Hello. Agreed that we need comprehensive privacy reform.

You should probably read the article, though. (-;

I have access to everything (on the tech side) at Matter, and if you put your social security number into the app, I wouldn't be able to access it to write it on a sticky note. That's the whole point.

PS I'm also old and jaded. (-;

I don’t think the article really answers this. All these decisions you’ve made to not store data are decisions that you could unmake.

To put it concretely: if everyone at Matter tomorrow became malevolent and wanted user data, what happens? For example, if you push an app that sends home my private text, how would I know? Could you?

Isn't this an argument against putting any personal information into any app? Signal could turn malevolent tomorrow and start sending all your chats to their servers, which could have life-threatening implications for people vs just potentially being embarrassing.

I put data into Google Docs knowing it lives on their servers. So there’s no problem there.

Signal has an open source client. Big difference for these claims.

Do you compile your own open source client for your phone? Or do you install it from an app store? Most people are going to install it from the app store, so I believe my point still stands. What correlation is there between what's in the app store vs what is published in the open source repo? e.g. how do you validate that the app store client was compiled from a specific commit in the open source repo?

The Signal Android app has (had?) reproducible builds. You can see what is on the site and in the App Store is the same as when built from source. One person doing this provides some confidence for everyone else.

Still, I’m less confident in saying any other company fulfill’s Matter’s promise than saying they aren’t.

Hello. Thanks! This old blog design is showing its age, certainly, but I appreciate the nod to URL Sentences: https://shiflett.org/blog/2010/url-sentences

It's because builds are completely reproducible, and therefore they have to be built in the same place (in `/nix`), and you can't create directories off of `/` on modern Mac setups.

(I should have marked this Show HN; my mistake)

Thanks. Probably useful to remember that this isn't a production run of thousands of units, and I already had the WROOM board on hand…

The reasonably-priced response to this is the CAMEO from Silhouette.

The disturbing part is the domain name not the status code.

Naturally. I'm just saying that I would have thought it had something to do with that first, before the captive portal clue.

I assume React Native doesn't require CORS, like the web version does?

The PR I submitted to the backend (that was not needed after a bit of discussion) was Go.

https://github.com/cds-snc/covid-alert-server/pull/241

(I don't know Go (-: )

🇨🇦

hey because of your post on r/biereqc I got great beers from Mondial de la bière thanks for that

it's funny how small the world is

Interesting, flags get past the emoji filter on HN?

Flags are character code in Unicode (matching with the ISO country code), so this "emoji" is "CA"

Yeah, my interactions with them were all great. Really refreshing.