🐥 YellowDuck.be

🔗 Google Sheets integration: Elixir data management guide

2026-04-16T08:00:00Z

This article presents a practical guide to integrating Google Sheets with an Elixir application using the Phoenix Framework. It outlines the steps to extract, organize, and analyze data from a Google Sheets spreadsheet for attendance and ship usage statistics in a gaming context.

By implementing Google APIs for both Sheets and Drive, the post provides insights into creating a seamless data management experience. Detailed snippets of Elixir code are provided to illustrate the interaction with Google Sheets, data manipulation, and how to set up a Phoenix application for real-world applications.

Continue reading on www.curiosum.com

#reading-list #development #database #elixir #phoenix

🔗 Thinking Elixir Podcast 299: Don't Paste That Into Your Terminal

2026-04-15T17:00:00Z

The EEF needs your support for a major security grant, Hex.pm completes its first security audit, José Valim drops a massive Tidewave update, and we discuss the ClickFix supply chain attack that hit Axios, and more!

Continue reading on podcast.thinkingelixir.com

#reading-list #elixir #phoenix

🔗 The 2-minute Claude code upgrade you're probably missing: LSP

2026-04-15T13:00:00Z

Right now, every Claude Code user is running without LSP. This means searching for definitions is akin to using grep, leading to delays and inaccuracies in large codebases. Enabling LSP changes everything; with it, queries like asking where processPayment is defined return precise results in 50 milliseconds, compared to 30-60 seconds without it. LSP separates language intelligence from the editor, making it more efficient. It opens up advanced capabilities such as automatic error correction and precise code navigation, eliminating the frustration of traditional text searches. Enabling it is straightforward and takes only a couple of minutes. You add a flag in your settings and install the relevant language server binaries. This transforms how you interact with your code, enhancing accuracy and speed significantly.

Continue reading on karanbansal.in

#reading-list #development #tools #best-practice

🔗 How to optimize SonarQube for reviewing AI-generated code

2026-04-15T08:00:00Z

AI-generated code can introduce various quality issues, including technical debt and security vulnerabilities. This post emphasizes the need for a stricter quality gate and quality profile tailored for AI-generated code within SonarQube Cloud.

The recommended approach includes designing a custom quality gate that increases coverage requirements and limits code duplication. Additionally, establishing a custom quality profile will help maintain code readability and enforce stricter validation rules, ensuring that AI-generated outputs meet higher standards.

Continue reading on www.sonarsource.com

#reading-list #development #best-practice #ai #testing

🔗 The part of the SDLC nobody talks about, and many companies don’t do properly

2026-04-14T17:00:00Z

The most overlooked part of the software development lifecycle (SDLC) is decommissioning. Many companies neglect or mishandle this phase, leading to significant costs and inefficiencies. For instance, zombie resources like forgotten databases or unused virtual machines waste an estimated 30% of cloud spending. Despite the common belief that removing resources doesn’t add value, failing to do so increases financial, operational, and security burdens over time. Proper decommissioning requires a clear process with a checklist to ensure no resources are left behind. This includes reviewing service usage, notifying teams, disabling alerts, and thoroughly cleaning up all related components. Ignoring this crucial phase creates unnecessary costs and complicates infrastructure management.

Continue reading on blog.danskingdom.com

#reading-list #development #best-practice #devops #sysadmin

🔗 AshTypescript Typed Channels

2026-04-14T13:00:00Z

AshTypescript enables the generation of typed TypeScript event subscriptions using Ash PubSub's publications. This functionality allows developers to handle server-pushed events in a type-safe manner over Phoenix channels, enhancing the client-side experience with well-defined payload types.

To implement typed channels, developers can utilize AshTypescript.TypedChannel for applications that push events to clients. Using transformation functions and specifying event types in the channel module, the TypeScript types are generated, which promotes a seamless integration between the server and the frontend application.

Continue reading on hexdocs.pm

#reading-list #typescript #frontend #elixir #phoenix #announcement

🔗 Spec-driven development: From vibe coding to structured development

2026-04-14T08:00:00Z

Spec-driven development (SDD) offers a structured approach to coding, focusing on writing specifications before coding starts. This method counteracts the limitations of vibe coding by ensuring that the AI has a solid foundation to work from, minimizing bugs and architectural drift.

