Pikagi
Feross Profile Banner
Feross Profile
Feross

@feross

29,055
Followers
1,574
Following
1,723
Media
26,786
Statuses

⚡️ Founder + CEO @SocketSecurity () • 🌲 Visiting lecturer @Stanford () • ❤️ Open source @WebTorrentApp + @StandardJS

Stanford, CA
https://t.co/rYGkCLmjBp
Joined August 2008
Don't wanna be here? Send us removal request.
Pinned Tweet
@feross
Feross
@feross
1 month
The `xz` package backdoor is just the tip of the iceberg. There's a CONSTANT low-level stream of malware and spyware being uploaded to npm, PyPI, and Go registries. I want to share a few examples from the 20,000+ malicious packages we detected so far:
33
396
2K
Last Seen Profiles
ROMAN. ♦️🐰

@rellRomaNce

gabriel

@bieIws

Diondre Taylor

@Diondretaylor1

Ape. 🍌

@justape_

Els Hertogen

@elshertogen

Caleb Anderson

@dxsean_

𝑺𝒉𝒆𝒗𝒂

@vpelukis

Spencer

@Spencer01510743

rickbozich

@rickbozich

Jim Scalpert

@JimScalpert

IGOR LEONIDOVIĆ

@igorleonidovic

Benedict

@Avenger20o

Yvonne Bar

@yvonnebar2021

S. Carter McNeese

@CarterMcNeese

OurSensualStories

@OurSensualStory

Av. Ali Kurt

@AvAliKurt

ً

@enthaosiast

Pawan Kumar

@SonOfMagadh

Awesome Wonder

@76WonderWoman

ELLE Japan

@ellejapan

𝓚.。🐰🌷

@_tradefine_

💜 xin_yume 💫 VTUBER ☆ Taking Over the World!

@xin_yume

cel - nakiss ni jeyon ♡

@peachgatto

Keel GAA

@keelgaa

elmira

@sstellajeruk

Enoka Fatuesi

@NokeeJunior

Kogito

@1kogito1

APPG on Premature & Sick Babies

@NeonatalAPPG

dp

@deadpaintO

MEECH

@Meech_Lovelace

Antonio

@MedBrad_

Sutton's Fragile Legs

@Krasi_81

Merula

@morgoith

VRC_MIRORING

@VMiroring

Uzenvic

@IamUzenvic

James Martins

@jamesma07004407

@feross
Feross
@feross
3 years
The Nintendo Switch uses my open source code 🤯
@voxpelli
Pelle Wessman
@voxpelli
3 years
@feross Have you seen that the Nintendo Switch uses your safe-buffer? (I for some reason scrolled through their incredibly long license list)
Tweet media one
7
6
254
78
310
7K
@feross
Feross
@feross
5 years
Detect pressed keys via microphone audio capture in real-time. Uses training data captured by typing first. Very neat! Based on ideas in this classic traffic analysis paper: Timing Analysis of Keystrokes and Timing Attacks on SSH
40
2K
4K
@feross
Feross
@feross
3 years
🤩 Exciting news! I'm ready to share the project I've been working on for the past 2 months. ✨ Wormhole – the fastest way to send files ✨ Wormhole lets you share files with end-to-end encryption and it's super fast. Send a file in just 2 seconds:
137
514
3K
@feross
Feross
@feross
11 months
I wish more developers understood the constant stream of malware that is posted to npm, PyPI, and all package managers... Here's just a taste of some crazy malware Socket identified in the past couple weeks... All malware descriptions were FULLY WRITTEN by Socket AI.
43
597
3K
@feross
Feross
@feross
6 years
🙌 Just released a CLI tool called `thanks` to help you thank the open source maintainers you depend on! ✨ 1. Run 'npx thanks' in your project 2. See which of your dependencies are seeking donations! 💸 🌟 Open source authors, add yourself to the list:
49
1K
3K
@feross
Feross
@feross
2 years
“Just use an npm package” @SocketSecurity
18
418
2K
@feross
Feross
@feross
10 years
The Internet of things! [source of pic unknown] http://t.co/eF1HEHdmWZ
Tweet media one
69
3K
2K
@feross
Feross
@feross
3 months
🚨 The Express.js repo got swamped with spam PRs thanks to a YouTube tutorial gone wrong. Hundreds of low-effort contributions flooded in, creating chaos for maintainers. Some called it an "attack on open source", as pages of "UTTER GARBAGE" piled up in the Express.js project.
Tweet media one
105
232
2K
@feross
Feross
@feross
5 years
How camera lenses change the shape of your face [Image source unknown]
16
420
1K
@feross
Feross
@feross
6 years
"someone transferred ~0.05 BTC (currently ~$900), paying 0.01 BTC in fees (currently ~$180) and the network burned enough electricity for that single transaction to drive a Model S well over 1000km, or power an average house in Germany for about a month" –  @dcposch
Tweet media one
46
1K
1K
@feross
Feross
@feross
2 years
🚀 Exciting news! I'm ready to share the project I've been working on for the past 7 months! Introducing ✨ Socket ✨ ⚡️ Search millions of open source packages 🔒 Detect suspicious package updates in real-time 🛡 Block software supply chain attacks
Tweet card media
Socket - Secure your dependencies. Ship with confidence.

