Voters aren’t stupid. The reason so many people like Bernie is because he’s genuine and walks the walk. Supporting a candidate that doesn’t actually match his values would significantly weaken that.

I absolutely agree. An even better structure wouldn’t have a raw password field on the user object at all.

In addition to the excellent points made by steventhedev and koper:

user.password = await hashPassword(user.password);

Just this one line of code alone is wrong.

1. It’s unclear, but quite likely that the type has changed here. Even in a duck typed language this is hard to manage and often leads to bugs.
2. Even without a type change, you shouldn’t reuse an object member like this. Dramatically better to have password and hashed_password so that they never get mixed up. If you don’t want the raw password available after this point, zero it out or delete it.
3. All of these style considerations apply 4x as strongly when it’s a piece of code that’s important to the security of your service, which obviously hashing passwords is.

If you want yourself a pillow you can drink, try a hot water bottle

You know what it means if you were targeted for your politics?

That you’re bad at politics.

Fuck the law, just run. This is insane.

There is absolutely a consistent worldview that believes Trump is awful but that killing him is wrong. All you need is a Kantian or similar set of morals that doesn’t allow for murder as a preventative measure.

I don’t trust them first off, but even trusting them to not voluntarily disclose it doesn’t mean they won’t have a security breach and disclose it involuntarily. Also, the database has to be created and queried somehow; some employees and govt workers will be able to see what queries are made. Even trusting the business and the govt and the security of both, I don’t trust those random people having access to that info.

What evidence do you have to give the website that you are person X that they’re running the database query against? If that’s an ID there’s going to be some available online, or a kid can just sneak it from the parent. Everything I’ve heard proposed for the identification strategy is either grossly invasive or quite easy to step over.

I don’t believe that Canada will actually enforce this across all websites. If they do it on only the large/main ones, it makes it harder for kids to access the relatively safe and legal porn hosted on sites making effort to follow the law, and pushes them towards sites that aren’t making such an effort and therefore probably have more objectionable content.

More

Actually finished my first run of Baldurs gate after leaving it in act 3 over the holidays. Picked up Disco Elysium to give a bit of a break while I decide whether to do a second run or not

Noita, kinda. I’ve won a few runs and unlocked most of the secrets, but some of the late game quests just get absurd to the point of taking dozens of hours and even with a perfect god-mode setup there’s still ways to get instakilled.

I love a game with depth and secrets but noita definitely reached the point of “y’know, I’m not having fun anymore. This is just work”