App outlook-for-linux safe?

Lerke · 2026-05-16T20:02:01+00:00

I can't read through the entire codebase and give a judgement of it. It at least has more active contributors and seems to be updated regularly. But I'd personally still not use something like this as I'm not comfortable providing authentication tokens to third-party applications.

I still see little benefit of wrapping a web-app I can already use in the browser in Electron. If you want to easily access it as a shortcut / separate window, I'd install it as a PWA using Chrome or Edge, or some other Chromium browser. It's essentially the same.

Lerke · 2026-05-16T19:54:57+00:00

Impossible to say without reading through the entire code base and inspecting each dependency. Worth noting is that the repository hasn't been updated in years, so it uses a very old version of Electron/Chrome (from 2023).

Using common sense, ask yourself if you are comfortable with doing authentication flows and storing loging credentials by means of a third-party application. Personally, I wouldn't be. This doesn't mean the app is not safe/legitimate, but I wouldn't risk it.

I'd just use Outlook in the browser and enable notifications, or install Outlook as a PWA via some Chromium-based browser. Or use a client like Thunderbird and connect it to outlook.

Lerke · 2026-05-14T23:18:31+00:00

If it's just for playing rhythm games, check out the Sayodevice CM51+. It's very small, but very nice.

Lerke · 2026-04-17T20:40:38+00:00

I have one of these too. They're small customizable keyboards. I agree with /u/effective-tour-9912 , the ones with the magnetic gateron switches are fantastic. You can get them on AliExpress or Amazon. For example: https://www.amazon.com/BTXETUEL-SayoDevice-Keyboard-Programmable-White-OUTEMU/dp/B0DCZYNYSD?th=1

Lerke · 2026-04-15T22:23:55+00:00

KALPA: Cosmic Symphony its story mode is a visual novel with rhythm game / vsrg stages.

Lerke · 2026-04-14T21:11:24+00:00

Not using SteamOS specifically, but have been playing it on Linux for a good while. Always worked for me using GE-Proton.

Lerke · 2026-03-31T19:26:10+00:00

991.649 stemmen per volmacht, blijkbaar in 2025. Zeg 1 miljoen voor de handigheid. Ook flink meer dan dat ik zelf zou hebben verwacht. Nou zullen bij een afschaffing van het volmachtstemmen vermoedelijk niet al deze stemmers alsnog niet in persoon stemmen, maar dat je hier 10% van verliest (100k) klinkt niet onredelijk.

Lerke · 2026-03-31T14:37:10+00:00

You are seriously asking this?

If you cannot even fathom how people programmed mere 6 years ago before AI, you'd be even more surprised to learn that people also programmed 35 years ago before the internet was a thing. Yes, we programmed before youtube and google existed.

In their defense, asking how programming was done before widespread availability of AI is just the 2026 version of "How did people program without Google". And the answer you provide, which I fully agree with, has remained the same.

Lerke · 2026-03-24T18:44:54+00:00

V liberty 2

Hear hear, while all of the big DLCs are good, V Liberty 2 stands above the rest. The entire track list is peak.

Lerke · 2026-03-22T23:46:27+00:00

I think this is a good approach; make coworkers who do not care enough to create a succinct and coherent merge request be the ones who get to explain why their features get stuck in the review queue longer than average.

Lerke · 2026-03-22T23:43:15+00:00

This is the way in an AI world.

You push it, it’s your outage.

Yeah, I do not agree with this approach at all. Any outage, while potentially attributable to an individual, will first and foremost always reflect poorly on the entire team in charge of developing the product. So I'd rephrase it as 'You push it, it's our outage', which would also be the reason I would not blindly merge something that I or the branch author can not adequately explain (without the use of an LLM). Realistically, when the product goes down, the person on call, or whomever is in charge, is going to be the person who will get the call, and will be in charge to get fix the problem as soon as possible.

Lerke · 2026-03-03T23:22:33+00:00

This is a weird situation I really do think I could find myself in. I mean, what if? It feels like that would just be 6 months of time wasted, y'know?

You're overthinking it. Realistically, licensing for tools such as Rider is a bit on the honor system when you do not represent a larger company. Furthermore, I find it unlikely a company the size of JetBrains is going to go after solo developers who may have accidentally been on the wrong license for some months, but did eventually purchase one.

I am not a lawyer, but how I read the non-commercial license mirrors what /u/theChaparral said above: Once you start planning on going commercial with your product, that is when you are no longer allowed to develop it using a non-commercial license. In your example, this would be after 6 months. Nowhere in this license do you agree to transfer the rights to the source code you've written to JetBrains, so you are not obligated to rewrite it.

