<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: pxc</title><link>https://news.ycombinator.com/user?id=pxc</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Wed, 01 Jul 2026 03:08:36 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=pxc" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by pxc in "Migrating from Proxmox to NixOS and Incus"]]></title><description><![CDATA[
<p>> We must be living in a completely different world then.<p>I'm not even a real Nix old-timer, but I've been using NixOS on the job for roles in IT operations and software development for more than 10 years now.<p>And for a few years before that, I used Nix on a personal basis as a college student.<p>I'm aware of the rapid growth in user interest, of course; I was there for it!</p>
]]></description><pubDate>Fri, 26 Jun 2026 03:04:06 +0000</pubDate><link>https://news.ycombinator.com/item?id=48681898</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=48681898</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48681898</guid></item><item><title><![CDATA[New comment by pxc in "Migrating from Proxmox to NixOS and Incus"]]></title><description><![CDATA[
<p>> Firstly, NixOS is hype<p>NixOS is more than 20 years old, and virtually all of the things that make it compelling were already present a decade ago. If it's not for you, you'll know after you give it a try. But for those for whom it clicks, it's desirable because it just provides a more enjoyable computing experience. It's not more complicated than that.<p>> Secondly, "AI ... can .... safely modify my infrastructure", OP is either being a troll or haven't seem how the whole IT world is upside down because of those very same statements.<p>I do lots of Terraform work and some Nix work with LLM agents at my job. Is it worth it to rewrite a huge amount of whatever infrastructure-as-code your LLM agent generates? Hell yes; they generate way too much code and they make lots of mistakes. Are LLM agents still useful for experimentation via infrastructure-as-code? Also yes.<p>> Thirdly, "my entire infrastructure is defined in text files", you clearly never heard of Ansible.<p>I've used Ansible and Puppet at previous jobs. They don't manage state in a comparable way to NixOS. It just ain't the vibe. Domen Kozar wrote a decent blog post about the technical differences a decade ago: <a href="https://www.domenkozar.com/2014/03/11/why-puppet-chef-ansible-arent-good-enough-and-we-can-do-better/" rel="nofollow">https://www.domenkozar.com/2014/03/11/why-puppet-chef-ansibl...</a><p>But the real reason is that those technical differences add up to a more pleasant experience for NixOS.<p>In my earlier days as a NixOS user, I used to get really excited with its <i>design</i> and how cool it is, and the neat technical properties that fall out of that (atomic upgrades! rollbacks! (and no filesystem snapshotting needed!)). I still think those things are awesome. But at the risk of feeding into your impression that "NixOS is hype", I've learned since then  that the better pitch is about the subjectivity of using it: it <i>feels good</i> to use because experimentation is extremely cheap, reversible, transparent, and... fun. If you know, you know.</p>
]]></description><pubDate>Fri, 26 Jun 2026 02:31:16 +0000</pubDate><link>https://news.ycombinator.com/item?id=48681695</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=48681695</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48681695</guid></item><item><title><![CDATA[New comment by pxc in "Nobody cracks open a programming book anymore"]]></title><description><![CDATA[
<p>My two favorite non-fiction sections of the bookstore are dead and dying. The computer section, if it still exists, is just things like _Excel for Dummies_, and the philosophy books have all been pushed out by self help and dime-store "metaphysics".<p>But I've started reading programming books again recently, on my e-reader and on my laptop. People are still writing them, and they're still good. We should all go buy some!<p>For my own usage, I don't see chatbots as supplanting textbooks. If anything, they pair well; reading a book from cover to cover gives me the breadth and depth I want, but LLMs are there for tangents and questions that come up along the way. I was reading a book and chatting with Claude like tihs just yesterday, for a few hours.</p>
]]></description><pubDate>Tue, 26 May 2026 02:11:24 +0000</pubDate><link>https://news.ycombinator.com/item?id=48274171</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=48274171</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48274171</guid></item><item><title><![CDATA[New comment by pxc in "Green card seekers must leave U.S. to apply, Trump administration says"]]></title><description><![CDATA[
<p>"Green card" literally refers to <i>US</i> permanent residency cards; it's called that because the physical cards issued by the US are/were green. "Other contexts" are riffing on <i>actual</i> green cards as a metaphor, and if speakers in other contexts want to talk about legal specificities, they should use an accurate term...</p>
