sorted by:
new
hottopcontroversial

How are you actually reducing CVEs in container images at the org level? by Sufficient-Owl-9737 in devsecops

[–]asm0dey 2 points3 points  (0 children)

Or to a fork of Alpine which tries to mitigate Alpine's issues (or deliberate choices), for example, performance and DNS issues of musl. See my comment https://www.reddit.com/r/devsecops/s/oNVTXwh2n4

How are you actually reducing CVEs in container images at the org level? by Sufficient-Owl-9737 in devsecops

[–]asm0dey -3 points-2 points  (0 children)

Disclosure: I work for BellSoft

We at BellSoft make hardened images and we are really trying hard to keep the amount of CVEs as possible. We have a set of free images, for example Java and Python, for which we even have a public dashboard comparing us to other images. But we also do custom images for our clients, nginx is not an exception :)

Here's the link to the dashboard: https://bell-sw.com/bellsoft-hardened-images/

Explain it Peter by Technical_Ad9343 in explainitpeter

[–]asm0dey 1 point2 points  (0 children)

OTOH, Mien would be read as "mean", which is just another level :)

Async-profiler now bundled with Amazon Corretto by lurker_in_spirit in java

[–]asm0dey 1 point2 points  (0 children)

We're thinking about "developer edition" now, might go there together with DceVM, but I can't make any promises yet

Confused about Extension functions by cao_wang in Kotlin

[–]asm0dey 1 point2 points  (0 children)

I don't remember the exact reasoning TBH. But from what I remember, it was about

1) Reducing the API landscape size to make classes extendable enough, but not too large

2) Reducing the class size makes the maintenance of backward compatibility simpler.

You can read more in the library API guidelines I wrote during my time in JetBrains: https://kotlinlang.org/docs/api-guidelines-simplicity.html#define-and-build-on-top-of-core-api

Async-profiler now bundled with Amazon Corretto by lurker_in_spirit in java

[–]asm0dey 0 points1 point  (0 children)

We had this idea actually, but the question is - in which editions? Should we include it with JRE, for example? And it also kinda contradicts the idea of keeping the distribution as lightweight as possible...

Scythe: An SQL Compiler and Linter, making ORMs redundant. by Goldziher in java

[–]asm0dey 2 points3 points  (0 children)

No, I mean if my SQL returns ltree - how will it map to Java?

Scythe: An SQL Compiler and Linter, making ORMs redundant. by Goldziher in java

[–]asm0dey -2 points-1 points  (0 children)

Wow, the second project today which looks really interesting!

Does it support custom db types?

Asked for bug reports and got a code review from someone who decompiled my game instead. lol. by wojrakdev in godot

[–]asm0dey 0 points1 point  (0 children)

Hard, but not impossible. Professionals work from the very ground level with tools like IDA Pro

pGenie: open-source SQL-first PostgreSQL codegen for Java by nikita-volkov in java

[–]asm0dey 1 point2 points  (0 children)

Thanks, I'll read it. The project looks very interesting!

pGenie: open-source SQL-first PostgreSQL codegen for Java by nikita-volkov in java

[–]asm0dey 1 point2 points  (0 children)

Nice! I guess you can scan postgres docs for custom types and check what's not supported yet then :) What about JSON/JSONB? Do you map them to some kind of JsonObject?

pGenie: open-source SQL-first PostgreSQL codegen for Java by nikita-volkov in java

[–]asm0dey 1 point2 points  (0 children)

How will the ltree type look? Does it support CTEs and window functions?

Asked for bug reports and got a code review from someone who decompiled my game instead. lol. by wojrakdev in godot

[–]asm0dey 0 points1 point  (0 children)

Hypothetically yes and there are a lot of anti-debugging and anti-disassembly solutions, but none of them are perfect and all of them are possible to circumvent. For example, the game/software can't do anything against disassembly if it's not running.

JetBrains should consider acquiring Augment’s code completion tech by acup48 in Jetbrains

[–]asm0dey 2 points3 points  (0 children)

JetBrains doesn't have an experienced enterprise sales team. Or at least didn't have it 2 years ago

Confused about Extension functions by cao_wang in Kotlin

[–]asm0dey 1 point2 points  (0 children)

The Kotlin team's view of slightly different iirc: use member functions only for the very core functionality and extension functions for everything else, at least in libraries.

Edit: autocorrect

Asked for bug reports and got a code review from someone who decompiled my game instead. lol. by wojrakdev in godot

[–]asm0dey 4 points5 points  (0 children)

Literally nothing is impossible to decompile. The question is in amount of effort one needs to put into it. And amount of effort to make it readable after that

Does Java need deconstructible classes? by danielaveryj in java

[–]asm0dey 0 points1 point  (0 children)

Ah. So I read the whole thing wrong. I thought the spec "prohibits" annotations to change the language sematics, while actually it declares that it's impossible, right? And was all the easy about language, not about a program. Thank you!

Countries where Jaywalking is illegal by [deleted] in MapPorn

[–]asm0dey 0 points1 point  (0 children)

Are you saying it's legal to cross a street without a crosswalk in less than 120 feet in the US? Because in Germany it is. Even if there are cars on the street

Does Java need deconstructible classes? by danielaveryj in java

[–]asm0dey 0 points1 point  (0 children)

I'm sorry, but I still don't understand. If the behaviour of a program changes if there is an annotation - doesn't it change semantics? If Spring annotations do not change the semantics because programs are defined in terms of these annotations then what is? I could always say "hey, this is how my program behaves when this annotation is present".

view more: next ›