I'm officially looking around, if anybody needs a Go software engineer with a very strong background in web security lmk. I also know a fair share of frontend dev and was a SWE/SE for Google and Microsoft. I'm looking for security-sensitive dev projects and security reviews.

I'm here! Come by for a chat.

1/ I've just published three orthogonal but related CUE proposals. #cuelang 🧵

Are you still hiding if no one is looking? People aren't reading the code at all—they'd see the weird decoder+eval—and machines can see that and also the private use code points. Also, it's been public since May 2025 and GitHub/NPM/Microsoft have done nothing. www.aikido.dev/blog/glasswo...

A great example of how the Google #golang team put thousands of lines of ultra-technical code in service of an incredibly easy-to-use and useful tool. If you ever deprecate code, you really should know about the go:inline directive!

5 authors I've read at least 5 books by: E J Swift Adam Roberts Alasdair Reynolds Christopher Priest Adrian Tchaikovsky

Anyone I know gonna be at #FOSDEM or #cfgmgmtcamp ?

Interesting expansion of generics in #golang 👀

I don't understand why Claude is such a resource hog when it's not actually doing that much locally. For example, it's currently idle on my machine and it's coming up as using just under 500MB of memory. WTF?!

"Is it too much to expect that a hotel should provide an easily accessible mains power socket within a relatively short distance of the bed?", I think as I delve under my bedside table for the 5th night in a row. #firstworldproblems

One of the most frustrating things in the modern age: on an Android phone, having a set of photos selected in Google Photos and wanting to attach them to a specific Facebook reply.

super cool project: direnv done with #cuelang

Some pretty cool work on editor support (LSP) for CUE here. I really need to sort out my LSP acme game now!

I got something working nicely, for me at least. Shell script and commentary at: commaok.xyz/ai/split-com...

Using Claude Code, I sometimes find myself in the situation where I want to interrupt a generic sub-agent (but not its parent!) and tell it to do something differently. Is there some way to do that, or some other similar-ish UI that allows this kind of thing? @simonwillison.net might have ideas?

This video is brilliant: buff.ly/1zyTWmM Seems a total slam dunk that owners of private jets should pay fuel duties. Doesn't it? The answer is annoying. Thread:

I'm enjoying using Claude Code, but... why does it use so much CPU time when surely it's essentially just blocked on I/O almost all the time? Is it just doing some really inefficient polling or something?

So excited to finally share what we've been building at CUE Labs! Proud to be on this mission with @mpvl.io, @myitcv.io, @rog.bsky.social, @hylomorphism.bsky.social, and @dominikdm.bsky.social.

Today, I'm proud to officially announce CUE Labs! I co-founded CUE Labs with @mpvl.io to build a Configuration Control Plane, solving config chaos with CUE. Our work also provides the stewardship for the @cuelang.org open source project. Read our launch post: cue.dev/blog/announc...

This heartfelt and meaningful statement by Portland resident and author Cristina Breshears on another social media platform bears reposting here. I don't think the intent is to idealize Portland but to remind all of us what is important and why. (Posted here with permission.)

Just been mostly-vibe coding a PoC. I feel a bit like I feel when I'm on a drag lift up a ski slope: very aware how much work is being done for me. And then I get to play on the downhill after each feature is built. Lots of fun!

Been playing around with @cuelang.org and building a new home automation system to control my lighting and written up first post about the project still loads of other content to write though! Big thanks to @myitcv.io @rog.bsky.social @mvdan.cc for all there help aran.dev/posts/cue/us...

TIL Claude's new code interpreter mode has a /mnt/skills/public/ folder full of prompt instructions and Python utilities for creating and manipulating pdf, docx, pptx, xlsx files - and you can ask Claude for a copy and learn a TON about working with those formats simonwillison.net/2025/Oct/10/...

