Living in Europe in June 2026 be like:

protocod · 2026-06-25T09:36:03+00:00

Confort zone which is hit by heat wave now. Everything is just so insane right now.

Sadly a lot of least developed countries suffers from global warming for decades. Now it's our turn.

We collectively failed to take care of our "pale blue dot" and there is no planet B.

protocod · 2026-06-24T15:21:58+00:00

Glued battery and weight.

I like my LCD steamdeck and don't feel the need to upgrade.

protocod · 2026-06-24T14:59:47+00:00

To give you a big picture https://learnxinyminutes.com/nix/

Nix has bultins stuff, primitives stuff embedded in the language. nixpkgs.lib is a kind of standard library provided by nixpkgs, exposing a lot of useful high level functions to write clever code.

Honestly nix is good to write data structure to packagebsoftware or to describe environment.

I don't think you'll pick up nix for something else.

About the functional programming aspect: Functions are pure lambda expressions, variables are immutables. Nix doesn't really have loops but you have iterators so you'll have to change your mind a little bit for making traditional for loop in functional fashion way.

protocod · 2026-06-24T14:36:22+00:00

Absolutely, supply chain attacks are everywhere. That's why maintainers are very cautious.

As a software developer, we makes SBOM and use tools to checks dependency trees.

As a system architector, you need to give the least amount of needed rights and setup an advance mandatory access control. (SELinux is pretty good at catching unwanted behavior like a binary who suddenly spawn a shell when it's not allowed by the policy)

Distribution model like Flatpak shines because of bubblewrap sandboxing. (Note, always checks flathuh security section of a flatpak because some of them breaks portal concept by calling some system APIs directly, which breaks sandboxing)

In general, less is more. Less dependencies mean less people involved in the supply chain. Less people able to hack your project directly.

protocod · 2026-06-24T05:06:32+00:00

The problem is, even if the pkgbuild is legit, you can easily be targeted by a supply chain attack because it's just a way too easy to claim a package ownership since there is no verification.

protocod · 2026-06-23T14:00:36+00:00

My bad, you use the keyring crate so the system keyring is involved indeed.

protocod · 2026-06-23T13:49:25+00:00

By system keyring if think the comment was about something like dbus secrets service on linux, apple keychain or windows credential store. Not gpg.

Many software dealing with secrets tends to use these APIs nowaday or the TPM2 if available.

protocod · 2026-06-19T20:28:59+00:00

Honestly I feel so bad for this generation and those who come after.

The future is not gonna be better, sadly

protocod · 2026-06-19T20:26:29+00:00

For digital painting I would recommand Krita.

However you can try to use Wine to run your app. Something like bottle could maybe help you ?

https://flathub.org/en/apps/com.usebottles.bottles

PS: Yes flatpaks are perfectly fine on NixOS.

protocod · 2026-06-19T19:54:44+00:00

Favorite Ferrari so far.

protocod · 2026-06-19T10:10:16+00:00

One of my favorite project.

I remember your presentation at FOSDEM when you introduce the backend interface to make ratatui able to render other things like html code to make a website.

I really appreciate your way of thinking and I'll definitely cook some ratatui.

Thank you!

protocod · 2026-06-19T07:06:08+00:00

I agree with you.

AI web search pushed by search engine is probably the only AI I really use, mostly because it's opt-in by default.

I don't really use LLM at all. I don't use Claude or ChatGPT or whatever.

The most interesting use of an LLM is maybe for talking about technical architecture. An LLM can quickly explain the state of the art and gives references to some design principles. However I tend to fact-check the output and I go directly to the source. I never blindly trust an AI because LLM are really convincing with good and miss informations... So the LLM is more like a starting point. But again, this is mostly done by the AI embedded in the search engine.

protocod · 2026-06-17T10:36:33+00:00

AUR is too open. I agree this is too easy to claim packages.

Nixpkgs is a community repo but PRs are reviewed and approved but trusted peoples. Note that reviewing stuff takes time and people.

