diff options
Diffstat (limited to '')
-rw-r--r-- | 2021/talks/mold.md | 14 |
1 files changed, 7 insertions, 7 deletions
diff --git a/2021/talks/mold.md b/2021/talks/mold.md index d01e3a3f..7c5eb707 100644 --- a/2021/talks/mold.md +++ b/2021/talks/mold.md @@ -45,7 +45,7 @@ Pad: provide specific enough info vs writing a new mold for every new query/question? - A: You can write molds that are private for your special - problem. I created molds for my work that I don\'t share: like + problem. I created molds for my work that I don't share: like find the stories I am working on and how long time I spent on tasks lately. Also, moldable-emacs is to make these tools easy to write, so you should free to throw away tools when you need @@ -63,7 +63,7 @@ Pad: moldable-emacs gives me the infrastructure to answer my question about security, and I now started asking myself about architecture coherence, so I have scaled up tree-sitter over - projects to check that modules don\'t use packages from other + projects to check that modules don't use packages from other modules. By that I mean that as long as your code semantic analyzers output data, you can mold that (context) data to tell your story (answer the question you have). Does this answer your @@ -73,21 +73,21 @@ Pad: in an understaffed security team. So your usecase example got my usecase spot on. - Cool! For now you can define insecure patterns using tree-sitter - expressions (for example, I find a variable called \"password\" + expressions (for example, I find a variable called "password" in the code set to a string. For the package.json I linked to OWASP API and looped through the packages using tree-sitter - tokens. I didn\'t get there, but I wanted to see an Org Mode + tokens. I didn't get there, but I wanted to see an Org Mode buffer with the list of the most vulnerable deps highlighted by color + how to solve them: so I could pass them to developers to - resolve them (I am a dev, but sometimes others don\'t know about + resolve them (I am a dev, but sometimes others don't know about security risks). - Often molds are to tell stories to others. - This is probably the most important thing for my personal - usecase. Thank you very much. Now it\'s my turn to learn it and + usecase. Thank you very much. Now it's my turn to learn it and use it well. - Please open issues or email me, and I will try to help if you like how it works :) - - I\'ll do so. + - I'll do so. IRC: |