There are hot discussions that in this year Hacktoberfest goes not so well:

+ https://blog.domenic.me/hacktoberfest/
+ https://news.ycombinator.com/item?id=24643894
+ https://www.reddit.com/r/programming/comments/j2ux69/digitaloceans_hacktoberfest_is_hurting_open_source/?sort=top

People are doing spammy meaningless PRs. It didn't happen 2 years ago before because there were "Make your first PR here" meaningless repositories where you can commit your name in a long txt file and get your kinda free T-shirt. Next year, Hacktoberfest organizers targeted "quality over quantity" and decided to ban such repositories, forcing people to do something significant. And here we are.

The fun thing that you can create your own repo, do 4 dummy PRs in it, and you're done. However, the target audience doesn't know about it. So, Hacktoberfest team decided to take fast actions and communicate this workaround to all participants:
https://hacktoberfest.digitalocean.com/hacktoberfest-update

This is one more "rule that massively backfired". Read in this thread more such stories:
https://twitter.com/TrungTPhan/status/1311300651645767682

This is why we can't have nice things.

Kontra OWASP Top 10 is a collection of free interactive tutorials about most popular vulnerabilities and some recent security incidents. Beautiful, clickable, illustrative.

Python 3.9.0 is released!

Notable features:

+ Type hints for built-in generic types
+ ast.unparse
+ Relaxing grammar restrictions on decorators
+ Merging dicts
+ str.removeprefix
+ Meta information in type hints

The Zen of Go — 10 good ideas from Dave Cheney on how to write better Go code. Short and useful.

#golang

pytest-benchmark — pytest fixture to benchmark functions. At the end of the execuion prints beautiful colorful summary table, can make a histogram.

#python #testing

mtproto — full pure Go implementation of MTProto protocol. That means, you can automate anything in Telegram for your account (not bots).

We need more pure Go libraries because Go is amazing. Using wrappers around C libs means much heavier introspection, benchmarking, and cross-compilation and slower interoperation.

I nominate this repository for "most insane README of the year".

#golang

YAML Multiline — a quick cheat sheet on multiline strings in YAML because it's not that simple. I guess I use this site too often for such a trivial task >.<

#yaml

no-color.org is a small initiative to motivate software to use one standartized way to disable colored output. In particular, it says "Please, disable color when NO_COLOR env var is set". So, please, when you'll make a new CLI tool, add support for NO_COLOR. And I promise to do the same.

#cli

The Go compiler needs to be smarter — a short article why Go compiler sucks. Well, things not so bad, don't listen to me. Go is fast and cool, every release brings a lot of performance improvements, especially for garbage collector. However, there are still many things to do, especially if compare to old big compilers like gcc or clang. For instance, PGO and JIT are hard to implement but can give an amazing speed improvement, and there are no such things in Go yet. Well, there is gccgo compiler for go but it is slower than gc.

#golang

Simple techniques to optimise Go programs — a few tricks on how to allocate less memory. Good stuff.

#golang

High Performance Go — materials from Dave Cheney's workshop on how to measure performance in Go and write a faster code. So hardcore.

#golang

Numbers that aren't numbers is a great article about things that are named "numbers" but cannot be correctly represented as integers. Yeah, I know, the real world is so messy and should be adjusted to let us write a beautiful simple software. Humans spoil everything.

🔧 esbuild is a fast JS/TS bundler and minifier, kind of webpack alternative. No, it's really fast, like 10-100 times faster than webpack. It is a new project and supports not all JS (frontenders name it ECMAScript) features, so it can be used not for all projects. But give it a try! Oh, and it is written on our lovely golang.

#js #golang

📄 Write code that is easy to delete, not easy to extend is a guide (an essay?) on when it's good to copy-paste a code and when it's not, when it's good to split a code by pieces and when it's better to keep all things together. These are hard questions but we should think and talk about it.

📄 penglab — Google Colab notebook with a few hash cracking tools in case you need it on a CTF.

📄 colabcat — Google Colab notebook with hashcat only but syncing with Google Drive.

And of course, remeber about our best friend, SecLists. It is a collection of common credentials, filenames, urls, and so on. Maybe, not big enough to crack something serious but good enough for CTFs and Hack The Box.

🎥 Clean Code lectures from Uncle Bob ("Coding Better World Together") are amazing. It's a great walkthrough on writing maintainable code, ethics of programming, testing, refactoring, automating things, keeping balance between "fast" and "good". Examples are on Java but ideas in all other languages are pretty much the same. Definitely must-watch.

🐚 Recursively find all git repos with uncommited or unpushed changes:

find . -type d -iname '.git' -exec sh -c 'cd "${0}/../" && git status | grep -q -E "(diverged|Changes|is ahead of)" && pwd' "{}" \;

In case if you forgot to push something before changing a laptop (or a company).

#git #shell

Go Proverbs is another collection of cool ideas on how to Go better. This time, from Rob Pike and more Go-specific.

#golang

🎥 Extreme Programming 20 years later by Kent Beck is an interesting story about how and why Agile and TDD were born, what's behind JUnit, what the author would have done differently.

I've made and printed Gram Cards. This is a short collection of cards with phrases that (I hope so) would make me a better developer.

A side note: I had hard times diving into ImageMagick but having graphic as a code definitely worth it.

📄 The Automated Curse Generator is a fun article about making human-readable IDs and unforeseen consequences. Conclusions are up to you. Probably, something about priorities in business features and "keep it simple", IDK.

Have a good weekend :)