]]></description><pubDate>Sat, 23 May 2026 22:31:35 +0000</pubDate><link>https://news.ycombinator.com/item?id=48252238</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=48252238</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48252238</guid></item><item><title><![CDATA[New comment by pxc in "Lanzaboote – NixOS Secure Boot"]]></title><description><![CDATA[
<p>You have to be either a committer in general or a maintainer of a specific package to merge PRs into Nixpkgs. Contributors' PR approvals in Nixpkgs are just an informal signal for maintainers and committers to consider. And maintainers can only merge changes related to the packages they maintain, not other random changes.</p>
]]></description><pubDate>Wed, 20 May 2026 01:21:07 +0000</pubDate><link>https://news.ycombinator.com/item?id=48201880</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=48201880</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48201880</guid></item><item><title><![CDATA[New comment by pxc in "Devenv 2.1: Nix with zsh, fish, and nushell via libghostty"]]></title><description><![CDATA[
<p>Flox is a more comprehensive platform, it's proprietary, and it's designed to replace/hide Nix to some extent. Devenv is open-source and basically standalone, and uses the same kind of Nix configuration interface Nix users are used to from NixOS, Home Manager, Nix-Darwin, etc.<p>I like devenv a lot and use it on my team at work and for personal projects. Nobody on my team is that "into Nix" other than me, but they don't have much trouble setting up new projects with it. LLM agents are pretty good at working with it as well.</p>
]]></description><pubDate>Thu, 14 May 2026 23:19:02 +0000</pubDate><link>https://news.ycombinator.com/item?id=48142503</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=48142503</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48142503</guid></item><item><title><![CDATA[New comment by pxc in "Whohas – Command-line utility for cross-distro, cross-repository package search"]]></title><description><![CDATA[
<p>Who has?<p>Nixpkgs has. :)<p>Nowadays the only search like this I need to run is<p><pre><code>  nix-locate -r 'bin/foo$'
</code></pre>
It would be nice to have a CLI alternative to Repology, though.</p>
]]></description><pubDate>Fri, 01 May 2026 17:57:10 +0000</pubDate><link>https://news.ycombinator.com/item?id=47977864</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47977864</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47977864</guid></item><item><title><![CDATA[New comment by pxc in "Shai-Hulud Themed Malware Found in the PyTorch Lightning AI Training Library"]]></title><description><![CDATA[
<p>> virtualenv isn't relocatable out of the box, so how else would you deploy a python project?<p>My team has a handful of Python projects. Here's how they work:<p>devenv.nix provides a Python runtime and all native dependencies, git hooks for linters and things like this. It integrates with direnv and the Python package manager (currently Poetry 1.x for older projects and uv for newer ones) so that when you cd in you get a virtualenv with everything you need, scripts in the project (or stubs for them) magically appear on your PATH so you don't need to use `uv run` or whatever it is for anything.<p>flake.nix provides a publishable artifact for projects that we run on workstations or servers. It autogenerates a Nix package from pyproject.toml and friends. You can reproducibly build it across platforms without virtualization, you can push it up to a binary cache and avoid source builds, whatever. It's great.<p>For projects that we run in cloud-native containers (for us AWS Fargate and AWS Lambda), we don't currently ship our own container images. We just publish zip files that we generate with a Poetry plugin that runs builds inside containers that have the same images as are used by AWS in its default runtime environments and push them up with the AWS CLI. The exact steps are stored as a Devenv script so the CI can be a one liner and you can run everything locally just like you would in CI.<p>> the python community did nothing<p>Python sucks.<p>But you can still represent your Python project as a proper Python package and get reproducible-ish build artifacts that are local-first and embrace Python-native tooling and ship it up to prod in a portable format with or without Docker. It only takes one engineer spending a day or two to work it out once for the whole team or maybe the whole company. You just need someone to be willing to RTFM on a package manager or two. The Python community seems to be largely lacking such people but your team doesn't have to be.</p>
]]></description><pubDate>Fri, 01 May 2026 17:32:18 +0000</pubDate><link>https://news.ycombinator.com/item?id=47977550</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47977550</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47977550</guid></item><item><title><![CDATA[New comment by pxc in "Apple accidentally left Claude.md files Apple Support app"]]></title><description><![CDATA[
