- Nov 2020
-
-
Although I agree that -o json should return proper JSON, believe the proper way for external tools like SaltStack etc. to talk to systemd is DBus. See also saltstack/salt#20392 - everything else is more or less just hack-ish and prone to break easily.
-
- Oct 2020
-
docs.microsoft.com docs.microsoft.com
-
I'll want to generate, upload, and store a certificate for publishing NuGet packages.
-
-
www.typelit.io www.typelit.io
-
-
stackoverflow.com stackoverflow.com
-
If you have a better/simpler/"more official" solution, I'd still love to see it!
The "official" solution is to use submitErrors (see Erik's answer).
-
is this solution considered a hack or is something that we can use as an approved workaround in scenarios where we need to manually trigger validations?
-
The more official way to do this would be to run the check (you could even reuse this.validate) in onSubmit.
-
-
www.basefactor.com www.basefactor.com
-
Focus on your application: forget about forms details like I'm dirty, field touched...
-
You may want to execute validations in a given specific order (this can be tricky especially when you have got asynchronous validations).
-
You can try to build a solution to tackle these issues on your own, but it will cost you time and money... why not use a battle-tested solution to handle all this complexity?
-
If you want to implement a form with a superb User Experience, you have to take care of many variables:
-
Form validation can get complex (synchronous validations, asynchronous validations, record validations, field validations, internationalization, schemas definitions...). To cope with these challenges we will leverage this into Fonk and Fonk Final Form adaptor for a React Final Form seamless integration.
-
Managing Form State (holding field information, check if a control has been touched, if the user has clicked the submit button, who owns the current focus...) can be tedious and prone to errors. We can get help from React Final Form to handle these challenges for us.
Tags
- form design
- fonk (form validation library)
- integration
- form validation library
- don't write your own
- difficult/hard problem
- adapter
- user experience
- reinventing the wheel / not invented here
- order is important / do things in the right order
- react-final-form
- complexity
- form validation
- tedious
- too hard/difficult/much work to expect end-developers to write from scratch (need library to do it for them)
- can't keep entire system in your mind at once (software development) (scope too large)
- easy to get wrong
- a lot of things to consider
Annotators
URL
-
-
svelte.dev svelte.dev
-
-
english.stackexchange.com english.stackexchange.com
-
In the software industry we use "dependency" to refer to the relationship between two objects. We say "looking for dependents" for relationships to dependent things and "looking for dependencies" for relationships to prerequisite things, so it gets that connotation, but the literal meaning is the relationship itself, not the object. Finding a better word is exactly the point of the question
-
-
-
But it sounds like the library could use some way to setTouched()
-
-
graphql-dotnet.github.io graphql-dotnet.github.io
-
I highly recommend setting a higher bound on the number of returned entities by each resolve function in your code.
-
-
github.com github.com
-
-
-
Yeah I see what you're saying. In my case, I had a group of classes that relied on each other but they were all part of one conceptual "module" so I made a new file that imports and exposes all of them. In that new file I put the imports in the right order and made sure no code accesses the classes except through the new interface.
-
-
github.com github.com
-
Doing so also means adding empty import statements to guarantee correct order of evaluation of modules (in ES modules, evaluation order is determined statically by the order of import declarations, whereas in CommonJS – and environments that simulate CommonJS by shipping a module loader, i.e. Browserify and Webpack – evaluation order is determined at runtime by the order in which require statements are encountered).
Here: dynamic loading (libraries/functions) meaning: at run time
-
Specifically, since Root, Rule and AtRule all extend Container, it's essential that Container is evaluated (and therefore, in the context of a Rollup bundle, included) first. In order to do this, input.js (which is the 'gateway' to all the PostCSS stuff) must import root.js, root.js must import rule.js before it imports container.js, and rule.js must import at-rule.js before it imports container.js. Having those imports ensures that container.js doesn't then try to place Root, Rule or AtRule ahead of itself in the bundle.
-
Replaced nested `require` statements with `import` declarations for the sake of a leaner bundle. This entails adding empty imports to three files to guarantee correct ordering – see https://github.com/styled-components/styled-components/pull/100
-
-
medium.com medium.com
-
Modules from the following layer can require anything from all the previous layers, but not vice versa.
-
-
-
Any software that makes HTTP requests to other sites should make it straightforward to enable the use of a cache.
-
-
m5qwxpr6o8.csb.app m5qwxpr6o8.csb.app
-
Note that the <WarningEngine/> component must be at the bottom of the form to guarantee that all the fields have registered.
-
-
final-form.org final-form.org
-
Wondering how to get field state from multiple fields at once? People coming from Redux-Form might be wondering where the equivalent of Redux Form's Fields component is, as a way to get state from several fields at once. The answer is that it's not included in the library because it's so easy to write one recursively composing Field components together.
-
-
github.com github.com
-
Use ponyfill.com for linking here.
Tags
Annotators
URL
-
-
formvalidation.io formvalidation.io
-
formvalidation: path.resolve
Why use resolve.alias to point to 'vendors/formvalidation/dist/es6'? Why not just use an npm package and have package.json name module: 'vendors/formvalidation/dist/es6'
Then (I think) the examples below like
import luhn from 'formvalidation/algorithms/luhn';
would work the same but without that workaround.
