Now this is prompt engineering.

Presumably this includes SMS-based MFA codes.

Do you also rail against the "word salad" coming out of the AI marketing blogs that are also posted to this site?

Examples? I do think some of them are pure hype but overall AI is here to stay. People like using it and get value from it.

Yes, of course. You also see those flagged to just as this one has been now. Turns out people don't like word salad of any kind.

It think it's fair play to claim that someone doesn't have relevant experience when it seems very clear that they do not.

It's too easy for these things to seem clear and then turn out not to be right at all; moreover there's no need to get personal about these things - it has no benefit and there's an obvious cost.

Again, I would challenge your assertion that this was a personal attack. This comment i responded to, to me, seemed to be coming from a place that has never managed such things on a public facing web interface. it does not seem possible to me to make such a comment without such prior knowledge. I will admit that i did not articulate my comment as such,as sibling comments sufficiently have done, and it probably came off as unnecessarily snarky, and for that I apologize - I do not see it as a personal attack though, at least not on purpose, and dont see it as being flag worthy. but that’s fine, I dont mod here, and dont pretend to know how it is to mod here. so in the future i guess i’ll just avoid such impossible to discern scrutiny if i can.

It's possible the phrase "personal attack" means something a bit different to you than to me, because otherwise I don't think we're really disagreeing. Your good intentions are clear and I appreciate it! We can use a different phrase if you prefer.

I'd just add one other thing: there's one word in your post here which packs a huge amount of meaning and that's seemed (as in "seemed to be coming from a place [etc.]"). I can't tell you how often it happens that what seems one way to one user—even when the "seems" seems overwhelmingly likely, as in near-impossible that it could be any other way—turns out to simply be mistaken, or at least to seem quite opposite to the other person. It's thousands of times easier to make a mistake in this way than people realize; and unfortunately the cost can be quite high when that happens because the other person often feels indignant ("how dare you assume that I [etc.]").

In the present case, I don't know anything about the experience level of the user who posted https://news.ycombinator.com/item?id=45011628, but https://news.ycombinator.com/item?id=45011442 was definitely posted by someone who has managed heavy-duty web facing services, and that comment says more or less the same thing as the other one.

The way it compares is that we've had 30 years to learn from our mistakes (and apparently some of us have failed to).

Well, I suppose we might have found one of the discriminators in why some people love LLMs and some hate them...

I mean, you're one person (so it doesn't have to match) and you're not carefully measuring everything (so you don't have a basis for comparison).

"Look, I implemented diceware in pure CSS!" is unfortunately not that hard to imagine.

I would bet someone is already working on it as we speak.

I don't disagree on that point.

Introducing cryptography in the STANDARD for stylesheets adds complexity where it doesn't belong. Ultimately a browser vendor isn't responsible when a company sells insecure cryptography.

Adding crypto to CSS will bring us nearer to bitcoin mining in the CSS engine.

All that matters is the last digit, so "th" is correct. In binary you would just have _th and _st.

I wonder how well these scan under less-than-ideal lighting and focus conditions. The standard QR code would be a lot more robust...

It's a slight tradeoff. Digital works flawlessly though Still experimenting with how it works with print.

Digital is trivial. what you want is to be able to scan a QR code off a person's shirt, on a photograph taken at a convention, from a distance.