Have I Been Pwned is a service that lets you check if your accounts have been included in data breaches. You can enter your email address to subscribe to notifications if (or when) your personal details are compromised.

HIBP also offers an API that lets site operators check their users’ passwords haven’t been previously compromised. It does this using a clever k-Anonymity model which allows this check to happen without revealing the user’s chosen password to HIBP or any other third party. You can read up on the precise method in the HIBP API documentation.

My pull request to add Have I Been Pwned support to RubyGems.org was recently (well, a month ago) merged and deployed to production.

→ Read more…

There’s been some interesting research into the effects of increased levels of CO₂ on human cognition. Namely that elevated levels of carbon dioxide essentially make us dumber. Studies have found that concentrations above 1000ppm can have a significant negative impact.

What’s more, CO₂ tends to build up in conference rooms as a meeting goes on, meaning CO₂ levels will be at their highest near the end of the meeting when decisions are often being made. Poor air quality might actually be making us do stupid things (archive).

To combat this at work, we’ve installed air quality sensors in the meeting rooms at our office. These are relatively affordable, off-the-shelf Netatmo air quality monitors. They monitor temperature, humidity, CO₂, and noise levels.

→ Read more…

Recently I started looking into the current state of package signing on RubyGems and considering what it might look like in the future.

To this end, I also ended up looking into how package signing is handled by Rust, Python, and Node.js.

The tl;dr is that nobody does package signing and that it’s a really hard problem to solve.

→ Read more…

I’m excited to announce that I’ll be speaking at two more conferences this year: Brighton Ruby and Ruby Conf Taiwan.

I’ll be giving the same ‘Ruby Like It’s 1995’ talk at both conferences that I gave at RubyFuza earlier this year with some (hopefully) exciting new enhancements.

Brighton Ruby 2019

Brighton Ruby has been organised since 2014 by Andy Croll.

I was an attendee at the 2016 conference and really enjoyed it so I'm super excited to have a chance to speak there this year.

More info and tickets: brightonruby.com

Ruby Conf Taiwan 2019

This will be the eighth(!) time that Ruby Conf Taiwan is organised.

The conference will be headlined by Matz which definitely makes it extra thrilling to be giving a talk about the early days of Ruby.

More info and tickets: 2019.rubyconf.tw

These slides are from a short talk I gave at work for my coworkers and especially for our junior developers.

Overall, the slides are probably more of a conversation starter than they are useful in themselves.

How do you choose between using an existing library and coding it yourself? How do you evaluate whether someone else's code is good or not?

→ Read more…

This is a blog post version of the Rails Security talk that I gave at Rubyfuza 2017 in Cape Town earlier this year.

I'll also be giving this talk (or an updated version of it) for Ruby Dev Summit, a free online conference, in October this year.

→ Read more…

I’ve written about hosting Middleman apps a couple of times before. This article supersedes the advice given in those earlier blog posts.

This new approach uses Heroku’s official Ruby buildpack and uses its asset precompile behaviour to build the Middleman site.

The advantage of this approach is that the site gets built on deploy and doesn’t need to be rebuilt every time that the app reboots. This should result in faster and more reliable app boots.

→ Read more…

Piranhas now has full support for Amazon.it in addition to Book Depository, Wordery, and the other five Amazon stores.

I’ve also checked and updated the shipping rates data for all the supported Amazon stores, so depending on your location you may see more accurate estimates of the shipping costs now.

Ilves IPA v2 was the second iteration of the first beer I ever brewed. As I overwrote my original Ilves IPA recipe when I redesigned it, I’m not entirely certain what I changed for this second run at it, but I’m pretty sure it mostly consisted of changes to the hopping additions and schedule.

Now, almost two years later, it doesn’t really taste all that much like an IPA. Who would have guessed that storing hop heavy pale ales for years wouldn’t be a great idea?

It has a pleasant but very mild hop aroma on the nose. The flavour is still mildly hoppy, but dominated by the malt character. I think there might be a slight vague, unidentifiable off-flavour in there too, but that might just be a result of how long it’s been stored in somewhat nonoptimal conditions.

What to take away from this and my other retrospectives of pale ales? For one thing, I’ve learned firsthand that there isn’t much point in hoarding bottles of pale ales for years…

Brewed and bottled in March-April 2014, Little Rascal is an ESB based on one of my brother’s recipes.

I can’t remember what this beer was like in 2014 as I don’t have any real recollection or tasting notes about it, but today the best you can say is that it’s a light, drinkable beer.

Visually it’s surprisingly cloudy, especially considering how long it’s spent in the bottle (though not under ideal circumstances).

There isn’t any particularly wrong with it. No odd off flavours or major flaws, it’s just a fairly inoffensive beer. Not that it really matters since I’m drinking the last bottle in existence as I write this…