Eliminating Memory Safety Vulnerabilities at the Source (10 minute read)
Google advocates for Safe Coding, a secure-by-design approach that prioritizes using memory-safe languages, to eliminate memory safety vulnerabilities at scale. By transitioning to memory-safe languages for new code, Google observed a significant decline in memory safety vulnerabilities in Android, dropping from 76% to 24% over six years. This counterintuitive result is explained by the exponential decay of vulnerabilities over time, meaning older code becomes inherently safer.
|
How I Built My Blog (30 minute read)
This developer rebuilt their blog using Next.js's App Router, MDX for content management, Linaria for styling, Shiki for code snippets, and Sandpack for interactive code playgrounds. They share their experience, challenges, and workarounds for each technology along with demonstrative code examples.
|
Zero-latency SQLite storage in every Durable Object (24 minute read)
Cloudflare's Durable Objects offer SQLite storage which allows zero-latency database access within application code. This eliminates network communication overhead by embedding the database directly within the Durable Object. Its storage service uses local disk caching and object storage for high availability.
|
|
4 Software Design Principles I Learned the Hard Way (5 minute read)
This developer built a large-scale service and found certain principles reappearing throughout the implementation. It's useful to prioritize a single source of truth and minimize mutable state when building something from scratch. Developers should also make sure not to abstract things prematurely and not to overuse mocks when writing tests for their code.
|
|
PostgreSQL 17 Released (6 minute read)
PostgreSQL 17 has huge performance improvements, including optimized memory management, faster I/O operations, and better query execution. The release also expands the developer experience with features like the SQL/JSON JSON_TABLE command, improved logical replication for high availability, and better security and operations management. It has a new collation provider for immutable sorting and streamlined upgrades for logical replication.
|
Haystack Editor (GitHub Repo)
Haystack Editor is a canvas UI for code understanding, editing, and lightweight debugging. It is an IDE built on top of a canvas that allows for easier navigation through a codebase.
|
|
Our Android App is Frozen in Carbonite (9 minute read)
This indie app developer has been struggling to maintain access to Google Drive on its Android app due to Google's ever-changing API policies and security requirements. This has resulted in a frustrating and costly process, forcing the company to pay for an annual audit. The situation has become untenable, so the developer is now focusing on other platforms and a B2B model where it can control its software development and avoid the complexities and costs associated with the Android ecosystem.
|
Few lesser known tricks, quirks, and features of C (25 minute read)
This article goes over lesser-known tricks, quirks, and features of the C programming language that can be confusing even for experienced developers. Examples include obscure syntax variations like digraphs and trigraphs to advanced techniques such as X-macros and compile-time assumption checking using enums. There are also discussions on features such as bit fields, flexible array members, and the infamous comma operator.
|
|
Love TLDR? Tell your friends and get rewards!
|
Share your referral link below with friends to get free TLDR swag!
|
|
Track your referrals here.
|
Want to advertise in TLDR? 📰
|
If your company is interested in reaching an audience of web developers and engineering decision makers, you may want to advertise with us.
If you have any comments or feedback, just respond to this email!
Thanks for reading,
Priyam Mohanty, Jenny Xu & Ceora Ford
|
|
|
|