World Plate Adventures
World Plate Adventures is a lifetime exploration of international food. Each month, we will choose a country and spend a few days researching the food. Then, each week of the month I'll cook a new dish from that country.
The first cuisine I'm exploring is France, with la Mère Brazier's blanquette de veau.
Mitigating the iconv Vulnerability for PHP (CVE-2024-2961)
Recently, CVE-2024-2961 was released which identifies a buffer overflow vulnerability in GNU libc.
I had a hard time finding information on how to mitigate it at the OS-level. I collected my notes, in case they might be useful for someone else.
Read about it here.
MarkMark: simple, Markdown-based, federated bookmarks
MarkMark is a free (as in freedom) bookmark format designed to be machine-readable and easy to use.
The goal of MarkMark is to standardize "link sharing" pages to build connections between small websites on the Internet.
Down the Rabbit Hole of Linux Terminal Emulators
I've had a pretty stable shell setup consisting of Guake + Fish shell for ~5 years now.
Recently, I decided I wanted the ability to copy-paste output w/ screen
and
the ramifications of this forced me to re-examine my entire setup.
Read about my foibles here.
Adventures in AI-assisted proof generation
Begrudgingly, I recently spent a bit of time playing around with ChatGPT and its prowess with the Coq proof-assistant language.
I chronicle my adventures, and some of my broader thoughts, in this blog post.
Retro/70s Redesign
On a whim, I decided to redesign this site to have a bit more character. Initially inspired by this cool album art, I tried to incorporate retro/70s design elements.
A fun element of this design is how parametric it is. The color palette can be completely swapped out for a complementary one. I built several different palettes and randomly select one for each visitor.
I'll do a more in-depth write-up of the process soon. For now, though, you can play with the themes on the technical info page.
Generalized Commutative Data Types
Recently, I've been working on a distributed, parallel language called Swarm. One challenge with such a language is ensuring consistent data operations when they are performed in parallel.
A GCDT is one approach to simplify this process. Such types define commutative and pseudo-commutative operations which allow order-agnostic consistency when accumulating parallel computations.
I describe such a system and explore its limitations in this blog post.
Importing an OpenVPN Profile on Fedora 36
I recently upgraded to Fedora 36 and discovered
that my VPN settings were completely broken and
I couldn't re-import it from the .ovpn
file.
What ensued was an annoyingly difficult series of workarounds required to avoid bugs in OpenVPN, NetworkManager, and NetworkManager-gui.
I've detailed how to do it here.
Rancher K3s: Kubernetes on Proxmox Containers
I've been re-learning Docker and containerization and I decided to take the plunge and start converting my self-hosted environment over to Kubernetes.
This post details how I set up a Kubernetes cluster on LXD containers on Proxmox using Rancher K3s and NGINX ingress controller.
Read it here.
The Ultimate Guide to Cleaning a Dell XPS 15 Keyboard
Recently, I've been having a really annoying issue with my laptop keyboard where some keys require multiple presses or lots of force when pressed to register a key stroke.
Since I like to try to repair my own stuff, at least as a first-line, I decided to do a quick write-up on how to remove and replace the key caps without breaking them to clean out the key wells.
Read more here.
Runtime Data Validation from TypeScript Interfaces
How I (ab)used the TypeScript compiler to enable transparent runtime data validation using Zod and TypeScript interfaces.
Read more here.
multicrypt
: a library for multi-key encryption
Recently, I've been working on adding secure vaults for user secrets to my auth server project, CoreID.
To implement shared-vaults, I wrote an implementation of multi-key encryption using enveloped keys. It seemed fairly useful on its own, so I pulled it out into a standalone TypeScript package called Multicrypt.
Multicrypt provides a simple interface for multi-key two-way encryption for arbitrary keys and values, and makes it easy to add & remove keys from the shared values.
Learn more here.
Photo Challenge 01: Self-Portrait
One non-technical interest of mine is photography. I'm starting a new 30-prompt photo challenge, which I'll be posting on my blog.
The first challenge is a self-portrait. Mine tries to capture my technical side, and allowed me to tinker with depth of field and reflections.
Follow along here.
g.bash
: A simple Bash framework
Between work and my personal lab, I write a lot of command-line tools to help automate various tasks. But, as anyone who's worked with Bash before knows, adding multi-command support, flags, and other handling can be difficult to get off the ground.
However, including a multi-file Bash framework is kinda... gross. One of the benefits of a shell script is that it can usually be distributed as a single-file affair. I was also unpleased with the current state of Bash argument-parsing.
Enter: g.bash
. This is my take on a single-file framework and standard library for Bash that addresses these issues. I might write a more extensive blog in the future, but for now the broad strokes are:
This side-project is still very much a work-in-progress, but if you're curious you can check it out here.
Monochrome Redesign
I decided that it was time for a visual refresh of this site. I liked the bright & flashy design I've had for about a year now, but decided on a return to relative simplicity.
The new design has the added benefit of being very light and semantic, and relies on no external stylesheets or frameworks, unlike the old. This has the added benefit of making the page more accesible and improving load times.
