Arian van Putten
@arianvp.me
Working on banking infra at @mercury@twitter.com
prev: @feeldco@twitter.com, @wire@twitter.com
Opinions are my own and do not reflect that of my (past) employer(s)
prev: @feeldco@twitter.com, @wire@twitter.com
Opinions are my own and do not reflect that of my (past) employer(s)
Really really don't like that Zed downloads random binaries without my consent. They also most of the time don't work due to being dynamically linked.
July 17, 2025 at 10:18 AM
Really really don't like that Zed downloads random binaries without my consent. They also most of the time don't work due to being dynamically linked.
tfw you buy a chip on ebay for 1/4th the price and it turns out to be an engineering sample with an unlocked management engine
July 11, 2025 at 3:10 PM
tfw you buy a chip on ebay for 1/4th the price and it turns out to be an engineering sample with an unlocked management engine
I'm in SF from 21 jun onwards. If you want to meet up let me know!
June 16, 2025 at 10:24 AM
I'm in SF from 21 jun onwards. If you want to meet up let me know!
The problem with OIDC and SSO in general is that it only solves identifying the person but most clients all implement their own session management. This is is why I think an auth proxy is a way better strategy than configuring SSO on all your services as you have centralized session management
June 16, 2025 at 10:23 AM
The problem with OIDC and SSO in general is that it only solves identifying the person but most clients all implement their own session management. This is is why I think an auth proxy is a way better strategy than configuring SSO on all your services as you have centralized session management
Reposted by Arian van Putten
“An update on improving passkey support in Linux” www.iinuwa.xyz/blog/linux-p...
Linux Passkeys Update
An update on improving passkey support in Linux
www.iinuwa.xyz
May 22, 2025 at 10:53 AM
“An update on improving passkey support in Linux” www.iinuwa.xyz/blog/linux-p...
I guess I can talk about this now :D You should be able to sign in with Passkeys on mercury.com and the iOS app since today
May 26, 2025 at 7:04 PM
I guess I can talk about this now :D You should be able to sign in with Passkeys on mercury.com and the iOS app since today
The entshitification of GitHub is happening at record pace since they've replaced all their engineers with AI. The website literally is not usable anymore on slightly bad network connections.
We need to abandon ship before we're all going down with it
We need to abandon ship before we're all going down with it
May 26, 2025 at 9:20 AM
The entshitification of GitHub is happening at record pace since they've replaced all their engineers with AI. The website literally is not usable anymore on slightly bad network connections.
We need to abandon ship before we're all going down with it
We need to abandon ship before we're all going down with it
Programmers uncovers inscriptions from an ancient civilization and they provide useful insights
(User commenting on a thread that was created pre-AI boom)
(User commenting on a thread that was created pre-AI boom)
May 22, 2025 at 8:07 AM
Programmers uncovers inscriptions from an ancient civilization and they provide useful insights
(User commenting on a thread that was created pre-AI boom)
(User commenting on a thread that was created pre-AI boom)
More relevant than ever.
> All the "best practices" like OpenSSF Scorecards are just an attempt by big tech companies to guilt trip OSS maintainers and make them work for free.
gitlab.gnome.org/GNOME/libxml...
> All the "best practices" like OpenSSF Scorecards are just an attempt by big tech companies to guilt trip OSS maintainers and make them work for free.
gitlab.gnome.org/GNOME/libxml...
May 15, 2025 at 8:18 AM
More relevant than ever.
> All the "best practices" like OpenSSF Scorecards are just an attempt by big tech companies to guilt trip OSS maintainers and make them work for free.
gitlab.gnome.org/GNOME/libxml...
> All the "best practices" like OpenSSF Scorecards are just an attempt by big tech companies to guilt trip OSS maintainers and make them work for free.
gitlab.gnome.org/GNOME/libxml...
I just might have bought an Ampere Altra Max M128-30. Oops
May 13, 2025 at 8:29 AM
I just might have bought an Ampere Altra Max M128-30. Oops
1. Linux Torvalds writes git to develop linux
2. GitHub starts business on top of git
3. GitHub gets acquired by trillion-dollar MicroSoft
4. GitHub enshitifies so much you can't even browse the linux kernel on GitHub anymore
Seriously????
I'm so done man.
