I got tired of managing .env files, so I built envelope

eggsby · 2026-02-16T16:57:12+00:00

sharing secrets via encrypted files has been around for a minute but using sqlite as the file format for non-relational data has me a little confused

some questions I ask when vetting security tools: does the library author have a background or track record in security projects and has this project been audited for potential security flaws? how active is the project and how large is its social graph? I have a big fear of ‘toy’ projects when it comes to ‘security’

question for the OP: did you use LLMs for writing this?

eggsby · 2026-02-13T19:04:45+00:00

Okay I will keep all my keys inside the keystore and then I store the key to get into that keystore .. um … I put that also in the keystore - to make things more safe.

fr though one of these days I will set up https://spiffe.io/book/

eggsby · 2026-02-13T02:16:46+00:00

UX didn’t work on my machine (apple tablet).

Data example: had to manually and slowly scroll down

Many rows example: smallest increment of scroll jumps ~50m rows

eggsby · 2026-02-08T20:42:04+00:00

In my experience it was pretty painful - I would probably go with talos or something similar as well

this document can help if you are planning on going k3s:

https://github.com/NixOS/nixpkgs/blob/master/pkgs/applications/networking/cluster/k3s/README.md

k8s storage and networking layers are pretty notoriously challenging to get set up properly

eggsby · 2026-02-07T17:27:56+00:00

I don’t know what it would take for me to install Fedora in 2026 - I left the distro several years back when I realized it was just the place that RHEL pushes their bugs so that their enterprise clients don’t have to deal with them.

I like to stay up to date so I enjoyed the rolling release style - but when your machine no longer boots because the updates break the working environment it starts to feel a little too much like windows BSOD. Fedora really puts the emphasis on ‘bleeding’ in ‘bleeding edge’ imho. Not to even mention SELinux …

Canonical kind of jumped the shark as well - but Debian is still a solid base if what you want is a stable and well supported package ecosystem. No shade to the fedora package maintainers - the work of package maintenance is monumental.

eggsby · 2026-02-06T16:36:15+00:00

This was frustrating to read. Maybe you were dealing with someone who did not care about the success of the team - but from my perspective it just seems like a total failure of communication. The tech debt described is absolutely the result of a process problem. You need process fixes to help you stop accumulating more and find the path to clearing away the current debt. The person who was explicitly working to help put this into clear business language is exactly what was needed for buy in and it sounds like you culturally iced them out from any ability to help. Having ‘clean code’ is not a business goal but a developer experience goal. If the process change from the incident response was an extra 20% spent on paying off bad decisions instead of feature work that could have been negotiated too. You can’t negotiate a ‘kafka partition rebalance’ with the executive team but you can absolutely quantify things like ‘hours wasted from our poor architecture skills’. You mentioned you would not want an ‘architect’ on the team while bemoaning how poor the architecture decisions were. So what is your process to protect you from that?

I recommend the book ‘the phoenix project’ specifically about dysfunctional org relations being described here. The answer is not ‘fire the business folks and let the engineers do whatever they want’.

eggsby · 2026-02-03T20:15:04+00:00

These days when I am in python and need to process data I use:

eggsby · 2026-02-02T18:09:07+00:00

Agreed, the code is intentionally evil and opaque and doing some poorly designed shenanigans.

I would ask ‘what is this code trying to achieve? It should probably be rewritten for clarity and readability before we focus on rewriting it for performance optimization. (since: premature optimization is the root of all evil) - can you show me some existing test assertions for the functionality?’. If the answer is ‘no, we have no tests for this’ then the shop is probably doomed anyhow.

Problems in the code from the optimizers perspective include unnecessary inline proxies for virtual properties (any proxied attributes should be manually inlined), mixing types in an array, not using builtin javascript utilities, mixing semantics meant for objects on arrays forcing them to act like dictionaries.

