|3 months ago||12 days ago|
|BSD 3-clause "New" or "Revised" License||GNU General Public License v3.0 only|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Lenses in Haskell
3 projects | news.ycombinator.com | 27 Jun 2022
Point of clarification for readers who aren’t familiar with Haskell:
Haskell doesn’t have operators in the classic sense, since they’re just an alternate syntax (infix) for regular functions; implemented in libraries. The Haskell ecosystem OTOH has a shitton of infix functions, as does Edward Kmett’s lens library. I don’t think there’s any reason to bother memorizing the ones that aren’t useful to you. You can always search them on Hoogle if you encounter one you don’t know. E.g. https://hoogle.haskell.org/?hoogle=%28%5E.%29&scope=set%3Ast...
I use lenses frequently in a large application and have only ever used view, set, and over.
Dhall: A Gateway Drug to Haskell
No I didn't understand every sub-function in this function. That isn't necessary to get an idea of what a function does. All of your questions can be answered incredible quickly though using https://hoogle.haskell.org/
> What does Optics.rewriteOf do?
Hoogling show this is an alias of https://hackage.haskell.org/package/lens-5.1.1/docs/Control-....
> What's the purpose of Lint.useToMap?
Hoogle again shows https://hackage.haskell.org/package/dhall-1.41.1/docs/Dhall-.... If your function is not indexed you can look at what is qualified as `Lint` and look it up that way.
> How about D.subExpressions ? How does that composition work with the loop function?
https://hackage.haskell.org/package/dhall-1.41.1/docs/Dhall-... All nicely documented... I'm not sure what you mean by composition with the loop function. First the loop function is executed and then afterwards over the result the expression in the first argument to fmap is applied. There is no weird interaction going on here. It's just run this over the result of the loop function if it didn't produce an error.
> Even better. How would you go about finding the source code containing the definition of the function `D.subExpressions` ?
Use hoogle or just look at the imports at the top of the file. Just like any other programming language. Or even better, use the language server to find it for you.
What do you like about Go?
6 projects | reddit.com/r/golang | 28 May 2022
A fine piece of code, needs a refactor, may I know the name of the package, Google and Hoogle were unable to do their job.
Turn a fold into a monadic fold?
1 project | reddit.com/r/fsharp | 15 May 2022
For what it's worth, I've never used/heard of this function myself, but I used the awesome https://hoogle.haskell.org site and searched by the type signature:
YouCode a Search Engine for Coders
1 project | news.ycombinator.com | 6 May 2022
Maybe it can also search by signature like https://hoogle.haskell.org/ - would be a killer feature for me, but niche :)
Monthly Hask Anything (May 2022)
4 projects | reddit.com/r/haskell | 3 May 2022
As for finding things in those many modules, I usually check hoogle first: https://hoogle.haskell.org/
How Would You Even ApproachThis Problem
1 project | reddit.com/r/haskellquestions | 29 Apr 2022
If the type doesn't make it clear, then I read the docs or source on hackage. To find the right hackage package, I generally use hoogle which can be queried by name or by type!
Looking for some general advice on my first project.
2 projects | reddit.com/r/haskell | 14 Apr 2022
Cool project and overall I'd say your good is good. There's some stylistic things I might change. Below I've commented on a bunch of random stuff just to give you food for thought and possible leads to look into as a continuing to learn haskell sort of thing. I was pretty bad about citing where functions are from, so I recommend using something like hoogle (https://hoogle.haskell.org/) if it's not clear what function I meant.
1 project | reddit.com/r/TheLetterH | 25 Feb 2022
Fun fact: Hoogle is actually a thing: https://hoogle.haskell.org
- Dhall: A Gateway Drug to Haskell
can you recommend active Haskell open source projects?
16 projects | reddit.com/r/haskell | 30 Mar 2022
Just Say No To `:Latest`
3 projects | news.ycombinator.com | 6 Mar 2022
Worth noting that Hadolint raises warnings the issues mentioned in the article. Some examples of warnings:
- https://github.com/hadolint/hadolint/wiki/DL3007: Using latest is prone to errors if the image will ever update. Pin the version explicitly to a release tag.
Kubernetes Security Checklist 2021
28 projects | dev.to | 18 Oct 2021
Dockerfile should be checked during development by automated scanners (Kics, Hadolint, Conftest)
3 projects | reddit.com/r/u_sybrenbolandit | 31 Aug 2021
Linters are an effective way to catch (security) bugs early on in your development process. For most programming languages using linters is pretty standard. Hadolint is a linter for your Dockerfiles and is found on github here.
Best Practices for R with Docker
8 projects | dev.to | 31 May 2021
Best practices for writing Dockerfiles are being followed more and more often according to this paper after mining more than 10 million Dockerfiles on Docker Hub and GitHub. However, there is still room for improvement. This is where linters come in as useful tools for static code analysis. Hadolint lists lots of rules for Dockerfiles and is available as a VS Code extension.
21 Best Practises in 2021 for Dockerfile
2 projects | dev.to | 29 May 2021
Dockerizing Shiny Applications
3 projects | dev.to | 10 May 2021
Switching to the root USER opens up certain security risks if an attacker gets access to the container. In order to mitigate this, switch back to a non privileged user after running the commands you need as root. – Hadolint rule DL3002
What do you use for container security, and where do you think there is room for improvement?
1 project | reddit.com/r/devops | 2 Apr 2021
Hadolint for more SAST like : https://github.com/hadolint/hadolint
ShellCheck: A static analysis tool for shell scripts
12 projects | news.ycombinator.com | 18 Mar 2021
Hadolint is another. It's built atop shellcheck.
What are some alternatives?
dockle - Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
trivy - Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets
docker-bench-security - The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
grype - A vulnerability scanner for container images and filesystems
ihaskell - A Haskell kernel for the Jupyter project.
hakyll - A static website compiler library in Haskell
castle - A tool to manage shared cabal-install sandboxes.
ormolu - A formatter for Haskell source code
podman - Podman: A tool for managing OCI containers and pods.
stan - 🕵️ Haskell STatic ANalyser
leksah - Haskell IDE
syft - CLI tool and library for generating a Software Bill of Materials from container images and filesystems