←back to thread

Code Is Debt

(tornikeo.com)
118 points tornikeo | 3 comments | 31 Aug 25 17:58 UTC | HN request time: 0.595s | source
1. lrvick ◴[31 Aug 25 22:06 UTC] No.45087539[source]
Most of my early career was about writing a lot of code. Now 20 years later I pride myself in removing more code than I add to most repos. As a security engineer code is not just debt, it is risk. Especially dependencies.

Recently a colleague and I wrote a tiny linux init system that is used in production for several orgs. Under 600 lines of rust standard library, no dependencies. Boots in under 1 second. Turns out you do not need all the risk and disk i/o of systemd and a million lines of c to run an appliance like linux server.

Seriously, if you write it yourself you end up with a lot less code and systems you can understand top to bottom.

replies(1): >>45087610 #
2. gerdesj ◴[31 Aug 25 22:15 UTC] No.45087610[source]
Lovely. Now, what's missing?
replies(1): >>45087979 #
3. lrvick ◴[31 Aug 25 23:23 UTC] No.45087979[source]
Nothing for the use cases I have in production other than more platform support, but those can be compile time features for when using those specific environments. I want 0 lines of dead code in production for easy auditing.

https://git.distrust.co/public/nit