Socket fights vulnerabilities and provides visibility, defense-in-depth, and proactive supply chain protection for JavaScript, Python, and Go dependencies.

socket.dev
69
271
1K
@feross
Feross
@feross
1 year
✨ HUGE NEWS! ✨ 🤖 Introducing Socket AI – ChatGPT-Powered Threat Analysis @SocketSecurity is using ChatGPT to examine every npm and PyPI package for security issues! 🤯 In just 2 days, we confirmed 227 vulnerable and malware packages, all discovered with the help of ChatGPT
34
223
1K
@feross
Feross
@feross
3 years
End the #AppleBrowserBan Apple: stop holding the web back by banning competing browser engines.
Tweet media one
24
256
1K
@feross
Feross
@feross
2 years
✨ I'm engaged! ✨ Asking @noor_siddiqui_ to marry me was the easiest decision I've ever made! ❤️ If you know Noor, then you know what I mean! I feel lucky that I get to spend my life with her. But planning the proposal wasn't simple. Here's how I asked her to marry me... 1/5
Tweet media one
Tweet media two
Tweet media three
116
13
969
@feross
Feross
@feross
4 years
I taught a web security course at Stanford. All the course materials, slides, and videos are freely available online. If you want to learn about secure web programming, this course is for you! ✨ 📝 Website: 📺 YouTube playlist:
Tweet card media
CS 253 Web Security

This course is a comprehensive overview of web security. The goal is to build an understanding of the most common web attacks and their countermeasures. Give...

www.youtube.com
22
251
957
@feross
Feross
@feross
5 years
😍😍😍 I'm teaching "CS 253: Web Security" at Stanford this Fall as a Visiting Lecturer.
28
46
892
@feross
Feross
@feross
5 years
This video of Steve Jobs introducing Wi-Fi is incredible. He's casually browsing the web, then he suddenly picks up the laptop and everyone in the audience realizes that it's not plugged into anything and they go crazy with cheers and applause! 11 Mbps!
Tweet card media
Steve Jobs introduces WiFi to the masses with a hula hoop!

http://thinkingbricks.com/1/macworld-new-york-1999-keynote-address/steve-jobs-demonstrates-wireless-iBook.htmlThis clip was taken from my shaky Sony Hi8 Hand...

www.youtube.com
11
187
769
@feross
Feross
@feross
5 years
An open source maintainer is a startup founder but with none of the upside.
24
98
732
@feross
Feross
@feross
6 years
🌟 Lazy-loading images and iframes are coming to the web platform and I'm excited that this will soon be possible: <img lazyload='on' src='cool.jpg' /> <iframe lazyload='on' src='cool.html' /> Check the issue on whatwg/html:
Tweet card media
Preventing downloading images or objects until they are visible in the viewport · Issue #2806 ·...

