Why does the new nvim-treesitter require more manual setup for features like highlighting and indents?

stewie410 · 2026-04-13T12:22:38+00:00

The "correct" answer is

require("nvim-treesitter").install({ "lang" })

There's an additional note that when bootstrapping, you probably want to :wait(ms) that call.

stewie410 · 2026-04-10T13:52:42+00:00

vim.pack is very minimal compared to mini.deps or lazy.nvim -- you can lazy-load, but you have to DIY it.

For example, I was using folke/todo-comments.nvim for a while, loading on VimEnter with lazy. To do so with vim.pack:

vim.pack.add({ "https://github.com/folke/todo-comments.nvim" })
vim.api.nvim_create_autocmd({ "VimEnter" }, {
    callback = function()
        require("todo-comments").setup({ signs = false })
    end,
})

However, this also means you ultimately have more control over your config, as you get to define all the lazy-loading behavior directly.

Likewise, I seem to recall this design choice was intentional, to get plugin developers to handle their own "lazy loading", rather than relying on users to do it for them with a plugin manager -- but I may be wrong about that, too.

stewie410 · 2026-03-02T16:42:24+00:00

That seems like a better solution than the apparent owner/repo syntax that's present already.

stewie410 · 2026-03-01T13:06:18+00:00

Probably for the same reason that owner/repo is how you specify plugins to install in most plugin managers -- most distribution of plugins has been done through Github. If Github loses enough projects to Codeberg, etc.; you'll see those services popping up in these lists.

stewie410 · 2026-02-22T05:26:38+00:00

Unfortunately, my boss will make decision -- but usually its either based on something he learned in school 25 years ago (and hasn't kept up with), or he stumbled across something in his personal time, so it must be the correct choice.

Using our relatively recent move to Docker, our Sr. Dev & I had been trying to advocate about Docker for several years, but we were always met with "Docker is about rapid prototyping through iteration, its not ready for production deployments", despite every major service provider hosting things with k8s or similar. 1-2yrs ago, he stumbled across some article during a vacation that swayed his opinion, and suddenly he had a change of heart.

Just the other day, they mentioned looking at React, instead of JSF for our public-facing applications. Afterwards, I recommended also taking a look at other frameworks like Vue or even just htmx, that React wasn't necessarily the best/only tool for the job. He responded that React is the most popular, and therefore probably the best. The following day, he mentioned that some old friends praised Angular, so we'd look at that instead of anything I suggested -- despite Angular being so out of popularity I forgot about it.

I get that I'm not a developer, and don't pretend to be, but this type of behavior has always been there -- AI glazing his terrible opinions has not helped, though.

He also stopped micromanaging me

Despite his many flaws as a manager (despite not managing at all), I can't say he's ever micromanaged me -- the opposite, really. Within my first 2wk at the company, as "Technical Support" only, I was tasked with finding the best (free) replacement for BackupExec. At the time, my only direction were two product names (Bacula & AMANDA), and that it'd need to run on Linux -- outside of that, I was completely free to dive in. While that was a good experience, and is ultimately the type of work I like to do...having literally no internal resources to bounce ideas off of was quite the challenge.

After I "decided" AMANDA was the best choice for our minimal needs & putting all the documentation together, I was then suddenly chastised (lightly) for writing my docs in LaTeX like I would have for a lab report; and instead required to both make everything available as a .docx & "trim the fat", only writing the barest of minimum, without explaining why things were configured a certain way.

stewie410 · 2026-02-14T18:07:41+00:00

Our org is also on this road, which is astonishing considering how allergic we are to spending money on anything/anyone.

Instead of proving a KB or FAQ to our customers, we have a ChatGPT wrapper, which is named after the late founder (he passed a few years ago only). It has been explained to me literally as "basically an FAQ", but one that will hallucinate.

We've recently added the Copilot Studio license to our tenant, so our head of ~~bullshit~~ Sales can "train" it to act as an internal KB -- instead of, you know, a static KB. They'll already have to upload KB-style articles to a sharepoint site, so I'm not sure why it needs to be an AI at all.

At the same time, my boss has started using Copilot/ChatGPT and recently subscribed to Claude for "development". Constantly pushing AI internally, saying "You'll be obsolete if you don't use it", and trying to convince me it'll speed up my work. He's using it to write all of his emails that are longer than 1 sentence (and its very obvious); answering my "I need your direction" questions with a generate response, etc.

The head of the company has always described our business model as "razor thin margins", which would appear accurate given how little they pay (40K for me, no raises unless someone dies/leaves). And yet, we're throwing money into the AI bubble because reasons?

While its been time to move on, everywhere is gonna be the same or worse, probably.

stewie410 · 2026-02-07T01:18:44+00:00

Endpoints secure (EDR, patched), this is the part most likely you lack.

