logo

drewdevault.com

[mirror] blog and personal website of Drew DeVault git clone https://hacktivis.me/git/mirror/drewdevault.com.git
commit: 7a0cacd0cca8073179808acc481ba2e9b84dd2e4
parent c5569346191b6427d7e5099896104b4d8b54d6e4
Author: Drew DeVault <sir@cmpwn.com>
Date:   Tue, 15 Dec 2020 09:43:20 -0500

Status update

Diffstat:

Acontent/blog/Status-update-December-2020.gmi17+++++++++++++++++
Acontent/blog/Status-update-December-2020.md51+++++++++++++++++++++++++++++++++++++++++++++++++++
2 files changed, 68 insertions(+), 0 deletions(-)

diff --git a/content/blog/Status-update-December-2020.gmi b/content/blog/Status-update-December-2020.gmi @@ -0,0 +1,17 @@ +Happy holidays! I hope everyone’s having a great time staying at home and not spending any time with your families. It’s time for another summary of the month’s advances in FOSS development. Let’s get to it! + +One of my main focuses has been on sourcehut’s API 2.0 planning. This month, the meta.sr.ht and git.sr.ht GraphQL APIs have shipped feature parity with the REST APIs, and the RFC 6749 compatible OAuth 2.0 implementation has shipped. I’ve broken ground on the todo.sr.ht GraphQL API — it’ll be next. Check out the GraphQL docs on man.sr.ht if you want to kick the tires. + +=> https://man.sr.ht/graphql.md GraphQL docs on man.sr.ht + +I also wrote a little tool this month called mkproof, after brainstorming some ways to allow sourcehut signups over Tor without enabling abuse. The idea is that you can generate a challenge (mkchallenge), give it to a user who generates a proof for that challenge (mkproof), and then verify their proof is correct. Generating the proof is computationally expensive and resistant to highly parallel attacks (e.g. GPUs), and takes tens of minutes of work — making it unpractical for spammers to register accounts in bulk, while still allowing Tor users to register with their anonymity intact. + +=> https://git.sr.ht/~sircmpwn/mkproof mkproof on sourcehut + +On the Gemini front, patches from Mark Dain, William Casarin, and Ewal Sawady have improved gmnisrv in several respects — mainly bugfixes — and gmnlm has grown the “<n>|” command, which pipes the Nth link into a shell command. Thanks are due to Alexey Yerin as well, who sent a little bugfix with redirect handling. + +The second draft of the BARE specification was submitted to the IETF this month. Will revisit it again in several weeks. John Mulligan has also sent several patches improving go-bare — thanks! + +scdoc 1.11.0 was released this month, with only minor bug fixes. + +That’s all for now! I’ll see you in a month. diff --git a/content/blog/Status-update-December-2020.md b/content/blog/Status-update-December-2020.md @@ -0,0 +1,51 @@ +--- +title: Status update, December 2020 +date: 2020-12-15 +outputs: [html, gemtext] +--- + +Happy holidays! I hope everyone's having a great time staying at home and not +spending any time with your families. It's time for another summary of the +month's advances in FOSS development. Let's get to it! + +One of my main focuses has been on sourcehut's API 2.0 planning. This month, the +meta.sr.ht and git.sr.ht GraphQL APIs have shipped feature parity with the REST +APIs, and the RFC 6749 compatible OAuth 2.0 implementation has shipped. I've +broken ground on the todo.sr.ht GraphQL API &mdash; it'll be next. Check out the +[GraphQL docs on man.sr.ht](https://man.sr.ht/graphql.md) if you want to kick +the tires. + +I also wrote a little tool this month called +[mkproof](https://git.sr.ht/~sircmpwn/mkproof), after brainstorming some ways to +allow sourcehut signups over Tor without enabling abuse. The idea is that you +can generate a challenge (mkchallenge), give it to a user who generates a proof +for that challenge (mkproof), and then verify their proof is correct. Generating +the proof is computationally expensive and resistant to highly parallel attacks +(e.g. GPUs), and takes tens of minutes of work &mdash; making it unpractical for +spammers to register accounts in bulk, while still allowing Tor users to +register with their anonymity intact. + +On the Gemini front, patches from Mark Dain, William Casarin, and Ewal Sawady +have improved [gmnisrv](https://git.sr.ht/~sircmpwn/gmnisrv) in several respects +&mdash; mainly bugfixes &mdash; and [gmnlm](https://git.sr.ht/~sircmpwn/gmni) +has grown the "&lt;n&gt;|" command, which pipes the Nth link into a shell +command. Thanks are due to Alexey Yerin as well, who sent a little bugfix with +redirect handling. + +The [second draft of the BARE +specification](https://datatracker.ietf.org/doc/draft-devault-bare/) was +submitted to the IETF this month. Will revisit it again in several weeks. John +Mulligan has also sent several patches improving go-bare &mdash; thanks! + +scdoc 1.11.0 was released this month, with only minor bug fixes. + +That's all for now! I'll see you in a month. + +<details> + <summary>...</summary> + <p> + The secret project has slowed down a bit as we've started on a new phase of + development: writing the specification, and new compiler which implements it + from the ground up. Progress on this is good, but won't introduce anything + groundbreaking for a while. Stay tuned. +</details>