humanwhocodes.com
Nicholas C. Zakas
@humanwhocodes.com
5.3K followers 46 following 1K posts
Human who codes. Creator of @eslint.org. Author. Speaker. Advisor. Coach. GitHub Star. Mastodon: https://fosstodon.org/@nzakas Blog: https://humanwhocodes.com Coaching: https://humanwhocodes.com/coaching
fosstodon.org
Posts Media Videos Starter Packs
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 16h
In hindsight, getting a laptop with non-expandable RAM was a mistake.
1
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 1d
Bad publicity is a powerful motivator. I don’t think we should let them off the hook so easily.
1 3
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 1d
With ingestion-point validation, it wouldn't matter if someone's credentials get stolen. The registry itself would identify the package as malicious and prevent publishing. This also reduces the attractiveness of working to steal credentials.
2 5
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 1d
Fiddling with the nobs on npm tokens is low-hanging fruit that doesn't address the larger issue of credential stealing. Once your npm or GitHub account is compromised, it's end of story. Malicious packages get published.
1 5
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 1d
GitHub's response to npm supply chain attacks is too one-sided. By reinforcing maintainer responsibility, they're missing ingestion-point detection. For example, the registry could require packages that add a postinstall script for the first time to have a semver major bump.
3 1 23
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 2d
It would be great if the big tech companies could chip in. In the past year, only Meta has donated to support ESLint. In an era where these companies are bringing in record profits, a few thousand dollars can go a long way towards ESLint's sustainability.
7
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 2d
ESLint depends on sponsorships to pay maintainers. We're operating at a deficit with roughly a junior engineer's salary supporting a dozen maintainers plus awarding outside contributions. Please talk to your company about sponsoring ESLint:
https://eslint.org/donate
1 11 39
Reposted by Nicholas C. Zakas
eslint.org
ESLint @eslint.org · 2d
ESLint v10.0.0 is coming! Check out our latest blog post for what to expect.

https://eslint.org/blog/...
2 7 33
Reposted by Nicholas C. Zakas
nodeland.dev
Matteo Collina @nodeland.dev · 2d
🤝 The Open Source Pledge = $2,000/year per developer to OSS maintainers.

For enterprises using open source, supporting these projects isn't optional—it's essential for mitigating risks and ensuring sustainability.

Join us → opensourcepledge.com
Open Source Pledge
Open Source software powers the world, but who supports the maintainers? We do.
opensourcepledge.com
1 4
Reposted by Nicholas C. Zakas
eslint.org
ESLint @eslint.org · 6d
Due to an unprecedented amout of AI traffic coming from China to our website, we are temporarily blocking all requests coming from China until we can deploy a more targeted solution. We apologize for the inconvenience and appreciate your understanding.
2 1 3
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 7d
Tried using Grok Code Fast 1 as my Copilot implementer and it did a pretty good job. A bit too reliant on the command line, which slowed things down, and did skip a couple steps. The code it did right was spot-on.
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 7d
👍
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 7d
Do any of my followers work at Netlify? The ESLint websites are seeing a massive spike in bandwidth usage starting September 25 without a corresponding increase in traffic (via Google Analytics). Can anyone help us figure this out?
1
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 8d
My dream AI IDE supports Claude Code-like subagents that I can arrange in a LangChain-like chain to fully define my development process.
1
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 9d
First day using an Insta360 Link 2 as my primary webcam and so far I'm impressed. I also like that it looks and acts a bit like a little droid sitting on top of my monitor.
2
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 12d
Pro tip: Sometimes the thing doesn't work because it's broken.
1 6
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 13d
For Bredbox, I've been trying to avoid site-specific configs to help with content extraction due to the maintenance overheard. But man, content sites do some truly bizarre things that I'm not sure how to generalize.
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 13d
Web context extraction challenge: incorrect/missing Open Graph data. If og:type="article", it's definitely an article, but many sites set og:type"website" on all pages, including articles. So og:type "website" is useless for this purpose.
1
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 14d
A bunch of Bredbox invites went out over the past week. If you're on the waiting list, be sure to check your spam folder!
1
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 16d
It definitely helps content extractors. At a minimum, og:type and og:image helps to create nice previews. The microdata is great for the content extraction piece as it identifies everything in the HTML.

If you DM me an email address I can send you a Bredbox invite to try it out. 😄
2
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 19d
You sir don’t have an og:type or any microdata on your posts. This resulted in the Bredbox extractor returning an empty string for the page type (which shouldn’t have happened, it should have been “other”), which then bypassed article extraction.

I’m sure you’re not the only one, so thanks. 😀
1 1
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 19d
For some reason, Bredbox wasn't extracting the article content from @jakearchibald.com's blog. This turned out to be an edge case bug that is now fixed, so more sites can be extracted. 🎉
1 2
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 22d
Just sent out the next batch of invites to Bredbox! Had to fix a few bugs that popped up with the first batch of users before I felt comfortable about letting more in. Sign up for your invite here:

https://bredbox.app
3
humanwhocodes.com
Nicholas C. Zakas @humanwhocodes.com · 23d
Moving all of my Supabase edge functions to Cloudflare workers. Just too many problems bouncing back and forth between Deno and Node.js worlds.
2
Reposted by Nicholas C. Zakas
sarasoueidan.com
Sara Soueidan @sarasoueidan.com · 26d
🎥 New (Video) Podcast: "Navigating the World of Web Accessibility with Sara Soueidan", with @kevinpowell.co

www.youtube.com/watch?v=ndGK...

I finally sat down with Kevin for a long-overdue, in-depth conversation about web #accessibility, and we had a blast!
Navigating the World of Web Accessibility with Sara Soueidan
YouTube video by General Musings with Kevin Powell
www.youtube.com
2 13 48