miniblog.

← Back to all posts
May 11, 2019 at 23:10
A story of exploiting Android through releasing packages with the same name and ID on public repositories: https://blog.autsoft.hu/a-confusing-dependency/

Related Posts

Jul 4, 2022 at 22:15
When adding a new language to difftastic, it's hard to find interesting git repositories to test against. I've started just querying GitHub for the most starred repos for a given language. For example, here's Haskell: https://github.com/search?l=&o=desc&q=stars%3A%3E500+language%3AHaskell&s=stars&type=Repositories
Feb 14, 2022 at 06:16
Git repositories have the lovely properties that deletes aren't propagated. Shared/cloud storage sync deletes across devices. Accidentally deleting content in a local git repo, and even pushing it, is a safe operation.
Jul 31, 2021 at 17:33
I used to think repositories with multiple packages were a niche feature (cargo workspaces in Rust, Lerna in JS), but they're really valuable for the ecosystem. Large projects will naturally develop mature, reusable code. Making it easy to release their helpers is worthwhile.