See PR #3752 Problem Many websites are very image heavy, but not all of those images are going to be viewed by visitors. Especially on mobile devices where most visitors do not scroll down very muc...

github.com
7
274
726
@feross
Feross
@feross
10 years
Facebook's git repo is 54 GB. http://t.co/zLNSzDlFYF
Tweet media one
105
2K
678
@feross
Feross
@feross
3 years
Now that Apple has willingly built spyware into iOS and macOS, within 10 years this tech will: (1) be mandated by government in all end-to-end encrypted apps; and (2) expand to scan for terrorism, disinformation, "misinformation", then eventually political images and memes. 1/5
18
241
660
@feross
Feross
@feross
3 years
End the #AppleBrowserBan
Tweet media one
9
99
655
@feross
Feross
@feross
5 years
I’m ending the `npm install funding` experiment I introduced a few days ago. I appreciate the thoughtful discussion and feedback from the community. I shared some thoughts about how the experiment went from my perspective:
Tweet card media
Recap of the `funding` experiment » Feross.org

Feross Aboukhadijeh is a computer security researcher, teacher, web developer, designer, long distance runner, gamer, music lover, and builder of websites that (sometimes) go viral.

feross.org
40
224
658
@feross
Feross
@feross
4 years
@dhh Every line of code in that screenshot is explicit and quite understandable. If the alternative is a magical and overly-clever framework, I'll pass.
9
22
647
@feross
Feross
@feross
5 years
Your regular reminder:
Tweet media one
12
226
619
@feross
Feross
@feross
9 months
🚀 Huge news! @SocketSecurity has raised $20M Series A funding led by Andreessen Horowitz ( @a16z ). ⭐️ This funding fuels our mission to make open source safer for everyone! 🚀🚀🚀 We're also announcing 4 new products this week as part of Socket Launch Week! ✨ 🧵 1/10
60
70
611
@feross
Feross
@feross
5 years
200,000+ successful flights were completed in a single day, on July 4th, 2018. What impressive engineering, coordination, and human ingenuity!
9
154
597
@feross
Feross
@feross
2 years
🎉 Big news! 🚀 I'm excited to announce that Socket has raised a $4.6M Series Seed! ⭐️ Read our blog post announcement: ⭐️ Read the in-depth TechCrunch exclusive: 🧵 Thread ⬇️
Tweet card media
Socket nabs $4.6M to audit/catch malicious open source code

The startup began working on a tool to help prevent a repeat of some of the worst software supply chain attacks.

techcrunch.com
66
56
578
@feross
Feross
@feross
1 year
Recursive Game of Life 🤯
11
118
505
@feross
Feross
@feross
2 years
I love this so much
@MaartenvSmeden
Maarten van Smeden
@MaartenvSmeden
3 years
This is why programming is an acquired skill
216
4K
13K
4
61
501
@feross
Feross
@feross
6 years
Sweet! When you run `npm publish`, the latest npm 6.0.0 shows which files are included in the package as well as total package size! ✨ Should help prevent sensitive or huge files from getting included by accident. This is a great change. 💪 Shrink those packages!
Tweet media one
8
133
481
@feross
Feross
@feross
4 years
I just built a site to help you make a friend in 2 minutes! My goal is to help people stuck indoors because of COVID-19 (or police curfews) to make meaningful connections with strangers. Hope you love it!
38
95
457
@feross
Feross
@feross
6 years
🗣 Big news! Today I'm launching a Patreon! ✨ I need your help to continue making free software like WebTorrent ❤️ and Standard 🌟. If you use any of my 100+ open source projects, please support my ongoing work by becoming a patron. 😇
Tweet media one
13
199
457
@feross
Feross
@feross
3 months
This is the result of treating OSS contribution as a quick FAANG job ticket. Reminder: Open Source isn't a free job fair or mentorship program. It's about solving real problems and contributing to the community. Don't be that person who adds noise instead of value.
Tweet media one
25
26
425
@feross
Feross
@feross
6 years
Big news! ✨ I’m going for my CS master’s degree at Stanford. 🎓 One of my goals is to teach a class on Web Apps – we’ll see how that goes!
14
13
430
@feross
Feross
@feross
6 years
This is brilliant. Make public transit free ➡️ increased public transit usage (obviously) ➡️ decreased congestion, fewer travel delays ➡️ increased economic activity, more eating out, better quality of life ➡️ more tax revenue to fund the free transit ✨ 🇪🇪 ✨
@future_crunch
Future Crunch
@future_crunch
6 years
Following a successful five year pilot in its capital, Estonia is set to become the first country in the world to make public transport free everywhere, for everyone.
Tweet media one
14
547
1K
14
210
420
@feross
Feross
@feross
3 years
What open source library have you discovered recently that was shockingly good?
70
85
419
@feross
Feross
@feross
7 years
Open source is this fantastic trap where we all guilt ourselves into coding for free so private companies can make millions off our neurosis
13
145
417
@feross
Feross
@feross
7 years
There are more books for sale on Amazon from the 1880’s than the 1980’s. The missing books are out-of-print but still copyrighted. Insane!
Tweet media one
15
472
409
@feross
Feross
@feross
6 years
Progressive Web Apps going mainstream as Twitter makes its mobile site the main one. This is great! 💪
Tweet card media
Progressive Web Apps moving mainstream as Twitter makes its mobile site the main one

