JavaScript boy and “lovely thoughtleader” 
he/him 
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
Where is the business model
Also does this really change anything at all. File generation happens in the cloud but that could still generate malicious code that is sent to the customers boilerplate.
I think this is actually *less* secure. With open source boilerplate, at least other people can review the code for hacks. With a server generating a template, you could have the server insert a rootkit only for a small subset of targeted users.
To be clear nothing preventing this from happening today with life-cycle scripts. Anyway I agree there are cons to this approach as well. However I still think downloading code to execute a scaffold command feels odd.
yes, the hypothesis is that the shipped scaffold to the user will have a far smaller footprint compared to the code for the scaffold + the actual scaffolded code. Additionally with this approach a download of files requires no runtime to view the output.
So the expectation is that someone still hand reviews the generated code? What do you mean it requires no runtime? You eventually execute it.
I share Seb's point. You're still downloading and executing whatever it is makes the call to the cloud service and then running the generated code without reading any of it.
Like, two days ago they found a privilege escalation bug from unchecked ints in *sudo*, if sudo went unread then nobody is ever getting around to reading JavaScript.
Simply, it may make folks feel safer, thereby creating and improved market for those who want to exploit it
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
