Are you still actively working on/developing on the project?
Skipping new developments can be fine. Moving slow or not at all can mean stability and predictability.
The biggest issue is missed security updates, if they exist, or a lack of identification and fixing of open security issues.
And, of course, developer convenience if the project is still being actively worked on.
Struggling with Legacy Code and not enough time to clean it up?
⛑️️ My First Aid Kit can help you rescue any codebase quickly and safely!
“rescue any codebase quickly and safely”? [x] doubt
But who knows what “rescue” means for them.
What do you mean by “instead of watching”? OP links to a text article.
I still prefer your MDN link though. Concise, and a more readable layout. Dunno why OP felt the need to increase the font size that much into a wide layout.
I refuse to install nodejs on my personal PC. Too big, too pervasive, not observable. These tools, Deno and Bun, allow me to work on node/js/ts projects. At least, when they are compatible, which sadly they are not always.
When I explore or consider alternatives, I don’t think of or ask myself about design principles, but consider and weigh what could and would make sense where I am.
More than principles, the guiding goal is Maintainability - Readability, Graspability, Consistency, Correctness, Robustness. Weighted against constraints.
I guess separation of concerns is a big one I use implicitly. Like many others.
I can assure you the quality is top without looking at the product! /s
What does “all known Windows privacy and telemetry settings” entail and mean?
Registry and group policy?
Is this sourced from a shared effort project of known stuff, or does this project track it’s own, and would need notice and updates of new settings?
In what way is this [email protected]? I don’t think “I made this” should quality, or we would lose programming focus/scope of the community. This would be a better fit in gamedev or gaming or personal project communities.
deleted by creator
Why is this post titled “The Cascade”? Looks like that’s the website title rather than the article title, which is The least amount of CSS for a decent looking site
Maybe you want to update the post title?
Somewhat related, A Modern CSS Reset - Josh W. Comeau
I don’t know how far along you are in Python use. In general, I don’t think Python guides you into good practice or architecture. It’s too dynamic and varied of a language. You’ll need a framework to be guided. Personally, I have a dislike for it for multiple reasons. Others seem to like it. Other languages and ecosystems are more limited, in good ways. (Maybe I’m misinterpreting “todays” Python, I’ve only peeking experience with Python.)
I would suggest trying out Go or/and then C#. Both are relatively simple to get into, and have more native/mainline frameworks and guidance. C#/Dotnet in general has a lot of guidance, documentation in broad and specific, and tutorials and sample projects.
I don’t think 2% of M365 is necessarily bad numbers. Office is prevalent, for all kinds of and even the simplest of office work. Not everyone needs AI or has the technical expertise or awareness of what this offer even means. Some people may not have launched their Office for one or two years but still have a paid license.
There’s also a free copilot for GitHub users, which may be necessary as a teaser and testing, and adoption. That may also offset “adoption” by measure of commercial licenses instead of active users.
I didn’t like the initial focus on that number of sold licenses in the article. Of course, they expand upon it and draw a broader picture afterwards.
I think it makes sense that publishers are required to update or at least assess games when open security issues come to their attention.
The current state is that you may have 20 games installed and 10 have not been maintained for a long time, and 5 have open security issues that an attacker may use. For example, a game launcher with service installs to program files with admin permission. And suddenly, you have a privilege escalation.
Or a game, when run, pulls in some monitoring, and suddenly exfiltrates data because that service is defunct and was taken over, or hacked.
The necessity is quite clear.
Maybe this will also push us towards more stable software, that changes less, or has less attack or escalation surface. That could significantly reduce maintenance burden - even if it ends up only assessing reported open vulnerabilities not affecting your product (because you don’t make use of or open up the vulnerable functionality).
Who is ‘they’?
It’s certainly easy to imagine various companies and people demanding FOSS maintainers handle this stuff for them. Like the article suggests, as well.
I find this kind of graph a bit misleading/ambiguous. I intuitively want to follow horizontal association between in and out. For example, Recruiter at the bottom splits into three at the bottom.
Not sure if there’s a better way to do this. Disconnect in-bar and out-bar with a condensed point/circle to indicate non-conformity?
For better or worse
Scroll to the second paragraph, get a subscribe popover. So annoying. I haven’t even read any reasonable amount of content yet.
In the bottom notes, they link to their Quantifying the cost of RTO, which is a worthwhile read too, with visualized numbers.
At work, I don’t have to work with node projects at all.
Outside of work, some drive-by contributions or where I contribute or would have liked to contribute. For example, on OpenTermsArchive, or the Nushell website (where it doesn’t work with their vuepress, unfortunately).