Share this page!

Anil Dash Profile picture
Twitter logo
10 Feb, 4 tweets, 1 min read
This is… terrifying.
Attempting a (necessarily imperfect) simple explanation: most coders reuse code from others in the course of doing their work, either public code on the web or private code from their coworkers/colleagues…
A lot of times, you can figure out the names of the private code libraries being shared within big organizations. On one of the most popular tools, if you made a public library with the same name & said it was a newer version, those coders would unknowingly get your code instead.
Now, running code when you don’t know its provenance is always dangerous/insecure. And not all systems for sharing libraries of code work this way. But this is the most popular, and the surprising behavior is one vector of risk many people wouldn’t anticipate.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Anil Dash

Anil Dash Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @anildash

Anil Dash Profile picture
5 Feb
On this day in 2007, Prince won Super Bowl XLI with a soaring halftime performance that climaxed with the skies opening up to honor his guitar solo. It is not just the best-regarded halftime show ever, but was to that point the most-viewed musical performance in American history. Prince defeats the Super Bowl
Prince’s halftime show wasn’t just a fun diversion from a football game; it was a deeply personal statement on race, agency & artistry from an artist determined to cement his long-term legacy. And he did it on his own terms, as always.
Opening with the stomp-stomp-clap of Queen’s “We Will Rock You”, Prince went for crowd participation right from the start, with a nod to one of the biggest stadium anthems of all time — and notably, is one of the songs in the set that he never performed any time before or after.
Read 26 tweets
Anil Dash Profile picture
18 Dec 20
This is the fun track: today’s my turn to share a #PrinceTwitterThread, one of the most fun traditions amongst Prince fans. Today is a celebration of Power Fantastic, a fan favorite, and a standout for this year’s deluxe re-release of his 1987 masterwork, Sign O’ The Times.
On its own, Power Fantastic as a song teaches us about confronting fears, about intimacy, about seeing the creative process. And maybe about power. In the context of Prince’s entire career, though, it opens a window on so much more.
Take a moment and listen to Prince's warm-hearted band directions, the extraordinary and piercing vocals, the deeply personal feeling of this performance — it almost feels like we’re eavesdropping on a personal moment. You've never heard Prince like this.
Read 28 tweets
Anil Dash Profile picture
9 Dec 20
A couple years ago, we launched @Glitch based on the idea that radically lowering barriers for coders to turn ideas into live apps can unlock a lot of creativity. (And magic!) It *worked.* Today, coding in your browser is now mainstream, & millions of apps have built on Glitch…
So, it’s time to take the next big step: Making it easy to instantly build and share a real app with your colleagues, coworkers or collaborators. Not just coding an app together, *using* an app together. blog.glitch.com/post/the-easie…
What stands in the way? Well, deploys + version control + provisioning used to be hard, but Glitch made all those automatic. But one thing's still missing: privately sharing apps. Today, we’ve made sharing an app as easy as sharing a doc on Google Docs — *publicly or privately*.
Read 8 tweets
Anil Dash Profile picture
9 Dec 20
It's really extraordinary to see the ways educators are using @Glitch to help students and enable a new generation of brilliant creators to easily get their ideas onto the web. Here's a thread:
At @RISD, check out the final show that the Live Performance for Online Audiences class is doing on Sunday:
At @CarnegieMellon, brilliant and expressive interactive experiments with motion sensing on new devices.
Read 6 tweets
Anil Dash Profile picture
19 Oct 20
Three of the most powerful rhetorical framings that were perfectly articulated by tweets:

* dril candle budget tweet
* my t-shirt answers that question
* Ah! Well. Nevertheless,
1.
2.
Read 4 tweets
Anil Dash Profile picture
14 Oct 20
In a year that’s been absolute shit, I am grateful to have an extraordinarily great re-release of my favorite album ever. I don’t think I’d imagined a double album like Sign O’ The Times could be augmented with another *three albums* worth of equally wonderful material, but!
Earlier, a thread on the release of the set:
This was me excitedly tweeting the moment we found out the set was coming.
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @anildash has new unrolls!

Check out other threads from @anildash!

Read all threads by @anildash