2. GitHub starts business on top of git
3. GitHub gets acquired by trillion-dollar MicroSoft
4. GitHub enshitifies so much you can't even browse the linux kernel on GitHub anymore
Seriously????
I'm so done man.
May 10, 2025 at 10:24 AM
1. Linux Torvalds writes git to develop linux
2. GitHub starts business on top of git
3. GitHub gets acquired by trillion-dollar MicroSoft
4. GitHub enshitifies so much you can't even browse the linux kernel on GitHub anymore
Seriously????
I'm so done man.
2. GitHub starts business on top of git
3. GitHub gets acquired by trillion-dollar MicroSoft
4. GitHub enshitifies so much you can't even browse the linux kernel on GitHub anymore
Seriously????
I'm so done man.
This is kind of dense coming from MICROSOFT who fucked us over with their AI bullshit
github.blog/changelog/20...
github.blog/changelog/20...
Updated rate limits for unauthenticated requests - GitHub Changelog
To provide a secure and dependable experience on GitHub, we’re rolling out updates to rate limits for requests made without authentication. These changes will apply to operations like cloning reposito...
github.blog
May 9, 2025 at 7:08 AM
This is kind of dense coming from MICROSOFT who fucked us over with their AI bullshit
github.blog/changelog/20...
github.blog/changelog/20...
3 year anniversary of "I cant' dismiss PRs that were already merged from my notification feed"
github.com/orgs/communi...
I currently have 5000 unread notifications because of this.
I despise GitHub so much for not addressing any kind of UX concerns
github.com/orgs/communi...
I currently have 5000 unread notifications because of this.
I despise GitHub so much for not addressing any kind of UX concerns
Filter notifications by `status` · community · Discussion #15591
Hey there, daily I review my work notifications from GitHub, and a feature that would be interesting is filtering notifications(PRs and issues) by status. I mean open, closed, merged by status. It ...
github.com
May 2, 2025 at 10:51 AM
3 year anniversary of "I cant' dismiss PRs that were already merged from my notification feed"
github.com/orgs/communi...
I currently have 5000 unread notifications because of this.
I despise GitHub so much for not addressing any kind of UX concerns
github.com/orgs/communi...
I currently have 5000 unread notifications because of this.
I despise GitHub so much for not addressing any kind of UX concerns
Dear @github.com please for the love of... Fix the CSS for Github Actions when using matrix jobs and reusable worfklows
How is this readable at all? And this is a trivial matrix. I'm not doing anything complicated
How is this readable at all? And this is a trivial matrix. I'm not doing anything complicated
April 23, 2025 at 9:35 AM
Dear @github.com please for the love of... Fix the CSS for Github Actions when using matrix jobs and reusable worfklows
How is this readable at all? And this is a trivial matrix. I'm not doing anything complicated
How is this readable at all? And this is a trivial matrix. I'm not doing anything complicated
Bicep tattoo with : My other ARM is a server
April 22, 2025 at 11:20 PM
Bicep tattoo with : My other ARM is a server
If you wanna view the zoom status page you can use
curl --header 'Host: status.zoom.us' reds.craveable.support
curl --header 'Host: status.zoom.us' reds.craveable.support
Red Rooster Support Status - Page Inactive
reds.craveable.support
April 16, 2025 at 8:24 PM
If you wanna view the zoom status page you can use
curl --header 'Host: status.zoom.us' reds.craveable.support
curl --header 'Host: status.zoom.us' reds.craveable.support
10x engineers from DOGE have reduced the amount of CVEs in government infrastructure by 1000%. This is an amazing accomplishment that could only have been achieved with the brilliance of Elon Musk
April 15, 2025 at 6:06 PM
10x engineers from DOGE have reduced the amount of CVEs in government infrastructure by 1000%. This is an amazing accomplishment that could only have been achieved with the brilliance of Elon Musk
Hey @rmondello.com when I only implement conditional mediation for passkeys on Safari; there doesn't seem to be a button for people to use their Security Keys . In Chrome they do give this option when pressing "Use nearby device". Is this expected? It feels like a bug.
April 15, 2025 at 7:39 AM
Hey @rmondello.com when I only implement conditional mediation for passkeys on Safari; there doesn't seem to be a button for people to use their Security Keys . In Chrome they do give this option when pressing "Use nearby device". Is this expected? It feels like a bug.
