> One short request before I go into details. Could you disclose on whose behalf you're discussing this? Just personal interest is fine, I just want to make sure that I'm not spending my time with some AI-driven company, let alone an LLM-controlled agent.
I first read this from the author's posting to oss-security. Turns out that the author did agree to revise the blog post for the "admin cap for root shell" part [^0]. [^1] would probably tell more.
The PR author didn't even bother to properly capitalize their subject and add a description. What a double standard for code quality Macroslop is applying to internal vs. external contributions.
This resembles some serverless pastebins. Data is serialized into the fragment part, and client-side JS deserializes them. The only practical difference is that this app sets them as HTML while those set them as text.
> So, cyber security of tomorrow will not be like proof of work in the sense of "more GPU wins"; instead, better models, and faster access to such models, will win.
It's not proof of work, but proof of financial capacity.
The big companies are turning the access to high-quality token generators (through their service) into means of production. We're all going direct to Utopia, we're all going direct the other way.
`jj new` works like `git checkout` most by creating an empty revision on the top. `jj edit` on the other hand resembles `git checkout; [edits...]; git add -A; git commit --amend --no-edit`.
I failed to see why this would be something that "comes after Git" from a VCS perspective.
The line-based diff(1)/diff3(1)/patch(1) kit often works, and that mindset thrives and gets carried till today. Many toolkits and utilities have been designed to make it more ergonomic, and they are good. Jujutsu is an example. We also have different theories and implementations, some even more algebraically sound like Darcs and Pijul.
But GitHub the Platform is another story, given that they struggled to achieve 90% availability these days.
Another important aspect is that, without an external library like `wabt`, I can't just open Notepad, write some inline WASM/WAT in HTML and preview it in a browser, in the same way that HTML+CSS+JS works. Having to obtain a full working toolchain is not very friendly for quick prototyping and demonstrative needs.
If all the app need is to upload a photo of PCB, <input type="file"> is more than sufficient. It's been baseline years ago.
For download, it can download from a blob URI. This is not an uncommon practice.
If (not verified since I'm using Firefox) it claims that "Gerber files are composed of many individual files so that those two don't suffice" and the app does involve Gerber processing, it could have been solved by introducing a zip library.
> I could recompile it but compiling firefox is a pain in the ...
Would second this. Mach uses Python, and the dependencies they use are a pain whenever no pre-built wheels are available. Especially so when you see that an "optional" Mach dependency for build system telemetry is what busting the configuration (not build) stage...