JakenVeina @ JakenVeina @lemm.ee

Posts

11

Comments

607

Joined

2 yr. ago

The Supreme Court is about to let use religion to intentionally ruin public education.

Honestly, if you're having trouble finding stuff for vanilla JS, I'd recommend looking at jQuery. Not that you should USE jQuery, necessarily, but the library is basically a giant wrapper around all the native JS APIs, so the approach to building stuff is essentially the same: it all focuses on tracking and manipulation of DOM elements.

I do vanilla JS (actually TypeScript) dev at work, daily, and that was my big takeaway from spearheding our team's migration from jQuery to vanilla TypeScript: I honestly don't know what benefit jQuery provides, over vanilla, because all the most-common jQuery APIs that we were using have a 1:1 native equivalent.

We do also use 2 third-party libraries alongside vanilla, so I'l mention those: require.js and rx.js. Require you probably don't need, with modern JS having bundling and module support built-in but we still use it for legacy reasons. But rx.js is a huge recommend, for me. Reactive programming is the IDEAL way to build GUIs, in my opinion.

Blue Prince sure feels like it counts, our whole family is hooked, and has been playing it every day for about 2 weeks now. Even well after rolling credits.

In a similar vein, I'd have to say Hollow Knight and Outer Wilds. Together with Blue Prince, they all have a storytelling strategy of "you have to put some effort into getting the story out of it", but the effort makes every new discovery or revelation feel super rewarding.

Celeste is the one that comes to mind for a more traditional story that REALLY hit.

Persona 5 comes to mind, too. I was ENGROSSED in that story for months. Even if it went off the rails a couple times.

I'm also gonna shout-out Tales of Symphonia. That game was formative for me.

Oof, this speaks to me. I hang up on marketing calls 3-4 times a week, and boy this does sound way more satisfying than just tapping a touchscreen.

My big reason would be "it hurts readability". That is, when writing code, readibility for others who aren't familiar with it (including future me) is my top-priority, and that means indentation and alignment are HIGHLY important, and if I spend the time to write code with specific indentation and alignment, to make it readable at a glance, I want to be certain that it's always going to display exactly that way. Tabs specifically break that guarantee, because they're subject to editor settings, which means shit like the below example can occur:

I write the following code with an editor that uses a tab size of 4.

 cs

    
myObject.DoSomething(
    someParameter:      "A",
    someOtherParameter: "B",
    value:              "C");

  

If someone pulls this up in an editor that uses a tab size of 8, they get...

 cs

    
myObject.DoSomething(
    someParameter:          "A",
    someOtherParameter:     "B",
    value:                          "C");

  

Not really a big deal, in this simple case, but it illustrates the point.

My second reason would be that it makes code more difficult to WRITE, I.E. it's not that hard to insert spaces when you mean to insert tabs, considering that you're not LITERALLY using only tabs just only tabs for indentation and alignment. And if you do accidentally have spaces mixed in, you're not going to be able to tell. The guy on another machine with different editor settings will, though.

I'm aware there are fonts that can make spaces and tabs visible and distinct, but that sounds like a NIGHTMARE to write and read code with. I mentioned above, my top priority is easy readability, and introducing more visual noise to make tabs and spaces distinct can only hurt readability.

Denying that the logo used to have a cornucopia is a thing? Sheesh, TIL.

It was one of those tall, thin church candles that you normally put out with a long handheld suffocator. Me, I tried to just jump for it. Came down awkwardly on one of the thing's feet, lost my balance, and my leg crumpled in under me as I fell.

I once fractured my fibula blowing out a candle. I was, like, 17. You're telling me it's going to get WORSE?!

You're right to think that "since it's open source, people can see what it's doing and would right away notice something malicious" is bullshit, cause it pretty much is. I sure as hell don't spend weeks analyzing the source code of every third party open source package or program that I use. But just like with close-source software, there's a much bigger story of trust and infrastructure in play.

