Activity for stephansama.info

i have made a decision. from now on i will no longer use acronyms. RDJ. API. CMS. GTA. SER. SLR. SRE. JS. TS. all of these letters mean something different to different people. and they don’t serve as a faster alternative to saying the real word. for example API -> interface 3 syllables

i updated the design implementation of my catppuccin-jsonresume-theme to more closely match the soothing theme at astro-portfolio-template-tbl.netlify.app u can see the implementation here cv.stephansama.info and the pr that updated the package here github.com/stephansama/...

hey world 👋 i just finished vibe coding a small admin panel container. i call it "just a bunch of links" or jabol. you can set up a bunch of links and then hide some behind an authentication layer. im using it at directory.stephansama.info to manage all of my links stephansama.github.io/jabol/

interesting i get astro lol 😝

danielroe@danielroe.dev

i dunno, google search seems good to me

the issue that i created on kickstarter.nvim got implemented! i put up a pr to update the readme. super excited about it! github.com/nvim-lua/kic...

I got a 215 points knowledge score on this year’s #StateOfCSS survey! I have used 20 features, and knew 3 more, placing me in the top 100% of all respondents. Can you beat my score? survey.devographics.com/survey/state...

i think if js had a better stdlib like go then 0 dependencies would be relatively easy. however given the current state of everything js i think pinned dependencies with auto update prs is the only way to

pilcrow@pilcrowonpaper.com

Realistically, the best way to reduce exposure to supply chain attacks and package vulnerabilities is to just have less dependencies. That goes for packages too, most of which should have zero dependencies

im tired grandad

Vale@vale.rocks

How we all feel right now: 🫩

ima just mention this package again 😂 github.com/stephansama/... small pnpm hook to pin all dependencies. also recommend looking into minimumReleaseAge dedupePeers and resolutionMode to secure pnpm projects from peer dep attacks

Socket@socket.dev

🚨 BREAKING: Socket is investigating an active npm supply chain attack compromising hundreds of packages in the @​antv ecosystem. The malicious publish wave appears tied to Mini Shai-Hulud and packages connected to the npm maintainer account atool.

i reworked my documentation site for my npm packages. its now using starlight instead of vitepress (still powered by typedoc). created a couple of prs in some starlight integrations to get it where i want but i love the result packages.stephansama.info

because of all the supply chain attacks that have been happening i made a `pnpm` hooks library that has a `pinAllDependencies` hook allowing consumers to pin a project hopefully preventing unwanted updates github.com/stephansama/...

thats odd.. because today is opposite day 🤔 😂

⭑ salma@whitep4nth3r.com

I have discovered the impossible Opposite Day problem: If you ask if it's Opposite Day and the reply is "yes", then it is not Opposite Day. Because it's Opposite Day. If you ask if it's Opposite Day and the reply is "no", then it is also not Opposite Day. It can never, ever, be Opposite Day.

im gonna start switching my repos to tangled. i think that platform will be the future of social programming

i got everyone at work using the same technology as me. look around the office everyone is using - nvim - tmux - npmx - zsh - wezterm - mise sometimes it feels good having influenced others

my protoge and i came up with a new term for senior “ai” developers: senior slopper

04/01/2026 😂

VoidZero@voidzero.dev

Effective immediately, we are making the vite-plus repository private. The source will be distributed exclusively through our production sourcemaps. We believe this is the only logical path forward given the recent events. This does not change our stance on Open Source!