I am working on CI based releases.

• Dev work goes in feature branches
• Test manually in a QA environment for a faked login process of provisioned auth users.
• If everything looks good manually release to Prod infrastructure.

… I haven’t had to rollback any releases yet … So yay! (In 5+ years)

Prod has Grafana graphs and internal audit reports of the live system.

• tour of power plant!!!!! :D
• maybe working a little on a patch for a vendor tool
• clean

• following my job reclassification process and accrueing documents should it be denied.
• (currently) trying to share Gitlab LE certs to a Portainer.io instance on same box via Docker.
• Attempting to consume campus API via Sumfony 4 and Guzzle6.
• Still trying to release American Presidency Project.

• hiking
• cleaning
• practice piano
• exercise

Alternatively, here is an equivalent XSL stylesheet that can be applied directly to a sitemap XML document:

<?xml version="1.0" encoding="UTF-8"?>
<xsl:stylesheet xmlns:sitemap="http://www.sitemaps.org/schemas/sitemap/0.9" xmlns:xsl="http://www.w3.org/1999/XSL/Transform" xmlns:xhtml="http://www.w3.org/1999/xhtml">
  <xsl:output encoding="UTF-8" method="text" version="1.0" />
  <xsl:template match="/"><xsl:apply-templates select="sitemap:urlset/sitemap:url/sitemap:loc" /></xsl:template>
  <xsl:template match="sitemap:loc"><xsl:value-of select="text()" /><xsl:text>
</xsl:text></xsl:template>
</xsl:stylesheet>

This has the added benefit of not requiring the whitespace-processing step in the article, and could be easily modified to select elements based on attributes (e.g., language). However, it does require that the sitemap document actually be well-formed XML – the example in the article is not well-formed because it contains an unclosed <urlset> element. This is why XML parsers, validating parsers and transformers are so much more valuable than ad-hoc implementations. If the document does not conform to the specification, it will tell you.

If the 2 sides spent time talk past one another, it should have been made clear to provide a proposal by X date. It seems like the process was unclear or failed on that point (deliverables, before moving onto step Y).

I’ve been happy-enough with LastPass - I can’t point to any reason beyond inertia, so really what I’m curious about in this thread: are there any significant differentiators that could sway a person to switch?

• trying to take up piano again, i have been off and on all year, but making an effort to do like an hour daily. Played as a child. A little lost on picking it back up again (start with theory, just start playing pieces ) … I was not an advanced player but did a few years as a child had Fur Elise memorized at one point … etc.
• train more daily in martial arts – active practitioner for decades.
• bday party for friend!
• excited about upcoming Diablo nuclear power plant tour in August 2018 I just got reservations for!

Own a Daskeyboard 1.0

But daily drivers are:

• Work K780
• Home K480

… I prefer standard 104 key layouts.

Is there a reason something like Sqlite isn’t used to store/read the PLY files or other metadata? Surely thousands of files on disk isn’t an optional solution … I assume you’re taking steps to parition out the files to say 1000 per directory to maximize ulimit and file read operations … Using g Sqlite could alleviate some of these issues.

Please pardon my ignorance, I’m not a graphics guy although I find it fascinating. I’m a webdev/polygot programmer …

I find it strange that etc hosts is not parsed into a trie. it is used linearly.

• prepping campus course feedback tool for 7 summer sections.
• trying to add Redis as a cache store to the above project
• Trying to launch APP, https://beta.presidency.ucsb.edu later this month?!
• Move APP Solr instance to SaaS service.
• hang in there …

Is there any research that shows whether an ORM based application is more riddled with these problems, compared to applications not written with ORMs, but still use SQL? …

A good example in a project I ha e written is I do: Select 1 from too where x = 4 rather than a count to check for existence of something …. But I could see every entry level programming arguing “ I counted the results – it was bigger than one” … Its not wrong, just an inefficient approach until you learn better.

So are ORMs helping us learn better by avoiding these mistakes?

• country trail hiking (not steep mountains or anything)
• try to get some drupal 8 gitlab-ci automation working on “volunteer time”
• clean house and Father’s day lunch.

Standups should not

• Try to resolve an issue live
  Don’t try to trouble shoot something or hash out details in a standup. Use the standup to report it, then grab someone after the meeting. Otherwise you are wasting everyone time. This one drives me nuts as it seems to happen in my stand ups all the time.

• Include a measure of how productive you are.
  If you need that measure there are burn downs. Also its generally a good idea to not include any unnecessary management, as that does tend things to devolve into ‘make yesterday sound productive’ as @pab said.

• Be longer than 1 minute per person.
  You want to report your current position, and where you are going. If it takes you more than 60 seconds to report this you are probably running into the prior two bullet points.

• Be longer than 10 minutes in total.
  You don’t want to give time for devs to glaze over. If its taking longer either brevity is suffering from loquacious individuals, or the team may be getting too big.

• Happen prior to caffeination, lunch adjacent (unless team eats together), or near EOD
  Stands ups should facilitate follow up communication between members. You want people be alert enough to help, but during a time where they wanting to wrap something because they have something else to do at that time.

• Monitoring ESCI Online service for campus.
• Setup Gitlab CI runners.
• Implement simple ESCI “at a glance” dashboard, hopefully using PHP Razorflow dashboard libraray.
• Debug pre-live issues on American Presidency Project

• Hoping to make fully live soon with additional client feedback/prep: https://beta.presidency.ucsb.edu
  • comments are welcomed
• Preparing for live window of campus student course feedback system I have brought “online” from the legacy paper Scantron version. Minor updates to the app and full upgrade of monitoring stack from Prometheus 1.8.x to 2.2.0.
• Slowly adopting Drupal 8 for new projects.

I own a Synology Nas.

• Gitlab CE via Docker
• A small bit rotting site on GRAV cms.
• At work Prometheus monitoring stack, 2.2.0.
• Other odd scripts here and there.

What is root cause of this vulnerability? The fix looks strange, it filters “bad” requests instead of fixing vulnerable parts of code. Maybe it’s urgent fix before actually fixing underlying bugs, or it’s done to not disclose actual bugs too early?

I don’t know much about practices of fixing urgent vulnerabilities in popular projects, is it common practice to add fixes like this to not disclose root cause early?

Back to a hobby project I started long ago and restarted again recently: a time series datastore in Go using gRPC.

So far have it up and running with a library I wrote previously for a fast ordered datatype. Watched a presentation about best practices for gRPC since the docs and examples seemed so thin and wound up finding out that yes, I was indeed doing it wrong. Rewrote my .proto and simplified my error handling late last week and switched over to the delightful logrus for logging.

This week, when time allows, I will actually port over the TSDB in-memory format from Gorilla and add more structured input and aggregation queries for output. Next milestone after that is adding continuous queries & downsampling. I hope to have all that done this month if the weather stays crappy.