212
I will send you newest post from subreddit /r/programming
Flow-Run System Design: Building an LLM Orchestration Platform
https://www.reddit.com/r/programming/comments/1nccxwt/flowrun_system_design_building_an_llm/
<!-- SC_OFF -->Flow‑run: building a production‑ready LLM orchestration service I wrote a deep dive into the system design of flow‑run (open‑source). Highlights: • Tasks are atomic units (LLM calls, emails, etc.) and flows connect them as graphs; parallel execution via BFS. • Data model (accounts, providers, models, tasks, flows) → multi‑tenancy + reliable retries. • YAML DSL for providers/models/tasks/flows; /v1 API with client‑generated IDs for dedupe. • Scaling options: horizontal nodes, DB read replicas/clustering; how to choose multiple LLM providers vs multiple accounts. Feedback welcome from folks building orchestration layers or distributed systems: [https://vitaliihonchar.com/insights/flow-run-system-design]() (https://vitaliihonchar.com/insights/flow-run-system-design%5D()) <!-- SC_ON --> submitted by /u/Historical_Wing_9573 (https://www.reddit.com/user/Historical_Wing_9573)
[link] (https://vitaliihonchar.com/insights/flow-run-system-design) [comments] (https://www.reddit.com/r/programming/comments/1nccxwt/flowrun_system_design_building_an_llm/)
Incident Report for Anthropic
https://www.reddit.com/r/programming/comments/1ncb4wu/incident_report_for_anthropic/
submitted by /u/cheerfulboy (https://www.reddit.com/user/cheerfulboy)
[link] (https://status.anthropic.com/incidents/72f99lh1cj2c) [comments] (https://www.reddit.com/r/programming/comments/1ncb4wu/incident_report_for_anthropic/)
Can a tiny server running FastAPI/SQLite survive the hug of death?
https://www.reddit.com/r/programming/comments/1ncan42/can_a_tiny_server_running_fastapisqlite_survive/
<!-- SC_OFF -->I run tiny indie apps on a Linux box. On a good day, I get ~300 visitors. But what if I hit a lot of traffic? Could my box survive the hug of death? So I load tested it: Reads? 100 RPS with no errors. Writes? Fine after enabling WAL. Search? Broke… until I switched to SQLite FTS5. <!-- SC_ON --> submitted by /u/IntelligentHope9866 (https://www.reddit.com/user/IntelligentHope9866)
[link] (https://rafaelviana.com/posts/hug-of-death) [comments] (https://www.reddit.com/r/programming/comments/1ncan42/can_a_tiny_server_running_fastapisqlite_survive/)
Resources, Laziness, and Continuation-Passing Style
https://www.reddit.com/r/programming/comments/1nbvjjk/resources_laziness_and_continuationpassing_style/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://journal.infinitenegativeutility.com/resources-laziness-and-continuation-passing-style) [comments] (https://www.reddit.com/r/programming/comments/1nbvjjk/resources_laziness_and_continuationpassing_style/)
Hitting Peak File IO Performance with Zig
https://www.reddit.com/r/programming/comments/1nbvjga/hitting_peak_file_io_performance_with_zig/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://steelcake.com/blog/nvme-zig/) [comments] (https://www.reddit.com/r/programming/comments/1nbvjga/hitting_peak_file_io_performance_with_zig/)
The Expression Problem and its solutions
https://www.reddit.com/r/programming/comments/1nbvifp/the_expression_problem_and_its_solutions/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://eli.thegreenplace.net/2016/the-expression-problem-and-its-solutions) [comments] (https://www.reddit.com/r/programming/comments/1nbvifp/the_expression_problem_and_its_solutions/)
Forty-Four Esolangs: The Art of Esoteric Code
https://www.reddit.com/r/programming/comments/1nbvhnx/fortyfour_esolangs_the_art_of_esoteric_code/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://spectrum.ieee.org/esoteric-programming-languages-daniel-temkin) [comments] (https://www.reddit.com/r/programming/comments/1nbvhnx/fortyfour_esolangs_the_art_of_esoteric_code/)
