Accessing Max Verstappen's passport and PII through FIA bugs
https://www.reddit.com/r/programming/comments/1oe84s0/accessing_max_verstappens_passport_and_pii/
submitted by /u/iamkeyur (https://www.reddit.com/user/iamkeyur)
[link] (https://ian.sh/fia) [comments] (https://www.reddit.com/r/programming/comments/1oe84s0/accessing_max_verstappens_passport_and_pii/)
https://www.reddit.com/r/programming/comments/1oe84s0/accessing_max_verstappens_passport_and_pii/
submitted by /u/iamkeyur (https://www.reddit.com/user/iamkeyur)
[link] (https://ian.sh/fia) [comments] (https://www.reddit.com/r/programming/comments/1oe84s0/accessing_max_verstappens_passport_and_pii/)
Programming With Less Than Nothing
https://www.reddit.com/r/programming/comments/1oe83od/programming_with_less_than_nothing/
submitted by /u/iamkeyur (https://www.reddit.com/user/iamkeyur)
[link] (https://joshmoody.org/blog/programming-with-less-than-nothing/) [comments] (https://www.reddit.com/r/programming/comments/1oe83od/programming_with_less_than_nothing/)
https://www.reddit.com/r/programming/comments/1oe83od/programming_with_less_than_nothing/
submitted by /u/iamkeyur (https://www.reddit.com/user/iamkeyur)
[link] (https://joshmoody.org/blog/programming-with-less-than-nothing/) [comments] (https://www.reddit.com/r/programming/comments/1oe83od/programming_with_less_than_nothing/)
Developers Spend Just 1% of Coding Time Using VS Code's Debugger (11,805 Sessions Analyzed)
https://www.reddit.com/r/programming/comments/1oe8tc5/developers_spend_just_1_of_coding_time_using_vs/
submitted by /u/Equivalent-Yak2407 (https://www.reddit.com/user/Equivalent-Yak2407)
[link] (https://floustate.com/blog/developers-spend-1-percent-time-vscode-debugger) [comments] (https://www.reddit.com/r/programming/comments/1oe8tc5/developers_spend_just_1_of_coding_time_using_vs/)
https://www.reddit.com/r/programming/comments/1oe8tc5/developers_spend_just_1_of_coding_time_using_vs/
submitted by /u/Equivalent-Yak2407 (https://www.reddit.com/user/Equivalent-Yak2407)
[link] (https://floustate.com/blog/developers-spend-1-percent-time-vscode-debugger) [comments] (https://www.reddit.com/r/programming/comments/1oe8tc5/developers_spend_just_1_of_coding_time_using_vs/)
Summary of the Amazon DynamoDB Service Disruption in Northern Virginia (US-EAST-1) Region
https://www.reddit.com/r/programming/comments/1oeacez/summary_of_the_amazon_dynamodb_service_disruption/
submitted by /u/Total_Birthday5242 (https://www.reddit.com/user/Total_Birthday5242)
[link] (https://aws.amazon.com/message/101925/) [comments] (https://www.reddit.com/r/programming/comments/1oeacez/summary_of_the_amazon_dynamodb_service_disruption/)
https://www.reddit.com/r/programming/comments/1oeacez/summary_of_the_amazon_dynamodb_service_disruption/
submitted by /u/Total_Birthday5242 (https://www.reddit.com/user/Total_Birthday5242)
[link] (https://aws.amazon.com/message/101925/) [comments] (https://www.reddit.com/r/programming/comments/1oeacez/summary_of_the_amazon_dynamodb_service_disruption/)
PyTorch Monarch is a distributed programming framework that brings the simplicity of single-machine PyTorch to entire clusters
https://www.reddit.com/r/programming/comments/1oedce7/pytorch_monarch_is_a_distributed_programming/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://pytorch.org/blog/introducing-pytorch-monarch/) [comments] (https://www.reddit.com/r/programming/comments/1oedce7/pytorch_monarch_is_a_distributed_programming/)
https://www.reddit.com/r/programming/comments/1oedce7/pytorch_monarch_is_a_distributed_programming/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://pytorch.org/blog/introducing-pytorch-monarch/) [comments] (https://www.reddit.com/r/programming/comments/1oedce7/pytorch_monarch_is_a_distributed_programming/)