I swear using @cuelang.org is like having superpowers Just CUE-ified the lexicon for permissioned spaces, so much easier to have consistency and readability. The JSON form is generated into the expected directory. github.com/blebbit/atpr... #atdev #atprotodev @atproto.com

It makes me really happy that this talk is (still!) appreciated. Quite surprising but deeply gratifying. #golang

Some nice languages changes here and in the near future. "error" in particular should be a real QoL improver. #cuelang

@crawshaw.io Half way through my first sketch.dev run. Looking promising so far! One thing I'm really liking is the ability to interject comments while it's thinking and see its trajectory change.

AI newbie question here about practicalities: I've got a Pixel 8, recorded some audio on the Recorder app; how do I get ChatGPT and its app to see and analyze that audio?

At least for #golang, avoid using deps.dev for now. It seems to be reporting security advisories based on outdated information, and the project seems unmaintained, as I reported this two weeks ago but got nothing at all.

📣 We have just released CUE v0.13.0 - culminating a year's worth of work to enable the new evaluator by default 🎉 It also packs in lots of new features, such as support for absolute module packages, dozens of JSON Schema improvements, and a new experimental XML encoding.

Three Trail of Bits engineers audited core Go cryptography for a month and found only one low-sev security issue... in unsupported Go+BoringCrypto! 🍾 Years of efforts on testing, limiting complexity, safe APIs, and readability have paid off! ✨ Yes I am taking a victory lap. No I am not sorry. 🏆

OR alternatively learn many other languages and realise that there are many trade-offs and that Go occupies a tricky-to-attain balance between them, and is a better language for it.

In a fit of sleep-deprived procrastination, I made a generator for Fastmail rules using cuelang.org. Really fun! Exported as JSON, iterated in validation mode until I had a strict Cue definition, added templating to make a DSL, imported generated JSON. Manual export/import "APIs" are underrated.

A reminder for #golang folks joining Bluesky - here's a starter pack of contributors to the Go project!

This is worth being aware of. There are more important battles to fight.

How long before they put it behind an MCP server, hook it up to an LLM and prompt with "Let's play global thermonuclear war"?

📣 We have just released CUE v0.13.0-alpha.4 - with further fixes and optimizations for the new evaluator, and introducing an experimental XML encoding 🎉

Dear #kubernetes folks, can anyone tell me if there's a reliable way of mapping from a resource definition in the K8s OpenAPI spec (e.g. github.com/kubernetes/k...) to the `apiVersion` and `kind` values required for that resource?

worth knowing about

in which chatgpt tells me about it's undocumented hardcoded boundaries and some of the ways it's trained to be intentionally deceptive. (i got here by proving that it had done facial recognition for me in the past, after it denied doing so for a while. once it "remembered," it stopped obfuscating.)

Looks like the evidence for this weird chemical abundance in an exoplanet atmosphere has gotten stronger with new JWST data: www.nytimes.com/2025/04/16/s... Is it really a sign of life? That’s still not clear; lots of analysis left to do. But it’ll be interesting to see how it all pans out! 🧪 🔭

Missed Tuesday's community call? No worries - you can find a recording and the slides here: github.com/cue-lang/cue...

📢 The Internet Archive needs your help. At a time when information is being rewritten or erased online, a $700 million lawsuit from major record labels threatens to destroy the Wayback Machine. Tell the labels to drop the 78s lawsuit. 👉 Sign our open letter: www.change.org/p/defend-the... 🧵⬇️

TIL. Also has a useful aside about #golang GOOS and GOARCH.

Something weird up with the bsky app on Android: it prompted me to log in and now it rejects my login with "Incorrect username or password". I can still log in on desktop with that password. wtf is going on?

Ka-ching! Can't believe I haven't read it already. I'll probably start reading it and find out I have, mind.

I had not heard this but it sounds totally plausible and a quick search seems to back it up.

So this is essentially what's going to happen, right? (apologies for the AI-generated image)

Now published to github.com/rogpeppe/ioseq so you can easily try it out. It's not very well tested, so there are almost certainly still bugs! #golang

Speaking of iterators, I just wrote up a little proposal. #golang github.com/golang/go/is...