Introducing Dim – a new framework that brings React-like functional JSX-syntax with JS. Check it out here:

🔗 Project: https://github.com/positive-intentions/dim

🔗 Website: https://dim.positive-intentions.com/

My journey with web components started with Lit, and while I appreciated its native browser support (less tooling!), coming from ReactJS, the class components felt like a step backward. The functional approach in React significantly improved my developer experience and debugging flow.

So, I set out to build a thin, functional wrapper around Lit, and Dim is the result! It's a proof-of-concept right now, with "main" hooks similar to React, plus some custom ones like useStore for encryption-at-rest. (Note: state management for encryption-at-rest is still unstable and currently uses a hardcoded password while I explore passwordless options like WebAuthn/Passkeys).

You can dive deeper into the documentation and see how it works here:

📚 Dim Docs: https://positive-intentions.com/docs/category/dim

This project is still in its early stages and very unstable, so expect breaking changes. I've already received valuable feedback on some functions regarding security, and I'm actively investigating those. I'm genuinely open to all feedback as I continue to develop it!

Repository was archived?

What I think in addition to what Atkinso writes: If you just strip arbitrary bytes that happen to be equal in value to the numeric value of ASCII control characters or whitespace, how can you be sure that you don't destroy valid non-whitespace unicode symbols?

You can't! This will work only of you have actually ASCII input.

So-called ‘AI’ does not reduce, but rather diffuses and renders labour practically invisible.

Guys, need opinion!

I am an indie dev, a student (still in school), trying to think of ways to earn with just my laptop, internet, and programming skills, any ways as part of my journey I have developed several apps, now as an indie creator with practically no capital, and just reddit and facebook for marketing, should one explore this world of selling apps, your opinion and tips are highly valued so please do comment

P.S I have linked the types of apps I have that I could set up of sale, if you have any feedback on it, do tell https://muhammadj.gumroad.com/l/wifipassfinder

A 16 minute read, but great nonetheless

With the arrival of Cyber Resilience Act it can be helpful to generate a Software Bill of Materials (SBOM), and to process other to look for known vulnerabilities.

Two open source tools under Apache 2.0 license:

• Syft, for SBOM generation: https://github.com/anchore/syft
• Grype, to process then the SBOM: https://github.com/anchore/grype

I would prefer activitypub on stuff like this, but its still cool.

cross-posted from: https://programming.dev/post/31210046

Firefox 139.0 released yesterday, with support for the Temporal JavaScript API.

I explored the API, writing down the most relevant interfaces into a reference or cheat sheet.

It's certainly and finally a thorough API for handling temporal information. Working with zoned datetime across time offsets and time zones can get very confusing, though.

I love how you can work with them though, especially with durations.

console.log(Temporal.PlainDateTime.from('2025-02-05T08:00:00'))

console.log(Temporal.Now.plainDateTimeISO("Europe/Berlin"))

console.log(Temporal.Now.plainDateTimeISO().add('PT2M0.2S').subtract('PT0.5S').since(Temporal.Now.plainDateTimeISO()))

console.log(Temporal.ZonedDateTime.from('2025-02-05T13:57:35.777888[Europe/Berlin]').withTimeZone('Europe/London'))

I learned about Appwrite from the entry in the selfh.st newsletter. It looks like an open source (BSD-3 Clause license) alternative to Google's Firebase and other BaaS platforms:

https://appwrite.io/blog/post/open-source-firebase-alternative

I haven't tried it, but it looks neat

Developer experience, concrete examples, contextualized, including flaws/edge of capabilities.

Ideation, Maintenance, Coding, Testing, Debugging, …

Chapters:

• Speaker Introductions
• 00:03:03 - Personal experiences with AI in coding
• 00:14:41 - Updating regular expression engine
• 00:31:39 - AI Assisting in Code Writing and Fixing Mistakes
• 00:34:01 - AI-Driven Regex Capabilities for Uri Templates
• 00:37:59 - Enhancements in Memory Extensions
• 00:44:10 - Discussion about AI handling tasks and upcoming merge
• 00:46:00 - AI creates and handles test cases automatically
• 00:46:57 - AI tackles project tasks, improves efficiency, and handles edge cases

A good look into how it is and can currently be used.

Is anyone aware of any FOSS browser replacement projects? Being a "full stack dev" (feels like a false skill set most of the time) I'm at this point where there are easily enough of us who have struggled with implementing web apps in the various frameworks and tools that essentially all boil down to JavaScript, HTML and CSS.

There's nothing wrong with them individually, but with modern languages and hardware we should be able to make something better. At least in a way to encourage adoption of something better, and I want to contribute to it.

Marketers promote AI-assisted developer tools as workhorses that are essential for today’s software engineer. Developer platform GitLab, for instance, claims its Duo chatbot can “instantly generate a to-do list” that eliminates the burden of “wading through weeks of commits.” What these companies don’t say is that these tools are, by temperament if not default, easily tricked by malicious actors into performing hostile actions against their users.

Researchers from security firm Legit on Thursday demonstrated an attack that induced Duo into inserting malicious code into a script it had been instructed to write. The attack could also leak private code and confidential issue data, such as zero-day vulnerability details. All that’s required is for the user to instruct the chatbot to interact with a merge request or similar content from an outside source.