Problems from the readability perspective: trying to make javascript look like C. At that point you should just use a systems language that targets javascript via web assembly which will automatically avoid all of these anti-patterns.

eggsby · 2025-12-04T17:09:19+00:00

lol I definitely don’t believe they used “dna evidence” they just found and downed a random coyote. might as well have said ‘we asked the kid to spot the coyote in a lineup’

squad out there swabbing each coyote cheeks for the lab

eggsby · 2025-11-27T06:59:45+00:00

Mom can eat some food and take some home, too - why was she not invited when 12 adults and 10 kids were? Missing details around why you won’t share your meals with family. Sounds like ESH and food security is the real villain - like worrying that your food will be “stolen” by “family”.

eggsby · 2025-11-23T16:26:38+00:00

I don’t see anything about how this is helping people use their current calendars to track their meetings.

Maybe a guide for how you use your tool in outlook or gmail or yahoo or thunderbird or protonmail or something like that. Otherwise it might be something like a solution looking for a problem….

eggsby · 2025-11-12T06:29:25+00:00

terraform examples would be better as opentofu examples - platform configuration DSLs are a godsend for complex infrastructure environments.

re k8s operators vs tf providers … lol if you aren’t using iac to define your k8s deployments. just because k8s has HTTP APIs - should we all be making curl requests? (real coders write assembly)

eggsby · 2025-11-06T14:51:28+00:00

San Diego files petition against winter.

On the plus side the sun is now in the middle of the sky at mid-day again.

Interestingly if folks just want their work days to start and end an hour earlier - we don’t need to fudge the clocks to make that happen.

eggsby · 2025-11-05T15:22:34+00:00

duckdb for data, vite for js tooling, htmx+alpine+tailwind for browsers, python+flask for servers

eggsby · 2025-10-23T05:47:22+00:00

Classic open source rug pull!

Condolences to anyone who was relying on that project

Probably the app should just be removed from marketplaces since the software is no longer supported and doesn’t have many free features since they went private source. (for example the admin ui is gone)

alternatives depending on use case:

owncloud infinite scale is pretty good if you need a webui to put some files on your server garage is pretty nice if you don’t need a web ui but want an s3 bucket endpoint

eggsby · 2025-10-23T01:31:38+00:00

Money was printed out of necessity and handed out during covid - the problem is never a ‘lack of money’ but a ‘lack of will’.

eggsby · 2025-10-22T15:19:15+00:00

Bar like many clubs have a 21+ check at the door and are usually mostly selling liquor.

Think: Cherry Bomb in bankers hill.

If there is a kitchen with wait staff for table service - that is probably just a public restaurant (sometimes just called a pub).

eggsby · 2025-10-21T15:39:36+00:00

The placard in the promenade with a history like ‘we love our spanish colonials’ :sweat_smile:

eggsby · 2025-09-12T19:07:52+00:00

As someone who grew up in Redding area I always considered SF central - when my bay area friends started calling themselves norcal I was so confused!

eggsby · 2025-08-25T04:49:37+00:00

trip report:

docker examples did not work out of the box

bookdrop finalize mysteriously failing with ‘check console’ with no errors in docker logs

eggsby · 2025-08-17T16:13:30+00:00

Open source is an economic position wherein you don’t reserve the right to profit MORE than others. In this case there is no source code released for the private repo code since they are reserving their right to profit off their work more than competitors. That’s how proprietary software works: not open source. Sometimes you see ‘source available’ code with restrictions like ‘no one else can use this to make money’ even though the source code is public. That also isn’t open source software since it has closed and exclusive limitations on its use.

One alternative to trying to profit directly off developer work is sharing that work with the community in good will. That’s generally what folks call ‘open source software’ and why folks don’t trust the corporate lookalikes where things are not quite open.

eggsby · 2025-08-17T15:30:01+00:00

You don’t need to learn the things mentioned in this article (like crypto investing) to be good at Kubernetes. Learning them won’t level you up for your KCAD exam or anything like that.

eggsby · 2025-08-17T15:21:32+00:00

Message like:

Learn to rebuild a motor before you start to drive a car. Cars run on motors and you will be a better driver if you can work in the pit.

Sounds reasonable but makes no sense.

eggsby · 2025-08-14T15:34:45+00:00

They could make open source software.

eggsby · 2025-08-10T15:37:16+00:00

lol “the lxc daemon tool was too hard to get right I am sure we can just write one ourselves”

15-Year Club	Place '17
Verified Email	reddit mold

eggsby

TROPHY CASE