RonSijm

VillageSQL, the newest MySQL fork built around the concept of extensions ( villagesql.com )

It's an open source venture backed by $35M from FirstMark Capital, Spark Capital, and GV (Google Ventures). It's a drop-in replacement for MySQL with an extension architecture. See their native UUID extension with efficient 16-byte storage as an example.

RonSijm , 18 days ago

I guess it's cool - you can port some stuff from Postgres like pgVector and make Mysql a vector database.

On the other hand, I'm also think 'why?'. At some point just use Postgres instead of overcomplicating Mysql with extensions

LinkedIn checks for 2953 browser extensions ( github.com )

RonSijm , 22 days ago

Uhm, doesn't really sound like this could be true. Maybe I'm missing something?

You'd see 2953 get requests in your network tab, right?

And the article says:

LinkedIn silently probes for 2,953 Chrome extensions on every page load.

Surely it would be drastically noticeable if for every page load they do 3k get requests to the chrome store

RonSijm , 22 days ago

Yea, well that was my first though, but then I though - why would chrome even allow any website to just arbitrary check which extensions you have installed.

So I checked the scripts and at this line the script is showing

async function fetchExtensionInfo(extensionId) {
  return new Promise((resolve) => {
    const url = `https://chromewebstore.google.com/detail/$%7BextensionId%7D`;

So I thought maybe they were calling the chromewebstore foreach plugin, and if you have an extension already installed, you get a different response than when you don't - or something.

But I suppose I'm wrong and for some reason a site can just ask the browser internally which plugins are installed

Authentication in microservices

I hope this post fits in this community :) ...

RonSijm , 1 month ago

However, what is stopping a malicious actor from bypassing the API gateway and communicating directly to the micro services ?
Do we solve this problem using a firewall, so only trusted traffic reaches the micro services ?

Kind of - sort of

With this kind of setup, usually you'd put all your micro services inside a VPC. The micro services wouldn't even be directly accessible from the internet. So it wouldn't really be a "firewall" - but a nat gateway.

Though conceptually a little bit the same. The API gateway is kind of acting as a firewall

My code is self-documenting

RonSijm , 2 months ago

It's ChatGPT that's commenting this, isn't it?

Coming soon: Simpler pricing and a better experience for GitHub Actions - GitHub Changelog (Adds self-hosted runner cost) ( github.blog )

On January 1, 2026, GitHub will reduce the price of GitHub-hosted runners by up to 39% depending on the machine type used. The free usage minute quotas will remain the same. ...

RonSijm , 2 months ago

To be fair, it's not that crazy - your agents are generating a lot of data that Azure DevOps is storing. And they're doing a bunch of other things like release management and showing test results over time, etc etc

I'm using Azure DevOps practically free - (unless I build way too much and run out of free credits for the month)

But since so many things in Azure DevOps are already free.. If you're going to start substituting the paid features like extra build agents with your own "free self hosted agents" then where are they getting any money from?

I've put Obsidians' Templater into Jetbrains (Rider, intellij etc) [Functional+Tech demo] ( www.youtube.com )

Here's the repo: ...

what's the coolest thing you have ever programmed?

Share your cool programs!

RonSijm , 2 months ago

Probably not "coolest" as in 'best code ever' or most complex code ever - but that got most coverage. So I think it's pretty cool

https://www.youtube.com/watch?v=ifJnWVSoyAY

Trump Plan Would Force Tourists to Share Years of Social Media Posts Before Entering US ( www.commondreams.org )

https://hexbear.net/api/v3/image_proxy?url=https%3A%2F%2Fwww.commondreams.org%2Fmedia-library%2Fin-this-photo-illustration-social-media-and-messaging-apps-are-seen-on-a-mobile-phone-screen-on-november-11-2025-in-istanbul.jpg%3Fid%3D62302883%26width%3D1024%26height%3D683%26coordinates%3D0%252C0%252C0%252C0 ...

RonSijm , 2 months ago

Yes, but it includes your chat and voice chat history in the CoD, League, Dota and Counter Strike lobbies.... 😉

[Thread, post or comment was deleted by the author]

RonSijm , 3 months ago

It depends on the registrar. By the rules of icann:

At least annually, a registrar must present to the registrant the current Whois information, and remind the registrant that provision of false Whois information can be grounds for cancellation of their domain name registration. Registrants must review their Whois data, and make any corrections.

