profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/tweag/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.

tweag/asterius 1737

A Haskell to WebAssembly compiler

tweag/funflow 337

Functional workflows

tweag/capability 192

Extensional capabilities and deriving combinators

tweag/clodl 129

Turn dynamically linked ELF binaries and libraries into self-contained closures.

tweag/distributed-closure 61

Serializable closures for distributed programming.

tweag/ghc 47

Fork of official GHC repository.

tweag/blog-resources 29

Extra resources for Tweag's blog posts.

tweag/functionless 8

CLI tool for packaging Haskell executables for AWS Lambda

tweag/ch-nixops-example 7

Example deployment of Cloud Haskell app using NixOps.

tweag/funflow2 7

Compose and run computational workflows

push eventtweag/nickel

GitHub Actions

commit sha 2a6443848d3c03c7a2b2358a4a278c78f3ec87e5

Update `nightly` Rust channel [ci skip]

view details

push time in an hour

push eventtweag/pirouette

0xd34df00d

commit sha 66454906304bd63b854461fadbb4080fedf6dbbd

Revert "ho-constr-ho-transi.pir passes and shall not be pending" This reverts commit e40d21f4fb936b078db337c6a94bd7a40963d1d8.

view details

0xd34df00d

commit sha ff7e26b11c326694acfcfea836427f1f289ef449

Use '_' in the RECURSIVE defs For some reason TLA+ gets upset with more specific variable names.

view details

0xd34df00d

commit sha a3bd264bb5657c07561e01cbb4c08649194bd3a6

Remove the extra `freevars` indirection Simplifies things and fixes the case where there are no free variables, since TLA+ apparently doesn't like empty record functions (`[]`).

view details

push time in 4 hours

issue commenttweag/haskell-fido2

Implement CRL checking

One missing part is the decoding of the CRL Distribution Points extension of X.509, described in https://datatracker.ietf.org/doc/html/rfc3280.html#section-4.2.1.14. The x509 library currently has an unimplemented stub for the decoding of that. I have started implementing the decoding in https://github.com/tweag/hs-certificate/tree/crl-distribution-points

Infinisil

comment created time in 7 hours

issue openedtweag/haskell-fido2

Implement CRL checking

With #11, the trust anchor for attestation will be established, comprising of the certificates of each authenticator as specified by the MDS metadata service, the certificate chain used to sign the Metadata blob, along with a hardcoded root certificate for that chain. The standard specifies (rightly so) that the certificate revocation list (CRL) should be checked for each of the certificates in the chain in order to verify their integrity. However, it turns out that support for CRL's in Haskell is close to non-existant, so we need to implement that.

created time in 7 hours

create barnchtweag/hs-certificate

branch : crl-distribution-points

created branch time in 7 hours

MemberEvent

issue commenttweag/haskell-fido2

Make sure we can't be DoS'd

Sounds reasonable, so let's not act on it, but keep it in mind

Infinisil

comment created time in 7 hours

issue commenttweag/haskell-fido2

Make sure we can't be DoS'd

I wouldn't worry much about mitigating DoS just within the haskell-fido2 library. The chances are that a server that uses haskell-fido2 relies on aeson too. Fixing aeson would be the best for the Haskell ecosystem.

