<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: awoimbee</title><link>https://news.ycombinator.com/user?id=awoimbee</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Wed, 01 Jul 2026 11:24:56 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=awoimbee" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by awoimbee in "Sem: New primitive for code understanding – not LSPs, but entities on top of Git"]]></title><description><![CDATA[
<p>The benchmarks aren't great, they're super specific to sem's output: why would I ask Claude how many "entities" were modified by a commit and do I need a tool specifically for this request ? Note that an "entity" is a sem-specific concept...</p>
]]></description><pubDate>Sat, 06 Jun 2026 22:50:23 +0000</pubDate><link>https://news.ycombinator.com/item?id=48429831</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=48429831</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48429831</guid></item><item><title><![CDATA[New comment by awoimbee in "Codex just found a "workaround" of not having sudo on my PC"]]></title><description><![CDATA[
<p>Use podman then, or rootless docker if you can make it work</p>
]]></description><pubDate>Sun, 31 May 2026 19:29:18 +0000</pubDate><link>https://news.ycombinator.com/item?id=48348884</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=48348884</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48348884</guid></item><item><title><![CDATA[New comment by awoimbee in "DeepSeek reasonix, DeepSeek native coding agent with high caching and low cost"]]></title><description><![CDATA[
<p>You didn't quote the interesting part:<p>> our implementation is it only prunes calls from > 3 user messages ago, if context is > 40K, and only if there's at least 20K tokens to be removed<p>Seems reasonable to me and explains why I can have long sessions (way longer than with zed agents) while still hitting cache. Opencode is just missing per-provider TTL.</p>
]]></description><pubDate>Mon, 25 May 2026 07:43:39 +0000</pubDate><link>https://news.ycombinator.com/item?id=48264425</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=48264425</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48264425</guid></item><item><title><![CDATA[New comment by awoimbee in "Dirtyfrag: Universal Linux LPE"]]></title><description><![CDATA[
<p>And your containers need to have specific capabilities enabled, which aren't by default on kubernetes and podman.</p>
]]></description><pubDate>Thu, 07 May 2026 21:30:44 +0000</pubDate><link>https://news.ycombinator.com/item?id=48055344</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=48055344</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48055344</guid></item><item><title><![CDATA[New comment by awoimbee in "Moving a large-scale metrics pipeline from StatsD to OpenTelemetry / Prometheus"]]></title><description><![CDATA[
<p>Directly emitting metrics using OTLP instead of having the OTel receiver scrape the metrics endpoint is interesting.
I never made that move because the Prometheus metrics endpoint works and is so simple, and it's what most projects (eg kubernetes) use.</p>
]]></description><pubDate>Thu, 16 Apr 2026 06:35:10 +0000</pubDate><link>https://news.ycombinator.com/item?id=47789415</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=47789415</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47789415</guid></item><item><title><![CDATA[New comment by awoimbee in "OpenSUSE Kalpa"]]></title><description><![CDATA[
<p>Tubleweed has snapshots and rollbacks too by default. But yeah immutable distros are good for beginners so they don't destroy their system!</p>
]]></description><pubDate>Tue, 17 Mar 2026 17:58:02 +0000</pubDate><link>https://news.ycombinator.com/item?id=47416020</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=47416020</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47416020</guid></item><item><title><![CDATA[New comment by awoimbee in "Infrastructure decisions I endorse or regret after 4 years at a startup (2024)"]]></title><description><![CDATA[
<p>I was the sole DevOps at my company for a long time, the team is now bigger.
I used terraform for AWS and pulumi for K8S (terraform was too restrictive).<p>IMO pulumi is a huge gain of productivity when you know what you're doing.
Cons:
* It's plagued by bugs and the pulumi-kubernetes provider is not getting enough attention from the pulumi team (they're always working on compatibility with yet another language instead of focusing on one thing)
* You end up with your very specific/personal codebase instead of having a generic/standard thing<p>Still, no regrets, I saved so much time thanks to pulumi!<p>With a bigger team:
* Oboarding people takes more time
* You end up with code quality issues. Most "DevOps" people aren't devs, sadly.</p>
]]></description><pubDate>Sat, 21 Feb 2026 10:00:42 +0000</pubDate><link>https://news.ycombinator.com/item?id=47099199</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=47099199</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47099199</guid></item><item><title><![CDATA[New comment by awoimbee in "Garage – An S3 object store so reliable you can run it outside datacenters"]]></title><description><![CDATA[
<p>How is garage for a simple local dev env ?