Tools like GitHub's Spec Kit, Amazon's Kiro, and Fission AI's OpenSpec enhance this process by formalizing the workflow and generating artifacts to guide development. By emphasizing a persistent specification that serves as the source of truth, SDD allows for more coherent and compliant code output, especially in complex environments like payments systems.

Continue reading on zarar.dev

#reading-list #development #best-practice #ai #github

🔗 18 months of code, gone. Here's what we learned.

2026-04-13T17:00:00Z

We developed this product for over 1.5 years, closed clients left right and center, and now we're throwing everything away.

In case you don't know me (or Autonoma), we're no strangers to pivots. Funnily enough, we pivoted like 4 times already (enterprise search, documentation generation, coding agent, QA testing platform). The reasons are beyond the scope of this article. In all cases, we knew bugs were painful, we just didn’t know what was the best way of solving the problem.

On our last pivot, we actually started getting customers and raised a round from one of the biggest names in the industry. We hired a team of 14 (as I’m writing this article) and started closing clients left right and center. So why would we take such a drastic decision over something that’s working for many customers? Well, many reasons. That’s why I’m writing this article.

Continue reading on tompiagg.io

#reading-list #development #testing

🔗 Fixing full recompiles of Elixir caused by Claude code

2026-04-13T13:00:00Z

At work, many of us were having a persistent issue where our Elixir app was having to do a full recompile very frequently, despite not having touched the dependencies, mix.exs, and so on. We were finally able to narrow it down to affecting the people who use Claude Code and Mise together (it may affect ASDF users as well?).

Continue reading on tylerayoung.com

#reading-list #elixir #phoenix

🔗 Slow down to speed up

2026-04-13T08:00:00Z

In today's AI-driven world, there's a powerful counterintuitive principle: slowing down can lead to faster outcomes. This isn't just philosophical fluff; it's based on Daniel Kahneman’s System 1 and System 2 thinking. While AI excels at rapid execution and pattern matching, the crucial first step of clearly defining what to build remains a distinctly human task. Flawed assumptions propagate quickly in the age of fast prototyping, leading to worse outcomes and accumulating technical debt. I learned that deliberate slowness, whether through writing down requirements or running pre-mortems, allows for better decision-making before launching into rapid development. AI can enhance both speed and thoroughness, but I have to know when to harness each effectively. Ultimately, embracing this balance is essential for sustainable innovation in any tech environment.

Continue reading on www.theengineeringmanager.com

#reading-list #development #best-practice #ai

🔗 Claude Skill incoming! Generating Postman collections with AI

2026-04-12T17:00:00Z

This article discusses the introduction of a Claude Skill designed to facilitate the generation of Postman collections from Rails controllers. This tool automates the documentation process, ensuring that QA teams can quickly access up-to-date API documentation without extensive manual effort.

The skill scans existing Rails controllers for essential data such as routes, actions, and parameters, producing a comprehensive Postman collection in JSON format. While there are limitations regarding its accuracy, particularly without RSpec specifications, the skill effectively reduces the burden of manual documentation in fast-paced development environments.

Continue reading on thoughtbot.com

#reading-list #development #tools #ai #announcement

🔗 Good CTE, bad CTE

2026-04-12T13:00:00Z

CTEs (Common Table Expressions) are a popular feature among SQL developers, often used to simplify complex queries. However, their actual performance and optimizations have significantly changed in PostgreSQL 12, shifting from always being treated as optimization fences to more flexible handling of CTEs.

PostgreSQL 12 introduced several optimizations regarding CTE handling, allowing non-recursive, side-effect-free CTEs to be inlined and treated as subqueries. This change improves query performance by enabling predicate pushdown and better index usage, while also providing control over CTE materialization when needed for specific use cases.

Continue reading on boringsql.com

#reading-list #database #best-practice #postgresql #sql

🔗 Building a blog with Elixir and Phoenix

2026-04-12T08:00:00Z

This post describes building a blog using Elixir and Phoenix with server-side rendering, NimblePublisher for markdown processing, and Tailwind CSS for styling. The setup uses no database, compiles all posts at build time, and achieves fast performance through pre-compiled HTML generation.

The blog runs on a self-hosted Dokploy instance on Hetzner with bunny.net as a CDN, featuring automated CI/CD through GitHub Actions and rolling deploys that complete in 30 seconds. Additional features include RSS feeds, XML sitemaps, blog post redirects, and comprehensive SEO metadata with Open Graph and Twitter Card tags.