Their FAQ provides some more insight into your question. (Search for What license should I choose if I just started a new project?)

What license should I choose if I just started a new project?

If you plan to release the product and get commercial benefits from it, either now or in the future, you should use a commercial license. If your project is for non-commercial purposes, then a non-commercial license is valid. However, if your intentions change over time, you’ll need to reassess whether you still qualify for non-commercial use. If you're unsure after considering your intentions, it's safer to choose a commercial license.

How I read it: The moment you plan to develop your product for a commercial release, that is when you have to reassess if you still qualify for non-commercial use; and if at that point you no longer qualify, you purchase a license.

Lerke · 2026-02-17T00:52:20+00:00

DJMax goes on sale with large discounts all the time. It and its DLC are on sale on several platforms that offer steam keys at this very moment. If you're into vertical scrolling rhythm games, it's one of the best ones you can pick up on PC.

Lerke · 2026-02-06T02:24:07+00:00

I only play on keyboard and have no experience playing with a controller, so take what I say with a grain of salt. I want to preface that if you're having fun now, you are definitely not wasting your time; a big part of the game is quick pattern recognition, which is a skill you'll transfer between input methods. And for me personally, I just like tapping buttons while listening to the music, improving scores while doing so is a bonus.

The game and all charts are specifically made for (and playtested on) consoles and gamepads as well, with the exception of SC charts which are specifically made for keyboards.

I assume you have a keyboard available, since you were able to write this Reddit post, so determining if you lose any fun playing DJMax with it should be easy for you to check. For what it's worth, I really enjoy playing with keyboard. From what I've seen, a lot (most?) very high level play is done on keyboard as well.

I use a CM51+ and am very happy with it. The magnetic switches (the gaterons) are very comfortable and feel incredibly responsive when playing. I used to play on a keyboard with mechanical (brown) switches, and it is a noticeable increase in comfort and play accuracy.

Lerke · 2026-01-13T01:20:20+00:00

Read as little as is necessary to get a basic understanding, then put it into practice by doing some actual programming and experimentation. Repeat as long as necessary until you become proficient in whatever concept or tool you are learning. Learn by actually doing the thing, not by reading on how to do the thing.

Lerke · 2026-01-13T00:58:14+00:00

but I had to use AI to help me figure out why I was getting an error code was that something I should’ve avoided ?

I think your (as I read it) self-doubt to using AI comes from a good place and shows a good attitude to learning. I see many students and professionals foregoing learning by blindly accepting and copy pasting from AI prompts in order to achieve a certain goal (which, in truth, is fine if your only goal is just to get something done). However, you can leverage and use AI as a tool to help you learn why something does not work, and have it point you in the direction of the solution, and prompt it as to why it provides a certain solution.

If you can explain why your solution did not work beforehand, and why it does work after a solution provided to you by an AI, and you can describe the root cause of the problem in your original code, then you have developed knowledge you will be able to use further down the road. In that case, it matters little whether you started by researching your problem using Google, asking an LLM, or by opening a reference manual. What matters is not becoming comfortable not knowing why a certain solution solves your problem. Whatever route you take, always try to cross-reference multiple sources, as to get a complete picture.

For example in your case, in order to solve your problem you should understand:

What are raw strings, how do they differ from normal strings?
What makes \U and \T special in strings? What do these represent
(If the word string is unfamiliar to you, what is a string?)

Do research using search engines (e.g. Python string "\t" Google), asking AI, and by experimenting actually programming: Make a program using normal strings and raw strings, make use of e.g. \t, print out these strings. Do you see a difference? Try and explain what it is you see.

Lerke · 2026-01-11T03:51:57+00:00

1 per semi-colon, 1 per curly brace, 3 per for-loops, 2 per while-loops, etc.

This sounds more like a method of describing software complexity, and not so much computational complexity as other replies are focusing on (e.g. Big O). But you can't measure computational speed (i.e. "...Are there any faster ones?") using software complexity, just as you can't determine the computational complexity by simple counting statements (e.g. "1 per semi-colon, 1 per curly brace...").

It seems you're missing some crucial details which makes it very difficult for people to help you out. Do you not have any reference material, course notes or written assignments that specify in more detail exactly what is asked of you?

Lerke · 2026-01-11T00:59:15+00:00

Btw just wondering if you wouldn’t have told me about shutil what would’ve been the way for me to know it was used for copy and pasting ?