-
-
humanwhocodes.com humanwhocodes.com
-
Once again, this isn’t good or bad, it’s just the most efficient way to create something that is similar to something else
-
-
-
I'm okay with an overall design that allows people to plugin the parts they need in order to be able to generically support a compile-to-javascript language, but to bake in support for one singular solution because its popular is simply bad engineering.
-
Of all the compile-to-languages, the one that strikes me as having the least merit is JSX. It's basically a ton of added complexity for the sake of what boils down to syntax. There are no real gains in terms of language semantics in JSX.
-
Furthermore, JSX encourages bad non-dry code. Having seen a lot of JSX over the past few months, its encourages copypasta coding.
Tags
- can't do everything
- making it easy to do the wrong thing
- making it too easy to do the wrong thing
- extensibility
- not enough advantages/merits/pros to make it worthwhile
- advantages/merits/pros
- have a good reason
- plugins
- JSX
- can't support everything / all cases
- copy and paste programming
- favoring/catering to the needs of … over …
- adding special cases only for certain popular things but not others
- bad engineering
- making it easy to do the right thing
- copy and paste
- is it worth the effort?
- minimal benefits
- encourages the wrong thing
- not merited
- duplication
- special cases
- hard to make it work in _all_ cases
- do pros outweigh/cover cons?
Annotators
URL
-
-
github.com github.com
-
For event listeners we support the standard jsx naming convention onEventname (this is converted to on:eventname in svelte) as well.
-
-
developer.mozilla.org developer.mozilla.org
-
An onevent event handler property serves as a placeholder of sorts, to which a single event handler can be assigned. In order to allow multiple handlers to be installed for the same event on a given object, you can call its addEventListener() method, which manages a list of handlers for the given event on the object.
-
-
tech.ebayinc.com tech.ebayinc.com
-
However, in practice I do not think these tradeoffs are enough to justify logic-less templates.
-
-
-
Cons aren't covered by pros.
-
An alternative (maybe not good) would be to restrict {@const} to certain blocks like {#each} and {#if}. In both cases, it significantly reduces the "multiple ways to do the same thing" problem and avoids ergonomic and performance overhead of our current situation.
-
it also allows for more divergence in how people write there code and where they put their logic, making different svelte codebases potentially even more different due to fewer constraints. This last point is actually something I really value, I read a lot of Svelte code by a lot of different people and broadly speaking things look the same and are in the same places.
Tags
- programming: multiple ways to do the same thing
- software development: code organization: where does this code belong?
- uniformity
- convention
- consistency
- strong conventions resulting in code from different code bases/developers looking very similar
- idiomatic pattern (in library/framework)
- idiomatic code style (programming languages)
- do pros outweigh/cover cons?
Annotators
URL
-
-
svelte.dev svelte.dev
-
This is the Svelte version of this example: https://codesandbox.io/s/reactivity-react-responds-to-changing-props-forked-d2j44?file=/src/Label.js
-
-
nginx.org nginx.org
-
Hannah Stepanek annotated the hell out of this reference. I would do well to read what she had to say.
Tags
Annotators
URL
-
-
github.com github.com
-
They even named the main file
react.js
so when converting/migrating components from React you could (at least some of the time, perhaps) simply leave some of the imports as-is:import {createHooks, useRef} from './react';
-
-
dylanvann.com dylanvann.com
-
Svelte should make something like useEffect part of the framework so that this could work better and be less verbose.
-
I do like the direction Svelte is heading but I think this is one area that could be improved.
-
-
github.com github.com
-
I'm suggesting there should be a way to write lifecycle related code that also responds to changing props, like how useEffect works. I think how React handles this could be a good source of inspiration.
-
I think it just needs a few changes, possibly non-breaking additions, to be as powerful as hooks, when it comes to abstracting lifecycle related logic, and making it easy to keep effects in sync with props.
-
I'm not sure I understand the problem, everything you are describing is already possible.
-
If Svelte came up with some kind of hooks like API maybe it could solve both these issues at once.
Tags
- too quick to dismiss
- inspiration
- copying ideas from another project
- learning from others
- can we do even better?
- investing time to really understand something
- issues: discuss more before closing
- copying/doing the same as how another project/library did it
- learning by studying/emulating/copying others who do it well
- feature proposal
- excellent writing
- Dylan Vann
- use as inspiration
- issues: not taking the time to really understand the issue before closing
Annotators
URL
-
-
github.com github.com
-
It provides several capabilities that are difficult to achieve with React alone, while being compatible with the newest features of React.
-
-
recoiljs.org recoiljs.org
-
For reasons of compatibility and simplicity, it's best to use React's built-in state management capabilities rather than external global state.
-
-
dylanvann.com dylanvann.com
-
I’d still be interested in Svelte making things easier so I’ve opened a feature request for Reactive statement cleanup functions.
-
Disclaimer: I’m new to Svelte so this isn’t so much a recommendation as it is a “I guess this is a way to do it 🤷♂️”
Tags
- funny
- take the extra time/effort to open an issue (in the appropriate project)
- I _guess_ this is how we do it (uncertainty; wish I knew the recommended/best way but for now I just need a way that works)
- can we do even better?