Writing Code Is Easy. Reading It Isn't
https://www.reddit.com/r/programming/comments/1nbvfcs/writing_code_is_easy_reading_it_isnt/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://idiallo.com/blog/writing-code-is-easy-reading-is-hard) [comments] (https://www.reddit.com/r/programming/comments/1nbvfcs/writing_code_is_easy_reading_it_isnt/)
Hashed sorting is typically faster than hash tables
https://www.reddit.com/r/programming/comments/1nbvchv/hashed_sorting_is_typically_faster_than_hash/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://reiner.org/hashed-sorting) [comments] (https://www.reddit.com/r/programming/comments/1nbvchv/hashed_sorting_is_typically_faster_than_hash/)
A complete map of the Rust type system
https://www.reddit.com/r/programming/comments/1nbvabp/a_complete_map_of_the_rust_type_system/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://rustcurious.com/elements/) [comments] (https://www.reddit.com/r/programming/comments/1nbvabp/a_complete_map_of_the_rust_type_system/)
Color NPM Package Compromised
https://www.reddit.com/r/programming/comments/1nbv9w3/color_npm_package_compromised/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://fasterthanli.me/articles/color-npm-package-compromised) [comments] (https://www.reddit.com/r/programming/comments/1nbv9w3/color_npm_package_compromised/)
The Subtle Art of Taming Flows and Coroutines in Kotlin, or 'How Not to DDoS Yourself with Server-Sent Events'
https://www.reddit.com/r/programming/comments/1nbl1dm/the_subtle_art_of_taming_flows_and_coroutines_in/
submitted by /u/cekrem (https://www.reddit.com/user/cekrem)
[link] (https://cekrem.github.io/posts/the-subtle-art-of-taming-flows-and-coroutines-in-kotlin/) [comments] (https://www.reddit.com/r/programming/comments/1nbl1dm/the_subtle_art_of_taming_flows_and_coroutines_in/)
Search to Connect with talented people
https://www.reddit.com/r/programming/comments/1nbkddr/search_to_connect_with_talented_people/
<!-- SC_OFF -->Hey everyone! I’m working on a personal project and looking to collaborate with talented people in computer science, coding, or engineering . If you or someone you know might be interested, feel free to DM me! Thanks 🙏 <!-- SC_ON --> submitted by /u/Easy-Rule4477 (https://www.reddit.com/user/Easy-Rule4477)
[link] (https://en.m.wikipedia.org/wiki/History_of_Wikipedia) [comments] (https://www.reddit.com/r/programming/comments/1nbkddr/search_to_connect_with_talented_people/)
95% of AI Pilots Crash – Engineers are paying the price
https://www.reddit.com/r/programming/comments/1nbi2xn/95_of_ai_pilots_crash_engineers_are_paying_the/
<!-- SC_OFF -->A fresh MIT study just uncovered a shocking truth: $35‑40 B spent on AI pilots, and 9‑out‑of‑10 deliver zero ROI. Why do so many experiments stall? Scope creep – trying to solve everything at once dilutes impact. In‑house models – custom builds eat time, talent, and budget. Wrong targets – low‑value, high‑visibility tasks rarely pay off. The winning formula is to pick one narrow problem, grab a battle‑tested off‑the‑shelf tool, and set a clear KPI. Teams that did this turned no revenue into $20 M in a year. Check the AI Disaster Report article, a practical checklist, and a ready-to-copy email template to help you avoid common pitfalls in your next AI experiment. <!-- SC_ON --> submitted by /u/gabortilldotcom (https://www.reddit.com/user/gabortilldotcom)
[link] (https://techleadmastery.substack.com/p/ai-disaster-report-95-percent-pilots-fail-checklist) [comments] (https://www.reddit.com/r/programming/comments/1nbi2xn/95_of_ai_pilots_crash_engineers_are_paying_the/)
SOLID Principles Unseen Questions with Answers Explained: Intermediate to Expert-Level
