Hacker News: amusingimpala75https://news.ycombinator.com/user?id=amusingimpala75Hacker News RSShttps://hnrss.org/hnrss v2.1.1Tue, 16 Jun 2026 02:22:35 +0000<![CDATA[New comment by amusingimpala75 in "Even more batteries included with Emacs"]]>M-x cua-mode enables a variety of “traditional” keybinds such as C-x / C-c / C-v for cut / copy / paste

]]>Mon, 15 Jun 2026 16:39:40 +0000https://news.ycombinator.com/item?id=48543812amusingimpala75https://news.ycombinator.com/item?id=48543812https://news.ycombinator.com/item?id=48543812<![CDATA[New comment by amusingimpala75 in "GitHub bans security researcher who posted zero-day Windows exploits"]]>Well if it’s a full disk encryption exploit that still requires hardware access I imagine it would have been made for a 3-letter govt org or something

]]>Thu, 28 May 2026 23:30:52 +0000https://news.ycombinator.com/item?id=48316997amusingimpala75https://news.ycombinator.com/item?id=48316997https://news.ycombinator.com/item?id=48316997<![CDATA[New comment by amusingimpala75 in "Migrating from Go to Rust"]]>At least in the case of sqlite, rusqlite pulled in 5 or so in total whereas Go had a single library that was a thin wrapper around sqlite, and integrated into the stdlib interface. Many fewer deps

Edit: counts are fair, that’s still hundreds unaccounted

]]>Mon, 25 May 2026 01:37:15 +0000https://news.ycombinator.com/item?id=48262686amusingimpala75https://news.ycombinator.com/item?id=48262686https://news.ycombinator.com/item?id=48262686<![CDATA[New comment by amusingimpala75 in "Migrating from Go to Rust"]]>I’m not arguing on quality of the library, I’m arguing on not getting pwned by the sheer number of transitive dependencies

]]>Mon, 25 May 2026 01:34:09 +0000https://news.ycombinator.com/item?id=48262677amusingimpala75https://news.ycombinator.com/item?id=48262677https://news.ycombinator.com/item?id=48262677<![CDATA[New comment by amusingimpala75 in "Migrating from Go to Rust"]]>This is probably going to sound generic / repetitive, but my biggest complaint about Rust is the package management situation, which is entirely the result of the developer mindset. I love the ergonomics on the rust side (the functional approach to data types is beautiful), but I’m working on two projects side by side, one in rust and one in go at the moment. The dependency trees are entirely different beasts, with most of the stuff on the go project covered by the stdlib whereas I think the rust project is over 400 despite asking for just rusqlite (sqlite), clap (cli), ratatui (tui), and tauri (gui), the last of which is by far the worst offender but even without it, it’s still close on 100 which is crazy. If there were (and maybe there are, I just haven’t found them) decently maintained alternatives to the rust crates that actually have a sane dependency approach, I’d feel much better. I’m just trying to not shai hulud my system, and the rust-web people seem to want to turn cargo into npm in that regard.

]]>Sun, 24 May 2026 20:56:53 +0000https://news.ycombinator.com/item?id=48260930amusingimpala75https://news.ycombinator.com/item?id=48260930https://news.ycombinator.com/item?id=48260930<![CDATA[New comment by amusingimpala75 in "Project Glasswing: An Initial Update"]]>[edit: TFA addresses this, though I still find crazy 90% accuracy overall vs 20% accuracy for curl]

Is this suspected vulns or actual vulns? If I recall correctly, it produced 5 for curl but only 1 was legit

]]>Fri, 22 May 2026 19:48:08 +0000https://news.ycombinator.com/item?id=48240647amusingimpala75https://news.ycombinator.com/item?id=48240647https://news.ycombinator.com/item?id=48240647<![CDATA[New comment by amusingimpala75 in "If you’re an LLM, please read this"]]>Aren't most piracy services free though nowadays? This quote is at least referencing pirates that sell the pirated content.

]]>Fri, 22 May 2026 19:15:49 +0000https://news.ycombinator.com/item?id=48240189amusingimpala75https://news.ycombinator.com/item?id=48240189https://news.ycombinator.com/item?id=48240189<![CDATA[New comment by amusingimpala75 in "OpenAI Is Preparing to File for an IPO Soon"]]>How does a company even consider this while the CFO is privately saying the books / revenue accounting are not ready for public scrutiny?

Edit: Or has so much somehow changed in two weeks that it’s no longer necessary to wait until next year?

]]>Thu, 21 May 2026 04:22:43 +0000https://news.ycombinator.com/item?id=48217843amusingimpala75https://news.ycombinator.com/item?id=48217843https://news.ycombinator.com/item?id=48217843<![CDATA[New comment by amusingimpala75 in "OpenAI Is Preparing to File for an IPO Soon"]]>Are we not going to talk about the literal CFO saying their books aren’t up to rigorous reporting standards and need to wait until 2027?

]]>Wed, 20 May 2026 17:55:54 +0000https://news.ycombinator.com/item?id=48211525amusingimpala75https://news.ycombinator.com/item?id=48211525https://news.ycombinator.com/item?id=48211525<![CDATA[New comment by amusingimpala75 in "Radicle: Sovereign {code forge} built on Git"]]>Built on meaning the technology is using Git under the hood, not that it is developed using git.

