nik9000

Yeah! Like that!

Usually I use glob patterns for test selection.

But I did use reges yesterday to find something else. A java security file definition.

I dunno about stdx as a solution. It's just not a big enough list.

At work we build a big java thing and we:

• Manually import all dependencies, including transitive dependencies.
• Bless them by committing their hash to our repo. I think the cargo lock file does something similar.
• Audit the dependencies by hand. Sometimes that's reading them all and sometimes thats less. Honestly, it's often less. A few times it's being members of the upstream community.
• Don't allow running as root
• Drop all permissions we don't need with seccomp including reading a bunch of stuff
• Sandbox each thread based on what's on the stack. Untrusted code can do less stuff.

It's still not enough. But it helps.

Maybe a web of trust for audited dependencies would help. This version of this repo under this hash. I could see stdx stuff being covered by the rust core folks and I'm sure some folks would pay for bigger webs. We pay employees to audit dependencies. Sharing that cost via a trusted third party or foundation or something feels eminently corporate. Maybe even possible.

Amazon is certainly interesting for open source. They've caused me and my friends a fair bit of trouble but they have made some real contributions. I feel like they only do it when they have to though. They are quite happy to take others work and give nothing back.

They just feel very disingenuous. Opportunistic. A bit sleezy. But some of my favorite open source hackers work there and do good work. It's hard.

I really thought the idea was, "You like mecha? You like kids piloting mecha? This is how it'd go down." I loved it so much. Shinji's a broken, abused shell child. He lives with a broken human who drowns her sorrows in drink. His father is just evil. He'd have to be to let his kid pilot the mecha.

The only real father figure we ever see for shinji is a spy. Who gets killed. He's in love with a girl that hates him. Because he's broken. But he has no one else. Except those friends at school who I think they take away. Don't remember. And that angel who he has to kill or something. Damn, it's been like 25 years. I have no idea what happened. But in my memory it's terrible. Wonderful stuff.

Thanks. I remember one of these had people being excited about it and I felt bad that I couldn't try it. But Linux is hard and we are all so grumpy. I get it.

Is that the Mac only one?

We knew spooks were all up in the phone network. They'd show up and ask installers to run them some cables and configure ports in a certain way. I was friends with folks who were friends with the installers.

I work on software for finding things and summarizing stuff. We were one of those Apache 2 -> other relicenses a while back.

I can't really talk about specifics. But we all have a working imagination though. I think about it a lot. But I still do the job. There are good folks doing good things with it.

I've been listening to the Andy Serkis reading it lately. First experience since I was a kid. It's surprisingly nuanced for something so old and so baked into the popular culture. It's kind of amazing how flattened my memory of it from childhood is.

Dune as well. And Snowcrash too

We can be heretics together. But you're wrong. It was the best of the three because it commented on the universe.

I wanted to love TFA. So much promise wasted by repetition. They had an es-storm trooper! A super emotionally damaged Vader worshipping anger Jedi. The wiggly light saber. I should have loved it. The characters were so cool. But they didn't do anything new. Felt very design by committee.

In TLJ the characters did new things. It didn't all feel right to me. But it was new. I loved Luke's story. War stories should leave their heros damaged. I loved the worthless dirtfarmer parents. Everyone can't have special parents. Even Poe's stupid story with pink hair general was a commentary on how ruthless rebels have to be. People die. You can't waste resources. There was a lot wrong about TLJ but it tried.

And ROS had one good line. That's it.

The actors deserved so much better. They worked hard. They loved star wars. They wanted to make something good.

Tom's got every right to be proud for the British plug. It's super over engineered and a love it.