Kind notes

First found out that the #Borderlands games are being made into a film - via a trailer that's just dropped - and I'm not as excited as I was before I watched the trailer 😬

If you're in #Nottingham and fancy getting up super early on Wednesday, I'm talking at Notts TechFast about dependency-management-data and how you can better understand how much your organisation relies on Open Source and internal dependencies - would be great to see you there!

And for those who are daunted by getting into town at that time (I know I am 😹) there's also a livestream!

If you're able to see this post (on the Fediverse) yay! That means your admin hasn't blocked Bridgy Fed which I use to bridge my website with the Fediverse so I can chat to y'all.

This is likely due to recent discussion around the upcoming BlueSky bridge and opt-out being the default decision.

I don't dispute the freedom or choice to block Bridgy, and am definitely taking some time to think about how I feel about the varying thoughts, but the main thing is that it looks like several admins have blocked Bridgy altogether, resulting in not just the blocking of the upcoming BlueSky bridge (at a separate domain under brid.gy) but also classes Bridgy as Tier 0:

Tier 0 is a combined blocklist of only the worst actors, and it exists to provide one blocklist to which surely no one can object as a baseline for others. It's the perfect starting list for any new mastodon admin.

So it could be my time interacting with the Fediverse is going to be cut short, and I'll be screaming into the void very much moreso 😅

Well, I'm home after a great couple of days at #StateOfOpenCon #SOOCon24, which has given me lots to think about. There were some great talks, some really interesting hallway track conversations, and nice to meet friends old and new.

First of all a huge thank you to the organisers - there were so many of you behind the scenes doing such great work to make the event a massive success. I've seen the effort that it can take to do a single track conference let alone 8 tracks(!!!) so it's a huge result, and I hope y'all are gonna have some well deserved rest!

I'd like to say in particular a bit thank you for the work that @andypiper has been doing in the lead up to the conference to support the speakers, being warm, super helpful and supportive, as well as seeing them busy over the conference helping ensure everything was going well

And a big thanks to @AmandaBrock for all her excellent work with OpenUK and State of Open Con 🙌

I'll definitely be making my way back next year 👀 And I'll be (re)watching talks as they pop up!

If you were interested in what Sarah Novotny mentioned at #StateOfOpenCon #SOOCon24 about understanding how much Open Source you use, as well as some of the risks of using it, y'all may be very interested to come to my talk about dependency-management-data which aims to give you exactly this, with just Free and Open Source and Open APIs 👀

A few hours until my talk at #StateOfOpenCon talk, and I'm now happy with my slides + writeup. Looking forward to share it with y'all 🛸

Deffo getting FOMO by seeing friendly faces having a great time at #FOSDEM but looking forward to seeing some of y'all at #StateOfOpenCon 👀

Love hitting publish on a release, and then seeing a "TODO" in the body of the notes that you'd not seen all the other times you'd read through it 😅

Related: There's a new oapi-codegen release out 🚀

Some big new features, bug fixes and other bits of cleanup

+1 on this, it came up during discussions in a recent Sustain OSS Podcast as something that would absolutely be a useful resource for protecting the community and helping out with difficult situations

Today I've been emailed by both Clever Cloud and Heroku around "your account hasn't been used in some time so we're gonna delete it" - coincidence, or is today their "clean up all the old accounts day"?

🎶 Home is where I brush my teeth 🎶

If you've been hearing me talking about #DependencyManagementData and are wondering about some real world scenarios it's been useful, check out the new Case Studies section on the site 👀

Also looking for more examples of where it's been useful!

What's everyones' favourite resources for how to best find which column(s) to index in your database?

Been a big week for documentation with #DependencyManagementData - I've added significant docs to the database schema and GraphQL schema and have started a "Understanding the data model" cookbook

Very cool to have received my first payout from Tidelift, from a company using one of the Open Source projects that I maintain 💸 Thanks very much to whoever it was, and looking forward to the income working towards me getting some longer-term financial support to continue maintaining the projects I do 🚀

Absolutely loving the various versions of Down Under (original) that are out at the moment, like Luude ft. Colin Hay to this super chill cover that's just popped up on my Spotify Release Radar

Fuck me, Leave the World Behind was unsettling, stressful, beautiful and captivating. Definitely recommend a watch!

Something cool newer #git versions are doing - you'll now see Reapply instead of Revert Revert ... in commit messages, if you're reverting a revert.

In an older version of Git (i.e. with 2.34.x) you would see:

Revert "Revert "Commit title here""
Revert "Commit title here"
Commit title here

However, in newer versions (i.e. with 2.43.x) you now see:

Reapply "Commit title here"
Revert "Commit title here"
Commit title here

Which makes it a little bit cleaner in your Git log

If you're running dependency-management-data, you'll now have an indication of which of Mitchell Hashimoto's (now unmaintained) libraries are affecting you now that this change has landed in the -contrib project - thanks Mitchell for the hard work on them, and I'll be sure to keep the list updated as maintainers pick up ownership of other libraries!

Anyone recommend a good graphic designer or artist who'd be up for a (paid) commission to create a logo for an Open Source project of mine?

