security fiasco due to a malicious npm package:

Because of a bitcoin miner present in event-stream npm module (https://bleepingcomputer.com/news/...), my entire team and I had to scan all our nodejs apps, repos and the most excruciating one, all node_modules folders across all our dev machines and servers, to see if event-stream and flatmap-stream is present, then not just delete it but update a bu**load of upstream dependencies which internally used event-stream. All due to one malicious package which was hidden several layers beneath.

And, this happened almost 8 months after the aforesaid vulnerability was first found.

F**king hate Windows for its insanely confusing proxy setup required for software development...

> Setup proxy in Windows network settings
> Then, setup HTTP_PROXY & HTTPS_PROXY environment variable at the system/user level.
> Followed by separate proxy settings for java, maven, docker, git, npm, bower, jspm, eclipse, VS Code, every damn IDE/Editor which downloads plugins...
> On top of everything, find out the domains which does not need to go through proxy and add them to NO_PROXY.. at each level..
> It does not end here. Sometimes, I need to setup proxy for SSH connections... like, if I have to use git with SSH and not HTTP/S... Uhhh....

More than half of the problems me and my dev team face is related to setting the right proxy. Why can't it be like, set in one place and everything picks up from there, like in any linux machine or for God's sake, a Mac ?

Worst of all is, my org uses a configuration script, which resolves into a list of proxy servers, from which one of them will be used. So, I need to download that script, find out which is the right proxy server and then, use it in all the aforesaid places... WTH ?????

Is this a common workplace problem for all developers ??? Will this be solved by Windows Subsystem for Linux ???

I'm the biggest dumbass, the laziest procrastinator I know of..

Joined devRant in June 2017, got eligible for the stickers in a week's time, sent a mail requesting them, but never received it. Given the size of our community, I thought I'm way behind in the list and probably receive them in few months. After a year, I totally forgot about it.

But, the colossal stupid that I am, had also lost the key to my mailbox (the physical one). I never cared about the lost key, because who sends post these days !!!

When I finally got a duplicate key for my mailbox after 2 years, guess what I found.. a first class international mail from devRant which arrived on July 2017 🤦‍♂️🤦‍♂️🤦‍♂️, couple of weeks after I originally requested

But, yay... I finally got them..

Got called up today by my org's cyber security team.

Reason: Installed a font called "Hack" (https://github.com/source-foundry/...)

🤦‍♂️🤦‍♂️🤦‍♂️🤦‍♂️🤦‍♂️

Epic self-troll... Btw, YT deserved it.

Found this gem of a comment in a code base written 4 years back.

/*
Invoke <Service Base URL>/asset/v2/details/<SN> to get asset details
Feeling very bad to include this call, but we really need to use this !!!
This call is gonna take ~20s to respond. I've even increased the overall timeout of this module, just for this call !!!
So, if you are looking to debug any performance issue, I wish you jump directly here,
remove this call and just use master data management (MDM)
P.S: It is not that simple, as MDM and this asset DB (both asset masters) has differences in how the asset is defined :(
*/

Still trying to understand how to remove this costly time-consuming call and replace with an efficient one !!

And, of-course, the original author left 2 years back :(

Best HTTP 404 Not Found Error Ever !!

Finally, got this piece of beauty and badass combined, just to get some peace at work...

Now, dare those noisy neighbors, who doesn't silence their mobile and laptops, making loud chimes in IM, playing music on speakers and knocking at my desk when I'm on headphones and clearly don't want to be disturbed...

Zip file back-ups for version control ??? And, more people do that over Mercurial ???

I have never doubted my abilities more, before this happened:

I got a Linux VM on Azure, downloaded apache httpd source which I proceeded to configure, make and install.

As expected, install failed with something related to apr and apr-util.

Searched several mailing lists, tried out several configure options, nothing worked..

After almost an hour, it stuck to me, all I had to do was "sudo yum install httpd" !!!

Disappointed that I missed something so simple, but when I did that, it came back with 'Nothing to do'...

Realized, httpd was pre-installed in that VM.. I just had to start the service !!!

:facepalm

Today, I was telling a team member who joined recently to refer a GitHub repo, fork it and start working.

That person asks me, "Why GitHub, why should I access it etc". I blanked out after hearing the first question, so whatever said after that wasn't registered in my mind.