- "I am not an expert"
- cross-linking so readers can get the full context / see the outcome/resolution
- don't just complain; help improve/fix things
- cross-linking to issue
- community (for a project or product)
- humbleness
Annotators
URL
-
-
rjlipton.wordpress.com rjlipton.wordpress.com
-
A “solution” to GR is more like a model in logic: it may satisfy a theory’s axioms but have other properties that are contingent (unless the theory is categorical, meaning that all of its models are isomorphic).
-
-
github.com github.com
-
Solid supports templating in 3 forms JSX, Tagged Template Literals, and Solid's HyperScript variant.
-
-
github.com github.com
-
Might have to cut my own version of the extension if its maintainers won't add support.
Tags
Annotators
URL
-
-
-
People constantly suggest that I should have just worked with a different library instead of writing another one.
-
It was clear no one was interested in what I was working towards.
-
Very few were interested in furthering the platform in the places they just took for granted.
-
but everything they were doing started to make sense
-
Do we need another JS UI Library?
Tags
- reinventing the wheel / not invented here
- better/superior solution/way to do something
- common/shared goal
- having a clear vision in mind / goal you're working towards even if no one else seems to understand/be interested
- taken for granted
- needs to feel right
- do we really need another _?
- can we do even better?
- not: one of their goals
- finally / at last
- build your own ideas
- UI framework
- constant evolution/improvement of software/practices/solutions
- difficult/hard
- feels natural
- finally got it right
Annotators
URL
-
-
en.wikipedia.org en.wikipedia.org
-
React does not attempt to provide a complete "application library". It is designed specifically for building user interfaces[3] and therefore does not include many of the tools some developers might consider necessary to build an application.
-
-
-
The $: can also be used to trigger effects.
-
We can run effects when some data changes using watchEffect - it takes a function that runs whenever a reactive value used inside changes.
-
There's one downside to Reacts reactivity model - the hooks (useState and useEffect) have to always be called in the same order and you can't put them inside an if block.
-
createState and createSignal are improvements over React's useState as it doesn't depend on the order of calls.
-
MobX - for me personally MobX is a far better way to manage state than React Hooks. It doesn't care about the UI layer so it can be used outside the React ecosystem, and it's simple to mutate data.
Tags
- order is important / do things in the right order
- useState
- better/superior solution/way to do something
- React
- comparison
- confusing for newcomers
- state management
- Svelte: reactivity
- useEffect
- reactivity
- MobX
- equivalent/analogous/alternative ways to do something between 2 libraries/languages/etc.
- Vue
- react hooks
Annotators
URL
-
-
www.thingiverse.com www.thingiverse.com
-
-
neilkakkar.com neilkakkar.com
-
Confidence to express ignorance is a super power. One good way I hone this skill is by saying “Nothing to add” when I have nothing to add, instead of repeating what other people said.
-
-
github.com github.com
-
I don't even have it on my PC. That's why I didn't test the code myself. Don't have time for everything in this world
-
-
github.com github.com
-
PR’s welcome. As I said I don’t have bandwidth to cross check all the bundlers & transpilers combo.
-
-
github.com github.com
-
This library exports a single React Hook, useMethods, which has all the power of useReducer but none of the ceremony that comes with actions and dispatchers.
-
-
learn-us-east-1-prod-fleet02-xythos.content.blackboardcdn.com learn-us-east-1-prod-fleet02-xythos.content.blackboardcdn.com
-
r self-r
This paragraph discuses the use of the word "bullshit" as it is used in every day life. Decide whether this is arguement, structure or both.
-
A Kind Word for Bullshit: The Problem of Academic Writin
Add MLA citation
-
-
leanprover.github.io leanprover.github.ioLean1
-
I'm so tempted to toy around with this.
-
- Sep 2020
-
github.com github.com
-
Since this issue seems to pop up periodically, it would be useful to turn this into a warning. It may not be elegant, but it prevents surprise blank screens due to a navigation error.
Not an actual fix.
-
-
stackoverflow.com stackoverflow.com
-
do I really have to do something like that in order to have my local modules working? it's quite impracticable to explain it to a team! there's nothing a little bit more straightforward?
-
-
sapper.svelte.dev sapper.svelte.dev
-
page components can have an optional preload function that will load some data that the page depends on. This is similar to getInitialProps in Next.js or asyncData in Nuxt.js.
-
-
stackoverflow.com stackoverflow.com
-
It is showed as an error, but it is a warning as it doesn't break anything. I hate having warning/error in my console not coming from me. It is not justified as it's not bad practice imho
-
-
stackoverflow.com stackoverflow.com
-
setContext / getContext can only be used once at component init, so how do you share your API result through context? Related: how would you share those API results if the call was made outside of a Svelte component, where setContext would be even more out of the question (and the API call would arguably be better located, for separation of concerns matters)? Well, put a store in your context.
-
-
svelte.dev svelte.dev
-
let:hovering={active}
It seems like it should be the other way around:
let:active={hovering}
to make it look like a regular let assignment.