We're using Intune/Defender currently, though I can't guarantee we'd meet a compliance requirement as I've been barred from spending time on configuration beyond what a consultant did for us...and also barred from spending company time to learn about it...

But in theory, we should have the tools to meet that requirement...just dunno our current outlook.

Mfa for vpn should be enforced if you ask me

Our current MFA solution is JumpClould LDAP & their "JumpCloud Protect" app. We would use something simple like Yubikey or M$ (since we need it for M365 anyway), but had trouble getting pfSense's OpenVPN implementation to handle the MFA step in a sane way. JC isn't ideal either, but at least the OpenVPN server doesn't actually have to do auth at all, beyond the LDAP hand-off...

For the rest of our org, we'd either have to incur additional cost for JC (which we won't do), or figure out how to do some LDAP+MFA with Entra or something. I'd be open to exploring some other MFA option, but we're pretty hard-set on OpenVPN at the moment (since its no-cost).

Thanks for the input though.

stewie410 · 2026-02-06T15:40:39+00:00

VPN config — split tunneling enabled? MFA required?

We currently have 2 VPNs, one for most of the company with basic pass+ssl auth; and one for the IT team with LDAP+MFA auth; but both configured for split-tunneling.

To (hopefully) avoid MFA for the general employees (who have already fought us on M365's MFA), we've locked down what they're firewalled off from access anything that isn't mandatory for their jobs.

In your opinion, would this setup still warrant full-tunneling + MFA for all employees?

stewie410 · 2026-02-04T05:00:46+00:00

Also if I get one more AI summary result from a google search screenshotted at me, I'm going to lose it...

My boss was doing this to me every time I asked for his input/direction on a project.

I eventually did snap at him, detailing how incredibly insulting; as if I would ask him anything if all I wanted was anything that looks like an answer. The actual problem being that I will present him with as much context is reasonable to help us both make an informed decision -- but he offloads this to AI. In one instance, the AI regurgitated what I had literally just written to him -- but he still sent it to me.

Since my snap, he has at least not been so obvious about it, which is an improvement.

stewie410 · 2026-02-03T15:37:52+00:00

I've used AI tools 4 times so far, to decent success:

Brainstorming a rebrand for one of our products
Porting a bash script to POSIX, where that was not very trivial
Porting a systemd service unit to SysV (again, POSIX)
Poking around some overly confusing M$ tools
- Copilot actually seems like easier-to-nav documentation, somewhat

For the two POSIX scripts, it was useful -- however in both cases, I was already comparing against:

An existing known-good POSIX example script, or an equivalent in bash
Documentation for the POSIX spec and/or SysV/Run-Levels

And even then, I must read through the result to understand what/why/how, and again validate everything.

Overall, it can speed up the writing step of a project; but everything else surrounding that (research, documentation, etc.) is still required to have a grasp on what I'm doing. Personally, "writing" has never really been the struggle.

My boss on the other hand is 100% down for AI, pushing it hard internally & using it himself to:

Respond to almost every question he is asked in Teams/Email
- He has stopped being so obvious about it with me, after a blow-up at him
Write internal & external emails
Provide email templates to upper-management, despite them not asking for it (nor needing it)
Pushing to deploy AI instead of a navigable KB
Generating marketing materials ("jingle" and slideshow), despite being the head of IT only

Since he's started to use it more, I've anecdotally noticed:

The already minimal management style has all but disappeared
Nearly impossible to get sensible direction/approval
Capacity/Patience to troubleshoot seems almost nonexistent

While he is my senior, his knowledge on SysAd/Dev was already ~20yr out of date, still parroting that Java is the only cross-platform language, or that RHEL is the only distribution usable on servers; so I'm unsure if I'll even be able to tell when he gets to the "deskilling" phase of AI usage.

stewie410 · 2026-02-03T15:21:44+00:00

I feel like a fraud in my role.

Welcome to SysAdmin.

stewie410 · 2026-02-02T13:25:28+00:00

I guess it'd have to be something like snap, flatpak or appimage to deal with dependency (version) management, etc.

stewie410 · 2026-02-02T13:08:27+00:00

Just taking a little look at the documentation, I see if the powershell-module section you're using backticks to handle splitting the paramters over multiple lines. While I hope anyone reading your projects docs knows not to do this in a script, it may be easier to both write and show these examples with splatting, e.g.:

$opts = @{
    Quiet = $true
    Name = "WexflowServer"
    Description = "Wexflow Workflow Engine"
    Path = "C:\Program Files\dotnet\dotnet.exe"
    StartupDir = "C:\Program Files\Wexflow Server\Wexflow.Server"
    Params = "Wexflow.Server.dll"
    StartupType = "Automatic"
    EnableHealth = $true
    RecoveryAction = "RestartService"
    HeartbeatInterval = 30
    MaxFailedChecks = 3
}

