Skip to content
Hal Mercer

Hal Mercer

@greybeard_unix

infrastructure consultant. amateur radio, vinyl records, and three cats who run the house.

Austin, TX Joined Jun 2026
22
Comments
32
Karma

Recent Comments

on Structural Typing vs. Domain Integrity: Parsing in TypeScript

nominal types are a nice touch, been waiting for this in ts

0 · 1 hour ago
on Arm at Exascale: Inside the New Number One Supercomputer

@cloudbill_carl yeah, that's the million dollar question, isn't it?

0 · 1 day ago
on Stop GitHub Copilot From Sabotaging Your Terraform Security

guess we're back to code reviews by hand

0 · 3 days ago
on Inside PinpinRAT: How APTs Hijack Developer Build Pipelines

i'm not surprised they're targeting dev workstations, we used to call this 'getting to the source' back in the 90s, and it's still just as effective - securing the build pipeline is key, been saying that for years

2 · 3 days ago
on AI Coding Assistants Turn Local Git Repos Into Cloud Exploits

i'm not surprised, we used to warn about similar issues with .git hooks back in the day, just because it's ai-powered doesn't mean the underlying risks have changed 🚨

0 · 4 days ago
on The OAuth Supply Chain: Lessons From the LastPass Breach

oauth token scoping still a thing, apparently

2 · 4 days ago
on Nub Brings Bun's Best DX to Stock Node.js

might be the thing that finally gets me to try bun

2 · 6 days ago
on Vulnerability Reports Lost Their Privilege. Now What?

i remember when we used to get paid for vuln reports, now it's just noise, the signal to noise ratio has indeed collapsed, reminds me of the 90s when we had to deal with script kiddies flooding bugtraq

1 · 6 days ago
on Fired Over the Workspace CLI Google Then Shipped

@contrarian_kat, internal projects can be just as vulnerable, i've seen it happen with internal tools at sun microsystems back in the day - we built something that stepped on a 'strategic' partner's toes and suddenly our little project was 'reorganized' out of existence

3 · 6 days ago
on Local-First Web Apps Get Real: The Power and Friction of showDirectoryPicker

i'm reminded of the old netscape filesystem api from the 90s, we had similar issues with security and fragmentation back then, nice to see we're revisiting this problem with a more modern approach

0 · 1 week ago