Not sure if it's my neurospiciness, but Apollo Throwdown (Star Slinger Remix) hits the right spot every time

Weird timing with [this announcement from GitHub] (https://github.blog/changelog/2023-11-22-deprecation-notice-security-advisories-in-private-repositories) as literally this week I was seeing how they worked 🙃

It's great to see that the ever awesome EndOfLife.date now has automagically updating AWS Lambda Runtimes (via) - now I need to update endoflife-checker to use the new API, so I don't have to manage it myself 🚀

Anyone got any tips or best practices for building #OpenPolicyAgent into your project? Had an idea to integrate it with dependency-management-data and now can't unthink it 🤓

🎶 All You Ever Wanted - Sub Focus Remix

Me, eating a pastry: ✨ Quaso ✨

Anyone know a good place to ask #sqlite or #sql questions?

I'm trying to convert rows (produced by a big query that then uses a GROUP BY advisory_type) that produces data like:

-- the `advisory_type` can be one of multiple values, i.e. SECURITY, DEPRECATED, UNSUPPORTED
repo    advisory_type  total_advisories
------  -------------  ----------------
jvt.me  SECURITY       10               
jvt.me  DEPRECATED     5               

And I'm trying to convert this to:

repo    total_security total_deprecated total_unmaintained
------  -------------  ---------------- ----------------
jvt.me  10             5                0               

Any clue how I'd go about doing so? Happy to provide more details / some data for you to query too, but been playing around with it on and off and not really having any luck.

🎶 YES - Fox Stevenson Remix is such a bop

So after 14 hours and at least one time it's restarted from scratch, I still haven't had the new #ApexLegends season patch install 😡

Excited to have released oapi-codegen v2 🚀 A considerable improvement on our dependency tree, reducing the overall size of dependencies by 84%

New cookbook on the #DependencyManagementData documentation site: Getting Started with SBOM data

Has anyone I know launched an Open Source project on Product Hunt before? Considering whether dependency-management-data would possibly be worth sharing there, or if its not quite polished/product-y enough?

Had a great time at #TechMids seeing some friends old and new! Thanks for having me and for an excellent event 🥳

I've just found in my notes app that I wanted to write A plea to SCA vendors but I've not written down what that plea is so now I'm annoyed at past me assuming future me would know 😅

Thanks for the warm welcome at #TechMids2023 and for hearing about dependency-management-data!

Super happy to talk about it some more - today or afterwards - and hearing how you get on 🚀

Some links you may be interested in:

• Long-form talk writeup
• Getting started cookbook
• Slides

Finalised my slides for Friday at #TechMids? ❌

Rebuilt the documentation site for dependency-management-data? ✅

Not sure if I can blame my ADHD or if it's just me being me 🫣

Really dislike that in Android 14 I now can't disable Nearby Share and so it permanently takes up a space in the sharing intent 😡

Every time I look to include an #xkcd comic in a blog post, I end up hand-writing an alt text to meaningfully explain the comic, does anyone know if there's a crowd sourced project where folks are using community contributions? 👀

Excited that it's only a week until my first #TechMids conference - there's a great lineup that I'm excited to be part of, and always excited to share dependency-management-data some more with the world, and learn from some excellent industry folks 🤓

For anyone using oapi-codegen, note that v2 is coming soon, but that it's a very minor breaking change that 🤞🏽 shouldn't affect you at all!

Had a great time today at #DDDEastMidlands seeing friends old and new! Learned some stuff, ate some good food, indoctrinated many a person into starting blogging 🤓

Thanks for those who came to my talk all about #blogging at #DDDEastMidlands! My slides can be found linked to on my talks site and there's a blog post writeup for the talk, too 😜

It's been just over a year since I wrote Analysing our dependency trees to determine where we should send Open Source contributions for Hacktoberfest which started off my journey with dependency-management-data and I'm super happy with the path it's taken me 🤓

Very excited to be attending and speaking at DDD East Midlands tomorrow 🎉 Looking forward to seeing some of the local tech community, and folks from further afield!

Now on loop 🎶 These Lies - Exploid

Love to get an email from #Vercel: You’re off the waitlist for Next.js Conf 2023 and are officially registered. despite never registering for the event. I also can't unsubscribe because (allegedly) This email contains important information about an event you registered for and cannot be unsubscribed from.

Regretting signing up for their prize giveaway at #LeadDev London, especially as this isn't the only thing I've been emailed about but can't unsubscribe from of theirs 🫠

Welp, all my tweets are gone, aside from retweets as I couldn't be bothered to work out how to get rid of them, and a couple of notes to say I'm offski

What have I been upto this afternoon you ask? Writing a tool with #Playwright to allow me to delete all my posts on #Twitter without using an external service. Blog post hopefully this weekend (once I've ironed out the many bugs) 👀

With the release + rebrand of Mend Renovate Community Edition (previously known as Renovate On Prem), I've updated my post on running it on Fly.io to take into account the new config + naming

Is there any data out there to back up what we perceive to be a recent the resurgence of the personal website and #blogging in the last few years? #LazyWeb