• Clent@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      50
      ·
      11 hours ago

      Having production credentials in a dev environment is more stupider but they’ll never learn because they outsourced their thinking.

      • dbx12@programming.dev
        link
        fedilink
        arrow-up
        8
        ·
        10 hours ago

        I for one welcome that change. Let them sloppify their brains once the rug is pulled and token cost skyrockets (or AI isn’t able to fix its own fuckups) the human developer will rise again.

    • john_lemmy@slrpnk.net
      link
      fedilink
      arrow-up
      16
      ·
      10 hours ago

      Claude code even added an auto mode so that you don’t get blocked by that pesky reviewing anymore. Since then, the usual mode of asking before running a command, for instance when the thing wants to read the entire codebase looking for information only available in an online doc, is now called manual mode; the non 10x developer mode.

    • placebo@lemmy.zip
      link
      fedilink
      English
      arrow-up
      14
      ·
      edit-2
      11 hours ago

      As well as storing production credentials in plain text in an .env file.

      • The_Decryptor@aussie.zone
        link
        fedilink
        English
        arrow-up
        2
        ·
        5 hours ago

        .env files are wild to me, environment variables have never been a good way to pass data to applications, let alone secret data.

        So the solution people came up with was to store them in plain text next to the binary, and then have a loader apply them before running the main app.