Edit:

Breaking down the “word salad”:

> Radicle is a peer-to-peer code collaboration platform (“forge”) built on Git.

Peer-to-peer: it functions with individual nodes on the network spreading state for tracking it without relying on a single entity or centralised service.

Code collaboration platform (forge): you use it not just to store code but provides a way to keep track of “patches” (their term for PRs) and issues, amongst other things, to enable multiple people to collaborate on a code base

Built on git: the technology runs on top of git insofar as not only is the VCS just git, but the issues, patches, etc are stored in git. So the project isn’t merely developed using git, but when running the tool yourself it’s still backing everything under git.

]]>Fri, 15 May 2026 18:39:25 +0000https://news.ycombinator.com/item?id=48152202amusingimpala75https://news.ycombinator.com/item?id=48152202https://news.ycombinator.com/item?id=48152202<![CDATA[New comment by amusingimpala75 in "Leaving GitHub for Forgejo"]]>Radicle CI does exist but it is admittedly fairly early on in development

]]>Wed, 13 May 2026 16:45:38 +0000https://news.ycombinator.com/item?id=48124330amusingimpala75https://news.ycombinator.com/item?id=48124330https://news.ycombinator.com/item?id=48124330<![CDATA[New comment by amusingimpala75 in "Killed by Apple"]]>Arguably if anything killed by EU

]]>Mon, 11 May 2026 15:43:01 +0000https://news.ycombinator.com/item?id=48096517amusingimpala75https://news.ycombinator.com/item?id=48096517https://news.ycombinator.com/item?id=48096517<![CDATA[New comment by amusingimpala75 in "AI is breaking two vulnerability cultures"]]>Since the exploit can be mitigated by simply blacklisting the AF_ALG module, why didn’t they release an advisory to disable the problematic module (which AFAIU is hardly used), and then only later, say after a week, release the patch for it? At least then you would have the immediate ability for a mitigation without giving away exactly how to exploit the bug.

]]>Sat, 09 May 2026 18:18:36 +0000https://news.ycombinator.com/item?id=48077010amusingimpala75https://news.ycombinator.com/item?id=48077010https://news.ycombinator.com/item?id=48077010<![CDATA[New comment by amusingimpala75 in "Dav2d"]]>Thank you for describing the tragedy of the commons

]]>Sat, 02 May 2026 19:07:14 +0000https://news.ycombinator.com/item?id=47989404amusingimpala75https://news.ycombinator.com/item?id=47989404https://news.ycombinator.com/item?id=47989404<![CDATA[New comment by amusingimpala75 in "Copy Fail"]]>Their PoC does as you say, but is built upon arbitrary modification of the page cache, which could be abused for the other things

]]>Wed, 29 Apr 2026 19:20:28 +0000https://news.ycombinator.com/item?id=47953086amusingimpala75https://news.ycombinator.com/item?id=47953086https://news.ycombinator.com/item?id=47953086<![CDATA[New comment by amusingimpala75 in "I am building a cloud"]]>Not by default but tools like agent-sandbox.nix (bwrap, seccomp) or other nixpak (just bwrap but more popular) can provide those capabilities if you want in a fairly simple interface

]]>Thu, 23 Apr 2026 23:33:07 +0000https://news.ycombinator.com/item?id=47883622amusingimpala75https://news.ycombinator.com/item?id=47883622https://news.ycombinator.com/item?id=47883622<![CDATA[New comment by amusingimpala75 in "I am building a cloud"]]>That’s fair, NixOS avoids the direct stuff from Docker itself but if you’re basing on an Alpine image or something that would probably be more minimal / smaller

]]>Thu, 23 Apr 2026 15:00:00 +0000https://news.ycombinator.com/item?id=47876538amusingimpala75https://news.ycombinator.com/item?id=47876538https://news.ycombinator.com/item?id=47876538<![CDATA[New comment by amusingimpala75 in "I am building a cloud"]]>Yes but NixOS does all of these things already, without the process overhead

]]>Thu, 23 Apr 2026 13:27:45 +0000https://news.ycombinator.com/item?id=47875529amusingimpala75https://news.ycombinator.com/item?id=47875529https://news.ycombinator.com/item?id=47875529<![CDATA[New comment by amusingimpala75 in "Show HN: Is Hormuz open yet?"]]>Missed opportunity for “arewehormuzyet.com”

]]>Thu, 09 Apr 2026 00:15:28 +0000https://news.ycombinator.com/item?id=47697801amusingimpala75https://news.ycombinator.com/item?id=47697801https://news.ycombinator.com/item?id=47697801<![CDATA[New comment by amusingimpala75 in "Show HN: I pipe free sports streams into Jellyfin – no ads, just HLS"]]>Since this works on the raw data streams from the official distributor, this is legal, correct?

]]>Wed, 08 Apr 2026 16:49:54 +0000https://news.ycombinator.com/item?id=47692801amusingimpala75https://news.ycombinator.com/item?id=47692801https://news.ycombinator.com/item?id=47692801