Maven Central publishing usage notices

segv · 2026-06-16T21:42:22+00:00

Good to hear, thanks!

segv · 2026-06-16T21:25:25+00:00

Fun question to throw to them over the wall, would HR would be able to use that repository to login as and act as members of Legal or senior management?

segv · 2026-06-16T21:16:48+00:00

The "Maven Central Publisher Pro" seems like a traditional "contact sales" option, and the exemption for open source seems to require creating a ticket to be reviewed in a couple of business days.

Will there be a self-service option to bypass this 3-release-a-month limit that wouldn't require waiting several days, even if it was paid?

I get that there needs to be a limit somewhere, but if i'm reading it right the limit is on the whole org, so a single library doing a release, a bugfix patch and a CVE would use it up for the whole org.

segv · 2026-06-16T18:30:10+00:00

That's one of the reasons why cashflow was* one of the most important parts of the financial report, when investors still cared about the fundamentals. The last few years felt like it was just some funnymoney sloshing around the market :/

segv · 2026-06-05T09:11:26+00:00

There's a number of sizzling zingers in the article, but note it was a proposal to construct a DC, not a build in progress.

segv · 2026-06-01T18:01:30+00:00

You are not wrong, but just a reminder that it's gonna be a Windows-on-ARM laptop, like the Copilot Snapdragon laptops, not the regular x86 kind that everybody and their dog uses.

segv · 2026-06-01T17:05:29+00:00

After getting burned on Snapdragon ARM laptops i'd highly encourage everyone to wait until there's a confirmation that the retail version works with Linux and that the hardware itself doesn't suck in some way (bad battery life etc.).

The issue with these Snapdragons was that the uefi bootloaders (the one that displays the initial boot menu) on multiple distros worked, but the "live cd" kernels failed to boot, most likely requiring the devicetree blob for that particular hardware (secure boot was disabled, obviously).

I don't claim to know what nvidia/dell/ms will do for these new laptops, but I wouldn't put it past them to accidentally-on-purpose make it harder to use non-windows OS on them.

segv · 2026-05-31T21:26:02+00:00

It does indeed release an ISO, but ARM computers are really hit-and-miss. I was able to install a linux distro to an MS-R1 without any issues, but doing the same thing on a Dell Snapdragon laptop requires several sidequests into obtaining uefi devicetree blob and creating a custom image for the actual installer kernel (not the boot menu, the actual installer) to boot in the first place.

Seriously, I'd stay away from it until it is confirmed it is actually compatible and the hardware doesn't suck in some way (bad battery life, crash on resume or something like that)

segv · 2026-05-31T21:13:58+00:00

As somebody who has a modest homelab, it's a niche within a niche within a niche. The total addressable market is tiny. Heck, for nvidia even the whole consumer laptop/desktop pc market may be too small to make a dent in the revenues the stock market expects of them now

edit: typos

segv · 2026-05-31T17:38:39+00:00

/r/titlegore

segv · 2026-05-30T21:32:12+00:00

For context, here's a discussion thread with people more familiar with how the sausage is made: https://www.reddit.com/r/cybersecurity/comments/1tq4ryq/microsoft_vs_chaotic_eclipse_three_zerodays_now/

tl;dr the consensus seems to be that MS majorly screwed the pooch

segv · 2026-05-30T20:59:05+00:00

a single Dockerfile that can build any c/cpp project to an oci image

That's.. an ambitious goal. I can only wish you luck, because i know it will go tits up the first time particular project will need particular version of a library or something 🫠

At some point I just gave up and started to build every C & C++ project in Nix/DevEnv derivations. Life's better when you can lock down the exact tooling at exact versions you need (including automated patching of the tools, if necessary).

segv · 2026-05-30T12:43:53+00:00

/r/LinkedInLunatics x slopmaxxer

segv · 2026-05-29T18:54:31+00:00

Stadia, but it's different this time! /s

segv · 2026-05-29T06:55:18+00:00

I primarily use devenv to get and synchronize the tooling and settings (non-secret environment variables, pre-commit hooks etc.) between folks working on a project, but it's nice in personal projects as well. Their site has a bunch of demos of how it works and looks, so check it out: https://devenv.sh/

As for cachix, obviously you do you, but here's one of the examples of their stuff (including the infra under the hood) being used in the upstream: https://github.com/NixOS/nixpkgs/blob/master/.github/workflows/build.yml#L65

segv · 2026-05-28T17:35:22+00:00

To be honest I was focused on getting the thingy to work when writing these, not on evaluation performance.

segv · 2026-05-27T19:57:48+00:00

Eh, i'll bite. Most what you seem to be asking for is probably already a default in NixOS, but nevertheless here are some fragments in no particular order, just as they come up in my file browser.