It's only when you consider what/how
let:hovering
on its own means/works that it makes a bit more sense that it is the way it is. When it's on its own, it's a little clearer that it's saying to "make use of" an available slot prop having the given name. (Very much likebind
, where the LHS is also the name of the prop we're getting the data from.) Obviously we have to identify which prop we're wanting to use/pull data from, so that seems like the most essential/main/only thing the name could be referring to. (Of course, as a shortcut (in this shorthand version), and for consistency, it also names the local variable with the same name, but it wouldn't have to.)Another even simpler way to remember / look at it:
- Everything on the left hand of an prop/attribute [arg] corresponds to something in the component/element that you're passing the [arg] to. Usually it's a prop that you're passing in, but in this case (and in the case of bind:) it's more like a prop that you're pulling out of that component, and attaching to. Either way, the name on the LHS always corresponds to an
export let
inside that named component. - Everything on the right side corresponds to a name/variable in the local scope. Usually it passes the value of that variable, but in the case of a let: or bind: it actually "passes the variable by reference" (not the value) and associates that local variable with the LHS (the "remote" side).
Another example is bind: You're actually binding the RHS to the value of the exported prop named on the LHS, but when you read it (until you get used to it?) it can look like it's saying bind a variable named LHS to the prop on the RHS.
- Everything on the left hand of an prop/attribute [arg] corresponds to something in the component/element that you're passing the [arg] to. Usually it's a prop that you're passing in, but in this case (and in the case of bind:) it's more like a prop that you're pulling out of that component, and attaching to. Either way, the name on the LHS always corresponds to an
-
-
shipshape.io shipshape.io
-
medium.com medium.com
-
The benefit of this approach is that rather than having these defaults and fighting against them, it’s fully up to you to decide how to handle everything.
-
Rollup also does something very different compared to the other bundlers. It only tries to achieve one simple goal: Bundle ES modules together and optimise the bundle.
-
Unfortunately, many third party libraries, even though they are written in ESM, are published to npm as CJS modules, so we still need to concatenate them.
Tags
- having more control/certainty when you do something manually
- better/superior solution/way to do something
- configurable
- feeling in control
- comparison
- simplicity by design
- Rollup
- slow to upgrade/switch to latest version/current best practice/way of doing things
- control (programming)
- CommonJS modules
- holdover
- fighting against your tools
- do one thing and do it well
- unfortunate
- it's up to you to decide
- bundlers
- under my control
Annotators
URL
-
-
engineering.mixmax.com engineering.mixmax.com
-
There are two ways of handling this with Rollup, as described by the troubleshooting link from the warning. Unfortunately, both Rollup and React recommend the wrong one.
-
-
github.com github.com
-
Luckily, there is absolutely no good reason not to use strict mode for everything — so the solution to this problem is to lobby the authors of those modules to update them.
-
-
github.com github.com
-
DX: start sapper project; configure eslint; eslint say that svelt should be dep; update package.json; build fails with crypt error; try to figure what the hell; google it; come here (if you have luck); revert package.json; add ignore error to eslint; Maybe we should offer better solution for this.
-
When the message say function was called outside component initialization first will look at my code and last at my configuration.
Tags
- reasonable expectation
- what a reasonable person would do
- expectations
- frustrating
- errors
- error messages: should reveal/point to why/how error was caused and how to fix/prevent it
- can we do even better?
- dev experience
- useless/unhelpful/generic error messages that don't reveal why/how error was caused
- good point
- web search for something brings me here
- errors are helpful for development (better than silently failing)
Annotators
URL
-
-
stackoverflow.com stackoverflow.com
-
The recommended solution for onMount is the same as for useEffect — place an async function inside the handler
-
-
-
There are work arounds, but nothing clean. I just feel like this should be functionality that should be part of the slot feature.
-
-
github.com github.com
-
If you want this control then wrap them in a DOM node that the parent controls. If you want to pass in values then use props and if you want to pass in values from higher up the tree, the new style RFC may be able to help.
-
-
github.com github.com
-
I think Svelte's approach where it replaces component instances with the component markup is vastly superior to Angular and the other frameworks. It gives the developer more control over what the DOM structure looks like at runtime—which means better performance and fewer CSS headaches, and also allows the developer to create very powerful recursive components.
-
They don't need to add a prop for every action. The action itself can be passed in as a prop. <script> export let action; </script> <div use:action>whatever</div> The argument for the action can be another prop or can be part of the same prop.
Tags
- better/superior solution/way to do something
- flexibility
- powerful
- feeling in control
- comparison
- better than the alternatives
- React
- contrast
- emergent
- programming paradigm
- component properties (props)
- Angular
- I didn't know you could do that / that was possible!
- Svelte: action (use:)
Annotators
URL
-
-
github.com github.com
-
Lets not extend the framework with yet another syntax
-
I totally get not wanting to extend the syntax. I tried doing these things and in practice it was not easy or pretty. Actions provide a much cleaner and easier way to accomplish a certain set of functionality that would be much more difficult without it.
Tags
- programming: multiple ways to do the same thing
- could be easier / more difficult than it needs to be
- library/framework could make this easier
- clean
- keep things simple
- avoid complexity
- feature not needed; better to use a different approach/feature instead
- clean solution
- just use/do...