https://www.reddit.com/r/programming/comments/1nbh1pe/solid_principles_unseen_questions_with_answers/
<!-- SC_OFF -->The SOLID principles are the cornerstone of object-oriented design. They provide a set of guidelines that help developers write code that is more maintainable, scalable, and reusable. While most developers can name the five principles, truly understanding and applying them in complex scenarios is the mark of an expert. Undoubtedly, theory is essential, putting that knowledge to the test is the best way to prepare. This article presents advanced-level Multiple-Choice Questions (MCQs) with answers explained (https://javatechonline.com/solid-principles-interview-questions-and-answers/) designed for those who want to go beyond the basics. <!-- SC_ON --> submitted by /u/erdsingh24 (https://www.reddit.com/user/erdsingh24)
[link] (https://javatechonline.com/solid-principles-interview-questions-and-answers/) [comments] (https://www.reddit.com/r/programming/comments/1nbh1pe/solid_principles_unseen_questions_with_answers/)
chalk + debug just got owned on npm… and honestly, this is the nightmare I’ve been expecting
https://www.reddit.com/r/programming/comments/1nccr9m/chalk_debug_just_got_owned_on_npm_and_honestly/
<!-- SC_OFF -->I’ve been around long enough to remember event-stream in 2018, ua-parser-js in 2021, all those “oh crap” moments when a dependency we trusted turned toxic overnight. And now.....?? it's chalk and debug. Two of the most boring, everyday libraries in the JS world.
One phishing email → maintainer creds stolen → new versions published → hidden payload inside.
And here’s the kicker: it didn’t break anything. While the tests, passed.. CI was green... linters, dead silent. We all would’ve shipped it, no questions asked. The payload was nasty but clever for sure... obfuscated code scanning for wallet addresses, swapping them with lookalikes tied to the attacker. So your log-coloring library suddenly moonlights as a crypto thief. That’s what makes my stomach drop. Because as a dev, the workflow is designed to trust the green checkmarks. And yesterday proved those green checks mean nothing when the foundation is poisoned upstream. We love to say “keep dependencies updated.” But that advice is starting to feel like a joke. Updating blindly is how you pull this crap straight into prod. What’s the fix? Honestly, I don’t have a silver bullet. But I know this: Pipelines need context, not just pass/fail. If debug starts calling window.ethereum, something should scream. Security can’t be “some team’s job.” It has to live inside the same workflow where we merge PRs. And maybe we stop pretending that npm install is ever “safe” without deeper inspection. This isnt a weird edge case. It’s the pattern now. And if we don’t adapt, we’ll just keep rolling the dice until the next dependency burns us in production. Anyone else feel like we’re building faster than we can secure the ground under us? <!-- SC_ON --> submitted by /u/divson1319 (https://www.reddit.com/user/divson1319)
[link] (https://www.codeant.ai/blogs/npm-chalk-debug-supply-chain-attack) [comments] (https://www.reddit.com/r/programming/comments/1nccr9m/chalk_debug_just_got_owned_on_npm_and_honestly/)
Signal Secure Backups
https://www.reddit.com/r/programming/comments/1ncb4hj/signal_secure_backups/
submitted by /u/cheerfulboy (https://www.reddit.com/user/cheerfulboy)
[link] (https://signal.org/blog/introducing-secure-backups/) [comments] (https://www.reddit.com/r/programming/comments/1ncb4hj/signal_secure_backups/)
Java 21 ⮕ 25: Performance and Runtime Enhancements #RoadTo25
https://www.reddit.com/r/programming/comments/1ncae0y/java_21_25_performance_and_runtime_enhancements/