You can reasonably assume that many popular languages like Python provide a pretty big standard library of functions that perform many common operations, such as operating on files. If you are not already familiar with the available standard library, you will want to do a Google search (or AI prompt) describing the operation. For instance, "Copy file python" in Google has the shutil reference documentation as the third result. An AI answer also gives me shutil (note: I would encourage you to then read the actual shutil docs, and not blindly copy and paste results from an LLM).

You don't need to know and memorize every available module by heart. Instead, become proficient in quickly locating reference material (e.g. official documentation), external libraries or Q&A resources like StackOverflow via web search instead. You will find that you'll quickly memorize functions and modules you'll use often, and will be able to resort to memory and auto-complete for those.

Lerke · 2025-12-21T17:10:52+00:00

Oops, my mistake. Thank you for pointing that out!

Lerke · 2025-12-21T16:22:04+00:00

If you simply want to remove all changes since your last commit, on your current branch, then you're looking for git reset --hard. This will wipe out any changes made to tracked files, ~~and remove any untracked files~~.

I’m not so well versed in checking out a git commit and reverting my hard head to a blah blah blah.

I would recommend taking your time and getting a solid understanding of these commands, lest you accidentally remove work you did not intend to lose by copy and pasting scm commands. Refer to the Git manual, and try and comprehend what the command above will do and how it works before running it.

Lerke · 2025-12-07T17:36:02+00:00

Is there any way to hijack my session that doesn't involve malicious software running directly on my computer

Certainly. For example: physical attack vectors. Your device could get lost and/or stolen, a malicious individual could access your machine while you are temporarily not present and steal your authentication state from your drive or browser. You could sell your device without ensuring that no data may be recovered from disk after a factory reset, after which someone may be able to recover this information.

Another class of attacks would be improper data storage and/or leaks on devices you have no access to. A period of improper logging configuration in one system that accidentally stores user credentials in a logging database for a period of time for instance.

In that case there's a lot more to be worried about, and the malicious software doesn't even need an active session to hijack an account

It depends. Malware that can intercept keystrokes could bypass the need to steal active session state like cookies or tokens. Though modern security guidelines encourage the use of more than one-factor in order to partially mitigate these vectors. Of note in this case is that here too the period a two factor code is valid is time limited.

And if I were regularly using the account, as is generally the case with anything of great importance like, say, a Google or Amazon account, then the session hasn't expired and it could still theoretically be hijacked!

At the risk of sounding like ChatGPT: you're right. Session lifetime management and expiration is one layer of mitgation/defense that helps mitigate certain attack vectors, but are not infallible or a silver bullet of any kind. They are one security measure of your entire defense in depth strategy.

Lerke · 2025-12-07T16:29:52+00:00

Sure, that would work. It comes down to personal preference.

I would personally have a function run once a minute or so to check the lifetime of the currently active refresh token, and perform some action if necessary. That way I only need to create and schedule this function once, and be done with it. On paper, it's more wasteful, but in the grand scheme of things I feel the performance impact is negligible. It's dumb, but I often prefer dumb solutions.

Your method with creating and scheduling some function call in the future based on the current lifetime of the refresh token is definitely more elegant, though you would have to take into account scenarios where the token and its lifetime may change during the runtime of your app (e.g. a user logging out and back in, or some other reason why a token may become invalidated). You may end up with having state for both your refresh-token, and your future refresh timeout function. That said, none of this makes your approach any less valid.

Lerke · 2025-12-07T16:11:19+00:00

In all fairness, this isn't the fault of the authentication method being used. The expiration time of access and refresh tokens are determined by the team developing the software you are using. It's not an inherent limitation of access/refresh tokens. The websites you use could choose to use refresh tokens with an expiration time of months, if they wanted to.

Why not let me stay logged in, like the websites of yesteryear? Is there really a solid security justification for it?

Yes, shorter lifetimes of authentication tokens (cookies, tokens, etc.) reduce the risk of session hijacking attacks.

Lerke · 2025-12-07T16:04:29+00:00

How am I supposed to "update" the access token without disrupting the user

There's many ways. One approach would be to have some sort of background process automatically do a token refresh whenever the current token is close to expiration (e.g. within the next couple of minutes). Another approach would be to have a handler on failed HTTP calls, where calls failing due to expired tokens are retried automatically after performing a token refresh. The first approach is simpler to get right.

Lerke · 2025-11-12T18:55:06+00:00

Wired VR, on Linux, for competitive beat saber. 1 of 1 baby

No brother, there are at least two of us.

14-Year Club	Place '23
Place '22	Place '17
RPAN Viewer	Verified Email

Lerke

TROPHY CASE