@mistersql in October 2025
Back to @mistersql ยท Open this account on Mastodon
The AWS ECS cluster isn't happy. I think it just needs a frito pie. It is going...
The AWS ECS cluster isn't happy. I think it just needs a frito pie. It is going to make the health checks worse, but the cluster should be happier.
Marathon thot. What do I want from nazis? I want them to stop being nazis. I...
Marathon thot. What do I want from nazis? I want them to stop being nazis. I want them to be won over the the ideas of progressives. I want criminals to be rehabilitated and...
in 50 minutes. I'll make up for lackluster training in the next 50 minutes.
in 50 minutes. I'll make up for lackluster training in the next 50 minutes.
If you want it in modern jargon, it's Institutions (as in Institutionalism in...
If you want it in modern jargon, it's Institutions (as in Institutionalism in economics) The gist is if you **suspended** laws on murder, most people wouldn't murder any more than...
LLM assisted coding exhausts me. Unlike 90% of the people here, I enjoy using...
LLM assisted coding exhausts me. Unlike 90% of the people here, I enjoy using LLMs and think they're on net a good thing. I still type check, lint, and add unit tests, etc. This...
Sandboxing scenarios - vs motivate nation state - vs script kiddie, griefer -...
Sandboxing scenarios - vs motivate nation state - vs script kiddie, griefer - vs an AI that doesn't really understand the consequences of its actions - vs a known sort of...
THEORY: when everyone watched TV, the news got to almost everyone. With...
THEORY: when everyone watched TV, the news got to almost everyone. With internet and social media, only, maybe 40% of the population anywhere has any awareness of what is going on...
CDK: UPDATE_ROLLBACK_FAILED. I guess our job is done and we will never deploy...
CDK: UPDATE_ROLLBACK_FAILED. I guess our job is done and we will never deploy code again. Oh, I have to do `aws cloudformation continue-update-rollback --stack-name blerg` or...
Star Wars quotes when your app crashes from an error using `sys.excepthook`...
Star Wars quotes when your app crashes from an error using `sys.excepthook` (also comes in philosopher and insult versions)
Do you wish you could remove certain libraries from the standard library? Sort...
Do you wish you could remove certain libraries from the standard library? Sort of like CAS in .NET? Well I got you covered.
Look! Paul D Smith published on pypi. (not really. Published by a Chinese...
Look! Paul D Smith published on pypi. (not really. Published by a Chinese college student.)
Crossed state lines to get my Covid and flu vaccine. One more to go this year.
Crossed state lines to get my Covid and flu vaccine. One more to go this year.
What will happen? ```python a = Person() if not a: print("No one here") else:...
What will happen? ```python a = Person() if not a: print("No one here") else: print("Things make sense") ``` Prints "No one here" of course!
Thinking - we can trust packages with millions of installs because that's 1m...
Thinking - we can trust packages with millions of installs because that's 1m people who haven't complained about a past problem - we just need to worry about **that** trusted...
IDEA: parasitic trust & identity. In the US for a long while there wasn't a...
IDEA: parasitic trust & identity. In the US for a long while there wasn't a nice unique identifier for everyone, EXCEPT Social Security. So everyone began using that for trust,...
Let's do a backlink checker! Oh no, HTTP 999 from linkedIn.com Oh no, 403 from...
Let's do a backlink checker! Oh no, HTTP 999 from linkedIn.com Oh no, 403 from reddit.com Oh no, 403 from all the big sites with profile pages and user created hyperlinks.
The goal of "Attestations" and associated is to promise "when I download...
The goal of "Attestations" and associated is to promise "when I download sampleproject4, I know it came from the repo it's supposed to and PyPI served the same file to me as...
Almost got a skip-trace tool working, but the most interesting idea is...
Almost got a skip-trace tool working, but the most interesting idea is naive-backlinks, and the feature was sliding sideways, so I extracted it to a brand new library. Wow, so...
So if I control my pypi account and I control other places on the web where I...
So if I control my pypi account and I control other places on the web where I can publish a back link, then a backlink checker could get a pretty strong signal that the same...
Ideas for social engineering attacks against pypi - fork a project with...
Ideas for social engineering attacks against pypi - fork a project with reputation. Even real forks are full of the self-asserted claims of identity - tie your fork to an...
Expensive signals with real people: Current signals - number of packages - age...
Expensive signals with real people: Current signals - number of packages - age of packages Can't verify except via self asserted claims - Is this the guy on youtube? - Is this the...
Todays thoughts: Do you trust that python package? Pick your evidence: - crypto...
Todays thoughts: Do you trust that python package? Pick your evidence: - crypto proof that *some* github account signed a file - crypto proof that pypi.org transmitted the file to...
This comic references real python libraries, If the pypi references don't...
This comic references real python libraries, If the pypi references don't checkout a comic isn't funny
I am convinced chatgpt was trained *hard* on writing code in an environment...
I am convinced chatgpt was trained *hard* on writing code in an environment where the LLM had no control or expectation for any library to exist- just a flood of import errors in...
What I've learned - large pypi package are owned by dozen of people (django,...
What I've learned - large pypi package are owned by dozen of people (django, pip, etc) - anonymous looking packages often have some name if you look hard enough - There isn't a...
Today is rabbit hole day. So working on troml-dev-status - Anonymous package?...
Today is rabbit hole day. So working on troml-dev-status - Anonymous package? Should *never* be awarded `Mature` because mature is about evidence of support - Authors file? 1000%...
tired: 0.1.0 and incrementing patch constantly, to signal, "my code is dog shit...
tired: 0.1.0 and incrementing patch constantly, to signal, "my code is dog shit and the API is unstable" wired: 1.0.0 and incrementing major constantly, to signal "my code is...
Balanced opinion on LLMs - 90% of the code for this app was LLM written. -...
Balanced opinion on LLMs - 90% of the code for this app was LLM written. - Maybe 5% of the feature ideas were LLM. While it understands ideas if you tell them of your idea, LLMs...
How to find a job on Mastodon: - Say you're lookin' for work at 1-2 relevant...
How to find a job on Mastodon: - Say you're lookin' for work at 1-2 relevant people in your natural network will see it. **Next everyone will retweet (thanks!), which will...
jiggle-version - 100% rewritten. It is a version bumper. Handles the situation...
jiggle-version - 100% rewritten. It is a version bumper. Handles the situation where you got several version strings in source & config you want to update, but don't want to use...
There are like a dozen xkcd password generators on pypi and from what I can...
There are like a dozen xkcd password generators on pypi and from what I can tell, none of them use the xkcd-221 random number generator.
Am I taking crazy pills? I count 3+ drop in replacements for `random` on pypi.*...
Am I taking crazy pills? I count 3+ drop in replacements for `random` on pypi.* But the standard library `secrets` is not a drop in replacement for `random` except for a subset of...
Imma gonna add a small feature (several hours later), it's in pypi! Oh my, I've...
Imma gonna add a small feature (several hours later), it's in pypi! Oh my, I've spend so much time on this library that is only marginally useful. I need to give it some more...
Maybe this weekend I'll finally write a pypi package front runner, that before...
Maybe this weekend I'll finally write a pypi package front runner, that before you install a package, the front runner downloads the file figures out if it is malicious. And yeah,...
The US Administration doesn't like corn syrup. Just for that I'm going to make...
The US Administration doesn't like corn syrup. Just for that I'm going to make a pecan pie. RFK can't take pecan pie away from us.