submitted by /u/BlueGoliath (https://www.reddit.com/user/BlueGoliath)
[link] (https://www.youtube.com/watch?v=renTMvh51iM) [comments] (https://www.reddit.com/r/programming/comments/1ncae0y/java_21_25_performance_and_runtime_enhancements/)
Emulating Rust's Result and ? in Jai with Metaprogramming
https://www.reddit.com/r/programming/comments/1nbvji6/emulating_rusts_result_and_in_jai_with/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://jamesoswald.dev/posts/jai-result/) [comments] (https://www.reddit.com/r/programming/comments/1nbvji6/emulating_rusts_result_and_in_jai_with/)
Algebraic Effects in Practice with Flix
https://www.reddit.com/r/programming/comments/1nbviq4/algebraic_effects_in_practice_with_flix/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://www.relax.software/blog/flix-effects-intro/) [comments] (https://www.reddit.com/r/programming/comments/1nbviq4/algebraic_effects_in_practice_with_flix/)
Keeping secrets out of logs
https://www.reddit.com/r/programming/comments/1nbvi5u/keeping_secrets_out_of_logs/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://allan.reyes.sh/posts/keeping-secrets-out-of-logs/) [comments] (https://www.reddit.com/r/programming/comments/1nbvi5u/keeping_secrets_out_of_logs/)
No Silver Bullet: Essence and Accidents of Software Engineering (1986) [pdf]
https://www.reddit.com/r/programming/comments/1nbvh5t/no_silver_bullet_essence_and_accidents_of/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://www.cs.unc.edu/techreports/86-020.pdf) [comments] (https://www.reddit.com/r/programming/comments/1nbvh5t/no_silver_bullet_essence_and_accidents_of/)
Everything is a []u8
https://www.reddit.com/r/programming/comments/1nbvest/everything_is_a_u8/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://www.openmymind.net/Everything-Is-A-u8-array/) [comments] (https://www.reddit.com/r/programming/comments/1nbvest/everything_is_a_u8/)
The Key Points of Working Effectively with Legacy Code
https://www.reddit.com/r/programming/comments/1nbvb12/the_key_points_of_working_effectively_with_legacy/
submitted by /u/ketralnis (https://www.reddit.com/user/ketralnis)
[link] (https://understandlegacycode.com/blog/key-points-of-working-effectively-with-legacy-code/) [comments] (https://www.reddit.com/r/programming/comments/1nbvb12/the_key_points_of_working_effectively_with_legacy/)
Firefox 32-bit Linux Support to End in 2026
https://www.reddit.com/r/programming/comments/1nbv9xc/firefox_32bit_linux_support_to_end_in_2026/
submitted by /u/Doniisthemaindog (https://www.reddit.com/user/Doniisthemaindog)
[link] (https://blog.mozilla.org/futurereleases/2025/09/05/firefox-32-bit-linux-support-to-end-in-2026/) [comments] (https://www.reddit.com/r/programming/comments/1nbv9xc/firefox_32bit_linux_support_to_end_in_2026/)
Largest NPM Compromise in History - Supply Chain Attack
https://www.reddit.com/r/programming/comments/1nbqt4d/largest_npm_compromise_in_history_supply_chain/
<!-- SC_OFF -->Hey Everyone We just discovered that around 1 hour ago packages with a total of 2 billion weekly downloads on npm were compromised all belonging to one developer https://www.npmjs.com/~qix ansi-styles (371.41m downloads per week)
debug (357.6m downloads per week)
backslash (0.26m downloads per week)
chalk-template (3.9m downloads per week)
supports-hyperlinks (19.2m downloads per week)
has-ansi (12.1m downloads per week)
simple-swizzle (26.26m downloads per week)
color-string (27.48m downloads per week)
error-ex (47.17m downloads per week)
color-name (191.71m downloads per week)
is-arrayish (73.8m downloads per week)
slice-ansi (59.8m downloads per week)
color-convert (193.5m downloads per week)
wrap-ansi (197.99m downloads per week)
ansi-regex (243.64m downloads per week)
supports-color (287.1m downloads per week)
