gizdan (u/gizdan) - Readit News

gizdan commented on This is the Way: Invisible Jenkins netfoundry.io/this-is-the... · Posted by u/PLG88

dperfect · 4 years ago

I recently faced this same challenge and solved it using Amazon SQS, a simple Lambda function, and a corresponding SQS consumer/relay service running inside the private LAN.

Essentially GitHub's webhook is configured to hit the Lambda function, which authenticates the request and adds the data to an SQS queue. The internal relay service watches that queue and passes requests to the private Jenkins server.

The architecture is similar to this[1] project, but since the public-facing piece runs on Lambda, it costs almost nothing to run.

[1] https://github.com/osbuild/webhook-relay

gizdan · 4 years ago

This is almost what we do as well. The difference being that we have a API Gateway in front that just invokes the lambda on an internal network, which validates the webhook data and only then does it forward it.

Takes the complexity of having to use a queue out of the equation, though at the expense of potentially lost webhook calls.

gizdan commented on Microsoft forked MIT licensed repo and changed the copyright [fixed] github.com/microsoft/grpc... · Posted by u/mkdirp

CyberShadow · 4 years ago

The account which did the change has this description:

> This is the open source management service account used for performing key GitHub operations on behalf of Microsoft employees and users.

Combined with the nonsense README change, this looks like a bot mis-use accident.

Edit: to clarify, in no way am I saying that this is a "honest mistake" which does not deserve scrutiny.

gizdan · 4 years ago

Which is fine, and surely an honest mistake. Automation is great, but the way I see it is, how many other projects have been forked and automatically re-licensed, and then profited from without proper attribution? An accident still needs to be flagged, and still needs to be corrected. They also need to be learned from and avoided in the future.

gizdan commented on Running IntelliJ Idea with JDK 17 for Better Render Performance with Metal mustafaakin.dev/posts/202... · Posted by u/CSDude

ilovecaching · 4 years ago

It amazes me that people put up with the gigabytes of RAM and full cores it takes to use Jetbrains products when VSCode/Vim/emacs can do 99% of what Jetbrains IDEs can do with LSP at a fraction of the power consumed. I guess fleet is Jetbrains acknowledging this shortcoming, but paying for current products that are marginally better than free and open source seems crazy to me.

gizdan · 4 years ago

Besides what the other commenters have said, I have 32GB RAM. If Firefox or IntelliJ don't use it, nothing else will. I'd rather have the applications I live in utilise as much memory to make the experience faster and better, than to have unused RAM be wasted. IntelliJ is far superior over VS Code, VIM, etc. IntelliJ is batteries included, whereas VS Code, VIM, and most other editors require additional configurations. Some configurations I've seen have required hours and hours of set up and integration. With IntelliJ on the other hand, it just works. I click run on the main function, and it asks me for the compiler/runtime config the first time round, and afterwards it just fully works. Even running tests is as simply as clicking run from there on.

gizdan commented on How I learned to stop worrying and push to master thenable.io/push-to-maste... · Posted by u/sparklingmango

bcoughlan · 4 years ago

I honestly don't encounter non-trivial merge conflicts in practice on a team of 5 developers. Our repos are scoped roughly to be team-sized so the velocity is low enough to know what everyone is working on.

I guess some of this advice applies better to repos where a large number of people are working on it.

I couldn't imagine giving up the quality gate factor of PRs. Carving out the time to dissect changes catches so many bugs (although it can be received harshly sometimes compared to face to face).

Also pushing to master vs. long lived feature braches is a false dichotomy. You can have small PRs on short-lived branches that may not be a complete feature but can be merged without making the main branch unreleasable.

There is also the political factor to consider in companies where product and sales people control the selected work items. Once something is in a working state there is pressure to move on to the next thing. Fighting for quality before it is in a publishable state is a devs best defence against later rework.

The CD community is overly obsessed with velocity. Of course removing obstacles can lead to a smoother faster workflow. Take it to the extreme and it becomes a dopamine hit activity, the goal is to merge changes fast and we become unable to take the time to think deeply and reflect since it is clear that we are valued by our rate of commits over smart decisions.

gizdan · 4 years ago

> The CD community is overly obsessed with velocity.

I think CD is about minimising the amount of code released in one go, which allows you to catch issues much faster and revert issues much quicker. Compare that to something most banks do, release once a quarter, and you'll get stuff like that UK bank that went down for days (can't remember which one it was).

I've yet to meet anyone saying you have to finish your features faster.

gizdan commented on uBlacklist: Blocks specific sites from appearing in Google search results github.com/iorate/uBlackl... · Posted by u/nothrowaways

gizdan · 4 years ago

It would be cool if uBlock Origin could have specialised element picker mode for these bigger websites.

gizdan commented on Is Protonmail logging my email content? · Posted by u/ppcelery

gizdan · 4 years ago

Seems odd for PM to be vulnerable by the log4j CVE considering (from what I understand) they're mostly Go house. Maybe in the Android app, but otherwise I'd be surprised.

Unrelated: I've been getting quite frustrated with some of the functionality and limitations of PM especially for the price I pay (I have 2 catch-all domains, 1 user for each, which requires 2 times pro accounts), so recently I've been trying to migrate away to mailbox.org. Mailbox allows for automatic PGP encryption when the emails come in which is great. However, there is no way to move all my PM emails onto my mailbox.org account while keeping the encryption (not via the original key set up in Protonmail, nor via new key set up in mailbox.org). Has anyone ever run into such a scenario, and what can be done in this scenario?

gizdan commented on Show HN: We open sourced our new Mac developer setup script github.com/vendasta/setup... · Posted by u/joelkesler

dwelch2344 · 4 years ago

Looks good. We’re publishing ours soon.

You should ditch nvm for Volta. It’s insanely better

gizdan · 4 years ago

Better yet, use asdf. It supports more than just node. I manage go, node, python, terraform, direnv, and many more with it.

gizdan commented on Dracula Theme – A dark theme for many different apps draculatheme.com... · Posted by u/vmbrasseur

gizdan · 4 years ago

I wish there was a good theme out there that has support for lots of different apps, and has a light and dark theme. Dark themes are great when you're working in the dark, but during the day, when the sun is at its highest, and your brightness is maxed, Dark themes just don't work.

gizdan commented on Young Dems more likely to despise the other party axios.com/poll-political-... · Posted by u/llanowarelves

raxxorrax · 4 years ago

Well, a lot of young dems mirror the behavior of conservatives. They have problems with media and depictions that doesn't fit their worldview and don't favor free speech because it was a value by people that partially rejected their ideas.

I think the liberal label is more induced by peer pressure than anything else. Not saying that republicans are flawless at all, but that doesn't even matter anymore.

gizdan · 4 years ago

Young Dems mirror the behaviour of Conservatives how exactly?

> They have problems with media and depictions that doesn't fit their worldview and don't favor free speech because it was a value by people that partially rejected their ideas.

This is completely missing the point of what the younger generation want. They don't have problems with media and their depictions. They tend to be more inclusive. They fight for people that haven't had a voice previously, or have been mistreated. What they have problems with is hate speech, not free speech.

gizdan commented on Self-proclaimed Bitcoin inventor largely prevails in $54B Bitcoin trial reuters.com/article/us-cr... · Posted by u/avonmach

ben_w · 4 years ago

And?

gizdan · 4 years ago

So you think they'll send ballistic missiles throughout the whole world? Including China, Russia, UK, Germany, France? All of whom have nukes? Good luck with that.