You need to define how much muscle mass you expect to lose. The entire idea behind the bulk/cut cycle is that you want to net gain muscle after a full diet cycle. It's also not borderline impossible to maintain the…
I think the gist of what we're debating is principle of least privilege - give the LLM the fewest privileges needed to accomplish the task and no more, that way you avoid issues like leaking credentials. The approach…
You can make the identical argument for the CLI tool. Allow kubectl, deny everything else.
The same permissions model that works for other tools. In Claude Code terms, allow Bash(kubectl:*). Deny Read(**/.kube/**). That allows kubectl access without allowing the tool to read ~/.kube directly. Your argument is…
How so? Let's use a common CLI tool as an example - kubectl. Config is generally stored in ~/.kube in a variety of config files. Running `kubectl config view` already redacts the auth information from the config. LLMs…
Can't recall if I played on your servers, but I know I played an unreasonable amount of CS 1.6, including on a bunch of WC3 servers when I wasn't playing on ESEA. If you happen to remember someone going by `nJs` - hi!
Adjusted for inflation?
The point about coverage results is an important one to understand. Something that I like to say when discussing this with other folks is that while high code coverage does not tell you that you have a good test suite,…
There's another alternative - debug in CI itself. There's a few ways that you can pause your CI at a specific step and get a shell to do some debugging, usually via SSH. I've found that to be the most useful.
I generally would agree, but be careful. You don't know what you don't know, and that could be dangerous. As one example, I would guess that the vast majority of folks are not familiar with what an MWBC is and how they…
You can also use a deploy key. That's how I do it while avoiding adding a PAT to a shared repo
Random aside, were you at KubeCon a couple years ago chatting with Sugu at the whole conference party in San Diegi? If so, hi! I was crazy out of my depth, but listening to folks that know this stuff better than I ever…
Agreed, was typing a similar comment, however yours expressed that idea better than mine. Consider that this pattern contains N different properties that renders N different components (plus the default case), I don't…
Not only that, but it really illustrates that even well-known, famous engineers can start contributing to a project with simple pull requests that just rename variables or add comments to code for clarity. Not every…
It's not just the raw size of the image, but also about what the image includes; a smaller image often reduces the potential attack surface because vulnerable things just aren't there. That's one of the major rationales…
I agree. While you can accomplish some really interesting things with Proxy, I think that this article presents some poor examples that are actively harmful. I don't expect `delete` to be O(N) (actually worse if you…
What you're saying is that comparing the existing build time to the new one, the existing one is about 70% slower. You can also phrase it as comparing the new build time to the existing one, it's about 42% faster. Both…
This right here is why I'm a large proponent of using ML/AI for computer assisted diagnosis. Unlike a doctor, a computer won't forget about a possible diagnosis. I'm not saying to replace doctors with ML, but it seems…
Absolutely! I come from a historically Microsoft shop, and the lack of this was by far the biggest barrier when initially learning PostgresSQL since I was still in the mindset of designing stuff as I would in Sql Server.
So do you not have automated tests that run cross browser? If so, what's your method for doing so?
So what do you think your result variable contains in the event that the promise is rejected? Is this semantically equivalent to try/catch?
Hah, was just talking about this a few days ago. I was at work, maybe around 24-25 years old, and couldn't figure out why all of the supposedly high def screens in our conference rooms were so bad, but I could still…
Define expensive. 200$? That's the cost of the plumber's time, and now I've got that tool forever. That and I've gained knowledge and know how to fix or build something that I didn't before which is something I take…
They did, but quite honestly they should have just renamed the framework; Angular 1->2 is less of an upgrade and more of a completely new framework that happens to share the same name. It was a mistake imo, but one they…
This post is entirely going to be based on questions that I would expect an experienced developer that I was interviewing to be able to have a conversation on. This is not a starting point for a beginner. Understand the…
You need to define how much muscle mass you expect to lose. The entire idea behind the bulk/cut cycle is that you want to net gain muscle after a full diet cycle. It's also not borderline impossible to maintain the…
I think the gist of what we're debating is principle of least privilege - give the LLM the fewest privileges needed to accomplish the task and no more, that way you avoid issues like leaking credentials. The approach…
You can make the identical argument for the CLI tool. Allow kubectl, deny everything else.
The same permissions model that works for other tools. In Claude Code terms, allow Bash(kubectl:*). Deny Read(**/.kube/**). That allows kubectl access without allowing the tool to read ~/.kube directly. Your argument is…
How so? Let's use a common CLI tool as an example - kubectl. Config is generally stored in ~/.kube in a variety of config files. Running `kubectl config view` already redacts the auth information from the config. LLMs…
Can't recall if I played on your servers, but I know I played an unreasonable amount of CS 1.6, including on a bunch of WC3 servers when I wasn't playing on ESEA. If you happen to remember someone going by `nJs` - hi!
Adjusted for inflation?
The point about coverage results is an important one to understand. Something that I like to say when discussing this with other folks is that while high code coverage does not tell you that you have a good test suite,…
There's another alternative - debug in CI itself. There's a few ways that you can pause your CI at a specific step and get a shell to do some debugging, usually via SSH. I've found that to be the most useful.
I generally would agree, but be careful. You don't know what you don't know, and that could be dangerous. As one example, I would guess that the vast majority of folks are not familiar with what an MWBC is and how they…
You can also use a deploy key. That's how I do it while avoiding adding a PAT to a shared repo
Random aside, were you at KubeCon a couple years ago chatting with Sugu at the whole conference party in San Diegi? If so, hi! I was crazy out of my depth, but listening to folks that know this stuff better than I ever…
Agreed, was typing a similar comment, however yours expressed that idea better than mine. Consider that this pattern contains N different properties that renders N different components (plus the default case), I don't…
Not only that, but it really illustrates that even well-known, famous engineers can start contributing to a project with simple pull requests that just rename variables or add comments to code for clarity. Not every…
It's not just the raw size of the image, but also about what the image includes; a smaller image often reduces the potential attack surface because vulnerable things just aren't there. That's one of the major rationales…
I agree. While you can accomplish some really interesting things with Proxy, I think that this article presents some poor examples that are actively harmful. I don't expect `delete` to be O(N) (actually worse if you…
What you're saying is that comparing the existing build time to the new one, the existing one is about 70% slower. You can also phrase it as comparing the new build time to the existing one, it's about 42% faster. Both…
This right here is why I'm a large proponent of using ML/AI for computer assisted diagnosis. Unlike a doctor, a computer won't forget about a possible diagnosis. I'm not saying to replace doctors with ML, but it seems…
Absolutely! I come from a historically Microsoft shop, and the lack of this was by far the biggest barrier when initially learning PostgresSQL since I was still in the mindset of designing stuff as I would in Sql Server.
So do you not have automated tests that run cross browser? If so, what's your method for doing so?
So what do you think your result variable contains in the event that the promise is rejected? Is this semantically equivalent to try/catch?
Hah, was just talking about this a few days ago. I was at work, maybe around 24-25 years old, and couldn't figure out why all of the supposedly high def screens in our conference rooms were so bad, but I could still…
Define expensive. 200$? That's the cost of the plumber's time, and now I've got that tool forever. That and I've gained knowledge and know how to fix or build something that I didn't before which is something I take…
They did, but quite honestly they should have just renamed the framework; Angular 1->2 is less of an upgrade and more of a completely new framework that happens to share the same name. It was a mistake imo, but one they…
This post is entirely going to be based on questions that I would expect an experienced developer that I was interviewing to be able to have a conversation on. This is not a starting point for a beginner. Understand the…