прекрасная история про польский поезд, в котором есть компания производитель, установившая, по сути, некий DRM на ПО для поезда, чтобы предотвратить ремонт третьими сторонами, и польские хакеры, которые взломали этот самый ДРМ после того, как их наняли "починить" ПО. если я правильно понял цепочку, то компания-оператор поездов чинила их силами своих подрядчиков, после чего поезда переставали ездить (брикались). Из последних сил компания наняла хакеров, которые заглянули в софт и нашли закладки, блокирующие работу поездов при стороннем ремонте. Теперь компания-производитель поездов хочет подать в суд на этих хакеров.

https://gizmodo.com/hackers-hit-with-legal-threats-after-they-fixed-a-brick-1851097424

Абсолютно проклято: Most Gateway API implementations are API Gateways to some extent, but not all API Gateways are Gateway API implementations.

(с) https://gateway-api.sigs.k8s.io/#whats-the-difference-between-gateway-api-and-an-api-gateway

Simplicity is a great virtue but it requires hard work to achieve it and education to appreciate it. And to make matters worse: complexity sells better.

(с) Dijkstra, раскопано https://t.me/emacsway_log/1349

I think given two teams producing things, it’s an irresistible temptation, for many managers, to compare them. I think it’s irresistible enough that I’d drop the notion of story points, and even the notion of estimating stories at all, where possible.

…

The key question is to find the most valuable things to do, and to do them quickly. Doing them quickly comes down to doing small slices of high value, and iterating rapidly. Story cost estimation doesn’t help much with that, if at all.

…

Related to the estimate / actuals concern is the natural pressure of management to want “more”. However much the team is getting done, it’s not enough. More, more, more.

Increasing pressure to do more almost inevitably has a bad result: the team tries to go faster, and wind up skimping on code quality and on tests. They soon begin shipping more defects, slowing down because of the increased rework to fix the defects, and slowing down even more because the code quality rapidly declines. Things get worse and worse, pressure increases, and it becomes a race to disaster.

(c) https://ronjeffries.com/articles/019-01ff/story-points/Index.html

…people running the tech industry are no longer those that built it. Larry Page and Sergey Brin left Google in December 2019 (the same year as the Code Yellow fiasco), and while they remain as controlling shareholders, they clearly don’t give a shit about what “Google” means anymore. Prabhakar Raghavan is a manager, and his career, from what I can tell, is mostly made up of “did some stuff at IBM, failed to make Yahoo anything of note, and fucked up Google so badly that every news outlet has run a story about how bad it is.”

(с) https://www.wheresyoured.at/the-men-who-killed-google/

Google spokespeople have gone out their way to misdirect and mislead us on a variety of aspects of how their systems operate in an effort to control how we behave as SEOs. I won’t go as far as calling it “social engineering” because of the loaded history of that term. Let’s instead go with… “gaslighting.” Google’s public statements probably aren’t intentional efforts to lie, but rather to deceive potential spammers (and many legitimate SEOs as well) to throw us off the scent of how to impact search results.

(с) https://ipullrank.com/google-algo-leak

If AI-ese sounds like African English, then African English sounds like AI-ese. Calling people a “bot” is already a schoolyard insult (ask your kids; it’s a Fortnite thing); how much worse will it get when a significant chunk of humanity sounds like the AI systems they were paid to train?

(c) https://www.theguardian.com/technology/2024/apr/16/techscape-ai-gadgest-humane-ai-pin-chatgpt

Я думаю, что вся концепция «обработки» исключений слегка напоминает игру для дураков. Я, наверное, могу посчитать на пальцах одной руки количество случаев, когда я был действительно в состоянии обработать специфический тип исключения и сделать в обработчике что-то интеллектуальное. В 99% случаев ты должен ловить или всё или ничего. Когда выбрасывается исключение любого типа, восстановите стабильное состояние и затем либо продолжайте, либо прерывайте исполнение программы.