strip-ansi (261.17m downloads per week)
chalk (299.99m downloads per week) The compromises all stem from a core developers NPM account getting taken over from a phishing campaign The malware itself, luckily, looks like its mostly intrested in crypto at the moment so its impact is smaller than if they had installed a backdoor for example. How the Malware Works (Step by Step) Injects itself into the browser Hooks core functions like fetch, XMLHttpRequest, and wallet APIs (window.ethereum, Solana, etc.). Ensures it can intercept both web traffic and wallet activity. Watches for sensitive data Scans network responses and transaction payloads for anything that looks like a wallet address or transfer. Recognizes multiple formats across Ethereum, Bitcoin, Solana, Tron, Litecoin, and Bitcoin Cash. Rewrites the targets Replaces the legitimate destination with an attacker-controlled address. Uses “lookalike” addresses (via string-matching) to make swaps less obvious. Hijacks transactions before they’re signed Alters Ethereum and Solana transaction parameters (e.g., recipients, approvals, allowances). Even if the UI looks correct, the signed transaction routes funds to the attacker. Stays stealthy If a crypto wallet is detected, it avoids obvious swaps in the UI to reduce suspicion. Keeps silent hooks running in the background to capture and alter real transactions Our blog is being dynamically updated - https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromised <!-- SC_ON --> submitted by /u/Advocatemack (https://www.reddit.com/user/Advocatemack)
[link] (https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromised) [comments] (https://www.reddit.com/r/programming/comments/1nbqt4d/largest_npm_compromise_in_history_supply_chain/)
Package Managers are Evil
https://www.reddit.com/r/programming/comments/1nbkwzt/package_managers_are_evil/
submitted by /u/gingerbill (https://www.reddit.com/user/gingerbill)
[link] (https://www.gingerbill.org/article/2025/09/08/package-managers-are-evil/) [comments] (https://www.reddit.com/r/programming/comments/1nbkwzt/package_managers_are_evil/)
Europe’s leading AI Hackathon is here!
https://www.reddit.com/r/programming/comments/1nbi8jr/europes_leading_ai_hackathon_is_here/
<!-- SC_OFF -->Applications for Junction 2025 in are now OPEN! This November, we’re bringing the future to Espoo, and now’s your chance to be a part of it. 🫵 This November you get to explore the edges of innovation, and what lies beyond. Are you part of building a better future? Or will you unmask the bias and challenge the system? Utopia or Dystopia? You build the difference. Apply now and join us in Espoo. Link here: https://eu.junctionplatform.com/events/junction-2025 <!-- SC_ON --> submitted by /u/JunctionKids (https://www.reddit.com/user/JunctionKids)
[link] (https://eu.junctionplatform.com/events/junction-2025) [comments] (https://www.reddit.com/r/programming/comments/1nbi8jr/europes_leading_ai_hackathon_is_here/)
Sphere and Ray Collision Detection Tutorial
https://www.reddit.com/r/programming/comments/1nbhxjj/sphere_and_ray_collision_detection_tutorial/
submitted by /u/PeterBrobby (https://www.reddit.com/user/PeterBrobby)
[link] (https://youtu.be/XiXiHeVVssQ?si=yIe6XK_touxCKhlO) [comments] (https://www.reddit.com/r/programming/comments/1nbhxjj/sphere_and_ray_collision_detection_tutorial/)
How I solved a distributed queue problem after 15 years
https://www.reddit.com/r/programming/comments/1nbg6u1/how_i_solved_a_distributed_queue_problem_after_15/
submitted by /u/self (https://www.reddit.com/user/self)
[link] (https://www.dbos.dev/blog/durable-queues) [comments] (https://www.reddit.com/r/programming/comments/1nbg6u1/how_i_solved_a_distributed_queue_problem_after_15/)