Hacker News: ollien

New comment by ollien in "PS3 Emulator Devs Politely Ask That People Stop Flooding It with AI PRs"

ollien — Mon, 11 May 2026 00:45:30 +0000

I've struggled with this "responsibility" take. What does it mean in the context of an open source project? As far as I understand it, the original contributors of bugs are often not the ones fixing them (though they can be). Is it that if you write enough buggy code you get banned as a contributor? Is it that you're not allowed to say Claude ate my homework?

New comment by ollien in "I’ve banned query strings"

ollien — Sat, 09 May 2026 22:08:54 +0000

When the goal is "the funniest way", I think that's a hit :)

New comment by ollien in "I’ve banned query strings"

ollien — Sat, 09 May 2026 20:05:41 +0000

I don't think it's an abuse, RFC9110 defines 414 as a response for "refusing to service the request because the target URI is longer than the server is willing to interpret". Since adding a query string involves only adding characters, this seems fine; there's no stipulation as far as I can tell that all pages a server hosts must adhere to the same length. I'd be curious if any well-known clients interpret it that way though, and make caching decisions based on it. As far as I know, they shouldn't.

Obviously it's against the spirit of the thing, but I don't think it's wrong per-se.

New comment by ollien in "Tell HN: Fiverr left customer files public and searchable"

ollien — Wed, 15 Apr 2026 00:46:02 +0000

I've never been in the position that I've had to deal with this. Is the best you can do in this situation to pull the files and optionally republish them to a robots.txt'd path (with authn/z, too)? I can't imagine you can get it pulled from search engines very quickly...

New comment by ollien in "Show HN: I made a "programming language" looking for feedback"

ollien — Mon, 30 Mar 2026 00:06:08 +0000

I've been waiting for something like this to come along. I keep hearing people say LLMs are a new abstraction layer, and I fundamentally disagree. We don't commit our compiled machine code, we commit our C. Yet, with LLMs, we commit our generated source code, completely throwing away the English language abstraction.

This seems to scratch that itch. The non determinism makes it probably not suitable for most uses, though.

New comment by ollien in "OpenTelemetry profiles enters public alpha"

ollien — Thu, 26 Mar 2026 19:59:50 +0000

As far as I'm aware, Pyroscope itself is not a profiler, but a place you can send/query profiles. OpenTelemtry is releasing a profiler, so they don't compare. One can be used with the other.

New comment by ollien in "OpenTelemetry profiles enters public alpha"

ollien — Thu, 26 Mar 2026 18:47:26 +0000

Very excited for this. We've used the Elixir version of this at $WORK a handful of times and have found it exceptionally useful.

New comment by ollien in "AI Usage Policy"

ollien — Fri, 23 Jan 2026 13:14:00 +0000

Not sure how I feel about transcripts. Ultimately I do my best to make any contributions I make high quality, and that means taking time to polish things. Exposing the tangled mess of my thought process leading up to that either means I have to "polish" that too (whatever that ends up looking like), or put myself in a vulnerable position of showing my tangled process to get to the end result.

New comment by ollien in "Install.md: A standard for LLM-executable installation"

ollien — Sat, 17 Jan 2026 01:01:43 +0000

I don't love the concept, but I do wonder if it could be improved by using a skill that packages and install script, and context for troubleshooting. That way you have the benefits of using an install script, and at least a way to provide pointers for those unfamiliar with the underlying tooling.

New comment by ollien in "Unauthenticated remote code execution in OpenCode"

ollien — Tue, 13 Jan 2026 12:27:36 +0000

Yep yep, makes sense. I was thinking about it running in headless mode (i.e. with --listen)

New comment by ollien in "Unauthenticated remote code execution in OpenCode"

ollien — Tue, 13 Jan 2026 04:36:31 +0000

> Neovim’s server defaults to named pipes or domain sockets, which do not have this issue. The documentation states that the TCP option is insecure.

Good note on pipes / domain sockets, but it doesn't appear there's a "default", and the example in the docs even uses TCP, despite the warning below it.

https://neovim.io/doc/user/api.html#rpc-connecting

(EDIT: I guess outside of headless mode it uses a named pipe?)

> VS Code’s ssh daemon is authenticated.

How is it authenticated? I went looking briefly but didn't turn up much; obviously there's the ssh auth itself but if you have access to the remote, is there an additional layer of auth stopping anyone from executing code via the daemon?

New comment by ollien in "Unauthenticated remote code execution in OpenCode"

ollien — Tue, 13 Jan 2026 00:08:44 +0000

A coworker raised an interesting point to me. The CORS fix removes exploitation by arbitrary websites (but obviously allows full access from the opencode domain), but let's take that piece out for a second...

What's the difference here between this and, for example, the Neovim headless server or the VSCode remote SSH daemon? All three listen on 127.0.0.1 and would grant execution access to another process who could speak to them.

Is there a difference here? Is the choice of HTTP simply a bad one because of the potential browser exploitation, which can't exist for the others?

New comment by ollien in "RTX 5090 and Raspberry Pi: Can it game?"

ollien — Sat, 10 Jan 2026 03:00:13 +0000

I'm not very familiar with this layer of things; what does it mean for a GPU to drive a boot sequence? Is there something massively parallel that is well suited for the GPU?

New comment by ollien in "Minecraft removing obfuscation in Java Edition"

ollien — Wed, 29 Oct 2025 22:04:06 +0000

It's even recognized by the Library of Congress!

https://www.loc.gov/static/programs/national-recording-prese...

New comment by ollien in "Pop OS 24.04 LTS Beta"

ollien — Fri, 26 Sep 2025 10:53:24 +0000

This might be what finally gets me to ditch my i3+xfce setup. Anyone done a similar transition?

New comment by ollien in "GMP damaging Zen 5 CPUs?"

ollien — Sat, 30 Aug 2025 23:40:54 +0000

It is important to remember that CPUs scale their turbo with thermals. It's not a matter of needing to turn turbo on and off

New comment by ollien in "GMP damaging Zen 5 CPUs?"

ollien — Thu, 28 Aug 2025 12:59:49 +0000

> The small coolers used by them are not recommended by Noctua for 9950X

Noctua's CPU compatibility page lists the NH-U9s as "medium turbo/overclocking headroom" for the 9950X [0]. I don't think it's fair to suggest their cooler choice is the problem here.

[0] https://ncc.noctua.at/cpus/model/AMD-Ryzen-9-9950X-1831

New comment by ollien in "2025 Stack Overflow Developer Survey Results"

ollien — Tue, 29 Jul 2025 16:55:15 +0000

As in, Gemini users are interested in Tailwind? Is this suggesting that Gemini is suggesting tailwind, and people are using it? It's very weird

New comment by ollien in "2025 Stack Overflow Developer Survey Results"

ollien — Tue, 29 Jul 2025 16:08:41 +0000

Can anyone make sense of the sankey chart under "Developers at all levels are exploring the evolving AI landscape through Stack Overflow"? How does "Large Language Model" flow into "Tailwind CSS 4"?

New comment by ollien in "Cloudflare 1.1.1.1 Incident on July 14, 2025"

ollien — Wed, 16 Jul 2025 14:21:46 +0000

I'm a bit uneducated here - why was the other 1.1.1.0/24 announcement previously suppressed? Did it just express a high enough cost that no one took it on compared to the CF announcement?