Kaitai Struct: declarative binary format parsing language
https://www.reddit.com/r/programming/comments/1oedcyl/kaitai_struct_declarative_binary_format_parsing/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://kaitai.io/) [comments] (https://www.reddit.com/r/programming/comments/1oedcyl/kaitai_struct_declarative_binary_format_parsing/)
https://www.reddit.com/r/programming/comments/1oedcyl/kaitai_struct_declarative_binary_format_parsing/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://kaitai.io/) [comments] (https://www.reddit.com/r/programming/comments/1oedcyl/kaitai_struct_declarative_binary_format_parsing/)
Bitmasks, Ruby Threads and Interrupts, oh my
https://www.reddit.com/r/programming/comments/1oedfay/bitmasks_ruby_threads_and_interrupts_oh_my/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://jpcamara.com/2025/10/22/bitmasks-threads-and-interrupts-concurrent.html) [comments] (https://www.reddit.com/r/programming/comments/1oedfay/bitmasks_ruby_threads_and_interrupts_oh_my/)
https://www.reddit.com/r/programming/comments/1oedfay/bitmasks_ruby_threads_and_interrupts_oh_my/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://jpcamara.com/2025/10/22/bitmasks-threads-and-interrupts-concurrent.html) [comments] (https://www.reddit.com/r/programming/comments/1oedfay/bitmasks_ruby_threads_and_interrupts_oh_my/)
Serverless is an Architectural Handicap
https://www.reddit.com/r/programming/comments/1oeds7s/serverless_is_an_architectural_handicap/
submitted by /u/avin_2020 (https://www.reddit.com/user/avin_2020)
[link] (https://viduli.io/blog/serverless-is-a-handicap) [comments] (https://www.reddit.com/r/programming/comments/1oeds7s/serverless_is_an_architectural_handicap/)
https://www.reddit.com/r/programming/comments/1oeds7s/serverless_is_an_architectural_handicap/
submitted by /u/avin_2020 (https://www.reddit.com/user/avin_2020)
[link] (https://viduli.io/blog/serverless-is-a-handicap) [comments] (https://www.reddit.com/r/programming/comments/1oeds7s/serverless_is_an_architectural_handicap/)
Length-extension attacks are still a thing
https://www.reddit.com/r/programming/comments/1oediqg/lengthextension_attacks_are_still_a_thing/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://00f.net/2025/10/23/length-extension-attacks/) [comments] (https://www.reddit.com/r/programming/comments/1oediqg/lengthextension_attacks_are_still_a_thing/)
https://www.reddit.com/r/programming/comments/1oediqg/lengthextension_attacks_are_still_a_thing/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://00f.net/2025/10/23/length-extension-attacks/) [comments] (https://www.reddit.com/r/programming/comments/1oediqg/lengthextension_attacks_are_still_a_thing/)
The Hidden Complexity of Distributed Rate Limiting: Lessons from Building 5 Algorithms
https://www.reddit.com/r/programming/comments/1oeel94/the_hidden_complexity_of_distributed_rate/
submitted by /u/uppnrise (https://www.reddit.com/user/uppnrise)
[link] (https://bnacar.dev/2025/10/23/hidden-complexity-of-rate-limiting.html) [comments] (https://www.reddit.com/r/programming/comments/1oeel94/the_hidden_complexity_of_distributed_rate/)
https://www.reddit.com/r/programming/comments/1oeel94/the_hidden_complexity_of_distributed_rate/
submitted by /u/uppnrise (https://www.reddit.com/user/uppnrise)
[link] (https://bnacar.dev/2025/10/23/hidden-complexity-of-rate-limiting.html) [comments] (https://www.reddit.com/r/programming/comments/1oeel94/the_hidden_complexity_of_distributed_rate/)
WebFragments: A new approach to micro-frontends (from the co-creator of Angular and Microsoft’s DX lead)