I asked that person "how did you do it in your previous org ?"

The response was, "we zip the code at end of everyday and store it as draft in our mailbox"

I stormed out of the workplace, even though it was just around mid of the day...

Haven't ranted about anything for quite a while... So, is everything perfect in my work and life ? Or, is something reallllly wrong that I haven't even realized what it is ??

Lost 3 earphones / headphones in one week...

Looking for a new one, over the ear headphone, which can come along with me for years...

Sheldon 'Spock' Cooper sits atop my monitor, assuming the role of my debugging buddy !!!

How much am I addicted to devRant ?

To the extent of randomly browsing rants using https://www.devrant.io/rants/<some_number>/

Thinking to automate it, like keep refreshing browser tab every 30s with a different number !!!

Update on my previous rant -

Mac restart after upgrade got stuck due to a fucking corrupted kext file, had to switch between recovery and safe/verbose mode to isolate that bastard, move him out of the folder and then do a clean restart.. Then, after 7 hours, it said 15 minutes remaining to complete installation...

Finally, it came up fine, doing healthy :)

Dear Mac, You, Sir, gave me a scare during a restart and are becoming like Windows (note: bsod) :(

Fuck... This is not how I wanted my Saturday to go..

My Mac restart after update took more than an hour (check my previous rant), went into not responding mode, then got aborted, ultimately ending up with a corrupted disc. Now, not booting up at all...

Into recovery mode now and trying all other options..

Hope my time machine did a good job, else this is gonna be a heartbreaking day !!!

Come on Mac... We already have industry legends like Windows updates, Gradle build etc.. you don't want to be part of that legend :(

Moral of the day -

Thus spake the Master Programmer:

"When a program is being tested, it is too late to make design changes."

- The Tao of programming

When I realized that my rant on wk60 had only one ++ and that one was by @dfox, I was glad that I'm not alone 😀

All I did was press Ctrl + Shift + O & Ctrl + Shift + F on the eclipse package manager, just before commit. It ended up changing 122 files with 12640 additions and 13916 deletions...

Somewhere within these files are my actual changes which need to be committed...

I am not leaving work at least for today !!!

Why doesn't companies give Alienware for devs instead of a Dell Latitude ???

They can at least provide 👽 backpack, if not the laptop itself ☹️

Respectfully excluding MacBook from this rant !!

#firstworldproblems

- Eclipse (especially when plugged in with any SCM, excluding Che)
- RichFaces / PrimeFaces (from the pre SPA era)
- WebLogic (how many times do you need to be restarted in a day? )
- SOAP (not a dev technology, but even as a protocol. Thank You Microsoft !!!)
- Struts (what were you doing at the same time as Spring ??? )
- GWT (how did this even find its place inside Google? )

Need more time a deeper retrospective of each dev tech I've come across :(

dev: Can you add a master branch to the following Git repositories ? They are newly created and we don't see any branch.

me: Whaaattt are you asking ???

This is how the day started.

#quadruplefacepalm

Best way to not get distracted by the one(s) sitting in nearby cubicle(s) and talking loudly on a multi-hour teleconference: HANS ZIMMER

P.S: Over-the-ear headphones & any of Hans soundtrack will work, esply Inception & Dark Knight !!

Performance tuning Jetty ? On Windows ?? Seriously ??? ROFL...

!rant - developers figured out flipkart should focus web instead of mobile-only, before the company changed strategy ???

Request URL: /api/v1/user/53b49b5a30
Request Method: GET

Expected Response:
Status Code: 404 Not Found (as the user is actually not present in the DB)

Actual Response:
Status Code: 200 Ok
Response Content:
{
"status": "ERROR",
"errorCode": "404",
"errorMsg": "User Not Found. Please provide a valid user ID",
"type": "Error",
"userMsg": "User Not Found. Please provide a valid user ID"
}

#extremefacepalm

- the 2 hr meeting called for every day of a week, to prepare for a PPT which is to be presented to a higher up exec within 5 mins.
- the sprint planning meeting, where all the stories of that sprint are already weighted and assigned to the devs, but it still goes for 2 hrs
- the backlog grooming meeting, where instead of looking at the sprint backlog, the current sprint is looked at and discussed.

Co-workers disturbing train of thought ...