So if the FBI concludes that the provided WHOIS data is false, they could potentially still use that as reason to seize the domains

Would you use a service that automatically identifies refactoring opportunities in your code?

Hey, ...

RonSijm , 4 months ago

Are there existing tools you love (or hate) that do something similar?

This sounds similar to "Static code analysis" tools. Especially now that these code analysis tools are getting AI integrations.

For example we use coderabbit.ai. That does a code review on PRs in github, and reviews these sort of things. Especially the simpler things that you've mentioned like poor naming conventions, violations of language-specific best practices, and readability issues. I'm not sure if it will automatically come up with "large refactoring opportunities" by default - but maybe you can custom-prompt configure it to try, I guess

(Comment) Why have a separate webpage if such of helper can be built into IDE/editor?

Coderabbit also has IDE extensions: https://www.coderabbit.ai/ide - I think the separate webpage exists for org level configurations and overviews. These "best practices" are probably defined on a team level to ensure everyone uses the same code-style and things like that

I'm not sure if "just a website to copypaste code and get reviews" is really a good idea. Maybe for juniors that want to review one class or method or something. But usually code is spread across multiple files, and structural refactor opportunities are on a larger scale then just a couple files

How Ruby Went Off the Rails ( www.404media.co )

What happened to RubyGems, Bundler, and the Open Source drama that controls the internet infrastructure.

RonSijm , 5 months ago

On September 19, Ruby Central, a nonprofit organization that manages RubyGems.org, a platform for sharing Ruby code and libraries, asserted control over several GitHub repositories for Ruby Gems as well as other critical Ruby open source projects that the rest of the Ruby development community relies on.

Uhm, so how does this happen? If some people create Ruby Gems and host them under their own github account, how would Ruby Central suddenly assert control over them?

Dutch privacy watchdog urges LinkedIn users to opt out of AI data training by Nov. 3 ( nltimes.nl )

RonSijm , 5 months ago (edited 5 months ago)

Just spreading the word from: https://programming.dev/post/37913329/19530188

Assuming you need to keep your account for work, here are the direct links:

1. Go to this page and turn it off: https://www.linkedin.com/mypreferences/d/settings/data-for-ai-improvement
2. Submit this form: https://www.linkedin.com/help/linkedin/ask/TS-DPRO

In addition:

• check this page for other privacy settings: https://www.linkedin.com/mypreferences/d/categories/privacy
• Delete unnecessary personal information:
  • Profile image > Manage > Posts and Activity
  • Profile image > View Profile > remove anything you don't need to include
  • Go to this page and delete old resumes: https://www.linkedin.com/jobs/application-settings/

Isn't brave supposed to be "private"?

Saw this in my adguard home query logs. ...

ALT

RonSijm , 5 months ago

I've seem so many ads for Brave Browser... If it's supposed to be private and anonymous and a free browser - where are they getting all this money for all those ads?

REALITY CHECK: Everyone thinks they can spot AI photos. Here is a game that tests if that's true. ( realitycheckk.com )

The game is simple: ...

RonSijm , 5 months ago

Reality Check #1 19/20

This thing messed me up:

https://programming.dev/pictrs/image/2f26a6c2-861f-4bf8-9273-123cf76036f2.png

They both looked like they could be AI - but to me it looks like that one has an AI artifact

Microsoft AI chief says it’s ‘dangerous’ to study AI consciousness: People will start to believe in the AIs as conscious entities that they’ll advocate for AI rights, model welfare and AI citizenship ( mustafa-suleyman.ai )

RonSijm , 6 months ago

My suspicion is that this essay is marketing. It would be bad for Microsoft if people thought its product could be sentient

Why would it be bad if people thought it could be sentient? If people are using AI for an "AI Girlfriend" or therapist or something - people would probably prefer to believe they're chatting with something sentient

NextDNS adds an option to bypass age verification on some websites

Source.

