theBarracuda 🇺🇦

@pilcrowonpaper @calloc134 But what are the drawbacks? I mean if you need to access it on the client, cookies without httpOnly should be the safest option, but you can also adjust the architecture of app so you only need to access them on the server. Will you cover it in that upcoming blog about web auth?

@theBarracuda_ @calloc134 Assuming the dev wants/needs to access the token using client-side js

localStorageにセッションのためのトークンを入れるという選択も時には許容されるが、そもそもモノづくりにおいて「なぜその選択をしたのか」は明文化し、自分の言葉で語れなければいけないという大原則がありまして〜という話をする

@pilcrowonpaper @calloc134 Ah ok, I thought there were more to that

@pilcrowonpaper @calloc134 I might sound dumb but why without httpOnly flag ?

@calloc134 サイトを定期的に使わないとSafariとかlocalStorageのデータを削除するから認証トークン系は cookie (httpOnlyなし）に保存すべき

@pnpmjs 🫣🔥

@theBarracuda_ You can try it x.com/pnpmjs/status/…

This is due to additional checks that pnpm performs on a lockfile that was generated not locally. We will add an option to disable it, which should be safe for projects don't accepting contributions from outside collaborators. Also we'll document some ways to cache verification

@chronark Yes

Does anyone want some airpod pros?

React Doctor v2 is here Your agent writes bad React code, this catches it Works with Next.js, Vite, React Native. Fix your app in minutes npx react-doctor@latest

@komran21 @lassevjl I’m switching to oxc cuz biome is so ram hungry

@lassevjl Serious question. Why? Biome is plenty fast? Better custom linting?

Oxlint >>>>>>> Biome

this is so accurate 😂

Unpopular opinion: "AI makes everyone a developer" is true the same way "cameras makes everyone a photographer"

@KevinVanCott What’s the key diffs between TS Store and XState/store ?

The hooks in TanStack Store just got more user friendly. If you have used either Jotai, Zustand, or x-state/store in the past, I think these APIs will make sense. useAtom useStore useSelector (renamed from old useStore) useCreateAtom useCreateStore createStoreContext

LOL

wtf supermaven....

@bunopus_en Congrats ! Been using webstrom for many years, great IDE

Happy to start new journey!

I will continue to use the — dash. Even if people think it means I’m AI. Signed, Claude

@RhysSullivan @davis7 How’s it differ from t3 env ?

@davis7 have you seen npmjs.com/package/better…

Had GPT-5.4 generate an actually decent env var management system when making a new project, completely unprompted These things have come a long way, dope to see them actually setting things up well instead of the hellish nonsense they used to do

You might’ve seen this bug before where the hover state keeps flickering. The fix is to separate the trigger from the effect. Listen for hovers on the parent, but animate a child element instead. This ensures that the hover area stays consistent.

@flameeey_ @andrii_sherman @DrizzleORM 🤣🤣🤣🤣

@andrii_sherman @DrizzleORM

pnpm why prisma?