https://www.reddit.com/r/programming/comments/1oeryvj/webfragments_a_new_approach_to_microfrontends/
<!-- SC_OFF -->Hey folks 👋 Just released a new Señors @ Scale episode that I think will interest anyone working on large frontend platforms or micro-frontends. I sat down with Igor Minar (co-creator of Angular, now at Cloudflare) and Natalia Venditto (Principal PM for JavaScript Developer Experience at Microsoft) to talk about WebFragments — a new way to build modular frontends that actually scale. The idea:
→ Each micro-frontend runs in its own isolated JavaScript context (like Docker for the browser)
→ The DOM is virtualized using Shadow DOM, not iframes
→ Fragments stay independent but render as one seamless app
→ It’s framework-agnostic — React, Vue, Qwik, Angular… all work They also shared how Cloudflare is already migrating its production dashboard using WebFragments — incrementally, without breaking the existing platform. <!-- SC_ON --> submitted by /u/creasta29 (https://www.reddit.com/user/creasta29)
[link] (https://www.youtube.com/watch?v=JY2Yjy2020I&list=PLeeGnEj5psFIwWJfpCwnedMsFApK6CvRr) [comments] (https://www.reddit.com/r/programming/comments/1oeryvj/webfragments_a_new_approach_to_microfrontends/)
https://www.reddit.com/r/programming/comments/1oeryvj/webfragments_a_new_approach_to_microfrontends/
<!-- SC_OFF -->Hey folks 👋 Just released a new Señors @ Scale episode that I think will interest anyone working on large frontend platforms or micro-frontends. I sat down with Igor Minar (co-creator of Angular, now at Cloudflare) and Natalia Venditto (Principal PM for JavaScript Developer Experience at Microsoft) to talk about WebFragments — a new way to build modular frontends that actually scale. The idea:
→ Each micro-frontend runs in its own isolated JavaScript context (like Docker for the browser)
→ The DOM is virtualized using Shadow DOM, not iframes
→ Fragments stay independent but render as one seamless app
→ It’s framework-agnostic — React, Vue, Qwik, Angular… all work They also shared how Cloudflare is already migrating its production dashboard using WebFragments — incrementally, without breaking the existing platform. <!-- SC_ON --> submitted by /u/creasta29 (https://www.reddit.com/user/creasta29)
[link] (https://www.youtube.com/watch?v=JY2Yjy2020I&list=PLeeGnEj5psFIwWJfpCwnedMsFApK6CvRr) [comments] (https://www.reddit.com/r/programming/comments/1oeryvj/webfragments_a_new_approach_to_microfrontends/)
Stacked Diffs - Simply Explained
https://www.reddit.com/r/programming/comments/1oeu74t/stacked_diffs_simply_explained/
submitted by /u/sdxyz42 (https://www.reddit.com/user/sdxyz42)
[link] (https://newsletter.systemdesign.one/p/stacked-diffs) [comments] (https://www.reddit.com/r/programming/comments/1oeu74t/stacked_diffs_simply_explained/)
https://www.reddit.com/r/programming/comments/1oeu74t/stacked_diffs_simply_explained/
submitted by /u/sdxyz42 (https://www.reddit.com/user/sdxyz42)
[link] (https://newsletter.systemdesign.one/p/stacked-diffs) [comments] (https://www.reddit.com/r/programming/comments/1oeu74t/stacked_diffs_simply_explained/)
F-Droid and Google's Developer Registration Decree
https://www.reddit.com/r/programming/comments/1oev552/fdroid_and_googles_developer_registration_decree/
submitted by /u/alexeyr (https://www.reddit.com/user/alexeyr)
[link] (https://f-droid.org/2025/09/29/google-developer-registration-decree.html) [comments] (https://www.reddit.com/r/programming/comments/1oev552/fdroid_and_googles_developer_registration_decree/)
https://www.reddit.com/r/programming/comments/1oev552/fdroid_and_googles_developer_registration_decree/