Continue reading on jola.dev

#reading-list #frontend #best-practice #elixir #phoenix #devops

🔗 Two soups, two cookies

2026-04-11T17:00:00Z

Is the difference between something that works and something that feels right just about the ingredients? I discovered this when I made two soups using the exact same ingredients. The first soup was boiled conventionally, resulting in bland flavors. The second was roasted, allowing the natural sweetness of the veggies to emerge. This simple change in process transformed the dish from decent to exceptional.

Similarly, my wife enhanced her cookies by paying attention to details. Browning the butter added depth, varying chocolate sizes created texture, and resting the dough improved flavor integration. These adjustments, while optional, made a substantial difference. This approach parallels software development. Many can replicate features and UI, but they miss the critical processes—user feedback, bug fixes, and frustrations—that shape a product's quality. In essence, it’s not just about the ingredients; it's about the care and processes that lead to truly great outcomes.

Continue reading on liamhammett.com

#reading-list #development #best-practice

🔗 Getting started with Paraxial.io for Elixir

2026-04-11T13:00:00Z

This guide will walk you through setup for Paraxial.io. Most features require a paid account. If you are on the free tier, email support@paraxial.io to request a 2 week free trial.

Application Secure

Asset management - A full inventory of all your Elixir projects

Network Scans - Determine which ports are open on your web server

Code Scans - Source code (SAST) and dependency (SCA) scanning

GitHub or GitLab App - Get security feedback in your pull request

License Scans - Determine which open source licenses are in use

App Audit - A runtime inventory of all your dependency versions

Exploit Guard - runtime detection of deserialization exploits

Bot Defense

Ingesting HTTP traffic

Rate limiting - Ban IPs that do too many login attempts

Honeypots - Ban IPs that submit a fake form

Blocking data center/cloud IP attacks

Banning bots scanning for .php routes

Continue reading on docs.paraxial.io

#reading-list #http #elixir

🔗 AI is forcing us to write good code

2026-04-11T08:00:00Z

Traditional software best practices—comprehensive testing, clear documentation, modular design, static typing—were long treated as optional luxuries. AI coding agents change this calculus entirely. These agents cannot self-correct messy codebases effectively, making rigorous guardrails essential to their success.

A six-person team at Logic Inc. has implemented several practices to support agentic development: mandatory 100% code coverage (which eliminates ambiguity about what needs testing), thoughtful file organization using semantic naming, fast ephemeral development environments enabling rapid iteration, and end-to-end typing throughout the stack. Together these practices create constraints that guide AI models toward correct solutions rather than allowing them to drift through poor choices.

The argument inverts the usual cost-benefit analysis: what seemed like optional overhead for human teams becomes fundamental infrastructure for AI-assisted development. Organizations adopting agents should budget these improvements intentionally rather than hoping agents adapt to existing messy codebases.

Continue reading on bits.logic.inc

#reading-list #development #tools #ai

🔗 9 advanced PostgreSQL features I wish I knew sooner

2026-04-10T17:00:00Z

A few months ago, I struggled with a planning system. I needed to ensure that no two plans could overlap for the same period. My first instinct was to write application-level validation, but something felt off. Surely PostgreSQL had a better way?

That’s when I discovered the EXCLUDE constraint. It reminded me of other PostgreSQL features I’d found over the years that made me think, “Wait, Postgres can do that?!”

Here are some underused, yet useful PostgreSQL features that I discovered in past projects.

Continue reading on marmelab.com

#reading-list #database #postgresql #sql

🔗 A Unix manifesto for the age of AI

2026-04-10T13:00:00Z

Software development trends toward complexity, incentivized by organizations and the AI revolution. This complexity leads to decisions that prioritize superficial features over essential simplicity, emphasizing the need for human judgment in the engineering process.

AI can accelerate complexity accumulation, allowing engineers to avoid responsibility in maintaining codebases that lack clarity and documentation. The article advocates for a return to Unix principles, urging an architecture that promotes simplicity and local inference to cultivate a culture of responsibility in engineering, rather than dependency on complex AI platforms.

Continue reading on linuxtoaster.com

#reading-list #development #best-practice #ai

🔗 The Value of Immutability in .NET

2026-04-10T08:00:00Z

Immutability refers to the state of being unchangeable in software development, particularly with objects once created. This article details how immutability can improve data integrity, thread safety, and debugging by minimizing side effects that often arise from mutable objects.

