Benjamin Gruenbaum
Benjamin Gruenbaum
@erights I think it's interesting to discuss but if history taught me something is that for proposals (like this one) to progress: - The champion needs to be willing to...
And as a side note - I think web security in light of side channels (like the JIT, syscall timings, GC and other common timing attack enablers) is extremely understudied...
@erights you know Mark, you are one of the brightest researchers I read on the topic and your papers on this topic are really inspiring but when you start with...
I'm still midway the reading list I got here but I'll respond to this: > Maybe this is an overly-simplified perspective, but IMHO when built-ins, prototypes and globals are tampered...
@mikesamuel absolutely, and to be more concrete I also I think we all agree that it is important that first party code has the ability to prevent third-party code from...
Some notes: - Operational errors and programmer errors have nothing to do with async/sync (I can find a reference where I debate this with the person who wrote the Joyent...
> If you have the references somewhere I'll be very interested. https://github.com/nodejs/docs/issues/82 https://github.com/nodejs/promises/issues/23 https://github.com/nodejs/promises/issues/10 > True for promise but it does release Zalgo when the "hybrid" function is used with...
Scheduling seems like a pretty nice task until you realize just how many schedulers you have to support to do a reasonable job. If you want to "dezalgo" I'd do...
@sonnyp right, but sometimes you don't have a choice and native promises are available and you have to use them to dezalgo. Ridiculous? Sure - just not as bad as...
setTimeout sometimes doesn't get executed in some browsers (above I name iOS 8.3 in a background tab as an example). It isn't slow (it is, but that's not the problem)...