You declare it in the package.json as a category when publishing. It’s completely self-selected with no oversight, review, or enforced permissions.
You declare it in the package.json as a category when publishing. It’s completely self-selected with no oversight, review, or enforced permissions.
I believe they’re referring to lower down in the article, where the researchers analyzed existing extensions on the marketplace:
After the successful experiment, the researchers decided to dive into the threat landscape of the VSCode Marketplace, using a custom tool they developed named ‘ExtensionTotal’ to find high-risk extensions, unpack them, and scrutinize suspicious code snippets.
Through this process, they have found the following:
- 1,283 with known malicious code (229 million installs).
- 8,161 communicating with hardcoded IP addresses.
- 1,452 running unknown executables.
- 2,304 that are using another publisher’s Github repo, indicating they are a copycat.
I use Jenkins for work, unfortunately, so I have plenty of experience
FYI, Jenkins has an endpoint to validate the pipeline without running it, and there’s a VSCode extension to do this without leaving the editor: https://www.jenkins.io/blog/2018/11/07/Validate-Jenkinsfile/
FYI you can (sorta) redirect searches from the start menu: https://www.windowscentral.com/how-let-google-handle-cortana-web-search-results-windows-10
Mine all go to DDG in FF
The WinAmp maybe sorta open-sourcing is interesting. I’ve never used it (aside from downloading it to get MilkDrop working in Foobar2000).
I feel the same way. Designing good, opinionated APIs is HARD, but it also provides the best experience for both the author and the consumer.
Among other examples.
That’s how I feel about RuneScape! I don’t find it a particularly fun game, but the music is so great and iconic and fits the game so well, I hear it and want to play.
In a world where your IDE and maybe also compiler should warn you about using unicode literals in source code, that’s not much of a concern.
VSCode (and I’m sure other modern IDEs, but haven’t tested) will call out if you’re using a Unicode char that could be confused with a source code symbol (e.g. i and ℹ️, which renders in some fonts as a styled lowercase i without color). I’m sure it does the same on the long equals sign.
Any compiler will complain (usually these days with a decent error message) if someone somehow accidentally inserts an invalid Unicode character instead of typing ==
.
These names are really fun! Good ones to add to my list…
Cool to see the Immich team going full time. I don’t use it personally but I hear great things
I have questions. Is this something in use today? Who is manufacturing them? Is this something you’re personally familiar with or just aware of?
You mean like git sparse-checkout
? Admittedly experimental but useful
Do you mean admonitions? E.g. info, warning, etc? There’s precedent for that in commonly-used open source implementations, e.g. obsidian.md (which uses the same syntax, and started before). What semantics does it break? It’s designed to read well in plaintext and render nicely even if used in a renderer that doesn’t support admonitions, e.g.
[!NOTE] Information the user should notice even if skimming.
As opposed to other common markdownish implementations that use nonsensical plaintext which renders poorly in alternative renderers. Here’s a discussion on the topic in the CommonMark forums.
My “scrum leader” (who we handled agile just fine without before) is constantly complaining about points or priorities shifting, to the point that he’ll tell us to not put what we’re actually working on on the board because it’ll mess up the burndown chart.
One of the 4 values of agile is “responding to change over following a plan”. He’s parroted this to us before, and yet still doesn’t seem to see the irony.
What do people have against the Mach kernel?
Actually I’m guessing this is a localization failure
1 horizontal/1 vertical + laptop.
Horizontal is directly in front of me, used for whatever I’m currently focusing on - usually IDE or browser.
Vertical is to the side, used for anything auxiliary to my current task - browser, bug report, notes, chat, git gui, etc.
Laptop monitor is for anything I want to monitor, but don’t need to look at constantly - logs, news, incoming bug reports, etc.
I also make use of virtual desktops, so I have one for chat/email/general browsing, one for code editing with browser, git gui, IDE, and one for notes/zoom. Laptop screen doesn’t shift with virtual desktops so I always keep the monitoring open.
What’s wrong with Business Insider? Genuine question