For one, while the average Joe Code isn't analyzing the source of every new project that pops up, there are people whose job is literally that. Think academic institutions, and security companies like Kaspersky. You can probably argue that stuff like that is underfunded, but it definitely exists. And new projects that gain enough popularity to matter, and don't come from existing trusted developers are gonna be subject to extra scrutiny.

For two, in order for a malicous (new) project to be a real problem, it has to gain enough popularity to reach its targets, and the open source ecosystem is pretty freakin' huge. There's two main ways that happens: A) it was developed, at least partially, by an established, trusted entity in the ecosystem, and B) it has to catch the eye of enough trusted or influential entities to gain momentum. On point B, in my experience, the kind of person who takes chances on small, unknown, no-name projects is just naturally the "exceptionally curious" type. "Hmm, I need to do X, I wonder what's out there already that could do it. Hey, here's something. Is it worth using? I wonder how they solved X. Lemme take a look..."

For three, the open source ecosystem relies heavily on distribution systems, stuff like GitHub, NuGet, NPM, Docker, and they take on a big chunk of responsibility for the security and trustability of the stuff they distribute. They do things like code scanning, binary validation, identity verification, and of course punitive measures taken against identified bad actors (I.E. banning).

All that being said, none of the above is perfect, and malicious actor absolutely do still manage to implant malware in open source software that we all rely on. The hope is that with all of the above points, as well as all the ones I've missed, that the odds of it happening are rare, and that when it DOES happen, it's way easier to identify and correct the problems than when we have to trust a private party to do it behind closed doors.

Great recent example, from last year: https://www.akamai.com/blog/security-research/critical-linux-backdoor-xz-utils-discovered-what-to-know

Me, I see this story as rather uplifting. I think it shows that the ecosystem we have in place does a pretty good job of controlling even the worst malicious actors, cause this story involves just about the worst kind of malicous actor you could imagine. They spent a full 2 years doing REAL open source work to develop that community trust I talked about, as well as maintaining a small army of fake accounts submitting support requests, to put pressure on the project to add more maintainers, resulting in a VERY sophisticated, VERY severe backdoor being added. And they still got found out relatively quickly.

By Thursday afternoon, the attorneys were taken off the case while a transportation department spokesperson speculated they published the document as an act of sabatoge.

Props, if true. But this is the Trump administration, sabotage is absoutely not a requisite for incompetence.

I agree, RFK should stop telling people to kill themselves by ignoring modern medicine.

There's the guy who urges the captain to increase the ship's speed, so they can arrive a day early and impress everyone that the "unsinkable" ship is also super fast. And then sneaks his way onto a lifeboat at the end, when they're only supposed to be taking women and children. Arguably a parallel to Musk in that he's partly responsible for the sinking of the ship.

Much more prominent is Rose's (Kate Winslet) rich scumbag fiance who refers to Jack (Leo DiCaprio) as a "gutter rat", responds to "half the people on this ship are going to die" with "not the better half", tries to bribe with cash one of the men loading boats in order to secure himself a slot, and ultimately manages to get on a boat by picking up a random crying child and claiming it as his own. Much more like Musk himself, but not really a parallel in having resposibility for the ship sinking.

My wife runs a large online D&D guild, with games 4-5 nights a week (not that you play in all of them, they just have that many people). They're no strangers to kicking people that cause drama, and they have several trans and non-binary members already.

I will say that they might not be able to bring their character in, as-is, if it's heavily based on "official" D&D lore and sourcebooks. The group has spent 8 years building all their own lore and tuning some homebrew rules and classes. It's mostly built on the 5e foundation, though.

I believe this is where they'd go to apply.

Arcane.

He can definitely ignore it, though.

So, The Intercept knows when Trump will die? Cause that's the only way he'll be leaving office.

Gotta figure he's considered that possibility. Imprisonment of an elected federal official would be distinctly tougher for Trump to just shrug off.

You twit.

Also depends how much presence you have on social media, and how public you are avout your political opinions there.

Wouldn't be the one where Lrrr and Nd'Nd break up for s bit, woul it?