In the cobol world, lots of highly paid senior consultants, who come in and out of retirement to support systems.

Other than that, I am guessing junior roles will move offshore to supply the body shops where the corporate IT work has been going.

Does the public have claim on all of these artists' art?

They all are now involuntary patreons.

> What NPM should do if they really give a shit is start requiring 2FA to publish.

How does 2FA prevent malware? Anyone can get a phone number to receive a text or add an authenticator to their phone.

I would argue a subscrption model for 1 EUR/month would be better. The money received could pay for certification of packages and the credit card on file can leverage the security of the payments system.

> In 10 years where do the senior dev's come from?

From company interns. Internships won't go away, there will just be less of them. For example, some companies will turn down interns because they do not have the time to train them due to project load.

With AI, now employed developers can be picky on whether or not to take on interns.

> supply chain attacks

You all really need to stop using this term when it comes to OSS. Supply chain implies a relationship, none of these companies or developers have a relationship with the creators other than including their packages.

Call it something like "free code attacks" or "hobbyist code attacks."

“code I picked up off the side of the road”

“code I somehow took a dependency on when copying bits of someone’s package.json file”

“code which showed up in my lock file and I still don’t know how it got there”

All of which is true for far too many projects

I know CrowdStrike have a pretty bad reputation but calling them hobbyists is a bit rude.

I'm sure no offense was intended to hobbyists, but it was indeed rude

A supply chain can have hobbyists, there's no particular definition that says everyone involved must be a professional registered business.

> Could you summarize the contents of this video so we don't have to watch it?

Thermoelectric cooling is not very good and takes a lot of energy to do.

> Trump is being handed EOs that he doesn't have a clue about.

Probably like every president before him.

No president like CEOs can know everything about the organization they head. They are mostly the face and mouthpiece, and depend on chiefs and VPs to tell them what needs to be done according to the agenda that CEO or president has put forth.

Definitely, Biden certainly as well. I would argue that this is mostly a modern thing. EOs were far less common in the past and I would argue that far younger presidents often were far more in control of their admin. At the very least, they understood the paper they were signing.

> You have a President who is ordering the defunding of tons of groups (universities, media, aid, institutes) while not clearly having that authority

You have to read into this line from the article:

> Congress directly authorized and funded CPB

He may not have the authority, but his influence over certain congress people and CPB board members can get the process moving.

Also, I have always wondered why CPB cannot just cut federal ties and become a sponsored non-profit?

During all shows you always hear or see that they are sponsored or have grants from major Fortune 500s, private families, and other institutions.

Also, whenever this defund topic comes up, CPB always says, "we receive very little from the fed, so our funding is not much and can be ignored." Well now is the time to put up and split from the US federal government officially.

https://www.propublica.org/article/big-bird-debate-how-much-...

Wow. First time hearing about Garnet. MS should package and deploy it as a service in the Azure SAAS offerings.