The post outlines practical patterns, such as the Builder Pattern, to assist in creating immutable objects efficiently. It also addresses common objections to immutability, arguing for its adoption as best practice in scenarios where object changes are rare, while recognizing situations where mutables may be necessary.

Continue reading on barretblake.dev

#reading-list #pattern #best-practice #dotnet

🔗 Integrate frontend frameworks into your Phoenix LiveView app

2026-04-09T17:00:00Z

Phoenix LiveView lets you build dynamic web apps without writing much JavaScript. But sometimes, you do need a bit of client-side magic - especially for animations or local state that you don't want to store on the server.

Instead of throwing LiveView entirely out of the window, you can enhance it by embedding components from your favorite frontend frameworks like Svelte, Vue, or React. Of course, you can achieve similar results using client hooks but in practice, the code often becomes hard to manage, and juggling with phx-update="ignore" can be annoying.

That’s where libraries like LiveSvelte, LiveVue, and LiveReact come in. These libraries allow you to embed reactive frontend components directly into your LiveView templates with minimal effort. What’s even better is that by using these packages, you're not limited to building everything from scratch. You gain access to the entire ecosystem of packages available for your chosen framework.

We’ll walk through some simple examples - using local state, passing content through slots, and even throwing in some LiveView-style sigils for good measure. The goal is to show how seamlessly these frontend components can blend into your LiveView workflows without giving up the things that make LiveView great.

Continue reading on www.curiosum.com

#reading-list #javascript #frontend #elixir #phoenix

🔗 How to instantly be better at things

2026-04-09T13:00:00Z

It’s a funny quirk of the human condition that sometimes simply asking, of a given task, “how would someone much, much better than me approach this?” immediately makes you better at it. Like, right away.

Weird! It shouldn’t be so easy. But sometimes it is.

Continue reading on usefulfictions.substack.com

#reading-list

🔗 I Decompiled the White House's New App

2026-04-09T08:00:00Z

The article discusses a thorough decompilation of the White House's official Android app, revealing significant security issues and privacy concerns. The author uncovers that the app contains a cookie and paywall bypass injector, enabling users to bypass certain restrictions. Additionally, the app is found to track users' GPS locations at intervals of 4.5 minutes, raising alarms about user privacy. It also loads JavaScript content from an external source hosted on a personal GitHub Pages account, which raises further concerns about the security of the application itself and the potential implications for users' data.

Continue reading on thereallo.dev

#reading-list #javascript #github #android

🔗 I'm using my engineering colleagues as my personal agents

2026-04-08T17:00:00Z

This article highlights how non-technical product owners can effectively leverage AI agents for software development. By utilizing tools like Craft Agent and Claude Code, a product manager ships features and maintains documentation through automated workflows, eliminating the need for deep programming knowledge.

The author emphasizes the importance of keeping documentation regularly updated as a crucial part of the development process. They also discuss leveraging an "Expert Review Panel" of specialized AI agents that assess feature specs from multiple perspectives, ensuring efficient and high-quality output in software development.

Continue reading on madewithlove.com

#reading-list #development #best-practice #ai

🔗 Tech interviewing will always be broken

2026-04-08T13:00:00Z

Technical interviews continue to face criticism, often labeled as "broken" by candidates and interviewers alike. Despite decades of evolution, the process still struggles to achieve clarity and fairness amid diverse questioning styles and formats.

Interviews vary widely, from algorithm-focused questions to behavioral discussions, making it challenging to find a one-size-fits-all approach. Interviewers must adapt and understand their questioning strategies while candidates should be prepared for both direct and abstract problem-solving scenarios.

Continue reading on thefridaydeploy.substack.com

#reading-list #development #best-practice

🔗 Jido 2.0 is now available

2026-04-08T08:00:00Z

Jido 2.0 has been launched after 18 months of development, moving away from its initial version that was overengineered. This release focuses on simplifying the framework with a pure functional agent architecture that eases debugging, testing, and integration with AI capabilities.

The new version introduces the cmd/2 function, allowing actions to be processed while maintaining a clean data structure. It also supports a range of reasoning strategies for AI integration, alongside a growing ecosystem that includes first-class support for the Ash framework, enabling seamless AI tools integration.

Continue reading on jido.run

#reading-list #ai #elixir #announcement