Tips
Short, opinionated notes on package hygiene and dev workflow. Stuff that would have saved us time if someone had told us earlier.
Short, opinionated notes on package hygiene and dev workflow. Stuff that would have saved us time if someone had told us earlier.
Deployments are rare and high-risk — exactly the wrong thing to keep on a laptop. Move the deploy step into CI (GitHub Actions, GitLab CI, whatever) so credentials never touch your machine, multiple people can ship, and the process is frozen in code. When you must deploy locally, do it from a Docker image so it's identical on every machine.
AI agents execute commands the model proposes — every prompt is a potential `rm -rf` or token exfiltration. Run them in Docker (ideally via docker compose) so the worst-case blast radius is "rebuild the container," not "restore from backup."
Stop leaving SSH private keys lying around in `~/.ssh`. The 1Password SSH agent keeps the key material in the vault, requires Touch ID for every use, signs your git commits, and gives you an audit log of which repo pulled what and when.
Brew gives you a single auditable catalog of what's installed on your Mac and an easy `brew upgrade` path. Default to it for everything you can, fall back to native installers only when the update story actually matters, and verify the formula's source URL before you run `brew install`.