void* Liam

4.1K posts

void* Liam

@ptrToLiam

Solo/Indie game dev | Wheel reinventor | @orionst4r personal space heater

انضم Mart 2022

806 يتبع306 المتابعون

تغريدة مثبتة

void* Liam@ptrToLiam·5h

I've never actually written a blog before. ptrtoliam.dev/blog/wlclient-…

English

430

void* Liam أُعيد تغريده

ThePrimeagen@ThePrimeagen·1h

he is right again

Andrej Karpathy@karpathy

Software horror: litellm PyPI supply chain attack. Simple `pip install litellm` was enough to exfiltrate SSH keys, AWS/GCP/Azure creds, Kubernetes configs, git credentials, env vars (all your API keys), shell history, crypto wallets, SSL private keys, CI/CD secrets, database passwords. LiteLLM itself has 97 million downloads per month which is already terrible, but much worse, the contagion spreads to any project that depends on litellm. For example, if you did `pip install dspy` (which depended on litellm>=1.64.0), you'd also be pwnd. Same for any other large project that depended on litellm. Afaict the poisoned version was up for only less than ~1 hour. The attack had a bug which led to its discovery - Callum McMahon was using an MCP plugin inside Cursor that pulled in litellm as a transitive dependency. When litellm 1.82.8 installed, their machine ran out of RAM and crashed. So if the attacker didn't vibe code this attack it could have been undetected for many days or weeks. Supply chain attacks like this are basically the scariest thing imaginable in modern software. Every time you install any depedency you could be pulling in a poisoned package anywhere deep inside its entire depedency tree. This is especially risky with large projects that might have lots and lots of dependencies. The credentials that do get stolen in each attack can then be used to take over more accounts and compromise more packages. Classical software engineering would have you believe that dependencies are good (we're building pyramids from bricks), but imo this has to be re-evaluated, and it's why I've been so growingly averse to them, preferring to use LLMs to "yoink" functionality when it's simple enough and possible.

English

556

28.6K

void* Liam أُعيد تغريده

🐝🇬🇷@bee_fumo·5h

xdg-session-management finally merged, after 6 fucking years. This is a protocol that actually everyone wanted, the reason it wasn't merged up until now? I'm not really sure.

English

268

void* Liam@ptrToLiam·4h

@e0syn @lushptr

GIF

QME

🇨‌🇦‌🇷‌🇿‌🇪‌🇳‌@e0syn·4h

@lushptr @ptrToLiam yes this is about you two

English

🇨‌🇦‌🇷‌🇿‌🇪‌🇳‌@e0syn·4h

everyone who has ptr in their name ily

English

130

void* Liam@ptrToLiam·4h

@e0syn @lushptr '@' is the pointer dereference operator of Xitter, lol

English

void* Liam@ptrToLiam·5h

related repo with 2 approaches writing a wayland client without libwayland: github.com/ptrToLiam/wl-s…

English

void* Liam@ptrToLiam·5h

I've never actually written a blog before. ptrtoliam.dev/blog/wlclient-…

English

430

void* Liam@ptrToLiam·5h

@eddieprograms It is written, and released. x.com/ptrToLiam/stat…

void* Liam@ptrToLiam

I've never actually written a blog before. ptrtoliam.dev/blog/wlclient-…

English

Eddie Hatfield@eddieprograms·2d

@ptrToLiam Yes please

English

void* Liam@ptrToLiam·2d

Decided to try writing a blog post and realized it's been quite a while since I've written any sizable text.

English

void* Liam@ptrToLiam·1d

@NewAgeRetroNerd I'd rather try and fail than not try at all.

English

retrodev⌨@NewAgeRetroNerd·1d

Be honest, do you fear the fall?

English

372

void* Liam أُعيد تغريده

Justin Skycak@justinskycak·1d

Use tools to extend your reach, not to replace your brain.

English

123

2.9K

void* Liam@ptrToLiam·2d

@GarrettPetersen I mean... obviously. You need to have a planet for the gameplay to take place on. Otherwise the gameplay is just floating in the void with no oxygen.

