smiletolerantly

Lol, exact same situation here.

Quick question, did the migration to continuwuity break calls for you as well?

Because a commit should be an "indivisible" unit, in the sense that "should this be a separate commit?" equates to "would I ever want to revert just these changes?".

IDK about your commit histories, but if I'd leave everything in there, there'd be a ton of fixup commits just fixing spelling, satisfying the linter,...

Also, changes requested by reviewers: those fixups almost always belong to the same commit, it makes no sense for them to be separate.

And finally, I guess you do technically give up some granularity, but you gain an immense amount of readability of your commit history.

No idea about that, but I stopped watching them once I realized that, at least for their speculative topics, they just pull things out of their arse and present it with the same definitivity as the actually well-researched parts. Once you notice, it's hard to stop noticing.

also rally people and show them that it is possible to change things, give hope,...

But back to your original comment. Thinking that Greta helps the current systems by doing what she does is a brain-dead take.

Symbols inspire.

If that's how you feel, then I'd wager that you (like, you personally) are just looking for an excuse to not protest/"rebel" and are projecting.

Seriously, your statement boils down to "if other people do x, they just do it so I don't have to do x, which is bad, therefore no-one should do x. Why is no-one doing x?"

Same. And even if you were to fuck up, have people never heard of the reflog...?

Every job I've worked at it's been the expectation to regularly rebase your feature branch on main, to squash your commits (and then force push, obv), and for most projects to do rebase-merges of PRs rather than creating merge commits. Even the, uh, less gifted developers never had an issue with this.

I think people just hear the meme about git being hard somewhere and then use that as an excuse to never learn.

The Hegemony Consul sat on the balcony of his ebony spaceship and played Rachmaninoff’s Prelude in C-sharp Minor on an ancient but well-maintained Steinway while great, green, saurian things surged and bellowed in the swamps below.

One I've recently re-read. Not quite as catchy as some of the others here, but manages to capture the world and mood of the setting remarkably well in just one sentence.

Do not

Eternity is a loooooong time

TBH, it sounds like you have nothing to worry about then! Open ports aren't really an issue in-and-on itself, they are problematic because the software listening on them might be vulnerable, and the (standard-) ports can provide knowledge about the nature pf the application, making it easier to target specific software with an exploit.

Since a bot has no way of finding out what services you are running, they could only attack caddy - which I'd put down as a negligible danger.

My ISP blocks incoming data to common ports unless you get a business account.

Oof, sorry, that sucks. I think you could still go the route I described though: For your domain example.com and example service myservice, listen on port :12345 and drop everything that isn't requesting myservice.example.com:12345. Then forward the matching requests to your service's actual port, e.g. 23456, which is closed to the internet.

Edit: and just to clarify, for service otherservice, you do not need to open a second port; stick with the one, but in addition to myservice.example.com:12345, also accept requests for otherservice.example.com:12345, but proxy that to the (again, closed-to-the-internet) port :34567.

The advantage here is that bots cannot guess from your ports what software you are running, and since caddy (or any of the mature reverse proxies) can be expected to be reasonably secure, I would not worry about bots being able to exploit the reverse proxy's port. Bots also no longer have a direct line of communication to your services. In short, the routine of "let's scan ports; ah, port x is open indicating use of service y; try automated exploit z" gets prevented.