This wouldn’t be “illigal”, but if that’s the case Annas Archive should be “fine”… (I know that they are distributing, and this is the fight)

I don’t know much about European law, but redistribution changes things a lot here in the US. At least here, it then gets into copyright law, and you’d be reproducing copyrighted works without authorization (the Internet Archive attempted to get around this with books by getting legitimate copies of the books, digitizing them, then “lending” the digital copies of those books).

So if I prefer to download the Anna’s dataset instead of scrape myself, would this be illigal?

No idea in Europe. In the US, it might be, depending on what the contents of the work are. I believe Anna’s Archive would count as piracy in this case, though scraping directly from Spotify might not be because they are redistributing the music with authorization from the copyright holder. It gets pretty confusing, honestly.

Regardless, if you aren’t doing things at large scale, even if you are breaking a law by downloading pirated content, it’s unlikely anyone will care. People usually only really start caring if you start redistributing stuff, so as long as you aren’t hosting what you’re scraping, you’re unlikely to run into any trouble.

There’s no obvious answer to your question without more information (for example, where are you?) but I’m not aware of scraping being illegal anywhere, with some exceptions. For example, in the US (where I am), as long as you’re not doing “illegal hacking” to scrape your data, you’re probably fine.

There are TOSs that websites like to impose as well. If you have to agree to one to access any data, you should follow it. Breaking the TOS isn’t really “illegal” in a criminal sense (in the US), but you may expose yourself to anything from being blocked from the site to a lawsuit. Bypassing blocks might also be illegal, though you’d have to speak to a lawyer to know more about that.

It’s illegal

Sauce? Also, where?

Seems like that might just be curl. I’d guess it’s because they ended the bug bounty program for curl.

It’s good to see that the reports they get now are high quality bug reports now!

Skills Are the New CLI

4th paragraph:

Skills don’t replace CLIs.

Great start.

Anyway, skills are basically an alternative to tools. I believe Anthropic made a big deal about them. They come with all the same downsides using an LLM at all comes with, which means they’re fallible, nondeterministic, and possibly even an attack vector. But hey, it saves you remembering a few flags for git so whatever I guess.

Wtf?

(Clojure is (parentheses (diluted with (Java))).)

A quick search might answer your question, but at its core, it treats people as the vulnerability rather than anything software related.

People talk about security here occasionally, though there are places to discuss it. Also, bugs are the most common source of vulnerabilities (though social engineering is a much more common type of attack), so the response seems reasonable to me.

Regarding hacking, for white hat I believe there are communities, though I’d imagine there’s overlap with cybersecurity communities. I don’t know of, nor would I recommend, anything black hat.

how do you fit guitar practice into a dev schedule?

working as a web dev, 8+ hours at a keyboard. by evening my hands are tired and i just want to zone out.

been trying to do 20 min before work instead. it’s not much but it’s consistent. any other devs who play — how do you manage it?

You could put it into the archinstall script and just never finish the installation if there is no age set. You could also prevent a user from logging into an account that has no age set, this could be achived by modified core packages in the base package.

My (rather limited) understanding is that Arch can be installed both without the archinstall script and without a user. Also, the rest of your comment covers how stupid it is to require a value anyway since people can put whatever they want.

Outside of that, it’s all open source. It’s possible to fork and remove the field entirely from an install script, distro, or even systemd itself.

Nobody can enforce this in the open source world. This is honestly the strongest argument for an open source exemption in these laws. It cannot be enforced on open source OSs.

Alpine is less obscure now because of containers, but I haven’t considered running it as a desktop OS.

No, it wont. I wasn’t suggesting someone should use rustc directly. You’re already using Rust, so using cargo isn’t adding to the supply chain.

That being said, there was one time I needed to use rustc directly. We had an assignment that needed to be compilable from a single source file. I couldn’t bundle a Cargo.toml, so I gave a build script that used rustc directly.

I don’t see why not. Cargo is fundamentally just a fancy wrapper around rustc, anyway. Sure, it’s a really fancy wrapper that does a lot of stuff but it’s entirely possible to just call rustc yourself.

My favorite kind of graphs are ones where an entire axis is unlabeled:

You see this a lot with marketing graphs. They say nothing, but they’re designed to convince you that the graphs mean something.

Anyway, it’s neat they found and fixed, supposedly, some real bugs. I’m curious how many fake reports they had to sift through to find any real ones.

You can run rustc directly! You just need to pass about 30 different parameters to it as well as a list of all the dependencies you use and…

Look, it works for small projects.

The success rate of main branch builds compounds this further. It has fallen to 70.8%, its lowest in over five years – 30% of attempts to merge code for production are now failing.

…

The integration bottleneck finding is credible. If you’re generating code faster than your team can review and integrate it, that’s a genuine problem this data is consistent with.

I disagree here. If more attempts are failing, then more attempts are needed to merge a branch. If the pipeline is running more and fewer branches are merging, it’s also possible that people need to go through more revisions to merge their code than they needed to before.

People using AI to write their entire PR will find that fixing issues with it takes more work. They often don’t know how the PR works. I wouldn’t be surprised if this resulted in PRs taking longer to merge as a result, which would contradict CircleCI’s claims of teams benefiting from AI.

I believe the report has insufficient data to draw any meaningful conclusions. The data is interesting, at least.

This decoupling of commands from effects is interesting, but I don’t think I’d use it in most places. In this specific example, passing in an interface for an API client (or whatever other thing you want to call) lets you create a mock client and pass that in during testing, and different environments should be configured differently anyway.

There is one place I’d consider this though, and it’s incredibly specific: a MTG rules engine. Because of replacement effects, triggered abilities, and so on, being able to intercept everything from starting turns to taking damage means you can apply the various different game effects when they come up rather than mixing that logic up all over the codebase. I’m tempted to try this and see if it works, actually.

On the contrary, I have a 1440p 120Hz primary monitor and a 4k 60Hz vertical side monitor, and I can only seem to make that setup work with Wayland. I’ve been using only Wayland this whole time as a result.

As for all your issues with it:

• I’m able to record my screen just fine with multiple applications. Are you trying to write your own screen recorder, or use existing ones?
• I have not had any issues with fullscreen. If anything, it works better for me than Windows. (I can’t compare it to X11 because I can’t use X11.)
• I don’t really understand what you mean by having a clipboard. Do you not have one on Wayland somehow?
• Hotkeys seem to work for me, so I’m confused here too.
• I’m not too sure what you mean by “manufacture inputs” but my keyboard supports programmable macros and that works for me, though I believe that works by flashing the keyboard instead of through software.
• Programs I use often use their own themes regardless of Wayland/X11 so the client-side decorations doesn’t matter nearly as much to me. I would like it to be more consistent, but that’s on both sides (Wayland+application devs) to figure out.

The rest of these aren’t issues I’ve had to deal with at all, but I can see them coming up. Wayland does have some issues, but nothing I’ve come across that’s major enough to bother me all that much.

Poor lonelycpp. They became a target for major nations worldwide over such a dumb reason.

If I were them, I’d do anything I can to break the app immediately and force them to use anything else. I wouldn’t want to be in the supply chain for an app like this where being compromised is immediately a RCE incident for a government app.