←back to thread

Go-Safeweb

(github.com)
188 points jcbhmr | 2 comments | 14 Nov 24 03:04 UTC | HN request time: 0s | source
Show context
caust1c ◴[14 Nov 24 03:58 UTC] No.42133045[source]
[flagged]
replies(4): >>42133074 #>>42133081 #>>42133476 #>>42133932 #
warkdarrior ◴[14 Nov 24 04:07 UTC] No.42133081[source]
It's an open-source library (or collection of libraries) for Go HTTP servers. Apache license, so it does not matter if Google supports it or not.
replies(1): >>42133779 #
HumanOstrich ◴[14 Nov 24 07:07 UTC] No.42133779[source]
Until you have an equivalent team of volunteers ready to maintain the project, I think it does matter.
replies(2): >>42135463 #>>42136150 #
1. jerf ◴[14 Nov 24 13:55 UTC] No.42136150{3}[source]
It's not really that sort of project. In principle, this is all stuff you should already be doing. But, statistically speaking, $YOU aren't. Even if they disappear today, you're probably still better off picking this up and starting with it as-is than you are with your current server.

While I'm sure this is the sort of project that could benefit from ongoing improvements, it is also not going to decay away into utter uselessness if nobody commits to it in a week or two.

I understand the need for projects to be maintained, but I think some people have been badly burned by the Javascript world, or possibly some other language environments, and don't realize that those environments aren't the norm, but one of the extrema. Go is quite possibly on the other extrema. It does not generally decay. Again, I'm not saying that means it's totes cool to pick up a security-based project with a last commit from seven years ago and just assume it's still cutting edge, but this sort of Go code doesn't require a dozen commits a month just to tread water.

replies(1): >>42137210 #
2. HumanOstrich ◴[14 Nov 24 15:35 UTC] No.42137210[source]
As someone stuck in JavaScript hell, I think you have a great point. How nice it would be to not touch a project for a year, come back, and not have to rewrite it just to upgrade dependencies.