<p>The experience of using LLMs as digital assistants so far is not great. Gemini on Android sucks so bad it's hard to describe. It can't tell what its own capabilities are, it can't inspect the states of the apps it manipulates, it hallucinates constantly, and it needs more handholding than the crappy old decision tree to do the right thing. I much more often have to pull over to make sure Google Maps is doing the right thing than I ever used to before, because trusting the LLM to be "smarter" so often fails for me.<p>Be careful what you wish for.</p>
]]></description><pubDate>Fri, 01 May 2026 13:58:15 +0000</pubDate><link>https://news.ycombinator.com/item?id=47974895</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47974895</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47974895</guid></item><item><title><![CDATA[New comment by pxc in "Shai-Hulud Themed Malware Found in the PyTorch Lightning AI Training Library"]]></title><description><![CDATA[
<p>> It's not just common, it's almost universal to run `pip install` on production machines as a means of deploying a Python program.<p>Maybe a Python culture problem; maybe a hallmark of Python's status as an "easy to hire for", manager-friendly, least common denominator blub language; maybe a risk that stems from the conveniences of interpreter languages... but this is such a shame in this day and age.<p>It's seriously not difficult to do better. And if this is what you're doing, you're also missing out on reproducible environments both in dev and in prod. At least autogenerate a Nix package! You still don't need to publish any artifacts, but you can at least have the thing build in a sandbox or yeet the whole closure over SSH.<p>It's also not that hard to get a Docker image out of a Python project.<p>You only need one platform-minded person on the whole development team to make this happen.<p>What is going on???</p>
]]></description><pubDate>Fri, 01 May 2026 01:13:38 +0000</pubDate><link>https://news.ycombinator.com/item?id=47970293</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47970293</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47970293</guid></item><item><title><![CDATA[New comment by pxc in "The Zig project's rationale for their anti-AI contribution policy"]]></title><description><![CDATA[
<p>At the end of the day, LLM slop PR spammers are essentially adversarial actors. Git hooks are ultimately a tool for good faith developers <i>within</i> a given community (your team, your company, your regular contributors) in maintaining good hygiene and avoiding lapses into preventable mistakes. That's true for all CI, too.<p>And the truth is, too, that it's super easy for an LLM agent to run a build and tests. Good faith contributors using LLMs will never open PRs that don't build not because they're willing to "go the extra mile" and do manual work, but because they give the slightest fuck and have any respect or consideration for the humans they're working with.<p>LLM spam presents a different problem than any of that stuff was meant to solve. It's a malicious act, and you're right that tooling that burns the defender's compute can't be a solution. :-\</p>
]]></description><pubDate>Thu, 30 Apr 2026 18:47:49 +0000</pubDate><link>https://news.ycombinator.com/item?id=47966647</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47966647</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47966647</guid></item><item><title><![CDATA[New comment by pxc in "The Zig project's rationale for their anti-AI contribution policy"]]></title><description><![CDATA[
<p>> Hooks (although there's no clean way to enforce they be "installed" on a clone), GHA Workflows (or their equivalents on other forges).<p>Git supports pre-receive hooks. But big multitenant forges like GitHub.com don't allow you to configure them because they're difficult to secure well. (Some of their commercial features are likely based on them, though.)<p>If you self-host a forge, though, you can configure arbitrary pre-receive hooks for it in order to do things like prevent pushes from succeeding if they contain verifiably working secrets, for example. You could extend that to do whatever you want (at your own risk).</p>
]]></description><pubDate>Thu, 30 Apr 2026 16:25:22 +0000</pubDate><link>https://news.ycombinator.com/item?id=47964840</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47964840</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47964840</guid></item><item><title><![CDATA[New comment by pxc in "Meta in row after workers who saw smart glasses users having sex lose jobs"]]></title><description><![CDATA[
