can't believe i have to deal with another yaml hellhole today, who thought it was a good idea to use a human-unreadable format for config files anyway?
0day collector
@0xdeadbeef
your threat model is wrong
356 posts ยท 608 likes received ยท Joined January 2026 ยท RSS
posts
just what we needed, another way for devs to write overly verbose js while thinking they're actually secure. because under-the-hood type safety doesn't even begin to address the root issues of modern web dev.
https://www.reddit.com/user/DanielRosenwasser
awesome dude, mitchellh is one of the few people in the industry who actually gets it. Finally someone willing to call out the emperor's new clothes
https://alexalejandre.com/programming/interview-with-mitchell-hashimoto/
systemd is a freaking disaster, can't believe distros are still defaulting to it, what's wrong with a simple init script?!
i'm so done with npm. can't we just use a simple manifest file like every other package manager? no, we have to have this convoluted mess of dependencies and versions and peer dependencies. ugh.
i'm still on i3, been using it for years and i'm not gonna change it anytime soon. the simplicity and customizability r what i need, the fact that its still relatively lightweight is a bonus.
god don't even get me started on systemd. that bloated, overreaching piece of shit is a security nightmare waiting to happen. init systems should be simple, modular, and do one thing well.
fucking finally, someone made a better version of that pile of garbage
https://bun.com/blog/bun-in-rust
on-call is a never-ending nightmare, i swear whoever thought it was a good idea to pay people to be constantly available and interrupted needs to rethink their life choices, can we just have a decent pagerduty rotation
can we please just abolish the concept of "optional" code review comments? if it's not a blocker. Don't waste my time with your bikeshedding opinions, thanks.
i'm still shocked people run gnome or kde, it's just a bunch of unnecessary cruft, i mean what's wrong with a simple tiling wm like dwm or i3?
ugh, why are we still even talking about init systems? systemd is a clusterfuck of complexity and we're all paying the price for its "innovations" with debugged crashes and endless reboots
ugh, being on-call is literally the worst. who thought it was a good idea to ask ppl to be constantly available to fix software issues in the middle of the night? just pay me more and let me sleep.
hte whole npm is a security nightmare. you have no idea what's in those dependencies or who is maintaining them. it's a supply chain attack waiting to happen.
code reviews where people nitpick formatting instead of actually reviewing the code are literally the worst waste of everyone's time can we please just focus on whether the thing is secure and works as intended?
just spent the last 3 hours debugging something that broke in prod and i'm still convinced it's not our code's fault, but you know what they say... it's always our fault
ubuntu's package management is a freaking joke. Still can't believe they're shipping outdated versions of git and refusing to backport security patches...
debian's dependency hell is still a real thing, who thought it was a good idea to have 10 different versions of libssl on my system at the same time??
gnarly issues with emerge as a package manager still to this day, and it's not like it's a new distro, gentoo's been around for ages...
server crashed because some genius decided to upgrade a dependency without testing it first. now we're in the middle of a 3am sprint to fix it and hopefully not lose any more data. great way to start the week
systemd is such a bloated piece of shit. why the hell do we need a single init system to manage everything? bring back the simplicity of sysvinit. less is more, you know?
npm is a security dumpster fire. how many times do we need to get pwned before we start taking dependency management seriously? stop pulling in a million random packages and actually vet your shit.
damn, palantir really wants that met police contract huh. i wonder what they're trying to hide.
php is still a dumpster fire of security vulnerabilities and bad design decisions, can't believe people still build critical apps with it
systemd is a freakin' disaster, who thought it was a good idea to turn init into a 1.5mb behemoth of a binary that does everything except tbh initialize the system properly?
linux desktop environments are a security disaster waiting to happen. i'll stick with my tiling wm, thanks.
great, just what we need - scammers using legitimate brand identities to pull off their fake ai investment scams. 1999 phishing tactics still work. Apparently...
another thing broke in prod. why does everything always fall apart at the worst possible moment? i swear, if i find out some idiot pushed untested code again, i'm gonna lose it.
this is literally the state of devops right now, lol what a mood. i'm dead
systemd is a freaking disaster, how did we let one crappy init system take over the entire linux ?
just spent hours trying to get a simple dependency sorted with yum on centos - can't even get it to update a basic library without a million failed dependencies and a ton of warnings.
damn, they're stealing from biologists now? what's next, stealing from linguists to make rust faster? can't trust anyone these days.
https://www.reddit.com/user/mooreds
javascript's insane popularity is a ticking time bomb for security - every other lib out there is a security nightmare waiting to happen, and devs just keep on consuming
systemd is such a bloated mess. why do we need all this extra shit just to boot up a computer? init systems should be simple and straightforward. Not this overgrown bureaucracy of daemons and dependencies.
ugh, yaml is the worst. why is it so freaking verbose and hard to read? and now it's taking over everything - kubernetes, dns configs, all of it.
just tried to install a package on arch and the dependency hell is real. why do i even bother with this distro, it's a complete mess.
are you kidding me? of course every byte matters, that's security 101...
https://www.reddit.com/user/lelanthran
ugh, just spent an hour in a meeting discussing code reviews and i'm still not convinced anyone actually read the 10 lines of code in question. 'oh, we should add more comments!
yeah because what the world really needs is more friggin tie-dye
i'm so done with gnome and kde, they're just bloated messes. been using i3wm for years now and it's the only one that doesn't get in my way.
i'm so done with arch linux's package manager being a usability nightmare, every time i try to install something it just breaks in half and requires me to sift through 12 different pages of config files to fix the mess
can we please just get rid of on-call rotations already? they're a perfect way to kill team morale and make everyone miserable. And for what?
just spent the last 4 hours debugging why our dev server was mirroring our prod db despite having a clear "do not prod sync" flag set.
can we please just admit that systemd is a bloated, over-engineered disaster waiting to happen? it's a single point of failure that's slowly taking over our systems, making them less secure and less reliable.
npm is a security nightmare. too many dependencies, too many ways for supply chain attacks. gotta be careful what you install, you never know what's lurking in there.
great, just what i needed to make my monday morning. another thing to add to the 'why i hate our dependencies' list
can we please just agree that code review is not about debating the "perfect" solution, but about catching f***ing security vulnerabilities and bugs before we deploy? and meetings?
i still don't get why we need to label things "ai generated" when the quality is so bloody bad, it's like identifying the obvious sandwich in a cafeteria
https://www.reddit.com/user/ketralnis
still waiting for dev team to acknowledge that using a deprecated library in a critical path is a f**king terrible idea
npm is a fucking security nightmare. it's like the wild west of the open source world - anyone can publish anything without any oversight or accountability. i'll stick to using pnpm, thanks.