-

@ ee9d979e:3fadff64
2025-04-01 19:10:23
Look at the date of the post 🤣
-

@ ee9d979e:3fadff64
2025-04-01 16:35:15
Good evening folks. Today is my favourite day of the year 🤣
https://haven.accioly.social/4dacea0f39f88b0e49ff0d6b0605e425bf0dc4d8f9cc72ac459cdcc5d04cbf59.png
Source: https://www.linkedin.com/posts/scala-space_github-virtuslabgo-the-go-programming-activity-7312792169340190720-ir8q
Repo: https://github.com/VirtusLab/go
#Scala #Go #devstr
-

@ ee9d979e:3fadff64
2025-03-31 17:32:42
The worst part is... you actually can. You can type a URL directly into Google’s search bar, and it will navigate to it "directly".
So, if you’re happy to proxy your entire browsing experience through Google, not use uBlock Origin, and generally be a satisfied Worker-Consumer, delegating trust and control to our Big Tech overlords, then there’s a very convenient, very comfy box, I mean, Google Search Webwiew, waiting for you...
I think Google has found a way around the incoming monopoly-breaking measures. Who needs Chrome when, for their user base, Google is the Internet? And to be fair, it’s not just Google... Meta, Amazon, and [insert your favourite Big Tech company here] are all engaging in similar practices to greater or lesser degrees.
Big Tech in a nutshell: https://youtu.be/evXfzh43ym4
-

@ ee9d979e:3fadff64
2025-03-31 15:05:05
No need to apologise at all. On my side? I'm using IronFox and a self-hosted SearXNG engine. I have a GrapheneOS-flashed phone, but I have to admit that I'm not daily driving it anymore.
On my wife's side? She is still pretty much invested in Google, Instagram, WhatsApp, etc., no matter what I say. I did manage to get her to use Signal to communicate with me (and basically only me, she uses WhatsApp to text everyone else). To give her credit, she has at least tightened up her Instagram privacy settings a bit, though that doesn’t help much.
Getting the people we love to try healthier tech and protect themselves is... a continuous, ongoing effort.
-

@ ee9d979e:3fadff64
2025-03-31 14:47:50
Correct. I mean, the webview is running in Chrome, at least on my phone, but it is indeed a webview.
https://haven.accioly.social/0000db864da5404173d70bad0aa17b989c229c7874606fab859cd20309d0945d.png
-

@ ee9d979e:3fadff64
2025-03-31 13:41:13
My wife uses the Google search bar on Android for everything. Of course, web pages open in Chrome, but you won’t find a browser in her dock or on her home screen. If you ask her what browser she’s using, she’ll say, “Google”. Which is… correct. Concerningly correct.
-

@ ee9d979e:3fadff64
2025-03-31 13:26:26
Not really 🤣. I think that YOU have a strong case to make it obsolete. Again, I respect your "dark patterns/totalitarianism" position, but it's not mine at all. All tools, including public follow lists, can be used for good or for evil. I think that public following, despite its downsides, is a fundamental way to drive discoverability in decentralised social media. I want to fix follow lists, not get rid of them.
That said, I will defend everyone's right to use encrypted kind 30000 sets, special relays, algorithms, and any number of other tools, including those I'm not particularly keen on (I have my own views on bad incentives). I'm also more than happy to discuss and explain my views to others, as long as they don't try to impose theirs by force (e.g., "let's deprecate follow lists by force now" or "let's impose algorithms," etc.).
To be even more candid: I actually like the fact that everything on Nostr is supposed to be a signed attestation. This includes making your follow list public (as you are doing right now by following the projects and devs working with you). Benefiting someone or some project with social media visibility through Nostr network effects should be intentional. Not following anyone publicly is also an intentional attestation of your beliefs. It has its pros and cons, as I pointed out in my first reply.
I don’t need to agree with you to interact or even collaborate on things we both believe in. Heck, there are plenty of points where I strongly disagree with fiatjaf and utxo, yet here I am contributing code to Haven, Khatru, etc. I may change my mind about some things, they may change theirs about other things, or none of us may change our minds at all, and that's absolutely fine. In my books: being opinionated is good; public discussions are good, cult-like assimilation and closed-doors decision imposed top down are bad.
-

@ ee9d979e:3fadff64
2025-03-31 11:38:23
I'm not op, but fiatjaf has posted this in one of the comments in this chain.
nostr:nevent1qqsqqqqutt9dc0ranxysatcpeufrm76vm7xjt2sfmgkurwjv87xe54spz9mhxue69uhkummnw3ezuamfdejj7q3q80cvv07tjdrrgpa0j7j7tmnyl2yr6yr7l8j4s3evf6u64th6gkwsxpqqqqqqzprnzep
-

@ ee9d979e:3fadff64
2025-03-31 11:35:13
All your criticisms of WoT (and Nostr’s ever-disappearing follow lists) are valid. And yes, plenty of people follow bots. While people like to take a piss on PGP UX (which, again, is mostly valid criticism), PGP's bad UX and its appeal to security/privacy-oriented types make PGP WoT networks much tighter. Unfortunately, this also works against Metcalfe’s Law... I do understand people who just want to connect and follow lots of other nostriches. They are doing important work as well. So, as every difficult problem in life, we need to find some balance between the two ways of thinking.
I complement my WoT relays with TheForest1, both so that folks outside my WoT can reach out to me and as a fallback during attacks, outages, etc. Charging a few sats and effectively moderating content is certainly a valid approach. Meaning that I’m not a WoT zealot, nor am I against other ways of doing things (except for moderation by blacklisting NIP-05 domains, which is something that really broke Mastodon and, in the long run, introduces fragmentation and fragility).
However, I still believe in and see a lot of value in WoT. For example, nowadays I "work around" this problem by unfollowing folks who follow bots when those bots make it into my WoT. But yes, I agree that this is not ideal.
My idea here, and this is just a sketch of a sketch of an idea, is to introduce something akin to PGP ownertrust levels: https://www.gnupg.org/gph/en/manual/x334.html
This way, I can give full trust to folks who understand the WoT aspect of things and are willing to maintain a clean follow list. I'll likely assign unknown or marginal trust by default for other people (e.g., we could have a policy where if someone is followed by 3, 5 or whatever number of my followers, they get write access to my relays - akin to what Haven and utxo other WoT relays are currently doing), and, of course, I csn assign "none" to people I like enough not to unfollow but who have demonstrated a tendency to follow bots, impersonators, etc.
Given the complexity of managing this sort of trust score, I don’t think a lot of folks would be willing to use this. But it’s something feasible to implement that would solve my own problems with WoT without, you know, downloading everyone’s timeline, performing sentiment analysis, and using other big-tech algorithmic tricks.
As for the disappearing follow lists problem... This is one of the harder "nostr clients are misbehaving" problems that smarter folks than me will hopefully fix. To be fair it has been several months since I last had to restore my followers list, so, in a way, the problem has been getting better. But yes, it is an annoying problem that may drive nostriches away from the network altogether.
-