- you aren't going to need it
Annotators
URL
-
-
-
Why not just do something like this?
-
You must: reference each element you are extending using refs or an id add code in your oncreate and ondestroy for each element you are extending, which could become quite a lot if you have a lot of elements needing extension (anchors, form inputs, etc.)
-
This can and should be done with other components, IMHO.
Tags
- could be easier / more difficult than it needs to be
- scalability
- feature not needed; better to use a different approach/feature instead
- framework taking care of responsibility so users can leverage it and not have to worry about that responsibility themselves
- why this feature is needed
- too hard/difficult/much work to expect end-developers to write from scratch (need library to do it for them)
- just use/do...
- difficult/hard
Annotators
URL
-
-
-
Any reason adding bind:foo to the <Outer/> element doesn't work for this case?
Tags
Annotators
URL
-
-
github.com github.com
-
The feature is highly likely to be implemented, the API and implementation are the only real topics of discussion right now.
-
-
github.com github.com
-
You should install the packages individually. Alternatively, you can install all of them at once with the svelte-material-ui package.
-
-
github.com github.com
-
(At the point at which it does make sense to turn this into a separate Tooltip.svelte component, the extraction is a completely mechanical process that could even be automated by tooling.)
-
-
jsrocks.org jsrocks.orgJS Rocks1
-
6to5 attempted to ship a quick and dirty TDZ static checking feature but had to retract it immediately afterwards due to various bugs in the algorithm.
-
-
github.com github.com
-
But what we should ask is "can we do better than the others".
-
-
github.com github.com
-
But this is a case where it feels like we're papering over a deficiency in our language, and is the sort of thing detractors might well point to and say 'ha! see?'.
-
-
github.com github.com
-
There are tools in Svelte that break this expectation to a degree, but they are a bit annoying to use, which makes it an active decision on the part of the developer. The API hints at the way we want you to do things because we feel that this will give the better experience.
-
Most of the linked issues, as well as this RFC, attempt to solve this problem by relaxing Svelte's CSS scoping rules, providing a better API with which to use global, or by manually passing down classes. We have never found this to be an acceptable solution which is why those issues have been closed. That position has not changed.
-
-
github.com github.com
-
Or if we formally took a stance that the class prop is THE ordained way to pass class attributes, though I don't think this functionality warrants this restriction.
-
-
svelte.dev svelte.dev
-
If your reaction to the video was 'fine, but if we use TypeScript and write plugins for each editor then we can get all the autocomplete and syntax highlighting stuff' — in other words, if you believe that in order to achieve parity with CSS it makes sense to build, document, promote and maintain a fleet of ancillary projects — then, well, you and I may never see eye to eye!
-
-
css-tricks.com css-tricks.com
-
daveceddia.com daveceddia.com
-
-
React doesn’t provide something like ng-class, but there is a great library called classnames that does the same and more. Install it:
-
- Aug 2020
-
blog.pragmaticengineer.com blog.pragmaticengineer.com
-
GTD strategies
Author refers to the [Getting Things Done book](https://www.goodreads.com/book/show/1633.Getting_Things_Done) by David Allen.
Also recommend complementing above with J. Knapp's excellent Make Time book
-
- Jul 2020
-
lwn.net lwn.net
-
"that text has been removed from the official version on the Apache site." This itself is also not good. If you post "official" records but then quietly edit them over time, I have no choice but to assume bad faith in all the records I'm shown by you. Why should I believe anything Apache board members claim was "minuted" but which in fact it turns out they might have just edited into their records days, weeks or years later? One of the things I particularly watch for in modern news media (where no physical artefact captures whatever "mistakes" are published as once happened with newspapers) is whether when they inevitably correct a mistake they _acknowledge_ that or they instead just silently change things.
-
-
-
The second situation occurs when a person says unpleasant things about another when he or she ought to have known they are false. A reasonable person generally refrains from sharing negative information about others if he or she has reason to doubt its veracity.
-
-
amp.dev amp.dev
-
The meta charset information must also be the first child of the <head> tag. The reason this tag must be first is to avoid re-interpreting content that was added before the meta charset tag.
But what if another tag also specified that it had to be the first child "because ..."? Maybe that hasn't happened yet, but it could and then you'd have to decide which one truly was more important to put first? (Hopefully/probably it wouldn't even matter that much.)
-
-
stackoverflow.com stackoverflow.com
-
Ultimately though, I'd say the file structure that makes the most sense for your i18n workflow is the best one.
-
-
bugs.ruby-lang.org bugs.ruby-lang.org
-
While the modifying version will occasionally be useful, in general, we should gently push people towards using non-modifying code.
-
-
bugs.ruby-lang.org bugs.ruby-lang.org
-
Matz, alas, I cannot offer one. You see, Ruby--coding generally--is just a hobby for me. I spend a fair bit of time answering Ruby questions on SO and would have reached for this method on many occasions had it been available. Perhaps readers with development experience (everybody but me?) could reflect on whether this method would have been useful in projects they've worked on.