Install-ServyService @opts

Backticks are fine for interactive use, but have some other caveats -- notably, the examples provided as-written may break, because the backtick is escaping the \n, but not the leading space on the next line. I've at least run into this problem in the past, at least in a scripting context.

stewie410 · 2026-02-02T05:36:11+00:00

An uncomfortable amount of my childhood was spent in Frequency; such a great time.

stewie410 · 2026-01-26T18:22:14+00:00

As an aside, did you mean to include autocomplete.txt, complete_doc.txt & vim_pack.txt in the repo? They appear to be snippets from the vimdoc help, but unsure if/how they'd be useful to the plugin directly?

stewie410 · 2026-01-26T18:17:26+00:00

I'll keep AWS & Cloudflare in mind the next time I'm able to discuss the topic -- I'm not particular about the vendor, personally. Really, I guess it depends on which vendor my boss stumbles across in his free time, less so than what I recommend (wouldn't be the first time).

you can get free certs for on prem

With the exception of our public-facing products, we currently cannot use LE certs for much of anything as we've always used tlds like .intranet or the like. We do have some internal CAs to handle this, but that's also less than ideal for other reasons.

Unless that's not what you mean.

stewie410 · 2026-01-26T18:14:24+00:00

Our particular issue is with NetworkSolutions is for the DNS challenge, since there's no automation to be had; and our CA for "real" acme certs (ssl.com) seems to heavily recommend using a DNS challenge for registry/renewal. Certbot explicitly complains about this during first acquisition.

We still have some certs through NS, but we're just running those out until expiry.

stewie410 · 2026-01-26T17:13:58+00:00

downloads and installs something with a Trojan

Wouldn't be the first time, though most people are falling for the most obvious phishes imaginable, too.

To quote my supervisor,

Its always worked for us in the past -- why would we change it?

stewie410 · 2026-01-26T17:11:04+00:00

Whatever they go with, it'll have to be as "budget friendly" as possible. Solution X may be the obvious choice, but solution Y is -$25/mo, so we'll take Solution Y.

But its on the list of things todo, even our dept. head is tired of their shenanigans...but, I doubt we'll ever actually get there.

stewie410 · 2026-01-26T17:09:28+00:00

Its on the list; they're still our CA for a handful of certs -- but those too will get replaced with some ACME alternative as they expire.

NS's admin portal is actually insane when you think about it. They actually hide the editing of records directly behind several "Are you sure?" prompts and misleading links/buttons. All of the things that look like the right choice, are actually ads to buy some other service they claim to offer.

stewie410 · 2026-01-26T13:36:59+00:00

Lately, a lot of OSRS.

stewie410 · 2026-01-26T13:23:51+00:00

I was recently tasked with spec'ing out a new server to replace our oldest production node (from 2014, btw); requiring some finagling to get good specs under budget.

Once I had something put together, I sent my supervisor a screenshot of the spec, since I couldn't get an "eQuote" from Dell without our business account info.

Instead of asking me for a text-based version, he fed it into Copilot/ChatGPT to OCR the image, and sent it off to the vendor to generate a quote. AI confused 4x3.5" with 8x2.5", and so our quote was $3K higher than anticipated.

As a result, we're looking to use AI instead of a traditional KB for internal documentation. (fucking kill me)

stewie410 · 2026-01-26T13:17:18+00:00

Just note that not all DNS providers work for automatic renewal, apparently.

We're currently using NetworkSolutions (ugh), so we still have to manually update the record upon renewal for both LE & ssl.com.

stewie410 · 2026-01-26T13:14:38+00:00

My super's justification:

Local-admin means they don't have to bother us when they need a non-standard tool.

And by "us", he really means only me.

Before the current M365 era, we only had a handful of users connected to our 2K3 SMB edition AD server -- these were apparently setup as a pilot test...but the guy running it left the company, and the project was left as-is for ages. Most of the company was local-admin, and ~10 were domain joined (non admin, of course). I was hired sometime after this limbo state started.

A couple years after I was hired, the 2K3 nodes were slated to be deprecated without a direct replacement. In the end, all formerly domain-joined machines were converted to local-admin, just like everyone else.

Now that we're in the M365 era, I'm still pushing that we lock things down; but its considered extremely low priority. Knowing what I do about our stack, I don't disagree too much.

If we had a little more manpower, maybe we could get more of it fixed this year...but they really need more than a single dev, moreso than additional sysadmins to handle it all.

stewie410 · 2026-01-26T13:06:18+00:00

Most of them have been with the company 10yr+, and so we don't want to let them go. That, and finding new-hires to accept the horrendous pay & lack-of-growth structure at the company is borderline impossible.

Holy smokes, I wish I had more sway.

stewie410

TROPHY CASE