submitted by /u/alexeyr (https://www.reddit.com/user/alexeyr)
[link] (https://f-droid.org/2025/09/29/google-developer-registration-decree.html) [comments] (https://www.reddit.com/r/programming/comments/1oev552/fdroid_and_googles_developer_registration_decree/)
The mystery of the phantom quote in my CI builds
https://www.reddit.com/r/programming/comments/1oew0ul/the_mystery_of_the_phantom_quote_in_my_ci_builds/
submitted by /u/_shadowbannedagain (https://www.reddit.com/user/_shadowbannedagain)
[link] (https://questdb.com/blog/azure-pipelines-stdout-stderr-race-condition/) [comments] (https://www.reddit.com/r/programming/comments/1oew0ul/the_mystery_of_the_phantom_quote_in_my_ci_builds/)
https://www.reddit.com/r/programming/comments/1oew0ul/the_mystery_of_the_phantom_quote_in_my_ci_builds/
submitted by /u/_shadowbannedagain (https://www.reddit.com/user/_shadowbannedagain)
[link] (https://questdb.com/blog/azure-pipelines-stdout-stderr-race-condition/) [comments] (https://www.reddit.com/r/programming/comments/1oew0ul/the_mystery_of_the_phantom_quote_in_my_ci_builds/)
A closer look at the details behind the Go port of the TypeScript compiler
https://www.reddit.com/r/programming/comments/1oewzuo/a_closer_look_at_the_details_behind_the_go_port/
submitted by /u/mariuz (https://www.reddit.com/user/mariuz)
[link] (https://2ality.com/2025/03/typescript-in-go.html) [comments] (https://www.reddit.com/r/programming/comments/1oewzuo/a_closer_look_at_the_details_behind_the_go_port/)
https://www.reddit.com/r/programming/comments/1oewzuo/a_closer_look_at_the_details_behind_the_go_port/
submitted by /u/mariuz (https://www.reddit.com/user/mariuz)
[link] (https://2ality.com/2025/03/typescript-in-go.html) [comments] (https://www.reddit.com/r/programming/comments/1oewzuo/a_closer_look_at_the_details_behind_the_go_port/)
Ken Thompson's "Trusting Trust" compiler backdoor - Now with the actual source code (2023)
https://www.reddit.com/r/programming/comments/1of2toi/ken_thompsons_trusting_trust_compiler_backdoor/
<!-- SC_OFF -->Ken Thompson's 1984 "Reflections on Trusting Trust" is a foundational paper in supply chain security, demonstrating that trusting source code alone isn't enough - you must trust the entire toolchain. The attack works in three stages: Self-reproduction: Create a program that outputs its own source code (a quine) Compiler learning: Use the compiler's self-compilation to teach it knowledge that persists only in the binary Trojan horse deployment: Inject backdoors that: Insert a password backdoor when compiling login.c Re-inject themselves when compiling the compiler Leave no trace in source code after "training" In 2023, Thompson finally released the actual code (file: nih.a) after Russ Cox asked for it. I wrote a detailed walkthrough with the real implementation annotated line-by-line. Why this matters for modern security: Highlights the limits of source code auditing Foundation for reproducible builds initiatives (Debian, etc.) Relevant to current supply chain attacks (SolarWinds, XZ Utils) Shows why diverse double-compiling (DDC) is necessary The backdoor password was "codenih" (NIH = "not invented here"). Thompson confirmed it was built as a proof-of-concept but never deployed in production. <!-- SC_ON --> submitted by /u/fizzner (https://www.reddit.com/user/fizzner)
[link] (https://micahkepe.com/blog/thompson-trojan-horse/) [comments] (https://www.reddit.com/r/programming/comments/1of2toi/ken_thompsons_trusting_trust_compiler_backdoor/)
https://www.reddit.com/r/programming/comments/1of2toi/ken_thompsons_trusting_trust_compiler_backdoor/
