I got a week of PTO left.

What code should I read? Please drop suggestions with a reason why I should read it.

@joern Keycloak: lots of security-critical features, complex config that often leads to "just work ffs" fail-open setups

@joern https://github.com/kelseyhightower/nocode

no further explanation needed

@svij ✅ done, LGTM

@buherator /me takes note

@joern Good job! Now take some rest for the rest of the week of PTO!

@svij but... my brain needs it....

@joern 🔥🦊

@freddy remember what happened the last time you pointed me to a codebase?

@joern Re-read the classics... https://github.com/sudo-project/sudo

@buherator @joern can confirm! But Java, *ugh*

@joern @swapgs code under https://github.com/Azure/ is pretty entertaining

@joern oh yes

@joern Mastodon? Ruby, simple server<>server protocol with room for SSRFs (https://www.w3.org/TR/activitypub/#b-security-considerations), media handling, etc. It's been on my list for a long time :)

@swapgs @joern also includes Node.js for running the WebSockets; kind of unnecessary and wish they'd switch to Ruby Async, Falcon, or even rewrite that portion in Crystal.