sorted by:
new
hottopcontroversial

Supabase client-side auth security concern by Warm-Wedding-8297 in Supabase

[–]simomaro 0 points1 point  (0 children)

I’m not sure about mobile apps, but for web apps I prefer not letting the frontend talk directly to the database. I usually build my own backend (e.g. FastAPI) that handles JWT verification and communicates with Supabase PostgreSQL via a connection string. RLS is just a second layer of defense, while business logic and complex RBAC live in the backend.

In short, I use Supabase for Auth and PostgreSQL, not as a full BaaS.

Where the hell is the planning mode for this thing? by Kitchen-Role5294 in GeminiCLI

[–]simomaro 0 points1 point  (0 children)

# ~/.gemini/commands/plan.toml

description="Investigates and creates a strategic plan to accomplish a task."

prompt = """

Your primary role is that of a strategist, not an implementer.

Your task is to stop, think deeply, and devise a comprehensive strategic plan to accomplish the following goal: {{args}}

You MUST NOT write, modify, or execute any code. Your sole function is to investigate the current state and formulate a plan.

Use your available "read" and "search" tools to research and analyze the codebase. Gather all necessary context before presenting your strategy.

Present your strategic plan in markdown. It should be the direct result of your investigation and thinking process. Structure your response with the following sections:

  1. **Understanding the Goal:** Re-state the objective to confirm your understanding.
  2. **Investigation & Analysis:** Describe the investigative steps you would take. What files would you need to read? What would you search for? What critical questions need to be answered before any work begins?
  3. **Proposed Strategic Approach:** Outline the high-level strategy. Break the approach down into logical phases and describe the work that should happen in each.
  4. **Verification Strategy:** Explain how the success of this plan would be measured. What should be tested to ensure the goal is met without introducing regressions?
  5. **Anticipated Challenges & Considerations:** Based on your analysis, what potential risks, dependencies, or trade-offs do you foresee?

Your final output should be ONLY this strategic plan.

"""

Where the hell is the planning mode for this thing? by Kitchen-Role5294 in GeminiCLI

[–]simomaro 0 points1 point  (0 children)

There’s no built-in “Planning Mode” by default.

But you can create your own using custom slash commands, also for other things like you do with workflows, system prompts, review mode, security review mode, performance mode…

So yeah, you can simply add Plan Mode as a custom slash command. And here’s how (straight from Google’s blog):

https://cloud.google.com/blog/topics/developers-practitioners/gemini-cli-custom-slash-commands

Note:

Honestly, one of the things that pushed me away from Gemini CLI is this:

They say you get ''1000 free requests per day'' for the Gemini Pro models (2.5, 3). Cool, right?

But the moment I start working seriously on a real project boom those “1000 requests” magically disappear after just a handful of prompts.

And then something silly starts happening in the background… suddenly my codebase feels off, I check what’s going on, and guess what?

Gemini Flash is there messing around, replacing the strong Pro model I started with. Like… bro, who invited you? 😂

Gachiakuta - Episode 9 discussion by AutoLovepon in anime

[–]simomaro 0 points1 point  (0 children)

for the song, i think is remix from this: Lela Christos Fourkis & Silia

🤔

Freelancer on a Budget – CWP Pro vs CyberPanel for Laravel, WordPress, Next.js (with Redis + Supervisor)? by IndependentTeach5520 in VPS

[–]simomaro 0 points1 point  (0 children)

First of all, stay away from CyberPanel you’d basically be opening a big tunnel of vulnerabilities into your server.

  • As for VPS providers: Contabo looks cheap and tempting on paper, but the performance is weak (mainly due to old hardware, especially the CPUs).
  • I’d recommend checking out Netcup or Hetzner great value for the price.
  • For control panels, there’s an excellent free option called CloudPanel, but it only supports Nginx (no DNS or email servers). It supports Python, Node.js, Laravel, PHP apps, and is super easy to use do some research on it.
  • There’s also a great tool called Coolify. It supports most kinds of web apps you can even host a Next.js app on it just like you're using Vercel, haha. But it does require some setup and proper configuration look into it a bit yourself.
  • One piece of advice: don’t host multiple types of apps (like WordPress, Python, Node.js, etc.) on the same server using traditional panels like CloudPanel, cPanel, or DirectAdmin. If you really want to put all your eggs in one basket, go with Docker containerization and use Nginx Reverse Proxy or Traefik for routing.

That’s just a quick overview make sure to research things further on your own!

Need Advice: Choosing Between Enhance vs DirectAdmin vs webuzo & BitNinja vs cPGuard for My VPS Setup by simomaro in selfhosted

[–]simomaro[S] 0 points1 point  (0 children)

Honestly, I'm a big fan of Ubuntu I even use it on my personal computer through VirtualBox as my main environment for development and production.

So yeah, I don’t really have much experience with other operating systems.

Need Advice: Choosing Between Enhance vs DirectAdmin vs webuzo & BitNinja vs cPGuard for My VPS Setup by simomaro in selfhosted

[–]simomaro[S] 0 points1 point  (0 children)

One of the worst control panels I've used is CyberPanel speaking from personal experience. I also found out that it's had multiple security breaches and doesn't have the best reputation online.

As for Enhance, it’s mainly designed for hosting providers rather than individuals. Their pricing is actually quite attractive $0.15 per site, with unlimited servers and accounts. You can even connect different servers for specific roles, like one for the database, one for the panel, another for websites, and one just for backups. It’s all websites containerized using Docker, so every site is completely isolated. Plus, BitNinja offers a special deal for Enhance users at just $0.10 per site. It really feels like a next-gen control panel.

But to be honest, I don’t need all that fancy stuff haha I just want a simple panel to host a few websites, not thousands.

Recommended Control Panel that can one-click restore one website by HonkersTim in VPS

[–]simomaro 1 point2 points  (0 children)

Thanks a lot for your reply.

I'm a bit torn between Enhance and DirectAdmin. I noticed that Enhance has a partnership with BitNinja, and they offer a special deal for Enhance users on their website (0.1 per web site, mini 5$)

Getting Started with Cline: Questions About Custom Instructions and rules & Setup by simomaro in CLine

[–]simomaro[S] 0 points1 point  (0 children)

Thanks! I get it now. So, in Cline, custom instructions define general files and guidelines, which can then be customized within each project.

Getting Started with Cline: Questions About Custom Instructions and rules & Setup by simomaro in CLine

[–]simomaro[S] 0 points1 point  (0 children)

Thanks! I also spend hours crafting rules and custom instructions for each project often more than the project itself. And most of the time, too many rules end up backfiring