DotNetOpenAuth

I’ve observed many .NET open-source projects whose authors either don’t know about strong name signing or are actively opposed to it. In this post, I’ll explain what strong name signing is, when folks should use it, and refute several common points of misinformation out there that tends to dissuade people from strong name signing. What […]

DeepSeek is being hailed as the latest breakthrough in large language models (LLMs), with many calling it "open source." But is it truly open source, and can we trust it? This article dives into the nuances of what "open source" means for LLMs ... [More] , arguing that publicly available weights don’t equate to true transparency. Exploring risks like code injection and indirect poisoning, it questions whether we can ever fully trust LLMs—especially those from untrusted sources—to handle critical tasks like writing code or making decisions that impact our lives and security. What does the future hold for verifying the trustworthiness of these powerful models? [Less]

I’ve been honored to work on the MessagePack-CSharp library since at least 2019. I’ve learned a lot from its founder in the process. We shared a lot of values, and his library is hugely successful, with over 150 million downloads from nuget.org. But the library has a lot of history in it now, and runtimes […]

I was sold a lie. Dvorak isn’t superior. Sure, it relies on the same reasoning that keeps the U.S. on the old British measuring system instead of switching to the International System of Units (aka ‘metric’), but that’s a dang good reason. Even if it is unsatisfying. I was a fast qwerty typist. 100 WPM […]

I had a computer with a 1TB NVMe storage device. It wasn’t enough, so I bought a 4TB NVMe device on Amazon Prime Day. I already had an NVMe enclosure and a USB C to USB A converter so I could plug it into my desktop. My goal was to replace the 1TB device with […]

As you work in your local clone of a git repo, you tend to create lots of topic branches. These will often get merged online via pull requests, leaving the topic branches in your local clone to languish forever. This clutters up lists of your local branches everywhere, yet deleting them can be tedious and […]

Azure Pipelines does what it can to prevent accidental logging of secrets. As long as you tell it a particular value is a secret (through marking a variable as a secret, or using a logging command), any time the secret may appear in the logs Azure Pipelines will automatically redact it. But when you actually […]

Azure Pipelines and GitHub Actions offer generous compute time for OSS repos PR and CI builds. But when your repo is private, the economics change dramatically. For Azure Pipelines as of the time of this writing, the prices are $40 USD/month per parallel job, with the first 1800 minutes free. GitHub Actions prices are far […]

In C# programming, magic strings often get a bad reputation. They are seen as a code smell, something to be avoided. The advent of nameof(x) in C# gave us a great alternative to magic strings in many cases, perhaps most famously for argument exceptions, like this: This is a great use for nameof because if […]

Most folks will just buy and hold a cryptocurrency (often referred to as HODLing), waiting for someone else to drive the price up so they can make money. When the price doesn’t go up, they whine and moan that the coin’s creators are crooked cheats. I find it ironic that so many of these same […]