The new interface is faster, uses less data, and already powers some Twitter apps.

arstechnica.com
5
128
414
@feross
Feross
@feross
6 years
This Thanksgiving, I'm thinking of the open source maintainers who make all my work possible. Linux, BSD, GNU, Git, nginx, Node.js, Chromium, Firefox, and literally thousands of npm packages. I stand on the shoulders of giants.
3
115
413
@feross
Feross
@feross
6 years
💥 Want to find out if the compromised ESLint dependency is on your machine? ⚡️ Just run this: cd ~/code find . -type d -name "eslint-scope" -print0 | xargs -n 1 -0 -I % sh -c "(cat %/package.json | npx json version) && echo '(at %)'" Look for "3.7.2" in the output ☠️
12
178
376
@feross
Feross
@feross
7 years
Top way to become a better programmer: BE LESS CLEVER. Your cleverness is just going to cause you (and probably me) pain later...
9
155
366
@feross
Feross
@feross
2 years
Get the JavaScript Source Code CD Professional Series for only $2.99 Almost 800 ready-to-use JavaScripts that you can cut & paste into your own HTML documents!
Tweet media one
Tweet media two
17
45
349
@feross
Feross
@feross
3 years
I've been testing #GitHubCopilot in Alpha for the past two weeks. Some of the code suggestions it comes up with are eerily good. Here's a thread with some examples that I found surprising. Will update with new examples over time.
4
93
350
@feross
Feross
@feross
4 years
It's time to do an annual backup of your data from online accounts. Here are the links you need: - Google: - Apple: - Twitter: - Facebook: - Microsoft:
Microsoft Account Privacy Settings

Microsoft allows you to control your account your way with customizable privacy settings. Manage your Xbox, Windows, and other privacy settings on this page.

account.microsoft.com
2
118
351
@feross
Feross
@feross
3 years
This one-line change on @Wormhole_App reduced GPU utilization by up to 60% 🤯 Now you can send files in silence!
Tweet media one
22
32
348
@feross
Feross
@feross
7 years
Safari's domination continues with the **NEW MODERN VERSION** of JavaScript, ECMAScript 5. FIVE!
22
126
340
@feross
Feross
@feross
5 years
"This man has been editing a Wikipedia article every four minutes for 13 years. He is insane, and he has had a huge impact on what you and I read every day when we need more information about literally anything"
Tweet card media
From the slatestarcodex community on Reddit: Most of What You Read on the Internet is Written by...

Explore this post and more from the slatestarcodex community

www.reddit.com
14
109
340
@feross
Feross
@feross
5 years
Good summary of JSON hijacking, if you're not familiar. Why Facebook's API starts with a for loop
Tweet media one
2
83
333
@feross
Feross
@feross
6 years
🤯 Just read a fascinating paper called "The Surprising Creativity of Digital Evolution" 🤣 It's a bunch of HILARIOUS anecdotes showing how Artificial Life systems often produce SUPER surprising and SHOCKINGLY ridiculous results. 😲 👇 THREAD
7
130
320
@feross
Feross
@feross
5 years
Do you use my open source software at work? I now offer an open source support contract. - 4 hours of consulting (development, bug fixes, etc.) per month - Email support - Company logo on readmes + website (~180K views/mo) - Priority GitHub issues 🌟
Tweet card media
Sponsor @feross on GitHub Sponsors