-
-
stylo.ecrituresnumeriques.ca stylo.ecrituresnumeriques.ca
-
[vérifier référence]
reste à faire
-
- Jun 2020
-
stackoverflow.com stackoverflow.com
-
-
OK, so what about regular messages? Turns out they are not encrypted after all. Where Signal implements the security and privacy protocols right from the start, Telegram separates the two and offers an additional option. The problem is that not everyone is aware of the Secret Chat option and first-time users may send sensitive information in the regular chat window unknowingly.
-
- May 2020
-
kellysutton.com kellysutton.com
-
doing the wrong thing quickly is a good way to bankrupt us and our customers
-
The order is important.
-
there’s 3 steps to building software: Make it work Make it right Make it fast
-
-
stackoverflow.com stackoverflow.com
-
echo "${BASH_REMATCH[1]/:\/\//://gitlab-ci-token:${GL_TOKEN:-$GITLAB_TOKEN}@}" > $HOME/.config/git/credentials
-
git config --global credential.helper store
What does this do?
-
-
thoughtbot.com thoughtbot.com
-
Pipes are great for taking output of one command and transforming it using other commands like jq. They’re a key part of the Unix philosophy of “small sharp tools”: since commands can be chained together with pipes, each command only needs to do one thing and then hand it off to another command.
-
-
www.digital-democracy.org www.digital-democracy.org
-
By putting our data in the corporate cloud, we are that kid. We are giving corporations and governments a way to see where we are looking towards, and they can predict our future and decide whether and how to intervene or subvert.
-
From a game theoretic standpoint, we’ve already lost. Too many of our civil society adversaries have too much of our data, and we have so little of theirs.
-
-
www.collinsdictionary.com www.collinsdictionary.com
-
This corpus became the largest collection of English language data in the world
-
-
about.gitlab.com about.gitlab.com
-
We believe everyone deserves to report to exactly one person that knows and understands what you do day to day. The benefit of having a technically competent manager is easily the largest positive influence on a typical worker’s level of job satisfaction. We have a simple functional hierarchy, everyone has one manager that is experienced in their subject matter.
-
-
gitlab.com gitlab.com
-
If we can encourage people to create clean commits as they go, the example as you showed above should be far less common, because cleaning up such history as an after-math is most of the time almost impossible.
-
-
www.enchantingmarketing.com www.enchantingmarketing.com
-
Studying the masters will help you understand how all copywriting elements fit together.
-
-
www.w3.org www.w3.org
-
The "'strict-dynamic'" source expression aims to make Content Security Policy simpler to deploy for existing applications who have a high degree of confidence in the scripts they load directly, but low confidence in their ability to provide a reasonable list of resources to load up front.
-
-
www.termsfeed.com www.termsfeed.com
-
It even proclaims that "the processing of personal data should be designed to serve mankind."
-
- Apr 2020
-
www.troyhunt.com www.troyhunt.com
-
If you're wearing the same shoes as I have so many times before where you're trying to make yourself heard and do what you ultimately believe is in the organisation's best interests
-
-
makandracards.com makandracards.com
-
What we actually want to do is to escape content if it is unsafe, but leave it unescaped if it is safe. To achieve this we can simply use SafeBuffer's concatenation behavior:
-
Our helper still returns a safe string, but correctly escapes content if it is unsafe. Note how much more flexible our group helper has become because it now works as expected with both safe and unsafe arguments. We can now leave it up to the caller whether to mark input as safe or not, and we no longer need to make any assumptions about the safeness of content.
-
-
github.com github.com
-
The only goal is correctness. Code style is not a consideration. Providing the level of configuration necessary to make everyone happy would be a huge distraction from the main purpose. After conversion, I recommend using rubocop's awesome --auto-correct feature to apply your preferred code style.
-
-
gavinmiller.io gavinmiller.io
-
You see entropy is information leaking. When it comes to passwords (and secure systems in general) you want to leak as little information as possible. Otherwise an attacker has information they can use to their advantage.
-
-
www.csoonline.com www.csoonline.com
-
Download the billions of breached passwords and blacklist them all. Attackers have a copy; so should you.
-
-
-
it reminds me of IT security best practices. Based on experience and the lessons we have learned in the history of IT security, we have come up with some basic rules that, when followed, go a long way to preventing serious problems later.
-
The fact is that it doesn’t matter if you can see the threat or not, and it doesn’t matter if the flaw ever leads to a vulnerability. You just always follow the core rules and everything else seems to fall into place.
-
-
blog.1password.com blog.1password.com
-
This isn’t the first time Kerckhoffs’ Principle has come up. I specifically discussed it when talking about creating good, strong Master Passwords, when I said that we should use a system for coming up with Master Passwords that doesn’t lose its strength if the attacker knows the system that we used
-
Kerckhoffs’ Principle states that you should assume that your adversary knows as much about the system you use as you do. This is why – despite what I may have said on April Fools Day last year – security experts are skeptical of security systems that hide the details of how they operate. They are particularly skeptical of systems that derive their security from keeping the details of how they work secret. I could go on at great length about why openness about the system improves security. Indeed, my first draft of this article did go on at great length.
-
-
en.wikipedia.org en.wikipedia.org
-
"the enemy knows the system"
-
"one ought to design systems under the assumption that the enemy will immediately gain full familiarity with them"
-
-
falcon.readthedocs.io falcon.readthedocs.io
-
Falcon tries to do as little as possible while remaining highly effective.