<!-- SC_OFF -->Ken Thompson's 1984 "Reflections on Trusting Trust" is a foundational paper in supply chain security, demonstrating that trusting source code alone isn't enough - you must trust the entire toolchain. The attack works in three stages: Self-reproduction: Create a program that outputs its own source code (a quine) Compiler learning: Use the compiler's self-compilation to teach it knowledge that persists only in the binary Trojan horse deployment: Inject backdoors that: Insert a password backdoor when compiling login.c Re-inject themselves when compiling the compiler Leave no trace in source code after "training" In 2023, Thompson finally released the actual code (file: nih.a) after Russ Cox asked for it. I wrote a detailed walkthrough with the real implementation annotated line-by-line. Why this matters for modern security: Highlights the limits of source code auditing Foundation for reproducible builds initiatives (Debian, etc.) Relevant to current supply chain attacks (SolarWinds, XZ Utils) Shows why diverse double-compiling (DDC) is necessary The backdoor password was "codenih" (NIH = "not invented here"). Thompson confirmed it was built as a proof-of-concept but never deployed in production. <!-- SC_ON --> submitted by /u/fizzner (https://www.reddit.com/user/fizzner)
[link] (https://micahkepe.com/blog/thompson-trojan-horse/) [comments] (https://www.reddit.com/r/programming/comments/1of2toi/ken_thompsons_trusting_trust_compiler_backdoor/)
A Vision for Future Low-Level Languages
https://www.reddit.com/r/programming/comments/1of31ci/a_vision_for_future_lowlevel_languages/
submitted by /u/RndmPrsn11 (https://www.reddit.com/user/RndmPrsn11)
[link] (https://antelang.org/blog/vision/) [comments] (https://www.reddit.com/r/programming/comments/1of31ci/a_vision_for_future_lowlevel_languages/)
https://www.reddit.com/r/programming/comments/1of31ci/a_vision_for_future_lowlevel_languages/
submitted by /u/RndmPrsn11 (https://www.reddit.com/user/RndmPrsn11)
[link] (https://antelang.org/blog/vision/) [comments] (https://www.reddit.com/r/programming/comments/1of31ci/a_vision_for_future_lowlevel_languages/)
Minio community is not actively being developed for new features
https://www.reddit.com/r/programming/comments/1of8ak4/minio_community_is_not_actively_being_developed/
submitted by /u/He_knows (https://www.reddit.com/user/He_knows)
[link] (https://github.com/minio/minio/issues/21647#issuecomment-3439134621) [comments] (https://www.reddit.com/r/programming/comments/1of8ak4/minio_community_is_not_actively_being_developed/)
https://www.reddit.com/r/programming/comments/1of8ak4/minio_community_is_not_actively_being_developed/
submitted by /u/He_knows (https://www.reddit.com/user/He_knows)
[link] (https://github.com/minio/minio/issues/21647#issuecomment-3439134621) [comments] (https://www.reddit.com/r/programming/comments/1of8ak4/minio_community_is_not_actively_being_developed/)
Original work is now an endangered species
https://www.reddit.com/r/programming/comments/1of973a/original_work_is_now_an_endangered_species/
submitted by /u/Beautiful-Floor-7801 (https://www.reddit.com/user/Beautiful-Floor-7801)
[link] (https://trevorlasn.com/blog/original-work-is-now-an-endangered-species) [comments] (https://www.reddit.com/r/programming/comments/1of973a/original_work_is_now_an_endangered_species/)
https://www.reddit.com/r/programming/comments/1of973a/original_work_is_now_an_endangered_species/
submitted by /u/Beautiful-Floor-7801 (https://www.reddit.com/user/Beautiful-Floor-7801)
[link] (https://trevorlasn.com/blog/original-work-is-now-an-endangered-species) [comments] (https://www.reddit.com/r/programming/comments/1of973a/original_work_is_now_an_endangered_species/)
Benchmarks for a distributed key-value store
