hearsay

you have my IP address and my Accept-Language header, that should be enough for a clever person

Ahh, right! I could've used IP geolocation to get all the info I needed, without that intrusive location request. It would've been a much better experience and a lot simpler to implement for me as well. Thanks for pointing this out - definitely a learning moment for me! :-)

Most of the IP to coarse location databases cost money and/or require backend work to setup. Totally reasonable to skip that money/effort for a fun project like this!

"Because of how PostgreSQL string escaping routines handle invalid UTF-8 characters, in combination with how invalid byte sequences within the invalid UTF-8 characters are processed by psql, an attacker can leverage CVE-2025-1094 to generate a SQL injection."

UTF-8 and its consequences have been a disaster for information security

But also this:

"Running meta-commands can extend psql's functionality, and it's through these that an attacker can feasibly achieve ACE by using the exclamation mark meta-command to execute a shell command on the operating system. Attackers can also use the vulnerability to execute SQL statements of their choosing."

I don't know PostgreSQL very well, but being able to execute shell commands by default seems like an obvious footgun.

I use shell commands alright. I don't let internet randos use shell commands on my system tho.

I've been keeping a casual eye on sql injection stuff, and unicode escaping seems to be a source of problems.

rather, homosexuality as a secondary non-lifestyle, non-professed interest, often in one-off scenarios, is WAY more common than culture would like to admit, and the intelligence agencies are in the perfect position to precisely observe that fact.

abolish knowledge rentiers

by the arbitrary scenario's description, they are the same strength

Yes, but interviewers can never know the candidates' real underlying strength, only their perception of their strength.

This needs to be top level since a lot of people aren't even looking at where it happened.

The neighborhood it occurred in is 95% black. This isn't racial profiling.

Is the existence of such a neighborhood awful and downstream of prior generations of racial issues? Sure is.

Don't invent things out of thin air to match your priors, that doesn't help your cause at all.

This is an age where you can write your own LLM extension.

There's no moat, all the clever prompting tricks Cursor et al. are just that - there is no secret sauce besides the model at the other end.

Complexity isn't an issue either, have the model write the interface to itself.

WASD is more of a mouse+keyboard thing since in a standard desk layout you can't extend your arms nicely

ZXCV(ASDF)+arrows I would say is more standard for non-mouse games with keyboard bindings, cave story and touhou both go this route.

It's always been interesting as a left handed person using mouse on the left side then pushing the keyboard over to use wasd.

I wonder, hand't any left-handed nerd tried to make a left-handed keyboard? I'd definitely try that, if for some magical reason my handedness was changed.

I searched and found some left-handed keyboards, but they are missing important things. Like they use qwerty-layout instead of ][poiu. The worse, they keep Enter on the right side and CAPS on the left. So you cannot remap Control key onto CAPS and use it with your pinky without twisting your right hand uncomfortably, when your left hand is on the mouse.