What’s wrong with Business Insider? Genuine question
What’s wrong with Business Insider? Genuine question
You declare it in the package.json as a category when publishing. It’s completely self-selected with no oversight, review, or enforced permissions.
I believe they’re referring to lower down in the article, where the researchers analyzed existing extensions on the marketplace:
After the successful experiment, the researchers decided to dive into the threat landscape of the VSCode Marketplace, using a custom tool they developed named ‘ExtensionTotal’ to find high-risk extensions, unpack them, and scrutinize suspicious code snippets.
Through this process, they have found the following:
- 1,283 with known malicious code (229 million installs).
- 8,161 communicating with hardcoded IP addresses.
- 1,452 running unknown executables.
- 2,304 that are using another publisher’s Github repo, indicating they are a copycat.
I use Jenkins for work, unfortunately, so I have plenty of experience
FYI, Jenkins has an endpoint to validate the pipeline without running it, and there’s a VSCode extension to do this without leaving the editor: https://www.jenkins.io/blog/2018/11/07/Validate-Jenkinsfile/
FYI you can (sorta) redirect searches from the start menu: https://www.windowscentral.com/how-let-google-handle-cortana-web-search-results-windows-10
Mine all go to DDG in FF
The WinAmp maybe sorta open-sourcing is interesting. I’ve never used it (aside from downloading it to get MilkDrop working in Foobar2000).
I feel the same way. Designing good, opinionated APIs is HARD, but it also provides the best experience for both the author and the consumer.
Among other examples.
That’s how I feel about RuneScape! I don’t find it a particularly fun game, but the music is so great and iconic and fits the game so well, I hear it and want to play.
I didn’t even know this happened lol
I’ve never played any others but SR4 is great, super ridiculous
In a world where your IDE and maybe also compiler should warn you about using unicode literals in source code, that’s not much of a concern.
VSCode (and I’m sure other modern IDEs, but haven’t tested) will call out if you’re using a Unicode char that could be confused with a source code symbol (e.g. i and ℹ️, which renders in some fonts as a styled lowercase i without color). I’m sure it does the same on the long equals sign.
Any compiler will complain (usually these days with a decent error message) if someone somehow accidentally inserts an invalid Unicode character instead of typing ==
.
These names are really fun! Good ones to add to my list…
I believe publishers are responsible for sales, including what countries it’s for sale in. It’s not really up to the devs. Not in the games industry though, so could be wrong.
But a unique identifier in game doesn’t actually enforce bans, because what’s stopping someone from creating a new one? VS if you create a PSN account, you need some sort of verification (e.g. email address).
They could’ve done something similar with a non PSN login, though people would’ve probably still complained. And for them, it’s not 3rd party because it’s published by Sony IIRC, so it’s actually an in house system.
I also don’t own the game, but I just wanted to point out the reason in their argument isn’t entirely invalid.
What’s stopping you from deleting the game, redownloading it, and setting a new account name? Etc
I assume they’re talking about player names, not usernames - steam usernames are unique, but steam player names can be whatever you want and are often duplicates.
Cool to see the Immich team going full time. I don’t use it personally but I hear great things
I have questions. Is this something in use today? Who is manufacturing them? Is this something you’re personally familiar with or just aware of?
This is a fantastic write-up, thanks for sharing!