I'm an open source author, maintainer, and mad scientist. I maintain 100+ open source packages which are downloaded 100+ million times per month

github.com
4
89
312
@feross
Feross
@feross
3 years
I added some improvements to The Annoying Site - Change theme-color in a loop (Safari 15) - Picture-in-picture in all browsers - Block close window better - Animate URL with emojis - Pointer lock - Request MIDI, bluetooth, USB, serial, HID ⚠️ Warning ⚠️
13
91
313
@feross
Feross
@feross
3 years
Safari isn't protecting the web, it's killing it
Tweet media one
15
92
310
@feross
Feross
@feross
5 years
Forgot your password? No problem. Windows 95's got your back!
8
54
304
@feross
Feross
@feross
7 years
1/ Ryan Dahl (creator of Node.js) wrote an epic rant and then quit writing software for a while. I want to repost it here now.
10
128
293
@feross
Feross
@feross
5 years
☠️ Passwords ☠️ - Average user has ~100 accounts - Creates 50 passwords per year - High rate of password re-use (75% of users) - Frequent password sharing with others (40% of users) - Huge number of password resets (40%-60% reset every 3 months) Source: Nikola Blanchard
10
100
287
@feross
Feross
@feross
4 years
My friend has a @1Password Family subscription and let the credit card lapse. She didn't notice the emails asking to update the card. 1Password completely deleted her account and logged her out on all devices. Now she can't access her 100+ passwords and 2FA tokens WTF
27
58
290
@feross
Feross
@feross
7 years
🙌 Retweet if you use ExpressJS 🌟 and are grateful to @blipsofadoug for his excellent and tireless work maintaining it over the years. 🏆
12
289
287
@feross
Feross
@feross
5 years
Stop what you're doing and turn on "Auto-delete your Web & App Activity" in your Google account: Set it to the minimum "Keep for 3 months". Once you've done that, also turn off as many tracking options as you can here: ✌️
9
85
282
@feross
Feross
@feross
6 years
If you have a website, definitely check out your site's Chrome UX Report. It's a bit tricky to set up (watch the embedded video), but when you're done you get an automatically updating dashboard with real user experience numbers! Cool! h/t @_developit
Tweet media one
1
49
263
@feross
Feross
@feross
10 years
WebTorrent now works in the browser, end-to-end! Check out an example app: http://t.co/VLUMSIBMlp
30
241
252
@feross
Feross
@feross
7 months
In 2020, I was grinding away as an open source maintainer, fueled by donations and a dream. Today, @SocketSecurity is shining bright on a Times Square billboard. Never give up.
16
20
264
@feross
Feross
@feross
6 years
It gets worse! Someone found a bug in the try-before-you-buy demo page. You could type in any U.S. phone number and get the phone’s real-time location *without any text to the user for permission*. 200 million people exposed! What. The. Hell.
Tweet card media
A bug in cell phone tracking firm's website leaked millions of Americans' real-time locations

The bug allowed one Carnegie Mellon researcher to track anyone's cell phone in real time.