Infinisil

comment created time in 8 hours

PR opened tweag/funflow

fix #185 malformed markdown
+1 -1

0 comment

1 changed file

pr created time in 9 hours

startedtweag/trustix

started time in 10 hours

startedtweag/nickel

started time in 10 hours

startedtweag/jupyterWith

started time in 11 hours

push eventtweag/nickel

Rok Garbas

commit sha a75ca912f65c802c0f06ab29a45e5c79f8263e1b

initial website

view details

Rok Garbas

commit sha 71790260963e1be5fd527492c522c6052f2ad659

add a website tag

view details

Rok Garbas

commit sha 9d4c4bbe5628c2e3da35cc7e2ae9ce486e961af3

Discussions now points to gihtub discussions

view details

Rok Garbas

commit sha 01aa256a0ab38c67e71c40ff84761e410ef99ea6

build website with github actions and push to netlify

view details

Rok Garbas

commit sha a72d785537b291adf56376009f8c78a95adbdbc2

use nix-build instead of nix build this will target more people

view details

Rok Garbas

commit sha 62611af9133e36e64bc247b697b8fee22d97a479

set working-directory in website workflow

view details

Yann Hamdaoui

commit sha 98c8e980fdb384126279d0373aa5ca91046d4226

Vendor nickel-repl package

view details

Rok Garbas

commit sha 5b674396bf7c52d0577077c68ba9086a3113897a

node version 14 is needed

view details

Yann Hamdaoui

commit sha 812d47c85360838b62c06aefbd5b6598810114e5

Tentative to fix missing popperjs error

view details

Yann Hamdaoui

commit sha 5c7febf1b899e86d96858eabd7c33ae3a7b435ae

Use popper.js instead of popperjs/core

view details

Yann Hamdaoui

commit sha 5fb1ff41500f094a574ad12f29aa34fe2446aeec

Add missing SASS package

view details

Rok Garbas

commit sha 357db2fc38f97d8621230977c89c11fb032647d4

fixing some webpack errors

view details

Yann Hamdaoui

commit sha 1556726f36d71e6312c2dc7d86b1793ddcc57743

Fix webassembly error with webpack

view details

Yann Hamdaoui

commit sha dfa5cd0e17fef1f61bcfef0b7a97cc73f4cfc5f6

Re-enable webassembly, disable compilation of modules using

view details

Yann Hamdaoui

commit sha bfebed015e49f73e2acdae5ae85d2df11315087c

Fix SSR build + comments and smallfixes

view details

Yann Hamdaoui

commit sha 5df59f7eafac074f32d016691c1f88e3680053e1

Fix runtime errors

view details

Yann Hamdaoui

commit sha 20d5d98356c130b9db6a6b26ad6b390c1cfa47f9

Remove unnecessary null-loading for SSR (superseeded by loadable-componenents approach)

view details

Yann Hamdaoui

commit sha 4ee5b4fc467704e6cda81e22d738b7f850aeed13

Fix some esling warnings

view details

Yann Hamdaoui

commit sha dc6a2ca6d7f1f1ce201c2c5bea0ff41ddc3885ac

Landing page text: clarify the negative connotation of hack

view details

Yann Hamdaoui

commit sha e07e73691019f2552ee6dddde0993249d8651d8d

Logo spacing

view details

push time in 12 hours

push eventtweag/pirouette

0xd34df00d

commit sha 2052f768ecbec03cfac3e6518780ba305fc45dc9

Properly handle free variables when defunctionalizing

view details

push time in 12 hours

push eventtweag/haskell-fido2

Silvan Mosberger

commit sha ba9c96c8ac712ea7073cb968871e23fcfd0e013b

Add reference to possible fix

view details

push time in 12 hours

push eventtweag/haskell-fido2

Silvan Mosberger

commit sha 0c9cd01cfd4babf645586cb1121d12ca0f62cac5

Enabling profiling makes it fast..

view details

Silvan Mosberger

commit sha aa845539a8a3bd39e4d1905f6506e1946f8841b9

gitignore .direnv

view details

Silvan Mosberger

commit sha 73a20aef46e0a39ba3be8576a5ab59ece59d42e6

Use patched hs-jose for improved JWT verification performance

view details

push time in 13 hours

PullRequestReviewEvent

Pull request review commenttweag/nickel

Check for unbound type variables at parsing time

 impl ToDiagnostic<FileId> for ParseError {                 Diagnostic::error()                     .with_message(format!("{} parse error: {}", format, msg))                     .with_labels(labels)+            },+            ParseError::UnboundTypeVariables(idents) => {+                Diagnostic::error()+                    .with_message(format!("Unbound type variable(s): {}", idents.into_iter()+                        .map(|x| format!("\"{}\"", x))
                        .map(|x| format!("`{}`", x))