Reposted by Arian van Putten
One thing im excited about with these kind of minimal“everything embedded in a UKI” distros like frood, particleos, and Bocaditos, is that you can precompute PCR values during build time and use TPM attestation as your bottom turtle to bootstrap trust in your network
Very grateful to past me right now.
$ ./frood build
Building image frood.2025041301.efi
--- FAIL: TestExecutable (0.00s)
perms_test.go:34: File "/etc/monitor.d/zfs-get.sh" is not executable
FAIL
FAIL filippo[.]io/mostly-harmless/frood/tests 0.295s
Wish we had a large reusable library of these.
$ ./frood build
Building image frood.2025041301.efi
--- FAIL: TestExecutable (0.00s)
perms_test.go:34: File "/etc/monitor.d/zfs-get.sh" is not executable
FAIL
FAIL filippo[.]io/mostly-harmless/frood/tests 0.295s
Wish we had a large reusable library of these.
April 13, 2025 at 12:07 PM
One thing im excited about with these kind of minimal“everything embedded in a UKI” distros like frood, particleos, and Bocaditos, is that you can precompute PCR values during build time and use TPM attestation as your bottom turtle to bootstrap trust in your network
PSA: You don't need actions/checkout in your github actions
You can just directly do:
nix build "github:${GITHUB_REPOSITORY}/${GITHUB_SHA}"
You can just directly do:
nix build "github:${GITHUB_REPOSITORY}/${GITHUB_SHA}"
April 12, 2025 at 10:15 AM
PSA: You don't need actions/checkout in your github actions
You can just directly do:
nix build "github:${GITHUB_REPOSITORY}/${GITHUB_SHA}"
You can just directly do:
nix build "github:${GITHUB_REPOSITORY}/${GITHUB_SHA}"
We just merged a feature for mercury.com that I've been working on (on and off) for the past 2 years and it's my first and only customer-facing feature I ever built. Can't wait to talk more about it once it rolls out to general public :D
Online Business Banking For Startups & Small Businesses | Financial Workflows
Powerful banking. Simplified finances. Apply in 10 minutes for business banking that transforms how you operate.
mercury.com
April 10, 2025 at 5:45 PM
We just merged a feature for mercury.com that I've been working on (on and off) for the past 2 years and it's my first and only customer-facing feature I ever built. Can't wait to talk more about it once it rolls out to general public :D
Reposted by Arian van Putten
@arianvp.me of github.com/arianvp/nix-attest about how this could be on of the pieces of the puzzle of sigstore integration with Nix infra
GitHub - arianvp/nix-attest: SLSA provenance using Nix and Github Actions
SLSA provenance using Nix and Github Actions. Contribute to arianvp/nix-attest development by creating an account on GitHub.
github.com
March 18, 2025 at 7:03 PM
@arianvp.me of github.com/arianvp/nix-attest about how this could be on of the pieces of the puzzle of sigstore integration with Nix infra
After hunting down obscure heap corruption bugs that only happen when using certain libraries together in production this week I am reminded of the following quote:
"Follow these two simple rules to run stable production systems:
1. Never update your system
2. Always keep your system up to date
"
"Follow these two simple rules to run stable production systems:
1. Never update your system
2. Always keep your system up to date
"
March 29, 2025 at 12:09 PM
After hunting down obscure heap corruption bugs that only happen when using certain libraries together in production this week I am reminded of the following quote:
"Follow these two simple rules to run stable production systems:
1. Never update your system
2. Always keep your system up to date
"
"Follow these two simple rules to run stable production systems:
1. Never update your system
2. Always keep your system up to date
"
Hope it goes better than NixOS. Moving to Discourse was a terrible idea. Works too much like social media and running social media is hard.
Ubuntu Developers Discuss Abandoning Mailing Lists For Discourse #SuggestedRead #devopsish www.phoronix.com/new...
Ubuntu Developers Discuss Abandoning Mailing Lists For Discourse
Ubuntu developers decided a few months back to switch from IRC to Matrix for real-time communication needs
www.phoronix.com
March 25, 2025 at 7:38 PM
Hope it goes better than NixOS. Moving to Discourse was a terrible idea. Works too much like social media and running social media is hard.