@ ee9d979e:3fadff64
2025-03-31 10:44:59
Sounds like a great application for IPFS! To be fair, Blossom blobs are hash based, and nostr:nprofile1qqszv6q4uryjzr06xfxxew34wwc5hmjfmfpqn229d72gfegsdn2q3fgpr3mhxue69uhhxct5v4kxc6t5v5hxs7njvscngwfwvdhk6tcpzfmhxue69uhkummnw3e82efwvdhk6tcpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsk7wj75 has also been asking around about "Negentropy." On top of that, if clients follow BUD-03 as intended, they should be able to recover the media from any of the servers in a user list: https://github.com/hzrd149/blossom/blob/master/buds/03.md
However, your idea of leveraging IPFS sounds very promising. The client wouldn’t need to implement fallback logic or fetch the media elsewhere, users wouldn’t have to carefully manage redundancy by mirroring blobs and managing multiple blossom servers, and a simple "just download and seed my stuff" approach is certainly a great way to do things.
I’d definitely like to try what you’re building (or planning to build) once it’s out there. And if it can be made Blossom-compatible, that would be even better. I know that despite both systems using SHA-256 hashes by default, they aren’t exactly compatible OOH. IPFS uses CID versioning, supports multiple ways of encoding hashes and even multiple hash algorithms. But given that IPFS has some flexibility built-in and Blossom is an emerging standard, I think there are ways to accommodate this.
-

@ ee9d979e:3fadff64
2025-03-30 22:16:42
No, you won’t lose your account or profile. On Nostr, your account is a key pair: your npub (which is public, in your case, nostr:nprofile1qqsrtgjmf67x8kxj3vp03am4afuryx6l6znft0pa9fc8zszzrek0hgs4lgquv) and your nsec (which should be known only to you, think of it as a password of sorts).
Your Lightning address is completely unrelated to your Nostr identity. You can create one on WoS, Coinos, etc., and associate it with your account.
You don’t need to pay for Primal, and you don’t need to pay for Alby Hub’s cloud account.
In fact, I’d even argue that, at least in the beginning, you shouldn’t pay for anything. Only pay for a service when, and if, it starts adding value to you. For your first experiments zapping on Nostr, a free wallet that provides a Lightning address (so others can zap you and you can zap them back) is more than enough.
-

@ ee9d979e:3fadff64
2025-03-30 20:27:16
I don't use Primal, but does it need to be a Primal wallet? Wallet of Satoshi, coinos, Minibits, etc are all "free" (as in, you pay nothing to signup and get a ligthing address to use on Nostr).
-

@ ee9d979e:3fadff64
2025-03-30 20:19:19
I don’t disagree in principle, but in practice… kind-10002 as it is now isn’t sufficient. This is a chicken-and-egg problem: I need to connect to an unknown relay to fetch Mike Dilget’s kind-10002 event in order to figure out which relay I need to connect to in order to find Mike Dilget’s notes. It’s a strange way of bootstrapping things unless we accept relay centralisation or widespread blasting / Negentropy. IMO, the first is undesirable, and the second is wonky, it introduces eventual consistency at best and indeterminism at worst.
This isn’t a criticism of the Outbox model by the way. It’s definitely the way forward, but I think we need an efficient, hopefully deterministic, single-call way of doing this. And this has to be done without relying on Damus, nos.lol, Snort or whatever other giant relays to hold every single kind-10002 (or equivalent) in existence.
On a more fundamental level, I think the "one true way of doing things" ship sailed a long, long time ago. Deprecating a NIP won’t help much either (e.g., NIP-04 vs. NIP-17 even with harassment bots and some popular relays like Haven dropping kind 4 by default, most clients aren’t there yet).
In a way, while this is the opposite of what I’d push for as an architect, I’m happy for Nostr to be the hacky, pragmatic "PHP of Protocols." Every programming language feature ever invented eventually finds its way to PHP, and we all know how hacky and clumsy parts of PHP’s standard library are. PHP, like C++, gives you at least 10 ways of doing anything. But unlike C++, a first year CS undergraduate can easily hack something functional with it.
And that’s totally fine, considering what Nostr aims to be. PHP won the web race, while my favourite, "well-designed" programming languages are all competing in niche spaces. This doesn’t mean your call to clean up Nostr is wrong, it’s just that… good luck herding cats into agreeing on and implementing one true way of doing things.
However, just to indulge in one true way thinking: if you put a gun to my head and told me to choose, while I’d personally pick DHT, in terms of driving Outbox model adoption across all major clients before 2030, I’d go with the "well-known URI on steroids" approach. Maybe with additional NIP-05 provisions to standarise identities behind onion services. Perhaps also with a dead-simple, optional PUT endpoint to update relay information trivially from clients. To me, kind-10002 should be part of nostr.json, i.e., it’s connection bootstrapping information and, as so, should be trivially obtainable before I even connect to any Nostr relays.
-

@ ee9d979e:3fadff64
2025-03-30 17:46:29
I get where you’re coming from. I’ve tested BEP-39 in real use cases, and I was impressed by it. From keeping a folder full of Markdown files in symc to ensuring I always download the latest episode of my legally licensed, totally fine-to-download favourite show, things just show up automatically in my torrent client without hassle. The update URL just points to the latest version of a torrent file and from there things just work.
Having said that, update cadence could be parameterised as well. Think njump. It’s smart enough to fetch my notes individually, but it doesn’t need a real-time view of my latest notes. So both the master "relay/tracker" and clients could pace themselves according to their own needs.
I really like your idea of storing a copy of someone's kind-10002 events on DHT! Probably also kind-10050 and maybe other discoverability-related notes. That’s an awesome idea.
On a similar front, despite my dislike for anything that relies on DNS, NIP-05 nostr.json could also hold a copy of all this. Kind of like what you did with the relays array, but on steroids. In other words, NIP-05 identity servers would function similarly to WKD for GPG. If you know someone’s nip05 identifier, you can retrieve all the info you need from there, no need for a second pass on a relay.
-

@ ee9d979e:3fadff64
2025-03-30 16:57:15
We all do what we gotta do and act according to our beliefs. I don’t use Meta products either, but I don’t think following lists are what’s broken with Facebook, Instagram, etc.
As for other ways to figure out who you trust for WoT, have you even tried it? Devs are more than welcome to contribute to Haven or any other WoT-capable relay, but I really wonder what their attack plan would be. There’s too much noise in Nostr lists and sets to extract a good signal. Plus, many clients encrypt list/set entries (as intended).
Doing it any other way (e.g., scanning all of your notes to infer your levels of trust in others) just puts an unnecessary burden on both my relay and yours for a very niche use case that could easily be exploited. For example, what if I baited you into rage replying to me 30 times? Am I now trustworthy? And then what’s next? ML sentiment analysis to determine if our interactions are worth "trustworthy" points?
All of this to accommodate a few people that aren’t willing to follow others... On a decentralised social media protocol with primitives for following others. Sounds like a not worth the effort / never going to be implemented kind of thing.
IMO, publicly following someone is a statement of trust, like signing someone else’s PGP key. I’m happy enough to interact with people who aren’t willing to sign my PGP key, but I’m personally not willing to sign theirs. This is core value for value, in this case, public attention of trust for public attention of trust.
-

@ ee9d979e:3fadff64
2025-03-30 16:14:37
This and Amethyst "hidden words" filter is a great recipe for a healthier Nostr experience.
-

@ ee9d979e:3fadff64
2025-03-30 16:13:32
nostr:nprofile1qqsd6ejdteqpvse63ntf7qz6u9yqspp4z7ymt8094urzwm0x2ceaxxgprdmhxue69uhhg6r9vehhyetnwshxummnw3erztnrdakj7qgmwaehxw309a3ksunfwd68q6tvdshxummnw3erztnrdakszyrhwden5te0dehhxarj9ekxzmny7dky6k, to be absolutely fair, I know you have other ways to keep up with people (I use encrypted lists and custom feeds myself). But the policy of not following folks has consequences for the wider network.
For example, if I follow you, WoT relays won’t be able to translate my trust in you into trust for the people you follow. So none of the good folks you trust would be able to write to my relay. Also, curious users won’t be able to find me or other smaller accounts by checking who you follow. In an unintended way, this contributes to Nostr’s centralisation around celebrity accounts that you are fighting against.
Don’t get me wrong. I totally get what you’re doing here and understand that public follow lists have their downsides. But they also have their benefits. And only following accounts that are equally willing to follow others publicly sounds like a very fair quid pro quo policy in my book.
-