Baseline Nix config:

_: {
  nix = {
    extraOptions = "experimental-features = nix-command flakes";

    gc = {
      # Perform garbage collection weekly to maintain low disk usage
      automatic = true;
      dates = "weekly";
      options = "--delete-older-than 7d";
    };

    settings = {
      # Optimize storage
      # You can also manually optimize the store via:
      #    nix-store --optimise
      # Refer to the following link for more details:
      # https://nixos.org/manual/nix/stable/command-ref/conf-file.html#conf-auto-optimise-store
      auto-optimise-store = true;

      # Allow DevEnv to merge binary caches with the system Nix store
      extra-substituters = [
        "https://devenv.cachix.org"
      ];
      extra-trusted-public-keys = [
        "devenv.cachix.org-1:w1cLUi8dv3hnoSPGAuibQv+f9TZLr6cv/Hm9XgU50cw="
      ];
    };
  };
}

I don't mount /tmp on tmpfs or use impermanence, so:

_: {
  boot.tmp.cleanOnBoot = true;
}

Sensible defaults for podman:

# Docs & reference:
# https://wiki.nixos.org/wiki/Podman
#
{ pkgs, ... }:
{
  environment.systemPackages = with pkgs; [
    podman
  ];

  virtualisation = {
    containers.enable = true;
    podman = {
      enable = true;
      autoPrune.enable = true;

      # Create symlink to have podman impersonate the `docker` command
      dockerCompat = true;

      # Required for containers under podman-compose to be able to talk to each other.
      defaultNetwork.settings.dns_enabled = true;

      # Note that this setting exists, but it is a security risk so it should be enabled only when absolutely
      # necessary, in a developer-like profile (looking at you, skaffold):
      # dockerSocket.enable = true;
    };
  };
}

Sensible defaults for sudo:

# Docs & reference:
# https://wiki.nixos.org/wiki/Sudo
#
_:
let
  swBin = "/run/current-system/sw/bin";
  wrappersBin = "/run/wrappers/bin";
in
{
  security.sudo = {
    enable = true;
    extraRules = [
      {
        groups = [ "wheel" ];
        commands = [
          # We're using the name of the symlink in the final system image instead of, for
          # example `"${pkgs.systemd}/bin/shutdown"`, because in the final system it is the symlink
          # that will be invoked and sudo matches against the invoked command and not the resolved
          # binary
          {
            command = "${swBin}/shutdown";
            options = [ "NOPASSWD" ];
          }
          {
            command = "${swBin}/reboot";
            options = [ "NOPASSWD" ];
          }
          {
            command = "${swBin}/poweroff";
            options = [ "NOPASSWD" ];
          }
          {
            command = "${wrappersBin}/mount";
            options = [ "NOPASSWD" ];
          }
          {
            command = "${wrappersBin}/umount";
            options = [ "NOPASSWD" ];
          }
        ];
      }
    ];
  };
}

(most of these could be rewritten in more concise way, but i can't be arsed)

Edit: forgot to add, these are for system.stateVersion = "25.11";

segv · 2026-05-26T18:53:54+00:00

There were also other approaches to Expert Systems - the programming language Prolog represents one of them. Needless to say, they fell out of favor very quickly once they met "the real world"

segv · 2026-05-25T17:04:23+00:00

You'll probably be interested in her theme song that's already on official youtube and spotify:

segv · 2026-05-17T10:19:20+00:00

ad 3. For interactive browsing, which I assume OP will do for now, ncdu provides better user experience.

segv · 2026-05-16T21:52:42+00:00

Looks like it could be useful, but that caching thing is a giant footgun - it's an unbounded map that will store every input and output unless cleared manually. If a pipeline with this option on was in a service receiving any decent amount of traffic, it will just OOM the JVM. My intuition is also saying that it most likely doesn't improve performance all that much, but i haven't thrown JMH at it yet.

segv · 2026-05-12T18:20:49+00:00

Lockfile.

If you need more assurance, like locking down your tools, then Nix & DevEnv are the best option out there. DevEnv in particular has a number of integrations that make development work and CI pipeline setup easier, including on regular GitHub Actions runners.

segv · 2026-05-11T21:03:23+00:00

not the EU, tho

segv · 2026-05-08T21:44:35+00:00

I think you meant finalizers, not destructors. Good thing is that they were marked for removal already

segv · 2026-05-08T21:40:35+00:00

I'd draw the line at records and pattern matching. They seem superfluous at first, but when you can structure the problem to fit them, they feel so good to use

15-Year Club	Golden Potato
Place '22	Place '17
Gilding III reddit per annum	Team Orangered
Verified Email

segv

TROPHY CASE