Evert Pot

If I stopped following you on Twitter it might mean I've already found you on Mastadon and I'm slowly shutting down here!

tldr; if you used @vltpkg as your package manager, then you were protected the minute @SocketSecurity flagged the malicious packages in the `axios` attack yesterday. The best time to switch your package manager was 48hrs ago, the next best time is right now. More below: blog.vlt.sh/blog/vlt-build

I built a browser-based Gopher client / proxy in Node.js. Go check it out! burrow.din.gy

@ID_AA_Carmack The key thing is always consent

I know there is some overlap between open source and anti-AI activists, but I have a hard time reconciling it. My million+ open source LOC were always intended as a gift to the world. Yes, I would make arguments about how it would strengthen our communities, and the GPL would prevent outright exploitation by our competitors, but those were to allay fears of my partners to allow me to make the gift. AI training on the code magnifies the value of the gift. I am enthusiastic about it! Some people do look at open source as a tool for social change, career advancement, or reputation building, but those are all downstream of the gift.

Yesterday we saw the most _new_ NPM packages being released in the last 12 months, at 2804 packages. Pretty steady upward trajectory here, unlike we've ever seen. This graph is spiky because it's daily data and weekends are lower.

@GarfieldEATSinc I could tell from the unhingedness

@GarfieldEATSinc account has been managed since 2022 by Nathfield, and all tweets are the views and opinions of Nathfield only - the divine supercat.

"There is nothing special about Elon Musk, Sam Altman, or Mark Zuckerberg. Accepting that requires you to also accept that the world itself is not one that rewards the remarkable, or the brilliant, or the truly incredible, but those who are able to take advantage of opportunities, which in turn leads to the horrible truth that those who often have the most opportunities are some of the most boring and privileged people alive." -@EdZitron, You Can't Make Friends With The Rockstars wheresyoured.at/rockstars/

I just blogged: "New Structured Fields RFC out, and so is my Javascript package" evertpot.com/structured-fie…

I just blogged "Hello world! meet Kian: evertpot.com/hello-world-ki…"

@mekunuk hey did you lose your drivers license?

Funny but also people are dicks in the comments. I still thinks tabs need to be rethought in modern browsers. This usage pattern is very common and browsers don't cater people well: evertpot.com/tabs-are-the-w…

But! It's 8 years since a release. That seems long for a security-related library. How do you check password strength? #infosec #websec #security

Dear #lazyweb I want to make sure users use strong passwords when creating accounts. I don't want to just check password length and presence of numbers/symbols. I think it's better to check entropy. This library seems to be exactly what I need: github.com/dropbox/zxcvbn

I wrote something! Creating an open source download counter with Web Components: evertpot.com/webcomponent-d… #npm #php #packagist #js #webcomponents

tale as old as time

@Wagepoint Depressing amount of javascript code for what could have been a fairly straightforward server-rendered multi page HTML app so good luck debugging otherwise ^_^

@Wagepoint if you can't reproduce, and you have a non-minified build I'm happy to run it give you the error stacks too.

@Wagepoint Wagepoint 2.0 is broken on Firefox. It never gets through the loading screen.

I wrote this Format dialog back on a rainy Thursday morning at Microsoft in late 1994, I think it was. We were porting the bajillion lines of code from the Windows95 user interface over to NT, and Format was just one of those areas where WindowsNT was different enough from Windows95 that we had to come up with some custom UI. I got out a piece of paper and wrote down all the options and choices you could make with respect to formatting a disk, like filesystem, label, cluster size, compression, encryption, and so on. Then I busted out VC++2.0 and used the Resource Editor to lay out a simple vertical stack of all the choices you had to make, in the approximate order you had to make. It wasn't elegant, but it would do until the elegant UI arrived. That was some 30 years ago, and the dialog is still my temporary one from that Thursday morning, so be careful about checking in "temporary" solutions! I also had to decide how much "cluster slack" would be too much, and that wound up constraining the format size of a FAT volume to 32GB. That limit was also an arbitrary choice that morning, and one that has stuck with us as a permanent side effect. So remember... there are no "temporary" checkins :) Follow me for more random code musings!