improve the code that we might have missed the first time around.
AlwaysNewb23
·2 anni fa·discuss
This is really impressive. Do you plan to use it for anything or another project?
AlwaysNewb23
·2 anni fa·discuss
The biggest impact seems to be on team culture. I would love to know if anyone has tired something similar.
AlwaysNewb23
·2 anni fa·discuss
Thanks for clarifying this.
AlwaysNewb23
·2 anni fa·discuss
Thanks for taking the time to write this up. You shared some interesting opinions to consider.

"I absolutely refuse to use a security service that's hosted on the cloud." - I run into this a lot.
AlwaysNewb23
·2 anni fa·discuss
"Every cloud service will be hacked" - I totally get this. It's the reason it's hard to build trust for a cloud service.
AlwaysNewb23
·2 anni fa·discuss
I've always liked this model for my own projects. However, I'm not sure it really builds trust, especially from a security standpoint. Open sourcing could mean more eyes on the code, potentially leading to better security through community audits. Yet, it also means exposing the inner workings to everyone, including those with malicious intent. A hosted version does offer a layer of professional oversight, which is reassuring, but I wonder about the implications for users who opt for the self-hosted route. How would you ensure they feel confident in the security and reliability of the software, knowing that they have the same access to the code as anyone else?

I would love to hear more thoughts on balancing these aspects to build and maintain trust with users.
AlwaysNewb23
·2 anni fa·discuss
Tracking for you and your team. So if a developer on your team goes rogue, you know when and what happened, just like how you can see who committed when and what on GitHub.

Your backend is as secure as you make it. The critical point is that if designed properly, this method is better than directly storing and using API keys from within your app.

I can assure you that another Software Engineer at Doppler and I wrote this blog - not AI. Feel free to ask anything. Thank you for the feedback.
AlwaysNewb23
·2 anni fa·discuss
Doppler is exploring adding the ISO 27001 certification in the near future.