pimterry

@pimterry@toot.cafe

Creator of https://httptoolkit.com, tech speaker, drummer & mountain biker. 🇬🇧🇨🇦 living in 🇪🇸. He/Him. #typescript #js #nodejs #docker #http #opensource

(Searchable via Tootfinder)

This profile is from a federated server and may be incomplete. Browse more on the original instance.

pimterry, to homeassistant

Spent some of the weekend playing with Arduinos + Home Assistant (@homeassistant) to keep a better eye on my plants. Even though it's C++, it's so refreshing compared to shipping modern prod code!

Single file, no tests, no 3rd party dependencies, no infra, just run code & see results immediately (if it works, it's done). And with deep sleep the result should keep running on battery for years untouched. Super fun! ✨

pimterry, to random

A user has triggered a minor meltdown by emailing a template GDPR right to be forgotten email to me and the support emails of a long list of other services (Jetbrains, Medium, etc) with all of us on CC.

Deleting their account data is easy. The hard part is managing the now-endless series of autoreplies back & forth between customer support CRMs, reply-all-ing the entire CC list to acknowledge the request, which then updates the pending ticket in every other service, which then autoreplies...

pimterry, to random

Node v22 is out today (https://github.com/nodejs/node/releases/tag/v22.0.0) and it's a biggie:

  • Support for require(esm) for sync modules (i.e. most of them)
  • Built-in websocket support
  • node --run <x> (replacing npm run <x>)
  • fs.glob to match files on disk by patterns
  • Maglev compiler, for up to 20% speedup for short-lived scripts (like "tsc --build" and other CLI tools)
pimterry, to random

AI sings the MIT license: https://app.suno.ai/song/da6d4a83-1001-4694-8c28-648a6e8bad0a/

pimterry, to random

Extremely excited about the JS Signals proposal: https://github.com/proposal-signals/proposal-signals

I've used Knockout (one upon a time) and Mobx (nowadays) for state management & update propagation and it's a really superb model - for frontend state of course, but even for data analysis & backend. It's intuitive, clean, fast, effective - every type of good thing. Would love love love to have it as a standard feature usable everywhere!

pimterry, to random

I'm actually quite impressed by the EU's new updates to the Cyber Resilience Act! #CRA

Formal recognition of "open-source software stewards" with separate light-touch rules, with an explicit exclusion to avoid categorizing donations/sponsorship that supports FOSS development as commercial activity.

And plenty of carve-outs for micro-enterprises & startups en route too.

Full text here: https://data.consilium.europa.eu/doc/document/ST-17000-2023-INIT/EN/pdf

Quick summary from the Python Software Foundation here: https://pyfound.blogspot.com/2024/01/CRA-update.html

pimterry, to random

https://blog.postman.com/download-mobile-game-postman-api-first-journey/

Blinking

I... I really don't know what to make of this! They might as well just buy a billboard with "we have too much VC money and we're really not sure what to spend it on" 😂

pimterry, to random

https://tuta.com/blog/chat-control is really fantastic news.

Great not just to see sanity prevail over and , but especially to see expert & community feedback being clearly received and used, to see a parliament explicitly reiterate support for privacy and encryption, and to see all that getting a good broad majority behind it.

Imo, the EU might consider dubious ideas at points, but the various layers are mostly quite good at collecting feedback and dropping bad plans.

pimterry, to random

I've been building some extremely exciting new tools with https://frida.re recently.

If you like intercepting mobile apps, take a look at https://github.com/httptoolkit/frida-interception-and-unpinning

  • HTTPS MitM interception & certificate unpinning for any Android app, with no system configuration or setup whatsoever.
pimterry, to random

The Cypress.io situation is wild! https://currents.dev/posts/v13-blocking

In short: when installing the Cypress npm package, on postinstall it checks what other packages you installed, and you're using any packages they don't like (e.g. tools for self-hosting that compete with their cloud service) then it refuses to run. More detailed summary from @jess here: https://twitter.com/_jessicasachs/status/1712043659330310488

Very hard to argue your product is good if you have to actively block your customers from even testing alternatives! Yikes.

pimterry,

"Open source and community-driven, but if somebody else tries to integrate with us then we add DRM to block them" is a bold and innovative new approach that I had not yet seen tested.

pimterry, to random

Android 14 is going to create some big problems for devs, testers, reverse engineers, researchers, and anybody else who likes being able to debug their HTTP: https://httptoolkit.com/blog/android-14-breaks-system-certificate-installation/

pimterry, to random

I have a Gatsby v2 site I need to migrate (it's now incompatible with all new Gatsby, and Gatsby is dead/dying anyway).

