Other than the low chance of you being targeted I would say only expose your services through something like Wireguard. Other than the port being open attackers won’t know what it’s for. Wireguard doesn’t respond if you don’t immediately authenticate.

There’s a little overlap with things like Terraform but it’s not as bad as if they bought the companies that owned Chef or Puppet.

Can’t believe that’s gone through. They took JBoss when they bought RedHat so now it doesn’t have to compete with Websphere and when they bought HashiCorp Openshift doesn’t have to compete with Nomad. At this rate they’ll buy CyberArk and then that’s no more competition with Vault.

Even in this scenario it’s feasible for standards to change. ISBN-15 becomes a thing and suddenly you have books that never get an ISBN-13 so your primary key constraints cause an error for trying to insert a null. Granted, you can see a lot of these changes coming but again, they come on a schedule you don’t control.

Got hands on experience with this. Wasn’t my design choice but I inherited an app with a database where one of the keys was tied to a completely separate database. I mean at the time it probably made sense but the most unlikely of scenarios actually happened: that other database, the one I had zero control over, was migrated to a new platform. All of those keys were synthetic so of course they were like, “Meh, why we gotta keep the old keys?” So post-migration my app becomes basically useless and I spent 6 hours writing migration code, some of it on off hours, to fix my data.

So it’s questionable whether a foreign key of a completely different system is a natural key, but at the very least never use a key YOU don’t control.

If OP has a thrift store nearby it’s pretty likely they can get both for under $30.

I’ve never heard anyone explicitly say this but I’m sure a lot of people (i.e. management) think that AI is a replacement for static code. If you have a component with constantly changing requirements then it can make sense, but don’t ask an llm to perform a process that’s done every single day in the exact same way. Chief among my AI concerns is the amount of energy it uses. It feels like we could mostly wean off of carbon emitting fuels in 50 years but if energy demand skyrockets will be pushing those dates back by decades.

Nah, my company still uses Java but an open source version (Eclipse Temurin). We haven’t used Oracle Java in like 4 years.

One of the hardest issues to troubleshoot is a bad assumption. Be glad you only spent 2 hours on this.

I think it could be potentially easier to thwart malicious bots than “honest” bots. I figure a bot that doesn’t care about robots.txt and whatnot would try to gobble up as many pages as it could find. You could easily place links into HTML that aren’t visible to regular users and a “greedy” bot would follow it anyway. From there you could probably have a website within a website that’s being generated by AI on the fly. To keep the bots from running up your bills you probably want it to be mostly static.

One of the reasons I think JS gets a lot of hate is the tooling is a bit of a mess. If you go that route I encourage you to generate or find a barebones project to start from. Getting that very first “Hello World” app to run can be a massive pain in the ass.

I also don’t think the requirement to a desktop app and website in the same language is being fair. It’s definitely possible but different languages have different strengths. It shouldn’t make your brain explode to deal with more than one language and I think you could benefit from a shift in mindset. When I’m in JS world I know l I’ve gotta let go of performance and security desires (i.e. JS in the browser is a “clear box” and users can fully control it). When I’m in Java I know those things are highly important but also to not stress about “presentation”.

Surely AI makes them so efficient they’re free to spend more time organizing a union right? /s

This is utterly disgusting. I feel like Leeloo in The Fifth Element learning about War for the first time.

It’s based on Puppeteer which has been around awhile. It’s pretty useful for automating UI tests.

Ditto. Running antix on my netbook and I think icewm had the lowest resource usage of the defaults.

astOS and Arkane Linux too.

While explaining BTRFS I’ve seen ChatGPT contradict itself in the middle of a paragraph. Then when I call it out it apologizes and then contradicts itself again with slightly different verbiage.

That was the main inspiration for me. If I do understand their setup, “testing” a change of some kind would require an explicit rollback. If a reboot in that system meant I lost those changes then that’s actually what I’m looking for.

I’m not planning to alter the system daily so, admittedly, this is a bespoke, non-trivial process to handle an uncommon use case. In general I haven’t run into the kind of issues that immutable distros proport to fix. I would say this is moreso an OCD friendly approach to OS management. I’m also hoping this setup will basically force me into using Ansible more and manual tweaks less.

I feel Guix and NixOS are a bit more in a league of their own due to their declarative nature. I’m on the fence if I want to go that far. Again, I’ll admit my knowledge of these systems is based on docs and I’ll probably have much different thoughts getting hands on.

And my goal is to rely on Flatpak and containers but if that was the answer then all the immutable distros out there are about as overbaked as my idea.

We’ve used the “scaled” approach for a whilen and we make tags to release. Every time we have a long-lived branch that isn’t main/master something gets fucked up or we spend an extra few days just to reconcile the conflicts. Luckily we’re service based so supporting multiple versions of a product is very rare.