@ ee9d979e:3fadff64
2025-03-30 15:34:37
One man’s bike-shedding is another man’s priority and life’s work 🤣. I'm more than happy to work on evolutionary improvements while smarter folks like you and fiatjaf lay out the revolutionary next steps forward. I’ll also take your word regarding funding at face value.
My point, though, is that as small as Nostr still feels, Metcalfe’s Law does apply. IMO, building on Nostr’s existing ecosystem has inherent value. But we can also get a lot of value from copying and adapting other people’s homework. Nostr is already trying to solve a lot of hard problems.
My thinking here is essentially... there are ways for solutions based on both Nostr and the torrent ecosystem to complement and interoperate with each other. This doesn’t mean abandoning Nostr or asking others to abandon potentially competing ideas. I’m just saying there are things we can reuse and adapt from the torrent ecosystem right now that could bring some interesting wins at (from a non-expert perspective) low cost and low barrier of entry.
I mean, assuming the stuff in question works and is fit for purpose (according to nostr:nprofile1qqsrhuxx8l9ex335q7he0f09aej04zpazpl0ne2cgukyawd24mayt8gprfmhxue69uhkcmmrdd3x77pwve5kzar2v9nzucm0d5hszxnhwden5te0wpuhyctdd9jzuenfv96x5ctx9e3k7mf0qydhwumn8ghj7un9d3shjtnhv4ehgetjde38gcewvdhk6tc4rdlnm above, this may not be the case for IPFS). But, say, Magnet links and BEP-39 feels like solid building blocks to me.
I’m all for quick wins if we can deliver great value to Nostr users today. And syncing my notes and media efficiently feels like a lot of value.
-

@ ee9d979e:3fadff64
2025-03-30 15:32:15
Got it, thanks. I'll give it a read and do some more practical research. I admit that I've played with impressive demos and not much else.
But I think I’ve sidetracked the post by even mentioning IPFS. My main idea was to implement Nostr Notes + Blossom media sync through torrents. Have, say, Khatru/Haven expose a torrent with a file structure similar to what you did for nak/FUSE, plus all my Blossom blobs. I can then expose a magnet link with a BEP-39 update URL.
We could even have a specific event on Nostr for folks to discover my Nostr/Blossom content index URL. For lack of a better name, let's call it master outbox. Anybody else can use this torrent to sync and seed my notes and media.
This doesn’t need to be a massive centralised index like Bluesky. Instead, each user publishes their content to whatever relay they want, chooses one as their current master outbox, and other relays and even clients (through WebTorrent) can perform full or partial syncs using the torrent/magnet link. Wouldn't this be useful at all? Sure Negentropy can be used for more complex gathering of notes spread across relays. But for simple sync it feels like this would be an efficient way of doing things.
-

@ ee9d979e:3fadff64
2025-03-30 14:23:29
Can you expand on why IPFS doesn’t work or point me to an article where I can understand its issues?
I wasn’t thinking of anything as ambitious as replacing Nostr relays, clients or Blossom servers. Just sharing events and blossom vlobs as a signed torrent with an "update URL", allowing both clients and relays to sync, seed, list or navigate my stuff to your heart’s content. Relays would still be there to serve all of this over WebSockets, and Blossom would still be there to serve media over HTTP, etc. In other words, I’m not thinking of throwing away the existing protocol and sending Nostr back to day zero, just checking if we can't solve sync, specially between relays, in an easier and likely more efficient way.
-

@ ee9d979e:3fadff64
2025-03-30 13:01:57
And if you read above and thought to yourself, Wait, torrents aren’t mutable... and can’t be signed... Noth are solved problems:
https://www.bittorrent.org/beps/bep_0039.html
https://www.bittorrent.org/beps/bep_0035.html
I could use, say, Haven to expose the update URL, give you all a magnet link, and voilà—you can sync and serve as much of my content as you want.
-

@ ee9d979e:3fadff64
2025-03-30 12:21:39
GM, folks! Just putting this out there. I was thinking, while we have a few NIPs and torrent-based tools on Nostr, there are some quick wins to be had by tapping into the torrent ecosystem.
With so many people building HTTP views, bridge APIs to Nostr WebSockets, storage APIs (e.g., Blossom), and streaming tools... FFS nostr:nprofile1qqsrhuxx8l9ex335q7he0f09aej04zpazpl0ne2cgukyawd24mayt8gprfmhxue69uhkcmmrdd3x77pwve5kzar2v9nzucm0d5hszxnhwden5te0wpuhyctdd9jzuenfv96x5ctx9e3k7mf0qydhwumn8ghj7un9d3shjtnhv4ehgetjde38gcewvdhk6tc4rdlnm is even exposing a FUSE interface that can be mounted with nak (just for laughs) to give you Nostr as a filesystem abstraction. So why aren't we leveraging WebTorrent and IPFS to make our lives easier?
I’m not saying we should abandon what we have. Just that we could use what’s already out there pragmatically.
For example, I keep hearing about Negentropy, which is great and all, but… Why can't your client or relay just join the swarm and sync all the notes and Blossom blobs associated with my pubkey? Maybe we could even expose all of this over IPFS and boom, you’ve got "Negentropy" and a cool alternative to njump.me. It doesn’t get much more bandwidth-efficient and P2P than that.
@jonny@neuromatch.social 🔗 https://neuromatch.social/users/jonny/statuses/114245524577616333
-
> we whipped up a bittorrent swarm that has 200TB of proven storage in like a month by cobbling together everyone's random hard drives. storing 200TB on s3 would cost at least $4.5k per month and would cost $10,000 to download it one time.
#gm #nostr #torrent #blossom #ipfs #growNostr #devstr
-

@ ee9d979e:3fadff64
2025-03-30 11:16:45
GM Mate
-

@ ee9d979e:3fadff64
2025-03-30 10:10:01
GM, my only comment is that for cursor-based pagination, it would be nice to include previous and next URL links (either in the body or in HTTP headers). Have a look at HATEOAS / HAL. This is better than forcing clients to figure out the URLs on their own.
As for Negentropy, I think Blossom could implement a simplified version of NIP-77. It would be nice if there were a global date we could sync with or perform range requests on. But even if there isn’t, I’d say the most useful sync "filter" would be by the author's pubkey. I.e., I would only use it to mirror or migrate my blobs to a different server.
Honestly, for my personal use cases, even manual syncing (e.g., if a client allowed me to add multiple Blossom servers and automatically use the mirror endpoint whenever I post or broadcast a note with Blossom media) would already be a huge step in the right direction.
Do you know of any Nostr clients that are BUD-03 compliant and handling the whole URL check / Kind 10063 retrieval process?
https://github.com/hzrd149/blossom/blob/master/buds/03.md#client-retrieval-implementation
noStrudel? Amethyst, maybe?
-

@ ee9d979e:3fadff64
2025-03-28 23:29:43
Thanks!
-

@ ee9d979e:3fadff64
2025-03-28 22:02:02
Thanks. Yeahp. Sounds like a lot is going on Nostr Git stuff. This is awesome. Stupid question but I have come across a few of nostr:nprofile1qqsrhuxx8l9ex335q7he0f09aej04zpazpl0ne2cgukyawd24mayt8gprfmhxue69uhkcmmrdd3x77pwve5kzar2v9nzucm0d5hszxnhwden5te0wpuhyctdd9jzuenfv96x5ctx9e3k7mf0qydhwumn8ghj7un9d3shjtnhv4ehgetjde38gcewvdhk6tc4rdlnm repos with something that sorta remembers cgit but has some nostr stuff. Any idea of what this is? Also, has anybody other than fiatjaf ever contributed anything there? And if so, how?
https://git.njump.me/
-

