Are the benefits of using tools like composer worth these risks? Why is that still the norm, rather than the exception?
Because 1) handling exceptions is hard and 2) keeping everything updated from the myriad of sources is hard too.
Whether the benefits are worth the risks is surely complicated, but if it means updates get done that otherwise wouldn't (and it does) then there's at least a reasonable chance that it's a net positive overall.
The only way it could make sense is if you use the broadcast data against a one-time pad and then you have a key to decrypt some other data, however distributed.
There aren't enough unique messages to be the data payload itself. Regular key rotation makes some sense.
Instead of a key it could be a pointer to another data source too. Frequency, satellite channel, URL, whatever.
It does seem premature to conclude the content. No doubt there are many other possibilities.
I'm down with practically anything, or at least just about anything practical, over NCM. It just has issues on every level from political to technical.
I've got my fingers crossed for sodium, but sure, nickel-iron would seem to make sense for stationary applications. I'm hoping though that they can come up with a sodium battery that wouldn't be toxic even if you blew it up.
A Scout is Trustworthy but this BSA has never demonstrated that virtue.
Their PR is difficult to parse as valid English but it sounds like gaslighting of the type "you can only trust what you may not examine."
It sounds incoherent but perhaps that means they have nothing else left.
Most people in Open Source are generally Helpful.
Hmm, I was under the impression that the US regulator wasn't entirely useless
Please, please, please re-read that sentence and think about it in light of what you know about the US auto market and its protectionism.
Surely if they had such a serious flaw they would have been replaced already.
I see you're new to capitalism. Can I borrow your unicorn? I want to take it on a walk through fantasy-land.
Great, let's have another world record setting BESS fire.
These are the same packs that caused the last one.
Surely it's a good plan to double down instead of recycling them into something less shit!
I think these are their iPace taxis, so they will be LG Chem batteries.
So then the same shit NCM packs that caught fire in Moss Landing?
AI that can build itself would be a major development in the history of technology -- one that could bring enormous good for the world in science, healthcare, and beyond
Indeed!
If it were possible to effectively slow the development of this technology to give ourselves more time to deal with its immense implications, we think that would likely be a good thing
No, it would not be. I want more people's lives — my own included — improved by those developments. And I want it yesterday.
Imagine Wright brothers sabotaging airplane-development, because it would allow people to travel too far too fast? Or the early automakers fretting over "implications" of using internal combustion engines for personal vehicles — because millions of grooms and coachmen would lose their jobs?.. Electric lamp? Wow, nice — but what about the candle-makers?
What, exactly, is the point or purpose of including code in your program that is downloaded from a third-party website every time you execute the program?
No, npm is literally the opposite of that.
If you want to include a function or subroutine or library in your program, why wouldn't you just download it and use that?
I run Drupal and it uses composer, which does basically the same thing. But then I want some javascript libraries that you can't get through composer repos itself, you need to get them from npm. So every time there's one of these npm exploit stories I say oh shit, some more shit I need to read. Luckily I'm only pulling in literally two packages from there. But I don't need to do this, I only do it specifically for the purpose of not having my site refer to some other site for those javascript libraries. That way, someone else changing their library doesn't automatically screw up my site, or more plausibly since I am not running any javascript on the server side, start back dooring other people who visit there. So npm is exactly the kind of thing you think people should be using, except with less oversight which is why we keep hearing about loads of compromised packages.
Disagree on this. That's like saying only shows that trek through the stars should be called Star Trek - and yet the best Star Trek series ever made was Deep Space Nine.
Yeah, they had B5 to crib from.
The Stargate is just part of the premise of the followup shows, not a required defining characteristic of them
If you're putting it in the title, yes it is.
Dear friend,
We make certain rules so that we can live in the same nation together. For example, we must to a reasonable extent unify our motor vehicle requirements so that you can reasonably travel to other states without onerous additional inspections and harassment. Alas, with rights come responsibilities.
Signed,
Srsly
The link we wanted was actually in that story, which is worthless by comparison
You can see this on every popular forum and social network. And as far as I can tell, the only people they ever try to verify actually exist are the real ones
As in: Suck Bezos's Big Fat one,
Come now, Bezos is the one with the trophy wife
Yeah, but he has to close his eyes, who can successfully nut while being sucked off by The Joker?
It's not an optical illusion, it just looks like one. -- Phil White