I recently used seaweedfs since they have a super simple minimal setup compared to garage which seemed to require a config file just to get started.</p>
]]></description><pubDate>Fri, 19 Dec 2025 20:11:43 +0000</pubDate><link>https://news.ycombinator.com/item?id=46330319</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=46330319</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=46330319</guid></item><item><title><![CDATA[New comment by awoimbee in "Core Devices keeps stealing our work"]]></title><description><![CDATA[
<p>That's why the GPL license was created.</p>
]]></description><pubDate>Tue, 18 Nov 2025 08:29:05 +0000</pubDate><link>https://news.ycombinator.com/item?id=45962705</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=45962705</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=45962705</guid></item><item><title><![CDATA[New comment by awoimbee in "Helm 4.0"]]></title><description><![CDATA[
<p>The feature that makes me love pulumi is crd2pulumi, it generates simple, type checked and documented libraries from CRDs.<p>E.g. these are the libs I use, generated from CRDs: <a href="https://github.com/Extrality/pulumi-crds" rel="nofollow">https://github.com/Extrality/pulumi-crds</a></p>
]]></description><pubDate>Sat, 15 Nov 2025 00:43:17 +0000</pubDate><link>https://news.ycombinator.com/item?id=45933978</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=45933978</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=45933978</guid></item><item><title><![CDATA[New comment by awoimbee in "Hyperflask – Full stack Flask and Htmx framework"]]></title><description><![CDATA[
<p>I ran into:
- too high memory usage
- no warning when a task doesn't yield
- monkey patching:
  * general confusion like threading.local behaving differently
  * pain to integrate sentry in gunicorn with gevent since you need to import sentry after monkey patching. The OTel libs work better but you need to be careful
  * all compiled libs need to be replaced (eg psycogreen)
...</p>
]]></description><pubDate>Fri, 17 Oct 2025 07:55:59 +0000</pubDate><link>https://news.ycombinator.com/item?id=45614273</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=45614273</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=45614273</guid></item><item><title><![CDATA[New comment by awoimbee in "Hyperflask – Full stack Flask and Htmx framework"]]></title><description><![CDATA[
<p>Building a framework on a non-async foundation (flask) in 2025 is bizarre.
The only way to scale a flask API is to use gevent, which is just problems waiting to happen. Asyncio is just better, safer and has been adopted by the industry.</p>
]]></description><pubDate>Thu, 16 Oct 2025 18:11:43 +0000</pubDate><link>https://news.ycombinator.com/item?id=45608772</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=45608772</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=45608772</guid></item><item><title><![CDATA[New comment by awoimbee in "iPhone Air"]]></title><description><![CDATA[
<p>THANK YOU FOR YOUR ATTENTION ON THIS MATTER<p>This announcement contains so many fake marketing words I can't help but read it in DJT's voice...
Add Tim Apple's present and yeah, cool tech, not interested.</p>
]]></description><pubDate>Wed, 10 Sep 2025 06:08:57 +0000</pubDate><link>https://news.ycombinator.com/item?id=45193916</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=45193916</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=45193916</guid></item><item><title><![CDATA[New comment by awoimbee in "I ditched Docker for Podman"]]></title><description><![CDATA[
<p>The main issue is podman support on Ubuntu.
Ubuntu ships outdated podman versions that don't work out of the box.
So I use podman v5, GitHub actions uses podman v3, and my coworkers on Ubuntu use docker.
So now my script must work with old podman, recent podman and docker</p>
]]></description><pubDate>Fri, 05 Sep 2025 15:10:43 +0000</pubDate><link>https://news.ycombinator.com/item?id=45139493</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=45139493</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=45139493</guid></item><item><title><![CDATA[New comment by awoimbee in "Unfortunately, the ICEBlock app is activism theater"]]></title><description><![CDATA[
<p>This can't be reduced to a boolean (as always). The issue is that ICE is doing #2 via #1.</p>
]]></description><pubDate>Tue, 02 Sep 2025 11:13:03 +0000</pubDate><link>https://news.ycombinator.com/item?id=45101482</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=45101482</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=45101482</guid></item><item><title><![CDATA[New comment by awoimbee in "XZ Utils Backdoor Still Lurking in Docker Images"]]></title><description><![CDATA[
<p>Containers != Docker
Vulnerable software is an issue outside containers too.
Containers allow better isolation.</p>
]]></description><pubDate>Tue, 19 Aug 2025 10:43:20 +0000</pubDate><link>https://news.ycombinator.com/item?id=44950141</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=44950141</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=44950141</guid></item><item><title><![CDATA[New comment by awoimbee in "Google restricts Android sideloading"]]></title><description><![CDATA[
<p>I can't find sources to this one sided article nor can I find anything recent when searching for it</p>
]]></description><pubDate>Thu, 05 Jun 2025 17:05:03 +0000</pubDate><link>https://news.ycombinator.com/item?id=44193521</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=44193521</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=44193521</guid></item><item><title><![CDATA[New comment by awoimbee in "CVE-2024-47081: Netrc credential leak in PSF requests library"]]></title><description><![CDATA[
<p>That's some horrible url parsing code...<p>But honestly urllib sucks:<p>url.hostname doesn't return the port
url.netloc also returns the basic auth part
So you have to f"{u.hostname}:{u.port}"</p>
]]></description><pubDate>Tue, 03 Jun 2025 21:22:44 +0000</pubDate><link>https://news.ycombinator.com/item?id=44174888</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=44174888</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=44174888</guid></item><item><title><![CDATA[New comment by awoimbee in "Ask HN: What projects do you donate to?"]]></title><description><![CDATA[
<p>I donate to immich even though I still use Google photos since I don't want to host critical infra in my spare time<p><a href="https://github.com/immich-app">https://github.com/immich-app</a></p>
]]></description><pubDate>Tue, 27 May 2025 06:57:36 +0000</pubDate><link>https://news.ycombinator.com/item?id=44104556</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=44104556</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=44104556</guid></item><item><title><![CDATA[New comment by awoimbee in "Writing "/etc/hosts" breaks the Substack editor"]]></title><description><![CDATA[
<p>I'm in the position where I have to run a WAF to pass security certifications.
The only open source WAFs are modsecurity and it's beta successor, coraza. 
These things are dumb, they just use OWASP's coreruleset which is a big pile of unreadable garbage.</p>
]]></description><pubDate>Sat, 26 Apr 2025 17:55:55 +0000</pubDate><link>https://news.ycombinator.com/item?id=43805706</link><dc:creator>awoimbee</dc:creator><comments>https://news.ycombinator.com/item?id=43805706</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=43805706</guid></item></channel></rss>