Kind bookmarks

Starting to explore what a true "static micro blog" might look like.

I was thinking about how recently (other than the weeknotes), my blog posts have been mostly reviews of stuff I've been watching/playing/reading/etc and I haven't made any posts about blogging or tech …

Software secrets are targeted by malicious actors. Here are three key steps to mitigate risk — and best practices you can take to prevent future breaches.

I'm not going to act like an expert on labor organizing. I didn't have that term in my vocabulary four years ago. Now it's one of the anchoring aspects of my life and something I'm deeply passionate …

How one process helped us decrease our error rate 17x in one year.

An exclusive interview with the four researchers behind a new developer productivity framework: The three dimensions of DevEx

Building evolvable software systems is a strategy, not a religion. And revisiting your architectures with an open mind is a must.

We implemented OAuth for the 50 most popular APIs. TL;DR: It is still a mess.

One reason I like working at startups is you get to wear many hats. Of course, by "wear many hats" I really mean "suffer occasional periods of extreme stress when things fail and there are no grownups you can go to for help". I like to think of it as Extreme Learning.

I was in one of those interminably dull video-conferences a few weeks ago. The presenter was pitching their grand vision of what our next steps should be. "So!" They said, "Any comments before we …

Mastodon won't be the next Twitter, and it's not because of Bluesky. The ideals and execution won't scale.

I'll resume writing about technology and software engineering, inspired by Jamie Tanna's blog I came across recently. This is my blog: https://manuelschmidt.net. Subscribe through your favorite feed reader, or follow me on social media.

For many open source consumers the "logical units" being depended on are libraries. However, the libraries themselves are only a product of what consumers are actually depending on: people. Y...

Let's talk about Google's newest software supply chain product. Reading the GA announcement I had many mixed feelings. Starting with the good, compared to other implementations of "curated open s...

Posted by Jesper Sarnesjo and Nicky Ringland, Google Open Source Security Team Today, we are excited to announce the deps.dev API , which...

<p> Running live demos can be stressful. You know what you want to say and show. You prepare the CLI commands you want to run to best showcase what you...

The company claims to have not considered before launch whether their new protest and strike surveillance tool could be misused.

A few days ago, a stressed-out gamer confessed on ResetERA he was considering giving up on gaming, as he felt the time spent could be put to “better” use. The thread somehow struck a chord here, not …

I hated writing in high school. It wasn’t objective like my favorite subjects, math and science. It also didn’t help that we had to write about old, hard-to-understand literature like Shakespeare. But my perspective on writing changed once I started working full-time as a software engineer.

relicensing and lack of resources for maintainers are only two top-level issues plaguing open source

Wherein I argue that you should plan to regularly put in the work required to keep your dependencies up-to-date, because doing so gives you more predictability and control for the same overall effort.

This controversial decision coupled with poor messaging has created anxiety the Open Source community. Learn what's happening and how we can move forward.

Watch out for these common pitfalls when using tmux and environment variables and learn how to avoid them.

In general we all live roughly 4000 weeks on this planet. I lived most of mine up already and reading this makes me think.

I am furious. Though I try not to humour conspiracy theories, or suggest that there is any grand overture to what is usually an uncaring and cold world, but I cannot ignore what is a transparently-synchronized movement against the tech industry’s workforce.

How it is now in your best interest to act.

Why the hell do I keep being asked to do this?

Read the complete incident report from CircleCI’s January 4, 2023 security alert.

https://snarfed.org/matrix.webp https://snarfed.org/matrix.webp A long time ago, I decided to show Bridgy‘s end users its raw logs. Like, raw logs. HTTP requests, database reads and writes, JSON …

In the two years since I've posted I want off Mr Golang's Wild Ride , it's made the rounds time and time again, on Reddit, on Lobste.rs, on HackerNews, and elsewhere. And every...

Ash Huang & Ryan Putnam on a microsite: For the month of January, we’ll make a pact to blog a few times to get into the habit, and create a directory of all the creators who participate. Readers can then find new makers to follow before we all scatter to the winds. Win-win! I’m all […]

Musk will likely ruin Twitter for one specific user: himself.

Owning Twitter means owning a host of impossible political problems. Is Elon ready?

A post by Stuart Langridge (sil)

I’ve been doing this “reliability” stuff for a little while now (~5 years), at companies ranging from about 20 developers to over 2,000. I’ve always cared primarily about the software elements I describe as living “outside” the application – like, how does it get its configuration? What kinds of instances does it run on, and are those the best kinds to use? What steps does it take on its path from “code in a repository” to “running in production”? And I’ve always kept track of what I liked – which mechanisms allowed fast iteration and which caused frustration, which led to outages and which prevented them.

https://snarfed.org/sinking_rowboat.webp https://snarfed.org/sinking_rowboat.webp Matthew Childs / Reuters We live in a golden age of software reuse. We’ve never before had such a wealth of freely …

In November 2021, we decided to trial a four-day week across our bank. Was it a success? Yes. Read our blog post to find out how.

For varying levels of seniority, from senior, to staff, and beyond.

There have been discussions in the aftermath of the log4j vulnerability about whether or not open source is broken or sustainable, what we can do to improve the sustainability of the open source ecosystem moving forwards, and the entitlement of users and companies in expecting maintainers to fix their problems.

The website of Robin Rendle, a designer and writer from the UK.

Remains of your attention span. Photo by Pablo Martinez on Unsplash This is exactly why you can’t focus on reading anything longer than a mobile page length these days. Not even a blog post, let alone …

Life without a REPL, and how to still be able to manipulate production which even has quite a few benefits over more one-off REPL-driven operations..