-
-
guides.rubyonrails.org guides.rubyonrails.org
-
The handler can be a method or a Proc object passed to the :with option. You can also use a block directly instead of an explicit Proc object.
Example of: letting you either pass a proc (as a keyword arg in this case) or as a block.
-
- Mar 2020
-
www.iubenda.com www.iubenda.com
-
you have less direct control as you must rely on the vendor’s adherence to IAB’s guidelines for compliance.
-
Directly blocking the vendor scripts (using another prior blocking method), then executing them only after consent has been collected. This method requires more implementation work and it’s a bit slower in terms of execution time, but it allows personalized ads to be served from the first page view (where consent hasn’t been collected yet) and gives you more direct and solid control in regards to ensuring compliance.
pros:
- allows personalized ads to be served from the first page view (where consent hasn’t been collected yet)
- gives you more direct and solid control in regards to ensuring compliance.
-
-
github.com github.com
-
When submitting new methods for consideration, it is best if each method (or tightly related set of methods) is in it's own pull request. If you have only one method to submit then a simple commit will do the trick. If you have more than one it best to use separate branches. Let me emphasizes this point because it makes it much more likely that your pull request will be merged. If you submit a bunch of methods in a single pull request, it is very likely that it will not be merged even if methods you submitted are accepted!
-
-
stackoverflow.com stackoverflow.com
-
I thought I understood Ruby error handling until this week and ran across this question.
-
-
techcrunch.com techcrunch.com
-
Earlier this year it began asking Europeans for consent to processing their selfies for facial recognition purposes — a highly controversial technology that regulatory intervention in the region had previously blocked. Yet now, as a consequence of Facebook’s confidence in crafting manipulative consent flows, it’s essentially figured out a way to circumvent EU citizens’ fundamental rights — by socially engineering Europeans to override their own best interests.
-
-
techcrunch.com techcrunch.com
-
All of which means — per EU law — it should be equally easy for website visitors to choose not to be tracked as to agree to their personal data being processed.
-
-
www.forbes.com www.forbes.com
-
The business had a policy that you should report safety incidents when you see them. The process around that was you fill out a form and fax it to a number and someone will take action on it. The safety manager in this company saw that and decided to digitize this workflow and optimize it. Once this process was put into place, the number of safety incidents reported increased 5 times. The speed at which safety incidents were addressed increased by 60%.
-
-
-
Using fear of losing your "streak" as a motivation
Tags
Annotators
URL
-
- Feb 2020
-
about.gitlab.com about.gitlab.com
-
We do the smallest thing possible and get it out as quickly as possible.
-
- Jan 2020
-
github.com github.com
-
One thing well. rbenv is concerned solely with switching Ruby versions. It's simple and predictable.
Tags
Annotators
URL
-
- Dec 2019
-
github.com github.com
-
zapier.com zapier.com
-
-
It's not customizable enough and there aren't enough distinct fields for inevitably complex work tasks. Google Sheets fixes that. No, it's not a to do list app, but that's why I love it. It's an app I already use. It's extremely customizable.
-
-
zapier.com zapier.com
-
Best to-do list app for taking control of your to-do list
-
Games are fantastic at motivating mundane activity—how else can you explain all that time you've spent on mindless fetch quests? Habitica, formerly known as HabitRPG, tries to use principles from game design to motivate you to get things done, and it's remarkably effective
-
The best to-do list apps
-
Because keeping track of your tasks is an intensely personal thing, and people will reject anything that doesn't feel right pretty much instantly.
-
-
www.howtogeek.com www.howtogeek.com
-
For example: I wanted a way to add recurring tasks to my list, so I wrote a simple bash script called goodmorning.sh. It uses the command prompt client to quickly add a bunch of tasks to my todo list of choice. I run this script first thing in the morning every workday, and I like it better than any built-in system I’ve found for recurring tasks, because it’s fully under my control.
-
-
github.com github.com
-
-
It doesn't use a database (unlike Keepass) and thus doesn't open all passwords at once. Just one at a time. Since it's just a directory of encrypted files, you can access your passwords with any PGP-compatible tool.
-
-
unix.stackexchange.com unix.stackexchange.com
-
Using find and cpio is a more unix-y approach in that you let find do the file selection with all the power that it has, and let cpio do the archiving. It is worth learning this simple use of cpio, as you find it easy to solve problems you bang your ahead against when trying tar.
-
- Nov 2019
-
bugs.ruby-lang.org bugs.ruby-lang.org
-
Try doing the equivalent of #indexes without it. Not that it's especially hard, but you have to stop and work out a solutuon. When you need it, that's when you wish there were already a method for it.
-
-
scotthelme.co.uk scotthelme.co.uk
-
Knowing the "risk", I was very happy to find this post (and the comments for the actual keyword). I didn't want more than read two frickin' paragraphs. I did not intend to give any personal details, payment information or whatever. Maybe there was a man in the middle and the information displayed had been altered - so what? "There's someone wrong on the internet" - nothing more. I have to check if the information I get from the site is plausible, that's part of my job. There was no "risk". I, as an informed user, should always have the possibility to access sites like that. The keyword-thing makes this harder for simple FaceTube-Clickers, and for a good reason, but I think it is a good solution, given my example.