I want the simplest minimal-churn minimal-maintenance React framework for a 90% static site. Simple & unchanging w/o fancy features would be superb.

What's the best option?

pimterry,

In terms of Gatsby features I'm actually using, I have:

  • A handful of template-generated pages and markdown-generated pages
  • Instant links (nice to have)
  • Automatically processed & lazy-loaded images
  • Lots of small plugins like an RSS feed, sitemap, auto canonical URL, all probably reimplementable manually.

Not a lot else - I'm hoping that porting the code directly to another React framework should work pretty easily!

pimterry,

@tanepiper @astro How's the churn?

Looks like there's a breaking v3 coming, there was a breaking v2 in January, and a breaking v1 last August... Much hassle upgrading?

pimterry, to random

Turns out that Web Environment Integrity proposal everybody is getting angry about (imo very legitimately) was effectively already shipped by Apple in Safari last year: https://httptoolkit.com/blog/apple-private-access-tokens-attestation/

That means if Chromium ships it too, we could quickly move to 90%+ of browser traffic being attested. Not good!

pimterry, to random

https://github.com/RupertBenWiser/Web-Environment-Integrity is the worst possible world for the web.

The key magic that has grown the web so effectively is open permissionless technology. Anybody can publish, anybody can access how they like, and both servers and clients can freely evolve. If you talk HTTP, you're welcome. That's powered all the growth and innovation and chaos that's made it so successful.

Attestation moves us back into another walled garden - invited guests only. Whatever that is, it's not the web.

pimterry, to opensource

I suspect quite a few of you might be keen on open-source 😀

Unfortunately, #opensource has a funding problem, and so a lot of people struggle to find time to commit to their projects.

In many regions though (esp the EU) there is money available to fund you doing open source full time! Particularly in a few different areas related to what the EU is calling "Next Generation Internet" (#NGI) tech.

All these are open for applicants either right now or imminently:

pimterry,

NGI Sargasso open call: https://ngisargasso.eu/

Not just the EU - Sargasso is a broader cross-atlantic set of funds, offering €100k to fund open-source projects with contributors from the EU, US & Canada working together.

The open call is looking for anything related to trust, decentralization, internet commons, internet architecture, data sovereignty etc.

pimterry,

NGI Sagasso Digital Identity: https://ngisargasso.eu/eu-applicants-digital-credentials/

Up to €100k towards open-source projects, again with a cross-atlantic focus, but specifically looking for projects related to digital identity.

pimterry,

Prototype Fund: https://prototypefund.de/en/

Specifically looking to fund the idea -> prototype stage of open source projects related to civic tech, data literacy, data security, or other software tools & infrastructure that can support such projects.

Up to €47,500 for 6 month projects.

pimterry,

https://www.opentech.fund/funds/

I only just found this one, but they appear to be based in the US, and offering funding (quantity/duration unclear) for open-source projects related to topics like human rights & internet freedom, digital censorship, and network restriction circumvention.

pimterry,

Personally, I've been selected for 2 separate NGI projects over recent years.

Application process is relatively quick & easy (you could be done today) and the reality is exactly what is says on the tin: pitch a valuable project that fits, split it into some agreed milestones, do open source dev to fulfil those any way you like at your own pace, and as you send over details of each completed milestone they sign it off & send you the funding.

pimterry,

This doesn't need to be your only project or income - you can fund open-source in addition to other work if you want/need.

HTTP Toolkit for example makes money by itself anyway, but direct funding like this lets me focus on building & researching new concepts and features that are awesome for everybody, not just things that are profitable.

pimterry,

If you're keen on open-source development, and you have an idea or an existing project you'd like to be able to commit more time to, I'd highly recommend putting in an application just to see where it might go 🙂

Also worth joining the NGI newsletter, as new funds like this covering different NGI-related topics open up there every few months: https://www.ngi.eu/subscribe/

pimterry,

@whynothugo https://github.com/httptoolkit/httptoolkit-ui/blob/125661753fd9a9573814e31f1b98892d638ffa48/src/model/account/account-store.ts#L148

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • InstantRegret
  • mdbf
  • ethstaker
  • magazineikmin
  • cubers
  • rosin
  • thenastyranch
  • Youngstown
  • osvaldo12
  • slotface
  • khanakhh
  • kavyap
  • DreamBathrooms
  • provamag3
  • Durango
  • everett
  • tacticalgear
  • modclub
  • anitta
  • cisconetworking
  • tester
  • ngwrru68w68
  • GTA5RPClips
  • normalnudes
  • megavids
  • Leos
  • lostlight
  • All magazines
    •