-59
5
submitted 7 months ago by otto@programming.dev to c/security@lemmy.ml

The XZ Utils backdoor, discovered last week, and the Heartbleed security vulnerability ten years ago, share the same ultimate root cause. Both of them, and in fact all critical infrastructure open source projects, should be fixed with the same solution: ensure baseline funding for proper open source maintenance.

78
submitted 7 months ago by otto@programming.dev to c/technology@lemmy.ml

The XZ Utils backdoor, discovered last week, and the Heartbleed security vulnerability ten years ago, share the same ultimate root cause. Both of them, and in fact all critical infrastructure open source projects, should be fixed with the same solution: ensure baseline funding for proper open source maintenance.

91

The XZ Utils backdoor, discovered last week, and the Heartbleed security vulnerability ten years ago, share the same ultimate root cause. Both of them, and in fact all critical infrastructure open source projects, should be fixed with the same solution: ensure baseline funding for proper open source maintenance.

88

Having smart people with a lot of knowledge results in progress only if information flows well in the veins of the organization

48

In this post, I share 8 principles I believe in:

  1. Less is more
  2. Start with the solution or the ask
  3. Show the facts, with examples
  4. Always quantify
  5. Include links and references
  6. Explain why it matters
  7. Ask feedback from one person
  8. Sleep on it

As engineers and developers, we often focus heavily on technical skills while neglecting the importance of clear, compelling writing. But the reality is, our ability to communicate effectively can have a major impact on our careers.

-23

There is more to it than just knowing Ctrl+T - see tips to boost your productivity

4
submitted 8 months ago by otto@programming.dev to c/git@programming.dev

And to be productive also: git citool, gitk, fzf and Liquid Prompt explained with screenshots

[-] otto@programming.dev 4 points 8 months ago

I just prefix all my git aliases with g-. So for status I type g-s<tab>.

[-] otto@programming.dev 2 points 8 months ago

You need bisect only as a last resort. Effective use of git blame, git log -p -S <keyword> etc has always been enough for me. Also, the projects I work with take 10+ minutes to compile even when cached, so doing tens of builds to bisect is much slower than just hunting for strings in git commits and code.

[-] otto@programming.dev 4 points 8 months ago

I had the same feeling until I started using gitk. I always have a gitk window open and press F5 to reload, so it shows me the state of everything after I've run git commands. Now I grasp everything much better.

91

As aliases

alias g-log="git log --graph --format='format:%C(yellow)%h%C(reset) %s %C(magenta)%cr%C(reset)%C(auto)%d%C(reset)'"
alias g-history='gitk --all &'
alias g-checkout='git checkout $(git branch --sort=-committerdate --no-merged | fzf)'
alias g-commit='git citool &'
alias g-amend='git citool --amend &'
alias g-rebase='git rebase --interactive --autosquash'
alias g-pull='git pull --verbose --rebase'
alias g-pushf='git push --verbose --force-with-lease'
alias g-status='git status --ignored'
alias g-clean='git clean -fdx && git reset --hard && git submodule foreach --recursive git clean -fdx && git submodule foreach --recursive git reset --hard'
[-] otto@programming.dev 1 points 8 months ago

Only product from Microsoft I actually like using and trust. Quality from 1998, and still going :)

[-] otto@programming.dev -1 points 8 months ago

One is enough if it is very big

58

๐Ÿš€ Dive into the fascinating world of Linux containers! Most devs use #Docker or #Podman, but do you really understand what's happening under the hood? ๐Ÿง Let's demystify #Linux #containers in simple, concrete terms. Just a 12-min read! ๐Ÿ•ฐ๏ธ๐Ÿ“–

31
Pulsar, the best code editor (optimizedbyotto.com)

Pulsar (former Atom) is still the best code editor in my opinion. It is easiest and fastest to use, has all the nice productivity boosting plugins and is overall great for all the same reasons the Atom was great. ๐Ÿš€

See also !pulsaredit@lemmy.ml

53

Whether you're steering an open source project or leading full-time a software development team, the key to maximizing productivity lies in efficient code reviews.

[-] otto@programming.dev 1 points 9 months ago

Try again tomorrow, seems it got popular today

[-] otto@programming.dev 1 points 1 year ago

We just need specific portals for sharing that remember your homeserver. See for example https://mastodonshare.com/.

view more: next โ€บ

otto

joined 1 year ago