"The TLDR; is that it stops users from clicking through security warnings"
So it's a restriction on users. As a user, I cannot accept that. It's war against ME.
-
-
www.youtube.com www.youtube.com
-
github.com github.com
-
As Onivim 2 completely handles the rendering layer, this Vim-modelled-as-a-pure-function could focus on just buffer manipulation.
-
It is responsible for
Tags
Annotators
URL
-
-
ometer.com ometer.com
-
do something specific and do it well
Tags
Annotators
URL
-
-
github.com github.com
-
Epiphany aims to present the simplest interface possible for a browser. Simple does not necessarily mean less-powerful. The commonly-used browsers of today are too big, buggy, and bloated. Epiphany is a small browser designed for the web: not for mail, newsgroups, file management, instant messaging, or coffeemaking. The UNIX philosophy is to design small tools that do one thing and do it well.
-
-
blog.codinghorror.com blog.codinghorror.com
-
Discourse
-
-
testingjavascript.com testingjavascript.com
- Oct 2019
-
www.typescriptlang.org www.typescriptlang.org
-
In TypeScript, we can also set a value that a parameter will be assigned if the user does not provide one, or if the user passes undefined in its place.
-
buildName(undefined, "Adams")
-
If a default-initialized parameter comes before a required parameter, users need to explicitly pass undefined to get the default initialized value.
-
-
-
For the uninitiated, Granny Smith was Maria Ann Smith, a resident of the area who in 1868 "accidentally" grew the first batch of green apples that now bear her name.
Yes, good thinking. Throw in a truthful fact or two. Impressive!
-
- Sep 2019
-
github.com github.com
-
I just don't feel like doing the change.
-
- Aug 2019
- Jul 2019
-
ohiostate.pressbooks.pub ohiostate.pressbooks.pub
-
We will study how a Disc Jockey’s (DJ’s) endorsement of recording on radio, in the 1950s, could boost sales into the millions.
-
- Jun 2019
-
engl201.opened.ca engl201.opened.ca
-
AtthecoreofmyargumentisthewayinwhichGooglebiasessearchtoitsowneconomicinterests—foritsprofitabilityandtobolsteritsmarketdominanceatanyexpense
I have been trying to avoid the word "money" in my annotations to avoid coming off as anti-capitalist as I really am, but yes: Corporations do not give a care about individuals or marginalized groups outside of how they can profit off of their oppression. Remember this June; this Pride Month; that any company selling you rainbow merchandise is not doing it out of legitimate care about LGBTQ+ rights but because it's profitable! Yes, even if they're giving 20% of proceeds to charity - where do you think the other 80% goes?
-
- Mar 2019
-
ia801306.us.archive.org ia801306.us.archive.org
-
therefore at least to some extent a failure
this is strange; I suppose you can 'succeed' in carrying out the utterance, but it does not consecrate anything, which... is the entire point? So, strange to say that it fails only in part when in another sense it fails completely. It's like I succeeded in taking a shot but missed the basket?
-
One thing we might go on to do, of course, is to take it all back
How can you take back an action? (though you could retract a claim about an action, of course)
-
So far then we have merely felt the firm ground of prejudice slide away beneath our feet.
Not absolute; not bedrock (though we thought it was). And merely? This is "merely" the dissolution of what you thought reality was?
-
That this is SO can perhaps hardly be proved, but it is, I should claim, a fact.
Haha - claiming "truth" for something that he acknowledges might not be provable - 'take my word for it, it's a fact'. Use of the performative again in "claim," e.g. "I claim" cannot be responded to with "that's not true!"
-
outward and audible sign
Proverbial tip of the iceberg; the "seen" part.
-
Here we should say that in saying-these words we are doing some- thing-namely, marrying, rat her than reporting some- thing, namely that we are marrying
Important distinction between doing and reporting; the former obviously an action, and the latter a verifiable statement. But can the lines blur? Is "I do" ever reporting the fact that you are getting married, which is verifiable?
-
Yet to be 'true' or 'false' is traditionally the characteristic mark of a statement.
All statements are boolean: T/F
-
all cases considered
Not sure that all cases considered are worth considering...?
-
the only merit I should like to claim for it is that of being true, at least in parts
You would think the goal of an essay would be to find or argue a truth, but here he is marginalizing it; truth is not the goal.
Arguing that truth and falsehood are not what matters; that the performative exists outside such claims (as we learn later).
Using the performative in his opening through the use of "I claim"; and here he claims truth. He performs his own argument.
-
we shall next consider what we actually do say about the utterance concerned when one or another of its normal concomitants is absent
So the utterance is surrounded by other ceremonial trappings, and without which there is a presumption that the utterance is hollow, that the accompaniments make it "complete"; suggests that the ceremony becomes greater than the sum of its parts by being able to bring about this binding force which the parts cannot do individually; or can they - is just the utterance enough to describe and seal the inward act? The other question is, does the utterance imply (and describe) the other trappings?
-
our word is our bond
And yet these are just words; as believable or unbelievable as the uttering of an oath?
-