Author: Chris Lattner
Sun Lei jerry-sl
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <h1>Ruls</h1> | |
| • The ? matches zero or one of the preceding group. | |
| • The * matches zero or more of the preceding group. | |
| • The + matches one or more of the preceding group. | |
| • The {n} matches exactly n of the preceding group. | |
| • The {n,} matches n or more of the preceding group. | |
| • The {,m} matches 0 to m of the preceding group. | |
| • The {n,m} matches at least n and at most m of the preceding group. | |
| • {n,m}? or *? or +? performs a nongreedy match of the preceding group. | |
| • ^spam means the string must begin with spam. |
lattner
/ async_swift_proposal.md
Last active
February 23, 2024 11:41
— forked from oleganza/async_swift_proposal.md
Concrete proposal for async semantics in Swift
- Proposal: SE-XXXX
- Authors: Chris Lattner, Joe Groff
Modern Cocoa development involves a lot of asynchronous programming using closures and completion handlers, but these APIs are hard to use. This gets particularly problematic when many asynchronous operations are used, error handling is required, or control flow between asynchronous calls gets complicated. This proposal describes a language extension to make this a lot more natural and less error prone.
This paper introduces a first class Coroutine model to Swift. Functions can opt into to being async, allowing the programmer to compose complex logic involving asynchronous operations, leaving the compiler in charge of producing the necessary closures and state machines to implement that logic.
Not all random values are created equal - for security-related code, you need a specific kind of random value.
A summary of this article, if you don't want to read the entire thing:
- Don't use
Math.random(). There are extremely few cases whereMath.random()is the right answer. Don't use it, unless you've read this entire article, and determined that it's necessary for your case. - Don't use
crypto.getRandomBytesdirectly. While it's a CSPRNG, it's easy to bias the result when 'transforming' it, such that the output becomes more predictable. - If you want to generate random tokens or API keys: Use
uuid, specifically theuuid.v4()method. Avoidnode-uuid- it's not the same package, and doesn't produce reliably secure random values. - If you want to generate random numbers in a range: Use
random-number-csprng.
You should seriously consider reading the entire article, though - it's
Picking the right architecture = Picking the right battles + Managing trade-offs
- Clarify and agree on the scope of the system
- User cases (description of sequences of events that, taken together, lead to a system doing something useful)
- Who is going to use it?
- How are they going to use it?