www.zdnet.com
@feross
Feross
@feross
6 years
US cell carriers are selling access to your real-time phone location data 😯 There's even a try-before-you-buy page where you can track the location of your own phone:
Tweet media one
Tweet media two
8
57
58
5
246
255
@feross
Feross
@feross
7 years
It Takes Just $1,000 to Track Someone's Location With Mobile Ads
Tweet media one
5
161
231
@feross
Feross
@feross
5 years
Some of the most innovative open source software within the JavaScript ecosystem has been produced by eccentric, independent individuals who write open source because they love it, not because some megacorp pays them to do it while representing the company's interests. 1/2
3
49
235
@feross
Feross
@feross
3 years
This is not a drill. Police are already misusing location data gathered for COVID contact tracing even though everyone SWORE it wouldn't be used for anything by health purposes. Once the data and tools exist, governments can’t help themselves – it’s just too tempting. 2/5
8
57
233
@feross
Feross
@feross
1 year
Just got the news that I've been selected as a #GitHubStar for 2023 and I couldn't be more thrilled! Looking forward to continuing to help other developers and to contribute to the open source community 🚀🌟 ❤️ @GitHub @SocketSecurity
Tweet media one
10
9
233
@feross
Feross
@feross
6 years
🗺 Google Map's Moat – How far ahead of Apple Maps is Google Maps? One of the best tech articles I've read in a while. Not kidding – Google's work on Maps is awe inspiring. It's hard to imagine the scale that they're operating at.
Tweet media one
0
92
229
@feross
Feross
@feross
3 years
🚀 BIG NEWS 🚀 Wormhole now has ✨ QR Codes ✨ ✅ Send files from desktop to mobile with *one click* ✅ End-to-end encryption keeps your files private ✅ Works on all platforms – iOS, Android, Mac, Windows, Linux, Chromebook – anything! Try it out now!
8
37
226
@feross
Feross
@feross
2 months
🤯 Socket figured out that an attacker's base64 encoded PowerShell / bash command is actually creating a reverse shell LLMs are pretty incredible 🌟
Tweet media one
Tweet media two
@npm_malware
npm malware
@npm_malware
2 months
⚠️ Malware removed from npm: ts-patch-mongoos @1 .0.0 ⚠️ The code is likely intended to create a reverse shell connection to a remote server, allowing unauthorized access to the system. The use of obfuscation and system-level commands targeting specifi...
0
0
24
7
32
228
@feross
Feross
@feross
5 years
Pay maintainers or do the work yourself.
4
57
226
@feross
Feross
@feross
5 years
I published `bg-sound` to npm, a Web Component to emulate the old-school <bgsound> HTML element
6
31
227
@feross
Feross
@feross
5 years
What a stunning aerial image of New York City
Tweet media one
1
47
221
@feross
Feross
@feross
4 years
Tweet media one
5
53
221
@feross
Feross
@feross
3 years
Ran into a spectacularly awful Safari bug in the latest Safari (14.1.1 on macOS and iOS 14.6). Opening an IndexedDB database fails 100% of the time on the first try. 😩 If you refresh, it starts working. Bug report: cc @webkit @chris_dumez @Apple
6
43
219
@feross
Feross
@feross
7 years
Introducing Nile.js: A Peer-to-Peer Live Video Streaming Library built on WebTorrent
Tweet media one
4
76
214
@feross
Feross
@feross
4 years
@dhh Also, you're comparing apples to oranges. Express is low-level and un-opinionated. It's not trying to solve the same problems as Rails.
4
1
211
@feross
Feross
@feross
3 years
I'm quoted in @FastCompany about why some developers are avoiding app store headaches by going web-only. “We want to be an example of what a modern, fast web app can do,” he says. “And we want to blow a few minds while we’re at it.”
Tweet media one
5
23
211
@feross
Feross
@feross
3 years
I'm incredibly disappointed that this was approved and built by @Apple . The short-sightedness is staggering. How can they think governments won't demand to expand this? Before today, I believed that Apple genuinely cared about my privacy. But no more. This is a disaster. 5/5
Tweet media one
8
38
214
@feross
Feross
@feross
5 years
Real Mac bug for 10+ years: "In some cases the audio balance may unexpectedly drift towards the left or right channel. This can happen if you rapidly press the volume up or down keys while the computer's microprocessor is under heavy load" Still not fixed
19
43
213
@feross
Feross
@feross
7 years
WordPress ditches React, and just like that *poof*... 25% of sites on the internet don't use React anymore...
Tweet card media
On React and WordPress

Big companies like to bury unpleasant news on Fridays: A few weeks ago, Facebook announced they have decided to dig in on their patent clause addition to the React license, even after Apache had sa…

ma.tt
12
125
205
@feross
Feross
@feross
3 months
Want to contribute to open source the right way? Start with real issues, not spam PRs. Make yourself useful, not a burden. Read the full story:
Tweet card media
Express.js Spam PRs Incident Highlights the Commoditization of Open Source Contributions - Socket

A mountain of spam PRs landed in the Express.js project repo after a popular YouTube tutorial used it as an example for contributing to open source. This put a spotlight on the mandate for job...

socket.dev
4
19
209
@feross
Feross
@feross
3 years
The company I started – Socket Inc – has a snazzy new home on the web: If you want to work with me and help build cool software like @Wormhole_App , please get in touch! My DMs are open
Tweet card media
Socket - Secure your dependencies. Ship with confidence.

