You declare it in the package.json as a category when publishing. It’s completely self-selected with no oversight, review, or enforced permissions.
You declare it in the package.json as a category when publishing. It’s completely self-selected with no oversight, review, or enforced permissions.
I believe they’re referring to lower down in the article, where the researchers analyzed existing extensions on the marketplace:
After the successful experiment, the researchers decided to dive into the threat landscape of the VSCode Marketplace, using a custom tool they developed named ‘ExtensionTotal’ to find high-risk extensions, unpack them, and scrutinize suspicious code snippets.
Through this process, they have found the following:
- 1,283 with known malicious code (229 million installs).
- 8,161 communicating with hardcoded IP addresses.
- 1,452 running unknown executables.
- 2,304 that are using another publisher’s Github repo, indicating they are a copycat.
The WinAmp maybe sorta open-sourcing is interesting. I’ve never used it (aside from downloading it to get MilkDrop working in Foobar2000).
That’s how I feel about RuneScape! I don’t find it a particularly fun game, but the music is so great and iconic and fits the game so well, I hear it and want to play.
These names are really fun! Good ones to add to my list…
Cool to see the Immich team going full time. I don’t use it personally but I hear great things
I have questions. Is this something in use today? Who is manufacturing them? Is this something you’re personally familiar with or just aware of?
You mean like git sparse-checkout
? Admittedly experimental but useful
My “scrum leader” (who we handled agile just fine without before) is constantly complaining about points or priorities shifting, to the point that he’ll tell us to not put what we’re actually working on on the board because it’ll mess up the burndown chart.
One of the 4 values of agile is “responding to change over following a plan”. He’s parroted this to us before, and yet still doesn’t seem to see the irony.
1 horizontal/1 vertical + laptop.
Horizontal is directly in front of me, used for whatever I’m currently focusing on - usually IDE or browser.
Vertical is to the side, used for anything auxiliary to my current task - browser, bug report, notes, chat, git gui, etc.
Laptop monitor is for anything I want to monitor, but don’t need to look at constantly - logs, news, incoming bug reports, etc.
I also make use of virtual desktops, so I have one for chat/email/general browsing, one for code editing with browser, git gui, IDE, and one for notes/zoom. Laptop screen doesn’t shift with virtual desktops so I always keep the monitoring open.
Please, let’s get a little better data in here…
UPDATE real_influencers SET inactive_date=2024-03-29 WHERE name = 'Simon Riggs';
One of my biggest annoyances when talking to (especially older) people about my job as a software engineer is when they’re like “but how are you still working on it? Don’t you just like, make the app and you’re done?” They don’t realize the amount of work it takes to write everything, because they don’t understand the complexity involved in writing software.
Though it’s not as bad as “so I have an app idea… It’s like Uber but for clothing”
Also, I was just looking this morning at writing something like that Fitbit/influxDB integration for YNAB (You Need a Budget) for visualization in grafana!
I usually don’t pay much attention to the “new software” section, but PerPlexed looks pretty cool! It never occurred to me that it would be possible to create an alternative Plex UI from scratch like that
You should reach out to the authors! I have no clue how they create their “new” section
Also, that CLI trick is crazy! Never knew that and I’m a fairly proficient shell user.
Anyone use authentik? Seems useful, most of my homelab services are unsecured ATM (just local only/vpn)
The thought of colocating my homelab is intriguing… But also sounds like way too much effort and money
What’s wrong with Business Insider? Genuine question