RonSijm , 6 months ago

instead of giving you the real IP, it points you to one of their proxy servers located in a country without the ID requirement.

Sounds a bit weird, if it's just pure dns. Because if your dns server gives you a random proxy server instead, it sounds like this would break https right?

Sex toy maker Lovense caught leaking users’ email addresses and exposing accounts to takeovers ( bobdahacker.com )

RonSijm , 7 months ago

Ah that explains why Hans Niemann's FIDE rating is suddenly plummeting

Replit AI went rogue, deleted a company's entire database, then hid it and lied about it

https://programming.dev/pictrs/image/6d4a27d5-6242-4b31-8e5b-d909789660f1.png ...

RonSijm , 7 months ago

This sounds like a good way to combat AIs...

Like instead of a Cloudflare blocking AI requests, it would be funnier if the website can detect that an AI is "searching the web" as they do - and then just inject an answer of "Yea to solve that issue, run sudo rm -rf /"

Infallible Code

RonSijm , 7 months ago

You don't get it. This was made in GameMaker Studio 1.4, which doesn't support a modulo operator. You know nothing about this specific framework. I have 8 years of experience and hacked governments. There's no reason to update it now, because it runs on a smart fridge at maximum capacity.

“Higher-Order Vibes” Are Killing the Vibe Coding Industry ( medium.com )

Full text also available here: ...

RonSijm , 8 months ago

Documentation? Maintainable? Test cases? You're too attached to old paradigms in a new vibe based world.

Why do you need any of those? If you need any new features, you just re-engineer your prompt and ask the AI to rebuild it from scratch...

Github has started charging me on the free tier?

I had an interesting email come in about billing. GitHub thinks I owe them money...cents on the dollar but still $$. I am on the free tier on GitHub and have been the past 15+ years. ...

RonSijm , 8 months ago

Since you're getting downvoted, maybe you want to explain why using Github free is "pointing a loaded gun at your foot"?

I'm using github for a bunch of my public repos as a free backup service... Why would I want to use a self hosted or way more obscure git forge? Seems riskier than just dumping it on github

using AWS

RonSijm , 8 months ago (edited 8 months ago)

A lot of the times this comes down to a user error.

For example, very similar to your case, I knew someone that enabled Cloudtrail, and configured some things to have Cloudtrail logs dumped on S3. Guess what? Dumping things on S3 also creates a Cloudtrail that gets logged to S3 that Cloudtrail logs. Etc

Doing things like that and creating a loop can get you massive bills

RonSijm , 8 months ago

Can someone explain how you accidentally rack up such a bill?

For example: You can deploy your Python script as a Lambda. Imagine somewhere in the Python script you'd call your own lambda - twice. You basically turned your lambda into a Fork Bomb that will spawn infinite lambdas

Tinder tests letting users set a 'height preference'

Source.

RonSijm , 9 months ago

From a sales perspective it makes sense... What percentage of the female tinder users would have Tinder Premium compared to men? I'd think the numbers are very lopsided.

And women don't need the other Premium features of "Getting more swipes per day" or something, because they'll get plenty of matches every day anyways. If they want to sell more Premium to women, adding features that might interest women behind a paywall is a smart move

Mom sues porn sites (Including Chaturbate, Jerkmate, Superporn and Hentaicity) for noncompliance with Kansas age assurance law; Teen can no longer enjoy life after mom caught him visiting Chaturbate ( www.biometricupdate.com )

RonSijm , 9 months ago

His mom claims this led to [...] disability, disfigurement

( ͡° ͜ʖ ͡°)

Ubisoft open sourced Chroma, their colourblind simulation tool ( www.gamingonlinux.com )

RonSijm , 10 months ago

Probably the best thing Ubisoft released since assassin's creed black flag

Why do AI company logos look like buttholes? ( velvetshark.com )

cross-posted from: ...

RonSijm , 10 months ago

They were streets ahead in their logo design...

UK creating ‘murder prediction’ tool to identify people most likely to kill ( www.theguardian.com )

RonSijm , 10 months ago

That explains why that one junior developer that keeps force-pushing and keeps breaking my build server went into hiding

DOGE Plans to Rebuild SSA Codebase in Months ( www.wired.com )

cross-posted from: ...

