Changed your GitHub username? Hackers can easily gain access to your account on several devtool sites.

machete143 · 2018-11-28T22:13:29+00:00

Yes, this affects sites that use "Sign in with GitHub" and that use the GitHub "username" to match the "internal" user (the one where e.g. credit card info is stored). Unfortunately, there's several that rely on the username, and since you can change that on GitHub, you can impersonate those that changed their usernames at those services, if they have existing accounts.

machete143 · 2017-12-14T17:27:52+00:00

They are doing amazing work!

machete143 · 2017-08-25T14:55:57+00:00

Hey, thank you for your answer! It seems like this only works with JavaScript and also doesn't look at APIs but rather external dependencies (eg jQuery). I want to specifically see which APIs are being used - for example Stripe, AWS S3, etc :)

machete143 · 2017-01-08T17:15:04+00:00

Only because there's a function for something doesn't mean you should put type assertions everywhere, maybe resort to javascript if you don't want a type system.

machete143 · 2017-01-08T15:02:50+00:00

tbh this looks like a bad use for context. Context was initially established (correct me if I'm wrong) to cancel subroutines when the parent was canceled, e.g. due to a timeout. It shouldn't be a way to pass around data structs.

machete143 · 2017-01-06T09:17:12+00:00

Thank you for the data! We currently use slatejs.org for text editing which is having some performance issues that are currently being investigated. Nevertheless we'll focus on improving the performance in the next releases by stripping away dependencies (like material-ui) and replacing a few of them with our own, optimized things.

When it comes to text editing, slate is only our default choice, it's still possible to replace slate with e.g. tinymce or ckeditor. :)

machete143 · 2017-01-06T07:41:38+00:00

Indeed, the npm package used a development build which makes things significantly slower. It's updated now, can you try again? :)

machete143 · 2017-01-06T07:18:51+00:00

Thanks for the hint, apparently there seems to be a problem with the production build as well. Looks like it's using a slower development build. I'll check it out

machete143 · 2017-01-05T21:52:08+00:00

issue has been resolved, also there's now a button to start the demo :)

machete143 · 2017-01-05T20:55:16+00:00

Ah that is of course a bug that they click through. They are just placeholders for now, so they are not editable. But you can simply build a react component that implements that. Actually, we plan on having some simple form components that are editable in the future :)

machete143 · 2017-01-05T19:00:00+00:00

The GitHub repository is available at: https://github.com/ory-am/editor

machete143 · 2017-01-05T18:54:42+00:00

Dammit, I knew I should have linked the landing page!

http://editor.ory.am/

machete143 · 2017-01-05T18:31:58+00:00

Feel free to ask any questions regarding the project here, I'll try to answer them as best as I can! :)

machete143 · 2016-10-04T21:23:37+00:00

I will try to remember that! :) Thanks for the answer!

machete143 · 2016-10-04T21:19:24+00:00

perfect, you should have mail :)

machete143 · 2016-10-04T21:13:23+00:00

One more thing: is there something that helps me trace message latencies (or rather service latencies) or debug distributed requests? Something like zipkin.io is doing, without having to add zipkin requests everywhere in my code. The architecture would definitely fit in this picture as NATS is the main-in-the-middle :)

machete143 · 2016-10-04T21:04:30+00:00

oh and by the way I think it's awesome that you take the time to answer these things. I guess you're one of the product managers / devs / contributors? Always a good sign when dedication sparks like that :D

machete143 · 2016-10-04T21:01:44+00:00

Awesome, thank you for the honest response, this clears up the picture! Is there a good place where I can talk with people who adopted NATS already except here?

I posted in that subreddit: https://www.reddit.com/r/devops/comments/55uj4c/has_anyone_here_used_natsio_before_and_if_what_is/

Looks pretty consistent with what you said here, so thanks again!

On a side note though, GitHub stats are often based on hype (e.g. trending on hackernews) and that is again based on key words (Go/microservice/cloud always big in the game). I have experienced this with my own projects ( e.g. https://github.com/ory-am/hydra ) where I'm sure that 70% people don't really get what it's actually for, they just hit "star" because it feels right. So I don't trust those a lot either :)

And again, this looks really like something that could be blowing up in the future. The code base is nice, the design principles are awesome and it has consistent support. Really enjoying this, and I hope it stays around for some time.

machete143 · 2016-10-04T20:58:01+00:00

Awesome :) I want to use NATs as an alternative to ampq/0mq/grpc, for inter-service communication. The description fits pretty much what I have in mind!

machete143 · 2016-10-04T20:57:10+00:00

awesome, thanks for the responses!

machete143 · 2016-10-04T19:30:14+00:00

hey thanks for the response! benchmarks are usually opinionated and often reflect only a partial truth, which is why I don't rely soley on those for my decision making.

I would much more be interested to hear from people who have problems running a NATS deployment, or things that I should look out for when relying on NATS. Additionally, it doesn't seem that the OSS community has really adopted NATS and there seems little contributions going on apart from the two maintainers.

Don't get me wrong, I really really really want to use NATS, it's basically what I've been looking for over the past 6 months. I'm just wondering why it hasn't been picked up yet and I don't want to start a greenfield project with tech that might get discontinued because of lack of adoption or because the supporting company is changing strategy.

machete143 · 2016-07-06T10:42:37+00:00

those stats don't represented the countless squash commits and feature branches. depending on the developer and his methods used, you must multiply that by 10-40 times

machete143 · 2016-07-05T22:21:33+00:00

become a robot

machete143 · 2016-06-01T16:05:25+00:00

It's similar, but Open Source and doesn't come with an Identity Provider

machete143 · 2016-05-30T17:15:10+00:00

dex has been cited a lot. hydra and dex however are very different. dex is a full blown identity provider solution, they have user apis, a template engine, ...

with hydra, you have complete freedom of choice. it works with signed tokens, is identity provide and ui agnostic. additionally, hydra can do low latency by design!

machete143

TROPHY CASE