You’re right not to trust it, it’s wrongly calling sibling-index() widely available. And that’s the first example I checked.

It’s already available behind a flag IIRC.

There’s also jj-stack. I don’t know how they compare.

This is something GitHub should be investing time in, it’s so frustrating.

And tangled.sh supports JJ stacks out of the box

Woah that's actually huge. I've been very interested in tangled from an atproto perspective but I had no idea it had that as well. Wonder why that isn't talked about more. Seems like an amazing feature to potentially pull some people away from GitHub/GitLab after they've have been asking for years for a better stacking workflow.

I've been going through a lot of different git stacking tools recently and am currently quite liking git-branchless[1] with GitHub and mergify[2] for the merge queue, but it all definitely feels quite rough around the edges without first-party support. Especially when it comes to collaboration.

Jujutsu has also always just seemed a bit daunting to me, but this might be the push I needed to finally give both jj and tangled a proper try and likely move stuff over.

[1] https://github.com/arxanas/git-branchless

[2] https://mergify.com

I was surprised to learn that Depot runners, which are much faster, are also much cheaper. Would highly recommend them for anyone trapped on GitHub.

Blacksmith.sh has been great for us. Massively sped up tests and a huge improvement for Docker builds over both Actions and Google Cloud Build.

Only downside is they never got back to us about their startup discount.

hey there! blacksmith solutions engineer here :) love to hear we've helped speed up your tests and docker builds!!

could you shoot me your GH org so I can apply your startup discount? feel free to reach out to support@blacksmith.sh and I'll get back to you asap. thanks for using blacksmith!

Thank you! We've loved it! Looks like you found me, thank you :)

Yeah, but I have to set that up.

GitHub actions more or less just work for what most people need. If you have a complex setup, use a real CI/CD system.

I haven’t use depot but I’m pretty sure the setup is literally just switching out the runs-on value in your workflows

Such as?

Jenkins is open source and very well documented.

GitHub Actions are really for just short scripts. Don't take your Miata off road.

LOL, I worked on the Jenkins project paid for three years. Even they use actions to build Jenkins.

https://github.com/jenkinsci/jenkins/tree/master/.github/wor...

Jenkins! For the love of god don’t listen to this.

Always open to learning, what's wrong with Jenkins?

It's a bit bloated, but it's free and works.

Fragile against upgrades, tons of unmaintained plugins, admin panel UX is a mess where you struggle to find the stuff your are looking for, half backed transition to nicer UI (Blue Ocean) that has been ongoing for years, too many ways to setup jobs and integrates with repos, poor resource management (disk space, CPU, RAM), sketchy security patterns inadvertently encouraged.

This stuff is a nightmare to manage, and with large code bases/products, you need a dedicated "devops" just to babysit the thing and avoid it becoming a liability for your devs.

I'm actually looking forward our migration to GHEC from on-prem just because Github Actions, as shitty as they are, are far less of an headache than Jenkins.

Why is gha just for short scripts, out of interest?

It's just short on features.

I get the vibe it was never intended to seriously compete with real CI/CD systems.

But then people started using it as such, thus this thread is full of complaints.

What features is it missing that you would like to see it implement?

death before Jenkins

Depot.dev is great.

Thank you! Really appreciate the support.

Thank you for the kind shout out! Always happy to see comments like this. If anyone is looking for a better GitHub or GitHub Actions experience, feel free to reach out anytime.

What are Depot runners?

Founder of Depot here. We provide faster and more reliable GitHub Actions runners (as well as other build performance services) at half the cost of GitHub [0]

[0] https://depot.dev/

Is there a write up on the security of actions or equivalent that explains how they are secure both with direct and transitive dependencies? If this applies to Depot.

Ah got it, thanks. I thought there was another kind of GitHub runner (like their "large" runners) that I hadn't heard of.

I’ll die on the hill that the tacit pipe operator would have been the right choice. IIRC the main objections came from engine implementors.

For a start I wouldn’t trust brands that by default market mesh over wired backhaul.

Because ... ? Reminder my comment was looking for explanations. Is your issue that mesh + Ethernet backhaul is actually WAP + roaming and not mesh?

Those semantics make it more accessible for free.

Passkeys already solve for this, we just have to get past the FUD.

In this case, how is the Passkey safer than 2FA?

It’s cryptographically bound to the domain.

It could support it as a progressive enhancement.

I personally wouldn't even bother with that yet.

Once it's available in even one browser not behind a flag, sure, but while it's still entirely undocumented and only available to people who both use Chrome Canary and know to go turn on a specific flag?

In terms of task running specifically it does generally stay that simple for the likes of just.

The only complexity there is getting it installed on everyone's machine, but that's true of most tooling, even the common stuff given versions won't match. I solve that with Nix.