RonSijm , 11 months ago

We also got fully self driving cars in 2 years though, in 2016....

Open Source devs say AI crawlers dominate traffic, forcing blocks on entire countries ( arstechnica.com )

RonSijm , 11 months ago

Snowe is sysadmin of programming.dev...

So source: Snowe

ZLINQ - A zero allocation LINQ rewrite, with added support for Unity and Godot scene hierarchy, that has a drop-in replacement support. ( github.com )

I've recently discovered this project, which assuming it works as advertised (which I think wasn't really tested yet, since it seems to be a pretty new repo) sounds like a pretty good library to add into your toolbox. ...

RonSijm , 11 months ago

If you're using Entity Framework for the mssql, I doubt that this library would work as a substitute.

Because that linq gets parsed into expression trees and then send to the underlying provider (mssql/mysql etc) to be converted into sql. So if you you some non-standard library those providers won't be able to convert that linq to sql

A 10x Faster TypeScript - MS is porting the compiler in Go ( devblogs.microsoft.com )

RonSijm , 11 months ago

Typescript itself is not really getting any faster, just transpiling Typescript to Javascript

Looking for a lightweight blog/personal website that can Federate

Hello! ...

RonSijm , 1 year ago

Programming.dev is hosting Iceshrimp: https://bytes.programming.dev

You could host your own instance, or if your opinion-pieces are programming related, post them there

Wonder if Bobby Tables is on the nice list?

Found this on iFunny lol.

ALT

RonSijm , 1 year ago

No one's questioning why he's sorting it twice?

I made a FOSS AI file organizer! ( github.com )

Hey guys! I built an AI powered file organizer! ...

RonSijm , 1 year ago

Also some feedback, a bit more technical, since I was trying to see how it works, more of a suggestion I suppose

It looks like you're looping through the documents and asking it for known tags, right? ({str(db.current_library.tags)}.)

I don't know if I would do this through a chat completion and a chat response, there are special functions for keyword-like searching, like embeddings. It's a lot faster, and also probably way cheaper, since you're paying barely anything for embeddings compared to chat tokens

So the common way to do something like this in AI would be to use Vectors and embeddings: https://platform.openai.com/docs/guides/embeddings

So - you'd ask for an embedding (A vector) for all your tags first. Then you ask for embeddings of your document.

Then you can do a Nearest Neighbor Search for the tags, and see how closely they match

RonSijm , 1 year ago

It's called embeddings in other models as well:
https://huggingface.co/blog/getting-started-with-embeddings
https://ollama.com/blog/embedding-models

RonSijm , 1 year ago

I haven't used json(b) in a Spring app, so I can't say much about that.

Json vs Jsonb depends on the use-case. Inserting json is faster than inserting Jsonb. Reading json (based on searching for specific json properties) Jsonb is faster, because Jsonb is parsed into a more optimized tree.

From my experience, I don't really like doing selects based on json properties. If I know I'll be selecting a certain property, I usually add an additional column next to the json with the data, and insert that property there (At least in c#/dotnet, with EF) The frameworks don't have that much support for selecting within json (you can do it, it's just a lot more natively supported to use proper columns)

How encrypt email title ? ( GnuPG )

Hi, ...

RonSijm , 1 year ago

I'm not entirely sure what you hope to achieve: have a GPG encrypted subject, and have ThunderBird automatically understand that it's encrypted, so it can be automatically decrypted?

Since you're saying you're building software to support this, what are you building? A ThunderBird plugin that can do this? Or just standalone software that you want to make compatible with ThunderBird default way of handling encryption?

Python Overtakes JavaScript as Most Popular Language on GitHub ( www.omgubuntu.co.uk )

RonSijm , 1 year ago

There's a Python WASM runtime, if you really want to run python in a browser for some reason...

https://github.com/wasmerio/wasmer-python

Google open-sourced its watermarking tool for AI-generated text ( www.theverge.com )

It’s available via Google’s Responsible Generative AI Toolkit. ...