https://www.reddit.com/r/programming/comments/1ofi1wt/benchmarks_for_a_distributed_keyvalue_store/
<!-- SC_OFF -->Hey folks I’ve been working on a project called SevenDB (https://github.com/sevenDatabase/SevenDB) — it’s a reactive database( or rather a distributed key-value store) focused on determinism and predictable replication (Raft-based), we have completed out work with raft , durable subscriptions , emission contract etc , now it is the time to showcase the work. I’m trying to put together a fair and transparent benchmarking setup to share the performance numbers. If you were evaluating a new system like this, what benchmarks would you consider meaningful? i know raw throughput is good , but what are the benchmarks i should run and show to prove the utility of the database? I just want to design a solid test suite that would make sense to people who know this stuff better than I do. As the work is open source and the adoption would be highly dependent on what benchmarks we show and how well we perform in them Curious to hear what kind of metrics or experiments make you take a new DB seriously. <!-- SC_ON --> submitted by /u/shashanksati (https://www.reddit.com/user/shashanksati)
[link] (https://github.com/sevenDatabase/SevenDB) [comments] (https://www.reddit.com/r/programming/comments/1ofi1wt/benchmarks_for_a_distributed_keyvalue_store/)
https://www.reddit.com/r/programming/comments/1ofi1wt/benchmarks_for_a_distributed_keyvalue_store/
<!-- SC_OFF -->Hey folks I’ve been working on a project called SevenDB (https://github.com/sevenDatabase/SevenDB) — it’s a reactive database( or rather a distributed key-value store) focused on determinism and predictable replication (Raft-based), we have completed out work with raft , durable subscriptions , emission contract etc , now it is the time to showcase the work. I’m trying to put together a fair and transparent benchmarking setup to share the performance numbers. If you were evaluating a new system like this, what benchmarks would you consider meaningful? i know raw throughput is good , but what are the benchmarks i should run and show to prove the utility of the database? I just want to design a solid test suite that would make sense to people who know this stuff better than I do. As the work is open source and the adoption would be highly dependent on what benchmarks we show and how well we perform in them Curious to hear what kind of metrics or experiments make you take a new DB seriously. <!-- SC_ON --> submitted by /u/shashanksati (https://www.reddit.com/user/shashanksati)
[link] (https://github.com/sevenDatabase/SevenDB) [comments] (https://www.reddit.com/r/programming/comments/1ofi1wt/benchmarks_for_a_distributed_keyvalue_store/)
What are Monads?
https://www.reddit.com/r/programming/comments/1ofijln/what_are_monads/
<!-- SC_OFF -->I am a wanna-be youtuber-ish. Could you guys please review of what can I actually improve in this video. https://youtu.be/nH4rnr5Xk6g Thanks in Advance. <!-- SC_ON --> submitted by /u/Tasty-Series3748 (https://www.reddit.com/user/Tasty-Series3748)
[link] (https://youtu.be/nH4rnr5Xk6g) [comments] (https://www.reddit.com/r/programming/comments/1ofijln/what_are_monads/)
https://www.reddit.com/r/programming/comments/1ofijln/what_are_monads/
<!-- SC_OFF -->I am a wanna-be youtuber-ish. Could you guys please review of what can I actually improve in this video. https://youtu.be/nH4rnr5Xk6g Thanks in Advance. <!-- SC_ON --> submitted by /u/Tasty-Series3748 (https://www.reddit.com/user/Tasty-Series3748)
[link] (https://youtu.be/nH4rnr5Xk6g) [comments] (https://www.reddit.com/r/programming/comments/1ofijln/what_are_monads/)