English

569

Dr. Dad, PhD 🔄🔼◀️🔽▶️@GarrettPetersen·2d

Every indie game dev knows that before you decide on your game's mechanics, you need to create a complete globe simulation with climate, cloud formation, precipitation, a water table, astronomically correct stars, planets, and moon.

English

1.1K

31.3K

void* Liam@ptrToLiam·2d

@gnukeith Since when is '06 old?? I'm '03...

English

Keith@gnukeith·2d

I JUST OPENED THIS APP WHY I AM BEING VIOLATED HELLO!!?!?! x.com/Shitpost_2048/…

Shitpost 2048@Shitpost_2048

English

3.2K

void* Liam أُعيد تغريده

Casey Muratori@cmuratori·2d

I don't see the problem. I'm sure the requirements doc said: "User must be able to drag a file onto the fonts pane. While hovering, a large red 'do not drop here' symbol centered in an unthemed gray box should interpolate over to the upper right corner of the drop area. The gray box should be flush with the right edge of the drop area, but should remain unaligned off the top edge by seven pixels. The cursor should then change to the background-wait cursor for approximately one second, then change back. The entire application should now close spontaneously, and the cursor should switch to the standard add-a-copy cursor indefinitely. When the user finally releases the mouse button, the cursor can revert to normal, but no action should be taken." The devs crushed it on this one. I have no idea why you're complaining.

Sander 🇳🇴@SanderSkjegstad

This happens every time, by the way. Everyone is fired on every timeline.

English

177

4.8K

213.5K

void* Liam@ptrToLiam·2d

@haydendevs so many levels available to descend through

English

hayden@haydendevs·2d

@ptrToLiam there really is levels to the larp

English

hayden@haydendevs·2d

look at all this larp

English

🐝🇬🇷@bee_fumo·2d

Genuinely if you're a new person on Linux or someone developing on Linux avoid gnomeshit.

A Man In Red@a_man_in_red

Microsoft being scared of Linux actually becoming viable for gaming is ironic given the recent revelation of a sect within FOSS that loathes gamers. This guy is a major part of GNOME development for instance.

English

1.2K

void* Liam أُعيد تغريده

HSVSphere@HSVSphere·2d

That's literally just GNOME btw. Everyone who doesn't work on GNOME hates them, including other Wayland developers. They're the main reason why development is so slow.

A Man In Red@a_man_in_red

English

705

36.6K

void* Liam@ptrToLiam·2d

@Flanz111 @bee_fumo You can pair hyprland with something like noctalia shell or dank material shell and not have to worry about manually configuring the wm much at all.

English

Monkey@Flanz111·2d

@bee_fumo What should a gamer use, KDE is unstable as fuck for me(it literally broke 3 times already, been using it for 1 month), GNOME is tablet DE and I cba using hyprland to play my games...

English

175

void* Liam@ptrToLiam·2d

@sduck378 Last time I tried to use GLFW at all on wayland, it didn't work. I ended up just building it for X11 and relying on Xwayland.

English

god's eepiest warrior@sduck378·2d

the fact that glfw's getmonitorcontentscale straight up doesn't work with fractional scaling on wayland and you have to create your window with a dummy size then use getwindowcontentscale and then resize the window to the size you actually want

English

void* Liam أُعيد تغريده

Dmitrii Kovanikov@ChShersh·2d

I feel that people who are bad at coding are more bullish on AI. And this explains a lot.

English

278

121

2.2K

125.4K

void* Liam@ptrToLiam·2d

@_forg__ I started the project nearly 2yrs ago and, in the span of a few months, got it kinda working but didn't quite understand why and just left it alone for a while. Returned to it recently, with a much better understanding, made it simpler, better. Am actively working on it again.

English

void* Liam@ptrToLiam·2d

@_forg__ I'm basically putting together the resources I would have liked to have when I started my current project, lol.

English

اكتشف

@e0syn @lushptr @eddieprograms @NewAgeRetroNerd @GarrettPetersen @gnukeith @haydendevs @elonmusk