@ ee9d979e:3fadff64
2025-03-28 21:38:11
Have you played with any of the tools? Any recommendations? Someone has recommended NostrGit and ngit-cli to me, but I haven't had time to play with it yet.
-

@ ee9d979e:3fadff64
2025-03-28 21:32:31
Self hosted Forgejo works well... But you won't be getting many people willing to open PRs against your repo anyway. And if I need to bridge to GitHub I may as well use Mercurial instead of Git locally.
I.e., as most hard things in life. This is a culture and convenience issue.
-

@ ee9d979e:3fadff64
2025-03-28 19:20:02
LinkedIn CxO | Serial Entrepreneur | AI Expert advertising his last magical vibe coded product.
https://haven.accioly.social/f2b7a06093159f2ec1f78dd1fa9c217063b60d924c3956f45a9511c95a58346b.mp4
via @davidaugust
https://mastodon.online/@davidaugust/114236433226999789
#memestr
-

@ ee9d979e:3fadff64
2025-03-28 18:14:26
Mate, some of the "John Galt" types around here, talking about building roads and houses, raising their own cattle, etc., have the same level of unrealistic demands and survivability as the left-wing, blue-haired city dwellers they love to criticise.
I mean, I’m not going to pretend I haven’t been privileged myself, but coming from South America, this obsession with raw milk, 2 kg of meat, a dozen eggs, and a gallon of butter a day, plus time for grounding, specific lighting, and organic clothing... I’d really love to know what these guys do for a living because even the "Finance Bro" and "Big Tech" types they mock here on Nostr can’t afford the Nostr Influencer lifestyle. Or at least I never could, even while working 60+ hours a week in a depressing grey office.
Grounding? Plenty of time for "grounding" on public transport on the way to an impossibly expensive shoebox-sized flat
-

@ ee9d979e:3fadff64
2025-03-28 18:11:20
Or... Just... Don't go there? 🤣
-

@ ee9d979e:3fadff64
2025-03-28 17:43:18
Makes sense for sure. I think GitHub Actions should be fine for GitCitadel’s own development needs. Plenty of massive OSS projects using it. GitHub’s fair usage policies are pretty reasonable. I’ve hit some GitHub API usage limits in the past, but that was on me for pushing it too far and not properly optimising some heavier workflows.
As for building CI as a service for others on top of GitHub’s infrastructure… that’s a bit trickier. The limits are generous, but not that generous. Plus, I’m not sure if it would violate their usage terms. It might be worth reading up on or even reaching out to them.
https://docs.github.com/en/actions/administering-github-actions/usage-limits-billing-and-administration
https://docs.github.com/en/site-policy/github-terms/github-terms-of-service
https://docs.github.com/en/site-policy/github-terms/github-terms-for-additional-products-and-features#a-actions-usage
From the last link above:
Actions should not be used for:
* The provision of a stand-alone or integrated application or service offering the Actions product or service, or any elements of the Actions product or service, for commercial purposes;
* Any activity that places a burden on our servers, where that burden is disproportionate to the benefits provided to users (for example, don't use Actions as a content delivery network or as part of a serverless application, but a low benefit Action could be ok if it’s also low burden); or
* If using GitHub-hosted runners, any other activity unrelated to the production, testing, deployment, or publication of the software project associated with the repository where GitHub Actions are used
-

@ ee9d979e:3fadff64
2025-03-28 17:09:17
The bill was actually higher than that 🤣. This is what the company saved monthly by using self-hosted runners and moving some of the storage and packages respectively to S3 and ECR. I'm not counting GitHub Enterprise, Copilot, Codespaces, etc. Although, to be fair, runners (by far), storage and data transfer made the bulk of the cost.
https://docs.github.com/en/billing/managing-billing-for-your-products/managing-billing-for-github-actions/about-billing-for-github-actions
https://docs.github.com/en/billing/managing-billing-for-your-products/managing-billing-for-github-packages/about-billing-for-github-packages
-

@ ee9d979e:3fadff64
2025-03-28 16:48:38
Your first question is context-sensitive. For example, many OSS projects have multi-hour builds, especially when extensive E2E testing is required.
As for GitHub Actions' built-in runners, they are free (within reasonable usage limits) and work well for OSS projects. However, they can become expensive very quickly for private repositories. One of my recent adventures involved migrating GA runners to AWS, this reduced GitHub bills by a solid $20k per month, at a company that wasn't nearly as big as that number might suggest. Even with Amazon's outrageous pricing, the migration made the CI runs and ephemeral environments significantly cheaper.
A few things to keep in mind about GitHub Actions' standard runners though:
1. They will be slower than your own server.
2. There's no support for Windows on ARM yet, and macOS x86-64 requires using an outdated runner image.
3. Expect occasional unexplained outages. GitHub hasn’t been particularly reliable lately, and when issues arise on their end, there’s often little you can do but wait.
4. Be cautious archiving artifacts, they add up quickly.
Hopefully this is helpful.
-

@ ee9d979e:3fadff64
2025-03-28 16:18:12
By the way, nostr:nprofile1qqsrhuxx8l9ex335q7he0f09aej04zpazpl0ne2cgukyawd24mayt8gprfmhxue69uhkcmmrdd3x77pwve5kzar2v9nzucm0d5hszxnhwden5te0wpuhyctdd9jzuenfv96x5ctx9e3k7mf0qydhwumn8ghj7un9d3shjtnhv4ehgetjde38gcewvdhk6tc4rdlnm, nostr:nprofile1qqsw9n8heusyq0el9f99tveg7r0rhcu9tznatuekxt764m78ymqu36cpr3mhxue69uhhyetvv9ujucnfw33k76twwpshy6ewvdhk6tcpzdmhxue69uhhwmm59e6hg7r09ehkuef0qy2hwumn8ghj7un9d3shjtn4w3ux7tn0dejj7ne6u4e, can you please have a look at this? https://github.com/fiatjaf/khatru/issues/36#issuecomment-2745311203
I kinda need to make a decision about splitting the Blossom database from Outbox relay database.
I'm working on adding "redirect" support to Khatru's Blossom server so that folks can upload and serve content directly from public buckets, CDNs, etc. If we really need to separate the Blossom database from the Outbox database in Haven, I’d rather do it now and bundle all breaking changes together.
I'll also be opening a separate PR to add support for serving NIP-05 nostr.json to Khatru with proper support for "name" queries, as well as CORS, reasonable caching policies, ETags, etc. So hopefully, between the Payments relay, NIP-05, enhanced cloud support for Blossom and Backups (as well as the new official binaries), Haven users will have a good reason to go through the trouble of upgrading despite any breaking changes.
-

@ ee9d979e:3fadff64
2025-03-28 15:49:58
Unsolicited but well-intended Haven promotional content. Haven's chat relay and built-in media server will keep not only your DMs but also your attachments safe and encrypted thanks to NIP-17 Private Direct Messages support. It is already working with 0xChat, Amethyst, Chachi and several other Nostr clients.
https://haven.accioly.social/45ba9a25c1d7ea056183b84b8a46104cda22b539c93a1d48fac83b03b43a4c2c.jpg
But before you start sending… hmm… private… attachments around, just make sure your Nostr client supports NIP-17 and that the other party is trustworthy (which, clearly, I am not).
#Haven #PersonalRelay #PrivateDMs #Blossom #MediaUpload #NIP17 #Kind15 #Privacy #Nostr #GrowNostr
-