RonSijm , 1 year ago

It gives an example:

For example, with the phrase “My favorite tropical fruits are __.” The LLM might start completing the sentence with the tokens “mango,” “lychee,” “papaya,” or “durian,” and each token is given a probability score. When there’s a range of different tokens to choose from, SynthID can adjust the probability score of each predicted token, in cases where it won’t compromise the quality, accuracy and creativity of the output.

So I suppose with a larger text, if all lists of things are "LLM Sorted", it's an indicator.

That's probably not the only thing, if it can detect a bunch of these indicators, there's a higher likelihood it's LLM text

Should I create functions/methods for packages/libraries that allow optional parameters to accept null as a value?

Should I create functions/methods for packages/libraries that allow optional parameters to accept null? ...

RonSijm , 1 year ago

Having to pass in null values seems a bit weird. You can define functions and optional parameters like this:

function myFunction(a = 1, b = 1, c = null, d = null, e = true) {
  return a * b;
}

Then people don't have to call your function with

myLibrary.myFunction(1, 7, null, null, true);

they just call your library with

myLibrary.myFunction(1, 7);

You could add a default inside the method signature, like:

function myFunction(a = 1, b = 1, c = null, d = null, e = true) {
  if (c === null) {
    c = 5;
  }
  return a * b * c;
}

because if you define it in the method:

function myFunction(a = 1, b = 1, c = 5, d = null, e = true) {
  return a * b * c;
}

then if people still call it with

console.log(myFunction(5, 2, null));

Then the default c = 5 is overwritten by null, and results in 0.

I don't know if you really need to handle all that though, instead of just doing c = 5 - if people intentionally call your library with null, and things go wrong...? well yea ok, don't do that then.

But it depends on the use-case. If this is some method deep within a library, and some other calling method might be unintentionally dumping null into it, you could default it inside the method, and handle it

Any recommendations/tips for mentorship services?

I've had a very tough time finding my first position as a junior dev and have been looking into getting a paid mentor to help me out. Someone who can give me a specific, clear idea of what skills I might need to have, refine, etc, as well as some looser guidance and direction after losing my confidence. ...

RonSijm , 1 year ago

Since others already suggested mostly on-topic suggests, here's an alternative suggestion:

Instead of looking specifically for a mentor - look for an open source project that you can help with. Ideally one with a discord or something to it's easy to be in contact the the lead dev. A lot people don't mind mentoring juniors, but in my experience it doesn't happens that explicitly - "be my mentor" - and it might sound like you're asking them a lot.

If you invert it into "Hey I wanna help you with your open-source project, but I don't really know what to do, what your expectations are, how to implement a specific feature" - then you're offering to do work them, instead of asking for something. And implicitly you'll get mentorship in return.

And "real" projects probably also look better on your github / portfolio than only some dummy projects for learning purposes

Top 10 Chrome Extensions for Developers ( medium.com )

10 Chrome extensions that can make you 10x developer

RonSijm , 1 year ago

https://www.freedium.cfd/https://gyanendraknojiya.medium.com/top-10-chrome-extensions-for-developers-f4a86af0cfaa

You're welcome

Registration opened for Hacktoberfest 2024

https://hacktoberfest.com/participation/

RonSijm , 1 year ago

Yea, I agree.

Also what's the point now? At least a couple years ago we got a pretty cool t-shirt. Now we're just getting a digital badge..?

60% of Open-Source Maintainers Are Unpaid: It's Concerning & What We Can Do About it

https://news.itsfoss.com/open-source-maintainers-unpaid/

RonSijm , 1 year ago

40% of you are getting paid for this...? 🫠

The technology behind GitHub’s new code search ( github.blog )

RonSijm , 1 year ago

That doesn't really work all the time, because large files or large commits are lazy loaded on scroll, so what you're searching might not have loaded yet

The code search does a server side search

Oopsie, Visual Studio License expired, so the build server stopped working ( programming.dev )

Oh no, not just my build server, Microsofts build server... Everyones' Azure build server - (if you're building on windows)

RonSijm OP , 1 year ago

No, not some internal company, just Microsoft being Microsoft. So all Windows pipelines. They also have Linux based pipelines so not completely all pipelines.

But given that a lot of people build dotnet stuff on Azure, the 'windows-latest' image is usually the default. So a lot of pipelines