It is currently customary to report identifiers, types etc. in error message quoted by `, to differentiate them from strings.

peperunas

comment created time in 13 hours

PullRequestReviewEvent

Pull request review commenttweag/nickel

Check for unbound type variables at parsing time

 pub fn strip_indent_doc(doc: String) -> String {         .next()         .expect("expected non-empty chunks after indentation of documentation") }++pub fn check_unbound(types: Types) -> Result<Types, LexicalError> {+    fn find_unbound_vars(types: &Types, unbound_set: &mut HashSet<Ident>, bound_set: &mut HashSet<Ident>) {+        match &types.0 {+            AbsType::Var(ident) => {+                if !bound_set.contains(ident) &&+                    !unbound_set.contains(ident) {+                    unbound_set.insert(ident.clone());+                }+            },+            AbsType::Forall(ident, ty) => {+                if !bound_set.contains(ident) {

The bound_set is superfluous. Just keep the unbound_set (which is also called the set of free variables), and remove the variable bound by the forall from this set.

peperunas

comment created time in 13 hours

Pull request review commenttweag/nickel

Check for unbound type variables at parsing time

 pub fn strip_indent_doc(doc: String) -> String {         .next()         .expect("expected non-empty chunks after indentation of documentation") }++pub fn check_unbound(types: Types) -> Result<Types, LexicalError> {

It's a bit strange that check_unbound return Types in the success case. It should probably borrows immutably the types and return a Result<(), LexicalError> instead.

peperunas

comment created time in 13 hours

Pull request review commenttweag/nickel

Check for unbound type variables at parsing time

 pub fn strip_indent_doc(doc: String) -> String {         .next()         .expect("expected non-empty chunks after indentation of documentation") }++pub fn check_unbound(types: Types) -> Result<Types, LexicalError> {

Please document the function.

peperunas

comment created time in 13 hours

Pull request review commenttweag/nickel

Check for unbound type variables at parsing time

 pub enum LexicalError {     InvalidAsciiEscapeCode(usize),     /// Generic lexer error     Generic(usize, usize),+    /// Unbound type variable+    UnboundTypeVariables(Vec<Ident>)

An unbound type variable is not a lexical error. We should probably make a new custom error for LALRPOP, CustomParseError or whatever, that would wrap both lexical errors and unbound type variable errors.

peperunas

comment created time in 13 hours

PullRequestReviewEvent

Pull request review commenttweag/haskell-fido2

WIP Metadata

 library     x509,     scientific,     vector,-    QuickCheck+    QuickCheck,+    jwt,+    http-client,+    http-types,+    http-client-tls,

Sounds good.

Infinisil

comment created time in 13 hours

Pull request review commenttweag/haskell-fido2

WIP Metadata

 library     x509,     scientific,     vector,-    QuickCheck+    QuickCheck,+    jwt,+    http-client,+    http-types,+    http-client-tls,

We're most likely going with cryptonite after all, it's just embedded so deeply into all kinds of libraries that it would be a lot of effort to get around it completely. So why not opt into it fully.

Infinisil

comment created time in 13 hours

PullRequestReviewEvent

issue openedtweag/haskell-fido2

Make sure we can't be DoS'd

We're using aeson to decode potentially malicious JSON, which has a known vulnerability that could allow a DoS attack: https://cs-syd.eu/posts/2021-09-11-json-vulnerability. We should look whether this can be exploited in this library, and fix it if so. Issue to track: https://github.com/haskell/aeson/issues/864

created time in 13 hours

push eventtweag/haskell-fido2

Erin van der Veen

commit sha b2f282cacfc038468d8b6bf4a2b01606546395c0

Restructure tests

view details

push time in 13 hours

push eventtweag/haskell-fido2

Erin van der Veen

commit sha 26b0a5c9bfe5e155c843f509d63ac792de2b6104

Restructure tests

view details

push time in 14 hours