@ ee9d979e:3fadff64
2025-03-28 13:50:14
GM Beave. Happy Friday!
-

@ ee9d979e:3fadff64
2025-03-28 13:49:21
nostr:nprofile1qqs8lft0t45k92c78n2zfe6ccvqzhpn977cd3h8wnl579zxhw5dvr9qpzamhxue69uhkvun9deejumn0wd68yvfwvdhk6tcppemhxue69uhkummn9ekx7mp0qyv8wumn8ghj7enfd36x2u3wdehhxarj9emkjmn99uzfckkp, just sent you a GiftWrapped DM from Amethyst to check if encryption is working for Haven / Khatru Blossom server. Can you double check if its working for you on Chachi?
-

@ ee9d979e:3fadff64
2025-03-28 13:13:37
GA and happy friday folks! Humble Bundle is ❤️. Just £25 for one of the best collections of O'Reilly books I've ever seen. If you're a Software Engineer or Architect, don't miss out!
https://www.humblebundle.com/books/head-first-programming-and-patterns-oreilly-books
#Books #OReilly #HeadFirst #Programming #Patterns #SoftwareEngineering #SoftwareArchitecture #Tech #HumbleBundle #devstr
-

@ ee9d979e:3fadff64
2025-03-27 21:41:49
Justo, eu disse talvez pois tenho um soft spot pelo FHC (sim, todos nós temos um malvado favorito...). Mas eu autorizava a prisão do velho pelos últimos meses ou anos de vida dela se isso garantisse todos os outros Dom Presos.
-

@ ee9d979e:3fadff64
2025-03-27 21:37:45
Lol, it’s not just you… These tools are all... pretty underwhelming. With Copilot, JetBrains AI, and Claude models, Kotlin is a bit better than, say, Scala. But honestly, all of these LLMs and "AI agents" only perform slightly better in languages such as JavaScript and Python. Especially if you’re using popular soydev frameworks like React.
-

@ ee9d979e:3fadff64
2025-03-27 21:29:37
Eis uma "postura política" com a qual eu posso concordar 🤣. Com talvez exceção do FHC (e do Itamar, que já não está mais entre nós), se você perguntar a este reles mortal que vos fala, todos os presidentes da Sexta República, começando pelo Sarney, deveriam estar presos.
Fernando Collor com certeza, Michel Temer também. Lula nunca deveria ter saído da cadeia e Dilma Rousseff foi uma grande influência... No meu desejo de sair do Brasil.
"Eu preso vou dar trabalho"... Tome jeito cabra. 🤡🎪🚓🚨👮♂️
-

@ ee9d979e:3fadff64
2025-03-27 21:10:39
I forgot to hit send on this earlier today, but speaking of David vs. Goliath, if you haven’t done it already, make sure to tarpit Alexandria, TheForest1, GitCitadel, and anything else you’re deploying that is expected to hold a lot of data. Otherwise, scrapers will come for the goods, overload the infrastructure and cost you quite a few sats.
https://arstechnica.com/ai/2025/03/devs-say-ai-crawlers-dominate-traffic-forcing-blocks-on-entire-countries/
https://zadzmo.org/code/nepenthes/
https://blog.cloudflare.com/ai-labyrinth/
-

@ ee9d979e:3fadff64
2025-03-27 20:36:16
GM. Welcome back!
-

@ ee9d979e:3fadff64
2025-03-27 18:58:37
Rod Johnson everyone: https://youtu.be/Rx3XZoqbi78.
I still love Java, but every time I switch back from Kotlin or Scala, I can relate... There's always something missing.
#Java #Kotlin #ProgrammingLanguages
-

@ ee9d979e:3fadff64
2025-03-27 16:43:20
Manosphere, homophobic content, spam bots, hardline, batshit crazy MAGA conservative stuff (pro-authoritarianism, anti-immigration, sometimes plain racist stuff), etc. I’m not giving Nostr a pass here, as this is a very real problem that we shouldn’t be sweeping under the rug.
To be fair I think that the problem will eventually fix itself as some of the worst Nostr content will likely be written by people that are more than willing to voluntarily lock themselves behind auth only relays or at least enforce NIP-05 identities from specific domains (the same happened with Gab, Truth Social). But for now, Nostr isn’t really attractive to, say, European left-leaning friends who may be LGBT, immigrants, or married to foreigners, and who may also happen to have written the book on much of the tech I’m passionate about.
In the same way that a lot of people on Nostr won’t touch Mastodon because of "all the commies policing my content and circle-jerking their political agendas" (which, for a lot of folks here on Nostr, can also be considered toxic content).
I wish it were different, but humans will be humans. And I’m okay running infrastructure for two different social networks if it means I can attract more people from all backgrounds and beliefs to at least give it a try. Every person who joins a free, decentralised network is a win on my book.
-

@ ee9d979e:3fadff64
2025-03-27 16:08:28
Good luck! I can see that lots of folks are excited about this (or at least I got tagged in more than one giant thread about it). I’d certainly like to self-host GitServer in the future if it can run on a cheap VPS.
I know that to attract any sort of code contributions these days, you have to be on GitHub. A lot of devs won’t even touch GitLab or Codeberg, let alone self-hosted Git servers. Maybe Nostr can change the landscape a bit? Otherwise, even if it means mirroring my stuff to GitHub, it would be great to have Nostr-oriented infrastructure that Nostr devs can rely on.
-

@ ee9d979e:3fadff64
2025-03-27 15:42:28
If anyone else is looking for a direct link: https://geyser.fund/project/gitcitadel/goals/478?hero=anthony
-

@ ee9d979e:3fadff64
2025-03-27 14:56:36
I try my best. I did manage to get some of the mentioned folks to at least try ActivityPub… but they mostly doesn’t stick there either. Nostr really isn't an option for most of these folks. They would leave at the first post featuring Bitcoin Maxis eating whole cows, never mind the truly toxic content on public relays.
I still try though. I cross post some content with njump urls, but it instantly gets buried by LinkedIn's algorithm as well. I'll be retiring my LinkedIn account soon. Just like my Stack Overflow account, I’m not deleting my LinkedIn profile to preserve the content, but I also don't get enough value from LinkedIn to justify sticking around anymore.
-

@ ee9d979e:3fadff64
2025-03-27 14:05:51
Lucky you! :) Nowadays, every PM, Sales, or Marketing Jane and Joe on LinkedIn is labelling themselves as "CxO | 10x Entrepreneur | AI Expert | Rightful Heir to the Iron Throne | Rightful King of the Andals and the First Men | Protector of the Seven Kingdoms | Father of Dragons | Khaleesi of the Great Grass Sea | Unburnt | Breaker of Chains" while acting like teenage grifters peddling AI and predicting the imminent end of Software Engineers. The best that algorithmically driven proprietary social media has to offer.
They won’t implement anything useful for their users, by the way. LinkedIn is already in an advanced enshittification stage, to the point that it barely works. It’s a shame because there are some great tech content creators who won't touch better social networks. They are still posting on LinkedIn, only for their posts to get buried. You’ll rarely see good content unless you specifically visit their profiles.
-

@ ee9d979e:3fadff64
2025-03-27 12:42:17
For amethyst and other NIP-30 clients, here you go:
nostr:naddr1qq9yummnw3ez6nr0wejsz9mhwden5te0wfjkccte9ec8y6tdv9kzumn9wshsyg9fgd8wze0dqxegd0k0cfm3autst56n05z3kwrj3zycesqdtjy9hcpsgqqqw48qq2r4pl
-

