This is what poor test coverage looks like pic.twitter.com/IspA2GuGNq
— Jess West 🐚 Vacay in Mexico 🏖️ (@jessicaewest) May 6, 2019
A discontinued insulin pump is in demand *because* it contains a security vuln that can be exploited to provide healthcare https://t.co/ztoUhsAKyf
— Ryan Naraine (@ryanaraine) May 6, 2019
From @BernsteinA: "Throwback to my favourite bug report." #gamedev #gamedevelopment #Terrorarium #why pic.twitter.com/E2PZHoKt5K
— Terrorarium 🍄🌵 (@TerrorariumGame) April 30, 2019
I did it. I found the all-time dumbest security question answer requirement. Good job @fedex. pic.twitter.com/a6PBoHUT4z
— Luke Millar (@ltm) April 28, 2019
last week i got to witness an engineering department lose a full day's work because if you put an emoji in a git commit message, Atlassian Bamboo chokes on it forever and you're forced to rebase master, like you should NEVER DO. this was of course referred to as The Emojiency
— Chaos (@chaosprime) April 21, 2019
Fun JavaScript quirk I ran into: a really large setTimeout() delay makes the delayed function execute (almost) immediately. 🤦♂️
— David K. 🎹 (@DavidKPiano) April 20, 2019
Basically, don't setTimeout() for longer than ~25 days. pic.twitter.com/PuaMsRVfPt
Feeling down? iOS jailbreak you've been working on for a year got patched? Fuzzer not finding any bugs? Miss the 90s where everything crashed? Change your time format on Windows to 90 characters! Watch everything fall over as they get 90 character formats from Windows APIs! pic.twitter.com/obqDurtRFC
— Brandon Falk (@gamozolabs) April 20, 2019
She just straight up started naming random people who live in Michigan. pic.twitter.com/gBXnja0Y4t
— ashe dryden (@ashedryden) April 19, 2019
this episode has a funny implication: to write a C or C++ compiler that is taken seriously, you must implement a language that is not specified or defined anywhere other than "it must produce the expected results on this small collection of dusty deck codes" https://t.co/sLLQuxdYei
— John Regehr (@johnregehr) April 15, 2019
"...the user agent string for the latest Dev Channel build of Microsoft Edge: "... Edg/74.1.96.24" We’ve selected the “Edg” token to avoid compatibility issues that may be caused by using the string “Edge,”..."
— Nathan Froyd (@froydnj) April 9, 2019
We are now deliberately misspelling words in the User-Agent string.
— Peter Steinberger (@steipete) April 3, 2019
the immaculate joy of writing standard libraries pic.twitter.com/EpbKcoFATS
— iximeow (@iximeow) April 6, 2019
CONDUCTOR: we’re stopping the train so we can reboot the engine computer
— bletchley punk (@alicegoldfuss) December 14, 2018
ME: pic.twitter.com/bafD2lZjED
If you told me that setting a sprite’s color in Unity couldn’t happen off the main thread, I would already be angry at you, but nevertheless I was not emotionally prepared to find out the reason why pic.twitter.com/e7iAYfMmPI
— Christine Love (@christinelove) January 22, 2019
Valid C, invalid C++:
— Stephen Checkoway (@stevecheckoway) January 27, 2019
for (int i = 0; ;) {
int i = 1;
return i;
}
Valid C and C++:
for (int i = 0; ;) {{
int i = 1;
return i;
}}
🌶️ HOT JAVASCRIPT TIP: 🌶️
— Lynn (@chordbug) February 5, 2019
to increment some counter on the page,
node.innerText += 1
doesn't work (0 → 01 → 011 → ⋯), but
node.innerText -= -1
works fine (0 → 1 → 2 → ⋯)
"Ⱥ" and "Ⱦ" are Unicode characters, which increase in length (from 2 to 3 bytes) when lowercased. Nasty.
— @mikko (@mikko) November 5, 2018
Found them from the "Big List of Naughty Strings" - list of strings which have a high probability of causing issues when used as user-input data. https://t.co/mBX2CAdnnH
This is hell pic.twitter.com/SBLgsq6BpQ
— BooDoo (@BooDooPerson) November 5, 2018
them: is 10 the highest CVE score you can have?
— Kenn White (@kennwhite) September 25, 2018
me: ?
them: a website has unauthenticated, remote access via a single get request
me: seems like a 10.
them: which returns select * on a quarter million unencrypted credit card #'s.
me: okay, maybe 11.
Stories from Antivirus land: clamav uses libmspack, libmspack had vuln in 2012, libmspack fixed it+adds regression test, clamav detects regression test as malware, libmspack can't be distributed any more because webhost of libmspack uses clamv... pic.twitter.com/gecw8ypnPG
— hanno (@hanno) August 9, 2018
Be careful when reversing #unicode strings. You may be surprised…
— Daily Python Tip (@python_tip) August 6, 2018
>>> s = "Welcome in 🇬🇧”
>>> s[::-1]
'🇧🇬 ni emocleW'
(thanks @piskvor for the inspiration!) pic.twitter.com/JKNb0MotzQ
ask me how my day is going pic.twitter.com/2Vfkg4Km1f
— zach (@ztellman) August 11, 2018
I thought this was a joke.
— Hector Martin (@marcan42) June 19, 2018
It wasn't a joke.https://t.co/5CKhMOBTSK https://t.co/M0MJIIlm4Y
how and why would you even build a system that behaved like this pic.twitter.com/SHr9zep1m2
— 100% clean soup (@vogon) June 19, 2018
You keep using the word 'fsync', I do not think it means what you think it means... If you manage data on Linux, you don't want to miss this popcorn worthy debugging on the #Postgres hackers list: https://t.co/MJGKtoeQgE
— xzilla (@robtreat2) April 2, 2018
Load-bearing optimization, n.
— David Smith (@Catfish_Man) May 24, 2016
A performance-related change (for example adding a cache) that accidentally becomes required for correctness
"Hey Alex why are you so hard on American railways?" pic.twitter.com/Tj5eEZW8fp
— Alex "Bloomer" Forrest 🚉🌸 (@380kmh) March 21, 2018
*Halved* render time with @appleseedhq on a particular scene using OSL (Windows, VS 2015, exception handling enabled) by replacing `float4() {}` by C++11's `float4() = default` in OIIO. The former disabled __forceinline, among other things. Details: https://t.co/byVZkshKCz
— François Beaune (@franzbeaune) March 16, 2018