Java Hello World, LLVM Edition

(www.javaadvent.com)

200 points ingve | 4 comments | 07 Dec 25 11:51 UTC | HN request time: 0.001s | source

Show context

tuhgdetzhh ◴[07 Dec 25 15:13 UTC] No.46182258[source]▶

>>46181076 (OP) #

I'm always a bit shocked how casual people people wget and execute shell scripts as part of their install process.

This is the equivalent of giving an author of a website remote code execution (RCE) on your computer.

I get the idea that you can download the script first and carefully read it, but I think that 99% of people won't.

replies(5): >>46182378 #>>46182490 #>>46183270 #>>46184246 #>>46184808 #

OptionOfT ◴[07 Dec 25 17:16 UTC] No.46183270[source]▶

>>46182258 #

Equally I don't like how many instructions and scripts everywhere use shorthands.

Sometimes you see curl -sSLfO. Please, use the long form. It makes life easier for everybody. It makes it easier to verify, and to look up. Finding --silent in curl's docs is easier than reading through every occurrence of -s.

   curl --silent --show-error --location --fail --remote name https://example.com/script.sh

Obligatory xkcd: https://xkcd.com/1168/

replies(5): >>46183416 #>>46185213 #>>46186791 #>>46189653 #>>46191309 #

1. Terr_ ◴[07 Dec 25 21:13 UTC] No.46185213[source]▶

>>46183270 #

For a small flight of fancy, imagine if each program had a --for-docs argument, which causes it to simply spit out the canonical long-form version equivalent to whatever else it has been called with.

replies(1): >>46190337 #

2. ndsipa_pomu ◴[08 Dec 25 09:44 UTC] No.46190337[source]▶

>>46185213 (TP) #

Or, a separate program that can convert from short to long form:

> for-docs "ls -lrth /mnt/data"

ls -l --reverse -t --human-readable -- /mnt/data

(I'd put in an option to put the options alphabetically too)

replies(1): >>46197395 #

3. Terr_ ◴[08 Dec 25 20:43 UTC] No.46197395[source]▶

>>46190337 #

While I'd appreciate that facility too, it seems... even-more-fanciful, as one tool would need to somehow incorporate all the logic and quirks of all supported commands, including ones which could be very destructive if anything went wrong.

Kind of like positing a master `dry-run` command as opposed to different commands implementing `--dry-run` arguments.

replies(1): >>46202396 #

4. ndsipa_pomu ◴[09 Dec 25 07:55 UTC] No.46202396{3}[source]▶

>>46197395 #

I did muck around with using "sed" to process the "man" output to find a relevant long option in a one-liner, so it wouldn't be too difficult to implement.

I did something like this:

  _command="sed" _option="n"
  man -- "${_command}" | sed --quiet --expression  "s/^       -${_option}.*, //p"

Then I realised that a bit of logic is needed (or more complicated regexp) to deal with some exceptions and moved onto something else.

↑