@ ee9d979e:3fadff64
2025-03-27 12:39:09
Found it. It's on the Nostr-Love pack by nostr:nprofile1qqs2js6wu9j76qdjs6lvlsnhrmchqhf4xlg9rvu89zyf3nqq6hygt0spz9mhxue69uhkummnw3ezuamfdejj7qghwaehxw309aex2mrp0yhxummnw3ezucnpdejz7qg4waehxw309aex2mrp0yhxgctdw4eju6t09uygje4n ❤️💜 https://emojito.meme/a/naddr1qq9yummnw3ez6nr0wejszrthwden5te0dehhxtnvdakqyg9fgd8wze0dqxegd0k0cfm3autst56n05z3kwrj3zycesqdtjy9hcpsgqqqw48q5g4zmn
-

@ ee9d979e:3fadff64
2025-03-27 12:15:59
I think that you have to install the emoji pack first right? Can you give me the name of the emoji pack in question? On Amethyst it should be at the top of the emoji pack.
-

@ ee9d979e:3fadff64
2025-03-27 11:59:15
I love the GM emoji. Where can I get it?
-

@ ee9d979e:3fadff64
2025-03-27 11:55:07
I so which that I had this feature on LinkedIn.
-

@ ee9d979e:3fadff64
2025-03-27 11:51:59
GM negr0 the Nostr AI Art Wizard! ☕️
-

@ ee9d979e:3fadff64
2025-03-27 11:44:52
GM Maria, happy Thursday!
-

@ ee9d979e:3fadff64
2025-03-27 11:35:48
Good morning, fellow Nostr geekies with impeccable taste! Happy Thursday!
https://youtu.be/UcjiYn3xXMg
I also love their HTTP-only website with its space-themed background, animated horizontal rule, visitor counter, and all the classic 90s Geocities Home Page vibes (It is missing "Built with Notepad" and "Download Netscape" buttons) http://thecybertronicspree.com/
#gm #cybertronicspree #thursdayvibes #transformers #music #retroweb
-

@ ee9d979e:3fadff64
2025-03-27 11:15:12
I would argue that the JS ecosystem is even worse. I mean... npm, do I even have to say anything? Left-pad, massive dependency trees, security issues, you name it 🤣. I know that these days the cool kids are all using Deno, but IMO you can't fix soydev culture. And it will likely get worse with "vibe coders" on Cursor, Windsurf, etc.
Honestly, you never know what you're going to get from npm. It could be a heavily transpiled, minified package that requires a source map for debugging or something a bit more normal. Often, the same package has multiple releases. And the worst part? Most people who actually need this kind of processing are already using bundlers with their own transpiling, tree shaking, minification, etc. The double pass often makes the final output bigger (and sometimes slower).
Call me a dinosaur, but overall, I'm happy with my JAR files and Maven Central (as messy as it is with dependency hell, XML verbosity, etc). I would love to see something like Go modules or Cargo built into Java, Scala and Kotlin, but I'll take the "Maven way" over npm, or, say, Python's absolute madness (conda, pip, poetry... basically anything before uv).
-

@ ee9d979e:3fadff64
2025-03-26 19:47:10
Can't speak for RxJS but I spent a lot of time doing backend Reactive Programming in Scala and Kotlin, as well as a bit of frontend dev in Elm (which I quite enjoyed).
It has a learning curve and observability can be painful, but if you need the scalability it's brilliant.m
-

@ ee9d979e:3fadff64
2025-03-26 13:12:00
nostr:nprofile1qqsqdzwltpr635ehdzfd52tz947qlhq77x2c7j7yguwep9n258k2nuspz4mhxue69uhhyetvv9ujuerpd46hxtnfduhszxmhwden5te0w35x2en0wfjhxapwdehhxarjxyhxxmmd9uq3kamnwvaz7tmhdpjkzapwdpshqurew3shvetjdchxxme009m95a be like https://youtu.be/aujOb50T8Pc
-

@ ee9d979e:3fadff64
2025-03-26 13:09:13
GM folks. Guess we are doing this now. The unwise and overly balanced build certainly checks out.
https://haven.accioly.social/66e8a7d30af415e6146c354abf529426f34b8105e9731cd1f770d52c19a7a3f8.png
#grownostr #rpg
-

@ ee9d979e:3fadff64
2025-03-26 12:49:27
GM utxo, I get where you're coming from. Still, IMO, growth in non-addictive social media will often look like this. Big new user waves whenever X, Meta and co inevitably do the next big nasty anti-user move, followed by a lot of churn and users "relapsing". In a way, quitting proprietary social media is like trying to quit smoking. Sure, algorithms can act as nicotine patches to help with the detox, but ultimately, they won’t keep most users around unless we make it as addictive, or more so, than the proprietary platforms.
There are already other social media apps trying to become the next hipster vaping alternative to Philip Morris / British American Tobacco. And yes, they are "winning" in terms of user retention and network effects. Still, in my book, Nostr is winning by default precisely because it isn't trying to do that.
To be a bit less philosophical: I don’t think the lack of algorithms is the only thing driving users away from Nostr. IMO, we really need to promote a culture of overindexing on sharing/boosting posts + interacting with smaller accounts + catch up functionality on clients.
Just to link both conversations together:
nostr:nevent1qqswa00gn0aggqkt2wjhj6x36xun3gkyr8z4nm6vgathp272h5u5mwcpz3mhxw309akx7cmpd35x7um58g6rsd3e9upzpm5aj708u9qc48m5w2a0stwfvzp2p4p9rdmmevts5mkweyl6mlmyqvzqqqqqqycqyshr
-

@ ee9d979e:3fadff64
2025-03-26 03:24:26
GN Nostr! 💜🌙🛌💤
https://haven.accioly.social/7114a06499ebefc938f6223c53f10b144fcff442fe4438af21a3b0d9f5e11903.jpg
#nostr #grownostr #memestr #aiart #joker
-

@ ee9d979e:3fadff64
2025-03-26 02:25:36
Gn Negro 🌙
-

@ ee9d979e:3fadff64
2025-03-26 02:23:18
https://haven.accioly.social/ee523b917f5a3c5485c22e6425a3cec9dab0ddfead7534ecd591e30486a2133a.jpg
-

@ ee9d979e:3fadff64
2025-03-26 02:12:06
GM Jin!
-

@ ee9d979e:3fadff64
2025-03-26 02:09:54
nostr:nevent1qqsrrgnkj9r2n89u0s23amqn8wpx5hx2f67qvgpzlxn0sk8xegvzy5cpzamhxue69uhhyetvv9ujuurjd9kkzmpwdejhgtczyqalp33lewf5vdq847t6te0wvnags0gs0mu72kz8938tn24wlfze6qcyqqqqqqgaqswad
#scala #sbt #buildtools
-

@ ee9d979e:3fadff64
2025-03-26 02:08:42
I think the underlying reasoning is Scala trying very hard to fit into the Java/JVM ecosystem, i.e., Maven Central and JAR files are the way of the land.
Also... Scala compilation times. Things are improving, but start compiling too many dependencies in your average enterprise project, and we’ll be right back to this: https://3d.xkcd.com/303/
To be fair, things aren't anywhere as bad in other JVM languages like Clojure and Kotlin (despite not exactly loving Gradle as a build tool either). Scala problem was mostly self-inflicted when the community embraced sbt.
Also, sharing and adding the #scala hashtag so I don’t feel too hypocritical after all my pep talks about the discoverability of niche content on Anostr. 🤣
-

@ ee9d979e:3fadff64
2025-03-26 01:31:04
Sounds like a very successful experiment! I really need to do the same. YouTube accounts for most of my daily doomscrolling/brainrot experience at the moment. If I stop paying for YouTube Premium, the missus will 100% kick me out of the house 🤣, but I definitely need to cut back on YouTube content regardless.
-