Technical Info on *.garrettmills.dev Sites
For the past few weeks, I've been reworking my analytics collection system with an eye to privacy.
I've tried to make my system collect only the data I wish to use in aggregate, and give users the ability to permanently opt-out of page-view collection.
For details and interesting nitty-gritty about this site, I've added a new technical info page that talks about how the analytics system works, the data it stores, and how you can opt-out.
Opting Websites Out of FLoC
Google announced recently that the beta version of their Chrome browser will include a new tracking system called Federated Learning of Cohorts (FLoC). This system is their replacement for 3rd-party tracking cookies. You can learn more here.
FLoC perpetuates the track-by-default system in Chrome that violates users' privacy. Worse, because it's baked into the browser itself, this tracking can occur on all sites by default.
I remain strongly opposed to these privacy-invasive moves. As a result, starting with version 0.59.0, all Flitter-powered sites (including this one) will opt-out of FLoC by default.
As a user, if this change makes you uncomfortable, consider using a browser that respects user privacy like Firefox or Brave.
Rethinking Dependency Injection in TypeScript
For the past few years, I've been experimenting with various paradigms for DI in JavaScript and TypeScript.
In the latest in my series of mad ramblings on dependency injection, I've written up my thoughts on the various paradigms I've tried.
Read more here.New Features in Noded
Noded is a project I started at HackKU last year. It's a rich-data notes app designed to help people create information trees. I've been slowly improving it since.
You can try Noded out here.
An Open Letter to Senator-elect Roger Marshall
Roger Marshall, Kansas Senator-elect, has expressed his intention to vote not to certify the result of the 2020 presidential election.
I feel very strongly that this is a dangerous and irresponsible move that goes against the core tenets of American democracy.
Read the letter here.
This letter is released in the public domain. Please, adapt it, share it with others, and most importantly, send it to your representatives. Call them, e-mail them, snail mail them to tell them to support free and fair elections.
Full-text search PDFs from Linux CLI
For an open-note exam, I wanted a quick way to full-text search PDFs from the command-line.
I wrote a 2-line script to help with that, using just find, grep, and pdftotext (common to most distros).
Get it here.
MiniQ: A bare-bones, CRON-driven job queue.
I wanted a simple way to queue jobs to be run in the background without having to run a separate daemon.
MiniQ is what I came up with. With just 3 files, MiniQ provides the ability to log jobs and the CRON script will run periodically and execute the queued jobs in the background.
More info here.
Converting an Ionic/Angular Site into a Progressive Web App
For the last year or so, I've been working on converting an Ionic app to a progressive web app with offline support called Noded. I decided to write up my findings on how to do this with Angular service-worker.
Read more about it here.
My Technical Notes Site
I'm trying to write down or save all the technical tricks, notes, and fixes I find. That way, it's easier for me to find them again in the future, and maybe they can be of use to others.
You can check them out here.
How to Code From Home Like a Boss
With the current need to work from home, I've put together a list of tricks and tools I use to do my work as a software developer remotely, and discuss the challenges. Here's what I use.
Feed Page, RSS, & Atom - Minor Website Updates
I recently made some tweaks to my website. I added a dedicated page as a historical archive for these updates.
I also added the ability to subscribe to this feed using RSS, Atom, and JSON thanks to a handy NPM package.
VuES6 - ES6 Vue.js Components, in Plain JavaScript
I recently released a small utility library for defining Vue components as proper ES6 classes, but in vanilla JavaScript. I like to use this in small projects where I don't want to have to set up vue-cli and compile templates. More info here.
Connect-4 Webtoy
I've built a simple Connect-4 webtoy as a project for EECS 368 at the University of Kansas. You can play with it here.
Code Freedom with Gitea & Drone - Part I
In my never-ending quest to self-host all the things, I've deployed a combination of Gitea and Drone CI for a feature-for-feature, self-hosted alternative to GitHub. Here's how.
Noded - Free-Form Notes & Databases
I recently attended the annual University of Kansas hackathon, where me and a couple friends built Noded.
Noded is a tree-based note taking app based on reusable page elements. It provides support for basic notes, uploaded files, a built-in code editor, customizable databases, static website exports, and sub-tree sharing.
Check it out here.
flitter-di@0.1
Flitter-DI is the second-generation dependency-injector used by the Flitter framework. It was pulled from the libflitter project in the hope that it can remain independent from the rest of Flitter and can be used in other projects. More info here.
Dependency Injection in Less Than 100 Lines of Pure JavaScript
DI is a powerful pattern for segmenting code to keep it efficient and easy to reuse. In this article, we're going to build a basic DI in <100 lines of pure ES6. Read about it here.
A New Platform - My Relentless Pursuit of Privacy
I've finally moved the home of my blog from Medium.com over to a self-hosted Hexo blog. Why? Read more here.
Computing in the Kubernetes Framework
Recently I had the pleasure of presenting at the University of Kansas' Center for Research Methods and Data Analysis Weekly Colloquium. You can find resources from my talk on using k8s for scientific computing here.