(c) https://habr.com/ru/articles/221723/

The inquiry discovered that the firm that outsourced the work – on a staff intranet for nuclear submarine engineers – to Russia and Belarus initially kept it secret and discussed whether it could disguise where the workers were based by giving them fake names of dead British people.

https://archive.ph/3Jujz

"Что такое "геометрия без аксиомы параллельных линий"?-- Ребятишки забавляются тем, что прыгают на одной ноге. Быстро подвигаться вперед этим способом! они, разумеется, не могут; и передвинуться далеко, -- например, версты на две -- не могут. Но при усердии все-таки не очень медленно передвигаются на расстояния, не вовсе ничтожные: иной, прыгая, не отстает от человека, идущего тихо; и провожает его целую четверть версты. Это очень трудный подвиг. И достойный всякой похвалы. Но лишь когда это -- шалость ребенка. А если взрослый человек, -- и не для шалости, а серьезно, по своим серьезным делам, пустится путешествовать, прыгая на одной ноге, это будет путешествие не вполне безуспешное, -- нет!-- только совершенно дурацкое."

Из Чернышевского, очень понравилось.

A drum I’ve been banging for a while is that LLMs are power-user tools—they’re chainsaws disguised as kitchen knives. They look deceptively simple to use—how hard can it be to type messages to a chatbot?—but in reality you need a huge depth of both understanding and experience to make the most of them and avoid their many pitfalls.

If anything, this problem got worse in 2024.

...

I like people who are skeptical of this stuff. The hype has been deafening for more than two years now, and there are enormous quantities of snake oil and misinformation out there. A lot of very bad decisions are being made based on that hype. Being critical is a virtue.

...

I think telling people that this whole field is environmentally catastrophic plagiarism machines that constantly make things up is doing those people a disservice, no matter how much truth that represents. 


(c) https://simonwillison.net/2024/Dec/31/llms-in-2024/

...interesting part of this announcement is that the former vanguard of the NoSQL movement in the late 2000s now supports SQL in 2024

https://www.cs.cmu.edu/~pavlo/blog/2025/01/2024-databases-retrospective.html

I apologize for marginalizing the 0.00000013% of readers who live in space, who do actually use UTC as their home time zone. You matter too. I’m sorry. Please don’t drop anything on me

(c) https://errorprone.info/docs/time

The goal isn't to write more code faster. It's to build better software.

(с) https://addyo.substack.com/p/the-70-problem-hard-truths-about

If you ever see a course that tries to shame C++ with a billion angle brackets, just know that the author of that course is a clueless moron who has no idea what they're talking about.

(c) https://learncodethehardway.com/blog/31-c-plus-plus-is-an-absolute-blast/

For developers, this means you need to be cautious about who you interact with and where your contributions come from.

...

It is disappointing that the open source community cannot operate independently of international sanctions programs, but these sanctions are the law of each country and are not optional. Many developers work on open source projects in their spare time, or for fun. Dealing with U.S. and international sanctions was unlikely on the list of things that most (or very likely any) open source developers thought they were signing up for.

...

...if an SDN identified a memory bug and submitted an unsolicited patch to fix the issue, developers receiving this patch should be able to evaluate the patch on its technical merit, modify it if they see fit, and apply the patch to their repository. The SDN’s developer submitting the patch would see the patch being applied but should not be engaged in a two-way communication discussing the patch, the technical merits, or ways to improve the patch.

...

As stated at the beginning, the Linux Foundation’s position is that open source and open standards are the most inclusive collaborative innovation model in the world.

(с) https://www.linuxfoundation.org/blog/navigating-global-regulations-and-open-source-us-ofac-sanctions, по следам https://t.me/tech_b0lt_Genona/4986

When you are using AI, you are sacrificing knowledge for speed. Sometimes it’s worth making this trade-off. Though it is important to remember that even the best athletes in the world are still doing their basic drills for a reason. The same applies to software development: you need to practice the basics, to be able to do the advanced work. You need to keep your axe sharp.

(c) https://lucianonooijen.com/blog/why-i-stopped-using-ai-code-editors/ (по следам https://t.me/tech_b0lt_Genona/5181)