89 things I know about Git commits (7 mins read).
Some of the things I've learned over a decade of Git usage, and working on writing good commit messages.
89 things I know about Git commits (7 mins read).
Some of the things I've learned over a decade of Git usage, and working on writing good commit messages.
Paul Copplestone, CEO of Supabase (the meme-lord himself), joins the show to take us on the journey of Supabase leading Postgres for life, and how it all starts with Postgres as the base-layer substrate for the entire Supabase platform. They’re laser focused on the drive ahead, not the rear-view mirror. Disclosure: Ada...
This week on The Business of Open Source, I spoke with Joe Duffy, co-founder and CEO of Pulumi.We kicked off the conversation by talking about why Pulumi is open source in the first place — a mix of Joe’s long-standing interest in open source and a feeling like a developer tool like Pulumi just...
Join us for an insightful discussion on the intricacies of Developer Relations in the open source world. Our panel of experts will delve into key differences between open and closed source platforms, the unique challenges and opportunities in open source DevRel, and the impact of AI tools on the community. Gain practical insights and hear success stories from industry leaders.
Anyone know if there's a way of tweaking the new #FirefoxNightly Android layout?
Not a fan of the two row format they've now got
Really hate that the address bar only shows the domain, not the full URL, until you tap into it 😕
This week on The Business of Open Source, I spoke with Tyler Jewell — for the second time, now. Last time I spoke with Tyler, he was an investor at Dell Technologies Capital, he’s since taken over as CEO of Lightbend. We talked about a lot, but there was a definite theme to our conversation:...
Carol Lee (Clinical Scientist) shares her research on code review anxiety. We dive deep into her recent research paper “Understanding and Effectively Mitigating Code Review Anxiety”. We get into all the nooks and crannies of this topic — common code review myths, strategies for coping, the need for awareness and self-r...
Gareth Greenaway from the Salt project joins us for a trip down memory lane with configuration management and why open source projects have changed over the past decade.
Dependency Management Data is now a lot easier to work with when using Software Bill of Materials (3 mins read).
Announcing an improved model for interacting with SBOMs, removing the need to understand the Repo Key up-front.
Visit our homepage - cupogo.dev - for links to our Patreon, Store, past episodes, and more.🚢 Releases1.23 RC1 released1.22.5 & 1.21.12 pre-release announcementProposals1️⃣ Accepted: cmd/gofmt: change -d to exit 1 if diffs exist🆕 Accepted: list deprecations and newer available dep versions 🪢...
Attached: 1 image 10 July - Second OpenUK Digital Meet-up! Join Dr Dawn Foster, James Humphries and host Jamie Tanna, in their talks on high-profile forks, their impacts and the challenges of launching a fork. Register https://www.meetup.com/openuk/events/301139203/?utm_medium=referral&utm_campaign=share-btn_savedevents_share_modal&utm_source=link #openuk #digitalmeetup #opensourcelondon
and talk about the latest polyfill.io mess. Apparently someone took over a very popular project and started to serve malware. First XZ, now this. What does it mean for open source? We don't have any answers, and it's hard to even talk about this problem because it's so big. The thing is though, even if we can't fix open source, it's here to stay. Show Notes
Week Notes 24#27 (5 mins read).
What happened in the week of 2024-07-01?
Adam & Jerod discuss the news! But first, we discuss how you can keep up with the software world (good question, Tyler Boyd!) On the docket: Developer job postings trend, the Ladybird Browser Initiative, the Polyfill.js supply chain attack & is the future self-hosted?
Go 1.22.5 & 1.21.12 releasedConferences🇮🇱 GopherCon Israel, Sept 9 @ Tel AvivCFP open until Jul 15🇦🇺 GopherCon AU, NoCFP open until Sept 15🇮🇳 GopherCon India, Dec 1 @ JaipurNew proposal: include abandoned packages in list of deprecationsBlog post: gRPC: The Good Parts by Kevin McDonald🍪 New...
Dependencies! We need them, but how do we use them effectively and safely? In this week’s episode Kris is joined by Ian and Johnny to discuss the polyfill.io supply chain attack, the history of dependency management and usage in Go, and the Go Proverb that “a little copying is better than a little dependency”. Of cours...
Attached: 1 image Can not stop laughing at this
If there's one thing I've learned as a browser-engine dev: Everything is political! The most mundane things (e.g. how we answer "what time is it?") has the weight of historical politics behind it. Software freedom is a political project, you can't "leave politics out of it"! It makes a lot more sense to ask "how is this political?" than "is this political?". Because it is!
Technology is political. If your project or organisation has a “no politics” clause, you’re saying you’re happy to exclude people whose very existence is political in our societies. It’s only defensible if you’re coming from a place of privilege where the dominant politics are to your advantage so you can take them as given. There is no such thing as “no politics”; there is only “no politics other than the politics of the status quo that I benefit from, which I’ve internalised as normal.”
The “innovation token” model for selecting technologies is bad, and here’s why.