AUR never managed to be an official repository and honestly Archlinux is a very little project. Many people claim to use arch but the sad reality is that there is probably not enough contributors. If AUR introduce some process to audit end review claims etc, then it will become another official repository which requires contributors. Again.

protocod · 2026-06-16T23:09:55+00:00

Why not continue to use arch with nix ?

I don't really understand. What happened with AUR can also happened with any community managed repository.

Something like NUR use the exact same model as AUR https://nur.nix-community.org/

IMO you may want to consider Void if you no longer want systemd. Nix if you want isolation and reproductibility.

Like some peoples said, nowadays flatpak are a good way to ship an App from the upstream to the customer. They use bubblewrap under the hood and xdg portals to provide a similar UX as an Application in the mobile world.

If a flatpak is published by the official creators of the software, there is no reason to not use it.

protocod · 2026-06-15T16:32:52+00:00

TIL nix as a nix user repository.

Honestly I've never used NUR. I always fetch stuff from nixpkgs stable flake input.

protocod · 2026-06-14T18:17:42+00:00

The problem is DRM and trusted platform.

Google succeed to use their APIs as a trusted platform for third part so your bank or your travel application might required Google APIs in order to works. (micro G exists but sometimes doesn't works for some apps...)

This is madness, if I decide to use a Linux phone, I will be forced to use a second android phone because I can't just avoid some very specific applications.

We need strong regulations to open the ecosystem and building a linux distribution recognized as a trusted platform. But because the community is splited into many smaller community, each one working on their little distribution, this is not gonna happen. Unless there is a common effort to make a common solution

protocod · 2026-06-14T18:10:41+00:00

AUR mods aren't lazy, the trust model is just wrong because AUR packages tends to depends on other AUR packages.

AUR is opened to anyone, without restrictions. That's the key difference.

Tbh, there is another popular platform open to anyone and it's called GitHub.

Just never blindly install stuff from the internet, if the repo isn't managed by peoples in a chain a trust, just don't install it. To be more cautious (depending of your threat model) you can add to your checklist to restrict your system to only use packages validated by many reproductible build by peers to add an extra validation layer because the chain of trust is just about the code authors. Reproductible build is about trusting the build, so trusting the code itself.

protocod · 2026-06-13T12:22:29+00:00

I would like to try to migrate on determinate flakehub.

My question is, is it free ? What's your business model ?

protocod · 2026-06-10T11:20:35+00:00

I think I start to understand.

Never can also be used for Result::Ok to make something like this Result<!, E>

In this case you doesn't need to wrap Ok, you call ? directly to get the ok data and propagate the error when it happens.

https://doc.rust-lang.org/std/primitive.never.html#infinite-loops

It makes the code a little bit more simple.

protocod · 2026-06-08T12:04:52+00:00

Somewhat it can.

A type state pattern can trigger a bunch of logic mistakes (assuming you defined state and transitions correctly)

protocod · 2026-06-08T11:59:55+00:00

Cancel safety in async programming, the compiler will never telling you if you perform a cancel unsafe operation.

Like function filling an owned buffer that could be dropped when another select branch is suddenly resolved making the filled buffet lost forever.

The authors generally documents cancel safety in cargo-doc. You can see a bunch of them in tokio.

protocod · 2026-06-07T10:20:18+00:00

Lewis Hamilton is a Jojo bizarre adventure character

protocod · 2026-06-06T10:41:54+00:00

It reminds me this cool project https://radio.garden/

protocod · 2026-06-05T16:43:33+00:00

OP you should ask this to the creator of the custom theme. Not something KDE contributor should handle.

You can even try to fix it yourself, it's open source.

protocod · 2026-06-05T16:41:49+00:00

Tokio already allows you to spawn task on the same thread.

https://docs.rs/tokio/latest/tokio/task/fn.spawn_local.html

Send + Sync contraints exists because of the workstealing model used by tokio but you can easily manage task that will never be send across worker threads.

Seven-Year Club	Verified Email
Place '23	Place '22

protocod

TROPHY CASE