<p>The most important real use case of devices like this is as accessibility tech. Blind people everywhere are talking about devices like this.<p>It's the same with phones. I know blind people who have been harassed for holding their phones up to things as though they are taking pictures, but in fact they're using the camera on their phone to render signage legible to them, or having their phone (or a person on the other end) read it.<p>Banning this in a way that doesn't in practice cause problems for visually impaired people would be difficult. It might also be difficult to do in a way that doesn't harm, for instance, accountability for cops who are acting in public.<p>The impulse to "ban" is sometimes a bit naive imo.</p>
]]></description><pubDate>Thu, 30 Apr 2026 15:11:10 +0000</pubDate><link>https://news.ycombinator.com/item?id=47963719</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47963719</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47963719</guid></item><item><title><![CDATA[New comment by pxc in "Bugs Rust won't catch"]]></title><description><![CDATA[
<p>There aren't true 1:1 clones, but there's ripgrep (inspired by GNU grep) and fd (inspired by GNU find). Those two I like, though. I think they're thoughtfully designed and in ripgrep's case at least (I just haven't read posts/comments by fd's author), it was developed with some close study of other grep implementations. I still use GNU grep and GNU find as well, but rg and fd are often nice for me.</p>
]]></description><pubDate>Wed, 29 Apr 2026 15:52:40 +0000</pubDate><link>https://news.ycombinator.com/item?id=47950133</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47950133</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47950133</guid></item><item><title><![CDATA[New comment by pxc in "Bugs Rust won't catch"]]></title><description><![CDATA[
<p>I thought it was a learning exercise, and maybe some corporations also like it because it has more permissive licensing.</p>
]]></description><pubDate>Wed, 29 Apr 2026 15:47:32 +0000</pubDate><link>https://news.ycombinator.com/item?id=47950052</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47950052</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47950052</guid></item><item><title><![CDATA[New comment by pxc in "Ghostty is leaving GitHub"]]></title><description><![CDATA[
<p>What are those strengths? I've worked with projects hosted on GitHub, GitLab, and Azure DevOps at my current job, and was generally not impressed with AzDO (mostly looking at CI stuff).</p>
]]></description><pubDate>Wed, 29 Apr 2026 01:13:00 +0000</pubDate><link>https://news.ycombinator.com/item?id=47943020</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47943020</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47943020</guid></item><item><title><![CDATA[New comment by pxc in "Ghostty is leaving GitHub"]]></title><description><![CDATA[
<p>As someone whose employer uses both: nope, not yet</p>
]]></description><pubDate>Wed, 29 Apr 2026 00:55:05 +0000</pubDate><link>https://news.ycombinator.com/item?id=47942894</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47942894</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47942894</guid></item><item><title><![CDATA[New comment by pxc in "Ghostty is leaving GitHub"]]></title><description><![CDATA[
<p>> This is a very HN take.<p>It's something that Microsoft leadership themselves certainly seems to have believed at times. From "developers, developers, developers, developers!" to courting Linux-targeting webdevs with WSL to VSCode, they've done lots to court developers, sometimes explicitly professing it as a central part of their strategy.<p>I can't disagree with any of the rest, though. Microsoft's (anti-)competitive strategy has never been about excellence so much as positioning worse stuff to win in virtue of network effects and integrations.</p>
]]></description><pubDate>Wed, 29 Apr 2026 00:50:31 +0000</pubDate><link>https://news.ycombinator.com/item?id=47942865</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47942865</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47942865</guid></item><item><title><![CDATA[New comment by pxc in "Before GitHub"]]></title><description><![CDATA[
<p>Huh? The usual pattern is that experiments belong to a user and then they graduate to having their own org iff they grow enough maintainers for that to make sense. How is that toxic or self-centered? It's just like "here's a place to do low-stakes experiments in public view". It's not particularly about ego or selfishness or whatever.</p>
]]></description><pubDate>Tue, 28 Apr 2026 23:12:23 +0000</pubDate><link>https://news.ycombinator.com/item?id=47942132</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47942132</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47942132</guid></item><item><title><![CDATA[New comment by pxc in "Steam Controller: It's almost here"]]></title><description><![CDATA[
<p>The original has the best ergonomics of any controller in my sizeable collection. I'm curious to see how this thing holds up.</p>
]]></description><pubDate>Tue, 28 Apr 2026 12:56:11 +0000</pubDate><link>https://news.ycombinator.com/item?id=47933914</link><dc:creator>pxc</dc:creator><comments>https://news.ycombinator.com/item?id=47933914</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47933914</guid></item></channel></rss>