🗳️✅ Get the fuckers out of power
If you view changing documentation to use generic “they” instead of “he” text as too political to be acceptable, then I’m sorry but your project is deeply unserious. “The generic user is a man” is a deeply political statement, and hiding behind “we’re apolitical” is bullshit. https://hachyderm.io/@Mara/112718515777208791
Predrag Gruevski and Chris Krycho joined the show to talk about SemVer. We explore the challenges and the advantages of semantic versioning (aka SemVer), the need for improving the tooling around SemVer, where semantic versioning really shines and where it’s needed, Types and SemVer, whether or not there’s a better way...
ICYMI: Burnout can happen at any point in everyone's career. But, what happens when burnout is taking place amongst other things? Burnout++ https://chrisshort.net/video/cloud-native-rejeckts-eu-2024-burnout-plus-plus/ #mentalhealth #burnout
Maintainer Week is finally here and we’re excited to make this an annual thing! If Maintainer Week is new to you, check out episode #442 with Josh Simmons and Kara Sowles. Today we’re talking Brett Cannon. Brett is Dev Manager of the Python Extension for VS Code, Python Steering Council Member, and core team member for...
This week is all about Maintainer Week — it’s a week long event starting June 7th for open source maintainers to gather, share, and be celebrated. We’re joined by Josh Simmons (Ecosystem Strategy Lead at Tidelift & President of Open Source Initiative) and Kara Sowles (Senior Open Source Program Manager at GitHub). ...
Daniel Stenberg shares his guiding principles for BDFL’ing curl, gives us his perspective on the state of the internet, talks financial independence, ensuring curl won’t be the next XZ & more!
One THOUSAND blog posts (3 mins read).
Celebrating a massive milestone in my blog, and a short reflection.
Reader survey: Who reads my blog? (2 mins read).
Wondering how my readers read my blog, and why.
Week Notes 24#26 (4 mins read).
What happened in the week of 2024-06-24?
Attached: 1 image
Dependency Management Data can now use sql-studio for database browsing (1 mins read).
Announcing the availability of the sql-studio
database browser for dependency-management-data's web application.
Creating a test harness for validating Renovate regex manager rules (4 mins read).
How to set up a test harness to make it eaiser to modify scary looking regexes in your Renovate configuration.
Our award winning worthy survey game show is back, this time Mat Ryer hosts it live on stage at GopherCon EU Berlin 2024! Join in & play along as we see which team can better guess what these GopherCon gophers had to say!
I will be attending
Anyone going to #GopherConUK? 👀
An overview of open source software licenses, the different types like permissive and copyleft, and things to consider when choosing a license.
Inside of you there are two engineers. One is sobbing desperately and asking for everyone to use the right tool for the task. Please, they cry, avoid the awful hacky workarounds! One is sobbing desperately and asking for everyone to use the same tool for the task. Please, they cry, make information actually discoverable! Both sob in commiseration together as they end up using 5 separate tools, duplicating the data 3x, and suffer all of the hacky workarounds with none of the discoverability.
Modifying the response body of an httputil.ReverseProxy
response (2 mins read).
How to modify the response from a httputil.ReverseProxy
before it goes back to the caller.
Render founder/CEO Anurag Goel joins us for a look behind their platform. An application native hosting option that hides the lower levels still requires a LOT of infrastructure.
I despair at the fact that you fucks have normalized catching Covid.
Week Notes 24#25 (4 mins read).
What happened in the week of 2024-06-17?
Adam & Jerod hallway-track-it between Microsoft Build interviews. Was 1999 the best year in film history? Was 2004 the worst? Have you heard the full story behind Blues Traveler’s “Hook”? Are you still reading this? Go listen! (This episode is for Changelog++ ears only.)
Look, I drink a LOT of #tea. And I mean gallons of the stuff every day. People expect on Zoom that they'll see my massive mug appear on camera because I always have a cuppa to hand. I have two of @smolrobots@mastodon.social' Teabots. So you'd think I'd have strong opinions about how you should make it or drink it, wouldn't you? But no. Make it how you like it. Drink it how you want to. Stop getting all bent out of shape because someone makes it differently to how you do. What the hell is wrong with you?
Julia dives into creating Wizard Zines on strace, Bash, and Git, making complex tools accessible, and community-driven knowledge sharing.
Thanks, Erik Dubbelboer, John Basila, Suchith, and Hiji, for co-hosting the episode!Which GUI library to choose?Caesar, a new Go Web Framework"How to prove I am good at Go apart from having work experience?""Where should I learn Go?"Learn Go with Tests
Jacob DePriest, VP and Deputy Chief Security Officer at GitHub, joins the show this week to talk about securing GitHub. From Artifact Attestations, profile hardening, preventing XZ-like attacks, GitHub Advanced Security, code scanning, improving Dependabot, and more.
This week on The Business of Open Source, I spoke with Karthik Ranganathan, founder and co-CEO of Yugabyte. This is the second time Karthik has been on the podcast, but since three years had passed I thought it’d be a good idea to catch up and see what’s changed at Yugabyte and how his...