More

emadda · 2026-03-13T12:45:42 1773405942

esbuild has been very stable for my projects too.

I think it is the only tool in the JS ecosystem that has not broken after a few years.

emadda · 2025-12-23T16:04:35 1766505875

PKCE protects the auth token from interception by making it so that only your code that started the flow can redeem it by proving they have the secret code_verifier on the redeem_token() call.

The code_challenge == sha256(code_verifier). You will share the code_challenge at the start of the flow.

emadda · 2025-12-23T12:28:00 1766492880

I just watched this, it is very good.

emadda · 2025-12-23T11:45:24 1766490324

Yes, that is true, I was assuming that any LLM code was going to be checked by the developer. Step 7 in the guide is "review your code and ensure the important logic commented in the example server is still present".

The LLM is only for converting the JS based example code into your language X and HTTP framework Y (instead of giving example code for every combination of X and Y).

The standard implementation is in a single file `http_server.ts`, which is around 200 lines of well commented code, with important logic commented (around 5 lines). The example code can be run locally with a few commands.

The repo also contains a sequence diagram [1], a description of the HTTP handlers needed [2], and a live demo [3] where you can see the request/responses.

Thanks for your feedback I have made this clearer in the readme.

- [1] https://github.com/emadda/passkeybot/tree/master?tab=readme-...

- [2] https://github.com/emadda/passkeybot/tree/master?tab=readme-...

- [3] https://demo.enzom.dev/

emadda · 2025-12-17T23:18:48 1766013528

Related: I released a hosted sign in page for passkey auth today.

Take a look:

https://passkeybot.com

emadda · 2025-12-02T13:00:33 1764680433

I built a macOS app that uses Ghostty and fzy to fuzzy search over Apple Note titles. It is working quite well for me.

https://github.com/emadda/hot-notes/

royaltjames · 2025-12-02T17:49:08 1764697748

Yo this is brilliant.

emadda · 2025-10-27T21:57:54 1761602274

Maybe JS directly?

emadda · 2025-10-04T07:41:26 1759563686

Cloudflare D1 has this, although you are limited to using JS workers to read/write it.

https://developers.cloudflare.com/d1/best-practices/read-rep...

emadda · 2025-09-24T12:55:02 1758718502

I built a macOS app [1] (to fuzzy search Apple Notes) using Ghostty as a base so that I could use its fast rendering for large lists.

I think there is space for an Electron-like framework but for standalone terminal apps. Looking forward to using Ghostty as a library.

[1]: https://enzom.dev/hot-notes/

unmotivated-hmn · 2025-09-24T14:03:06 1758722586

I've been meaning to build something with this[1], maybe you'll use it before I get to it.

[1]: https://github.com/charmbracelet/bubbletea?tab=readme-ov-fil...

emadda · 2025-08-18T14:26:12 1755527172

The local html file can read local resources via src=file_path attributes on html tags (img, audio, video, script etc).

But the src-included files must be in the same directory as the root html file (or a descendant directory)

I used this in my macOS app Pocket Log to output a local html audio log (https://enzom.dev).

codedokode · 2025-08-18T19:06:44 1755544004

Sadly it doesn't work for JS modules, only for legacy JS scripts.