Socket fights vulnerabilities and provides visibility, defense-in-depth, and proactive supply chain protection for JavaScript, Python, and Go dependencies.

socket.dev
12
20
207
@feross
Feross
@feross
11 months
This code is using curl to send the contents of the file '/etc/passwd' to a remote server. This is a highly suspicious and potentially malicious behavior as it could cause sensitive data to be sent to an attacker's server.
Tweet media one
2
14
203
@feross
Feross
@feross
6 years
🙌 HUGE THANKS to @Brave who just announced they are supporting @WebTorrentApp for the next 12 months as a 🌟 Platinum Sponsor! 🦁 Brave is a browser with your interests at heart — 🤩 Thanks to the awesome people at Brave for supporting open source! ✨
Tweet media one
5
41
198
@feross
Feross
@feross
7 years
React is Considered Harmful™, as far as I'm concerned. Will not use on new projects. The license is weaponized & very harmful to users.
9
88
197
@feross
Feross
@feross
7 years
Want to be a top programmer? This is THE talk to watch. You must know the difference between "easy" and "simple".
Tweet media one
2
48
196
@feross
Feross
@feross
3 years
Happy to announce that the Wormhole cryptography code is now open source! ✅ MIT License ✅ $1,000 bounty for finding a security issue () Check it out here:
Tweet card media
GitHub - SocketDev/wormhole-crypto: Streaming encryption for Wormhole.app, based on Encrypted...

Streaming encryption for Wormhole.app, based on Encrypted Content-Encoding for HTTP (RFC 8188) - SocketDev/wormhole-crypto

github.com
6
37
189
@feross
Feross
@feross
5 years
Incredibly informative tutorial on how synthesizers work. Powerful web audio demo, too. What a blast!
3
41
189
@feross
Feross
@feross
3 years
Chakra UI is the best frontend component library, hands down. If you haven't used it, you're missing: - Components are beautiful by default - Accessible HTML - Responsive maintainers - Active community - Thoughtful and delightful API design I'm a huge, huge fan
@thesegunadebayo
Sage ⚡️
@thesegunadebayo
3 years
Made with Chakra UI 🤩🤩
6
15
160
8
17
187
@feross
Feross
@feross
7 years
WebRTC is FINALLY supported in Safari. Coming to iOS 11 and macOS 10.11, 10.12, & 10.13!
8
80
185
@feross
Feross
@feross
5 years
If these creative and brilliant folks could make a decent living writing open source software to benefits the commons instead of seeking private contracts writing proprietary code for a single company, we'd all have more innovative open source software to use. Everyone wins. 2/2
12
15
184
@feross
Feross
@feross
7 years
We replaced require('mod') and `module.exports` which are simple and beautiful with this over-engineered nonsense
Tweet media one
14
72
183
@feross
Feross
@feross
3 years
@Apple This @EFF write-up explains why this backdoor is a disaster: "To say that we are disappointed by Apple’s plans is an understatement." "It is a shocking about-face for users who have relied on the company’s leadership in privacy and security"
3
62
182
@feross
Feross
@feross
4 years
I was an engineer intern on the Facebook Groups team, 10 years ago today. Groups was one of the most successful Facebook products of all time and we built it in ~5 months with ~5 full-time and 2 interns. Easily the best job I’ve ever had
2
9
182
@feross
Feross
@feross
8 years
Web developers, time to up your game. Watch "The UX Of Offline-First" by @jaffathecake . Excellent stuff.
Tweet card media
SmashingConf Oxford 2015: Jake Archibald on The UX Of Offline-First

Chrome has shipped ServiceWorker, Firefox is hot on the trail. This opens the door to a slew of previously native-only features. Currently we have network management…

vimeo.com
3
35
175
@feross
Feross
@feross
6 years
Open source is philanthropy. Society just doesn't recognize it as such yet.
4
49
176
@feross
Feross
@feross
6 years
Wow, security is SUPER HARD. 😫It's possible to make always-on voice assistants like Amazon Echo, Google Home, and Siri silently place a phone call from 5 feet away using ultrasound
Tweet media one
4
92
170