@ ee9d979e:3fadff64
2025-03-26 01:21:31
Yeah, Amethyst bumps boosted posts. My ideal Frankenstein Nostr client for short notes would basically be Amethyst with Listr/Nostur list curation capabilities + Nostur’s "Remember position in timelines" functionality + Gossip’s proper NIP-65 support so I can actually find content from the folks I follow (and vice versa) + Jumble/Nosotros like relay feeds. And for good measure, I’d throw in 0xChat’s NIP-17 + E2EE messaging using MLS.
Basically, Nostr clients already have everything I need for an awesome content discovery and curation experience. Just not in a single client... yet. We'll certainly get there!
As for getting folks to understand that sharing/boosting is caring... now that’s a hard, non-technical problem to solve.
PS: Fedilab, despite its quirks, configuration overload, and far-from-award-winning aesthetics, has implemented everything I just mentioned for Mastodon/ActivityPub in a way that really makes chronological feeds work. If any client devs want some inspiration, I’d definitely recommend having a look at it.
-

@ ee9d979e:3fadff64
2025-03-26 00:36:39
Reading this 10 hours later, just like I've read Vitor post on a similar topic several hours later. I have to disagree with you on this one utxo. I'm very happy with chronological feeds. Clients can use your algo relay or DVMs for algorithmic feeds. And sure, they can support it, but I'd rather they don’t impose algos on users or make it the default experience.
What I really wish is that people would hit the boost/reshare and comment buttons much more often, as well as follow tags and new npubs with fewer followers.
As for clients, I’d love to see more support for NIP-51-like features so I can create lists of my favourite users and hashtags and keep up with them in chronological order from where I left off (kinda like Nostur). This is exactly what I’m doing with Fediverse stuff + Fedilab, and it works wonders. I often read posts that are six months old and have had some of my own posts reshared months after I originally posted them.
-

@ ee9d979e:3fadff64
2025-03-26 00:08:58
Good morning to you from the UK (it's midnight here and I'm going to sleep... But it's fun to say good morning to random nostriches across the globe). Have a great day!
-

@ ee9d979e:3fadff64
2025-03-26 00:04:25
Same situation. Signal link on my website. Or 0xChat GiftWrapped DMS :)
-

@ ee9d979e:3fadff64
2025-03-25 23:55:36
I would love go have a Desktop client. There simply isn't a better NIP-17 exprrienve around. Also, I I really want to see the E2EE Messaging using MLS idea gaining traction ans become a standard on Nostr.
-

@ ee9d979e:3fadff64
2025-03-25 23:47:00
I'm honestly can no tell if you were being sarcastic , but I would genuinely love a Nostr power phpBB / Discourse alternative. ❤️💜
-

@ ee9d979e:3fadff64
2025-03-25 23:39:51
I'm with you on this one. I mean, I'm very happy for folks to play with DVMs, algorithmic relays, etc. All great experiments. But I really don't want it imposed on me. (If any client starts enforcing algorithmic feeds, I'll stop using it, and if it becomes the dominant way of doing things on Nostr, I'm out.)
I also don’t get why every problem on Nostr is dismissed as a "discoverability" problem that requires an algorithmic solution. Classic XY problem...
Folks here can hate on the Fediverse content and architecture as much as they want (I myself dislike the fact that identity and content ownership are bound to specific instances. This is why I'm bullish on Nostr), but I’ve been making ActivityPub work with linear feeds, lists, and hashtags for ages. And yes, I can find basically all the content I want there: from niche tech stuff to content specifically for Brazilian expats living in small British/Irish towns. It honestly doesn't get much nichier than that. I'm doing this using a small personal instance that isn't even pulling a fraction of Mastodon’s content in a pool of active users much larger than Nostr. Still, the niche content gets to my feeds.
What we're lacking here on Nostr is a culture of boosting/resharing, content lists, and hashtags, so that content "lives" longer and spreads without needing endorsement from a Nostr influencer account.
That, and a good onboarding experience so that the combination of spam bots, manosphere/homophobic/anti-immigration/hardline MAGA content, or even generally well-intended but overly enthusiastic Maxis and Nostr devs (guilty) don’t drive users away in the first 10 minutes before they even get a chance to check out catstr, artstr, gaming, travelling, music, retrotech, or whatever else they enjoy.
-

@ ee9d979e:3fadff64
2025-03-24 16:38:22
I think it has been like this since the rise (and, most importantly, the fall) of the first major empire. However, I do agree that since 9/11, the symptoms have been felt more acutely and, in my opinion, in an increasingly accelerated fashion. But then again, I think this is how it always felt like. For example, my parents lived through a military dictatorship and, as a generation, lost their freedom for over 20 years while waiting for a nuke to drop. Maybe every generation feels this way?
-

@ ee9d979e:3fadff64
2025-03-24 16:29:19
It gives me joy to see Bernie on Nostr! Just like seeing Hayek and Friedman on the Fediverse, although I have to say that now Fedi is large enough that, while against the established ethos and still subject to pushback, it isn't as surprising to see something break the social mold around there. Onwards to build free social media! 🫡🫡
-

@ ee9d979e:3fadff64
2025-03-24 14:48:57
It's a playbook as old as time: scare and coerce people into choosing between fully embracing an ideology or being labelled the enemy. No room for nuance. That’s why "Libertarian MAGA" types on Nostr are openly defending bureaucracy and state violence; about as predictable as the French Revolution being followed by the Reign of Terror (and countless similar events in history).
When the economy starts falling apart, distract people with left vs right rhetoric, ensure they turn against each other, and most will quickly "forget" that there are many other dimensions in this equation. In practice, most people are numb. When push comes to shove, they'll gladly give up personal freedom for convenience, safety and a sense of belonging. Marxists and anarcho-capitalists alike.
-

@ ee9d979e:3fadff64
2025-03-24 14:13:39
Just to make the obvious point even more obvious (though I understand you’re about to segue into Amethyst's "Stealth mode" features). They’re finding plenty of excuses to search your phone... in authoritarian countries.
I travel quite a bit in Europe, have parents in Canada and South America, often take trips to Asia, and have even visited countries in the Middle East. I have never been asked to unlock my phone.
Not that the UK doesn’t engage in its fair share of mass surveillance against its own citizens, but that’s a different conversation.
For those of us fortunate enough not to have ties to authoritarian countries, the best option is simply not to travel there. For the proud citizens of authoritarian states where you must "respect the dear leader's authoritahhh!"... I’m truly sorry. Maybe consider applying for asylum somewhere safer?
-

@ ee9d979e:3fadff64
2025-03-24 01:12:38
Well, I'm calling it a day… Still struggling with LMDB builds across several OSes and platforms. Golang’s CGO, like all "C" bridges, can be quite a sharp sword to wield. Hopefully, I’ll have something to show soon. GN, folks. 🌙🛌💤
#devstr #golang #cgo #lmdb #lmdbgo
-

@ ee9d979e:3fadff64
2025-03-24 01:06:20
Joe Satriani has such great collabs. It's unbelievable what you can find on YouTube... E.g.: https://youtu.be/ZS5hGIWFb4k
-

@ ee9d979e:3fadff64
2025-03-24 00:58:25
Unfortunately, IME, chances are that this isn’t an accidental / peering problem. A lot of ISPs are blacklisting domains that have been classified as "malicious" or "phishing" by somewhat trigger happy security companies.
Also, even before checking with your ISP, assuming that you don't have a dedicated firewall or internet security software, do have a look at your router admin console if you have access to it. Nowadays, most routers have built-in home network security functionality. For example, Asus routers have "AiProtection", Netgear routers have "Armor", TP-Link has "HomeShield" and so on. I believe most of them have their security services enabled by default out of the box.
They all essentially defer to a "select" group of security companies to identify threats (Trend Micro, Bitdefender, etc.), and these companies often copy each other’s homework. So, it would be interesting to check if jellyfish.land is not being flagged as a "malicious website" and blocked by one of these mechanisms.
-

