1. 0

    there is no malware in the extension

    people should probably not start a habit of putting MALWARE in bug tracker titles just to get attention?

    1. 13

      It fetches + executes arbitrary js from a server that mimics an analytics tool. I haven’t seen yet that someone’s identified malware coming back, but there’s no legit explanation for the situtation and it’s happened before that popular extensions have been sold to people who end up using them as malware vectors.

      1. 3

        I’ll go ahead and say being able to fetch arbitrary js without a very good reason is itself malware.

        1. 0

          I’ll go ahead and say being able to fetch arbitrary js without a very good reason is itself malware.

          1. 0

            I’ll go ahead and say being able to fetch arbitrary js without a very good reason is itself malware.

        1. 10

          This article really gets to a fundamental misunderstanding I feel our whole industry has: Programming is not construction, it is design.

          Yeah, houses rarely collapse, but structural engineers don’t expect that their second draft will be taken out of their hands and built. Or that the fundamental requirements of their structure will be modified.

          I don’t mean to suggest that programming should behave more like construction. The value of programming is the design. Programming is the act of really thinking through how a process will work. And until those processes are really done and won’t change (which never happens) that design never stops.

          1. 1

            At some point I got this thought that programming can be mapped into the framework of the scientific method, as below. Later I think I found a similar interpretation in some older article so I guess I might have not been the first. Specifically, my analogy goes like this:

            • a program ~ a scientific theory
            • running the program (incl. via tests) ~ running a scientific experiment

            where a program tries to model (some aspects of) some specific problem domain, and a scientific theory in e.g. physics tries to model (some aspects of) the physical world around us.

            This seems to fit with some known aspects of programming: e.g. that tests never can confirm 100% that a program is correct, but the more of them you do the more confident you can become. Or that sometimes a program seems to have “hit a jackpot” of being a “good theory”, when new features result in only small tweaks to the program (similar as new experiments fit well in a correct scientific theory, with maybe just small tweaks to constants). And wildly different features (wildly new experimental results) may force us to ditch the model and start searching for a new one - major architectural refactoring of the code (or searching for a new theory that may still explain the old one - Einstein, Newton, or completely break it - how the aether theory was invalidated even though it gave useful results in some areas IIUC).

          1. 1

            I did something similar, but with notion as the backend instead of github issues! I wrote about it here: https://borick.net/articles/my_notion_powered_blog/

            I think there is something to making it as easy as possible to write and publish. It seems like devs are very prone to setting up their own custom (ish) workflow, and if publishing is outside of that workflow it’ll happen less.

            1. 1

              Oh cool! I think I actually saw Chris (or maybe someone else using it?) present the reverse-engineered Notion Go library doing this exact thing at a Notion meetup.

              Has the markdown generated from Notion been fairly reliable for you?

              One thing that’s nice with Github’s markdown is that it basically became the de facto standard (commonmark), so Hugo is very happy to consume it and render it properly.

            1. 1

              I’ve also recently started taking more notes. My criteria is:

              • Everything is accessible on all my devices
              • Easy to use
              • Markdown-ish
              • Robust linking (back-linking would be nice)
              • Reasonably future proof

              As of the last time I looked, Notion is the only service that I could find that satisfied all of these. Just text files don’t do it for me, because I want to be able to make changes easily on my phone as well as on my computer. Trying to manage stuff with git on mobile was making me not take any notes.

              I want to be able to keep my notes forever, so my backup plan for if notion goes out of business is to use obsidian to back everything up to markdown files. But so far Notion has been great, they were able to fix a bug I was having in about a week, so that’s nice.

              1. 3
                • I have an app for an old client that needs some changes
                • Write another draft of my next article
                • Do some errands & prepare for a long weekend to an isolated cabin!
                1. 2

                  This is so cool! I just tried this for the issue I’m working on now, and it surfaced a relevant github issue I haven’t seen yet!

                  I think this really fills a need. I’ve been finding myself using !g on DuckDuckGo a lot, since google’s results are a lot more relevant for dev related searches than DDG’s. This looks like a far more privacy-friendly option, with better results too!

                  The only feedback I have is to pad the search results to appear in the center of the screen on wide monitors like most other search engines do.

                  1. 1

                    Thanks! I’ll work on improving the layout soon. Btw, maybe we should also add the !g bang :-)

                    1. 1

                      SLT/INTJ- I always find it interesting how many programmers seem to be INTJ

                      1. 2

                        MBTI is not the end-all be-all, but the NTJ ability to see the forest and the trees simultaneously is immensely helpful in programming. You’re constantly moving between differently-sized contexts.

                        I doubt this is exclusive to NTJ, but there is a reason they are dubbed systems-builders.

                        Also, an internal survey was conducted at a fairly well known thinktank that found that 95% of surveyed programmers were INTJ. Selection bias and all that, but, wow.

                        1. 1

                          If 95% of surveyed programmers are INTJ, then what about the INTP’s? What do they do?

                      2. 1

                        Ditto.

                        1. 1

                          FALT. INTJ/ENTJ here.