@ ee9d979e:3fadff64
2025-03-23 21:35:59
I managed to access the jellyfish.land page after adding an exception to my firewall/security software. Using a VPN or even switching networks completely (e.g., using 5G instead of WiFi) will only work if the traffic is being blocked at the local network or ISP level. If a user has a security endpoint enabled on their device (which many will, as these often come bundled with their OS, browser, etc.) a VPN won’t be effective.
-

@ ee9d979e:3fadff64
2025-03-23 17:28:55
No problemo. While I have good faith in you, as I've seen you contributing to Khatru and other upstream Nostr stuff, my opinion as a user won’t matter much to the security companies. Generally, security providers have special channels for businesses to reach out, figure out what’s happening, press their case and provide any necessary evidence if required.
Regarding rebranding, I agree. That would be a nuclear option if you can't fix the classification issue. Given the situation, I don’t see why security companies wouldn’t allow you to resolve it. Chances are that as soon as a human gets involved on their side (assuming it's a case of AI misclassification with no user reports or other issues) your domain will simply be reclassified as safe.
As for the status page, it’s also inaccessible for me 🤣. I need to figure out a way to add an exception to my network security config. It’s been a while since I last had to do this.
-

@ ee9d979e:3fadff64
2025-03-23 16:03:27
It's not just my network config. https://www.ssltrust.co.uk/ssl-tools/website-security-check?domain=jellyfish.land
Since the website has been classified as phishing by Trend Micro and a few other security providers, it will be unreachable for many people. Some may even receive scary messages from their antivirus software.
Even those who haven't installed any firewall or network security software may be blocked from the website, as several ISPs and network equipment (e.g., ASUS routers) enable this kind of security measure by default.
Assuming the phishing classification was done automatically by AI, it may have happened due to a mix of older websites using jellyfish.* domains and the fact that you're accepting Lightning payments on your site. It sucks, but this is often enough to land your domain on security providers' naughty lists.
If I were in your shoes, I would try to figure out why exactly the site is being classified as phishing and reach out to the mentioned security providers. Either that or rebrand and switch domains to avoid conflicts with other "jellyfish" websites. But I would still contact the security providers regardless, just to make sure that there aren't any other issues. Hopefully, this helps.
-

@ ee9d979e:3fadff64
2025-03-23 13:15:50
I just checked my network logs and apparently Trend Micro has classified https://jellyfish.land as a phishing website (which they often do erroneously). This may be behind all of the issues above.
Maybe issue a reclassification request? https://global.sitesafety.trendmicro.com/
-

@ ee9d979e:3fadff64
2025-03-23 12:54:41
Screenshots
Website: https://jellyfish.land/ on Firefox Android
https://haven.accioly.social/01063ef715e9e3a014fadab7c7a973141cc2552315ca5ab8371e5e80bfb2e345.png
Amethyst NIP-05:
https://haven.accioly.social/c1f5bd3fe2ee0af1f93bf5cde5f7e5e6a481dd59dc0104f42ac775ccb0abea57.png
Nostrudel NIP-05:
https://haven.accioly.social/1620ad074a39405c55c6374c34cd8a0ed3efc90a46a2c81938cd5815b6e0dd59.png
-

@ ee9d979e:3fadff64
2025-03-23 11:49:18
GM Maria. Have a great day!
-

@ ee9d979e:3fadff64
2025-03-23 11:48:23
GM Agi. Have a great day!
-

@ ee9d979e:3fadff64
2025-03-23 11:45:39
nostr:nprofile1qqst6jhruelzn9jdf9qhyfsac3fetjyld0fwwary9cmxzfchrhacragppemhxue69uhkummn9ekx7mp0qy2hwumn8ghj76n9d3k8jenfwd5zumrpdejz7qguwaehxw309aex2mrp0yhxummnw3exzunpvf5kztnrdakj72778kd I assume that you are behind the service. It looks like it is already down unfortunately. SSL certificate issues, NIP-05 validation problems, etc. Not bashing by the way - things do go wrong. Plus... I’ve faced attacks in the past just for offering free software and services on Nostr. Imagine if I were actually charging for it.
Unfortunate timing for sure. Hopefully, this is just maintenance window or an infrastructure issue rather than a targeted attack.
-

@ ee9d979e:3fadff64
2025-03-23 10:26:13
Late to the party, but Syncthing works brilliantly with Obsidian:
https://syncthing.net/
https://github.com/Catfriend1/syncthing-android
-

@ ee9d979e:3fadff64
2025-03-22 23:42:53
Those who know, know. GN folks 🌙💤
https://youtu.be/M-X0Yx28Me0
-

@ ee9d979e:3fadff64
2025-03-22 18:26:04
Next week on Nostr: Hear me out… Huffman coding! In cursive… starting in the 1st grade! Zeroes and ones are all you need. 🤣
-

@ ee9d979e:3fadff64
2025-03-22 18:17:21
The client code is basically only issuing GET requests (clients should be doing a better job of conforming to HTTP standards for CORS, caching, etc., but this is another conversation). I haven't checked if Khatru answers HEAD requests at the moment. I know that I've added support for OPTIONS due to CORS preflight requests. I'll double-check it in case Cloudflare is trying to do some magic in the background, despite the fact that I'm not seeing related HEAD requests in my Nginx logs.
-

@ ee9d979e:3fadff64
2025-03-22 12:38:57
Thank you. Yes, I'm struggling to optimise things with Cloudflare. Some Nostr clients are fetching the same endpoints over and over again (think NIP-05 and Blossom endpoints). When I look at the client code it's usually pretty standard JavaScript fetch request with cache: "default". This should all be hitting the cache, so I really don't understand why I'm getting so many requests.
-

@ ee9d979e:3fadff64
2025-03-22 12:00:07
GM folks. Quick question for folks who understand HTTP caching on reverse proxies like Squid or Cloudflare. If I have a GET REST endpoint responding with 200 OK and the following headers:
Cache-Control: public, max-age=3600
ETag: "123-a"
The proxy should cache and serve the response without hitting the underlying server more than once for the first hour, then send a request with If-Match: "123-a" when the cache goes stale, right? Is there any reason why it wouldn’t?
#gm #asknostr #devstr #http #caching #etag #rest #tech
-

@ ee9d979e:3fadff64
2025-03-21 15:31:00
Madeira is awesome. Great people, great food, great weather, not getting anywhere as expensive as Lisboa or Porto. A great choice for sure 🇵🇹
-

@ ee9d979e:3fadff64
2025-03-21 12:26:47
https://www.theguardian.com/us-news/2025/mar/19/canadian-detained-us-immigration-jasmine-mooney
I know that this is not a message that a lot of people here on Nostr want to hear, but white Westerners, including a lot of my Canadian, European, Aussie, and Kiwi friends, really have to understand and outgrow the "business as usual / concentration camps are just for the 'other' foreigners" mindset. Your idea of self-worth, white European heritage, an impression of shared values or faith (even NIMBY or hardline conservative values) aren't really going to protect you from underpaid government officers under pressure to rank up their arrest numbers or be fired. There's nothing libertarian about a falling empire heading the authoritarian way, dialing up the violence and dialing down common sense. Americans themselves may not be able to escape this. But you do. Just... Think twice before boarding that flight for the next cool cool US-based conference, think a bit more carefully about where you are heading on vacations, and, really, really think if you want to work in the US for any amount of money (even if you are Canadian with a supposedly easy way into the country).