Skip to content

Instantly share code, notes, and snippets.

View ooliver1's full-sized avatar

Oliver Wilkes ooliver1

View GitHub Profile
@ooliver1
ooliver1 / theme.css
Last active August 16, 2023 20:12
Discord dark theme for https://next.elu.pages.dev/
:root {
--brand-260: hsl(235, 86.2%, 88.6%);
--brand-500-hsl: 235 85.6% 64.7%;
--primary-230: hsl(210, 9.1%, 87.1%);
--primary-560: hsl(225, 6.3%, 23.5%);
--primary-600: hsl(223, 6.7%, 20.6%);
--primary-630: hsl(220, 6.5%, 18.0%);
--primary-700: hsl(225, 6.3%, 12.5%);
--primary-730: hsl(225, 7.1%, 11%);
--primary-860-hsl: 240 7.7% 2.5%;
@EnokiUN
EnokiUN / ROADMAP.md
Created April 29, 2023 21:15
Eludris 0.4 roadmap

Eludris v0.4 roadmap

Features

  • Accounts (auth (:D))
  • Permissions
  • Communities
    • Message communities
      • Channels
    • Post communities
@DenverCoder1
DenverCoder1 / pypi-stats.md
Last active September 5, 2023 04:06
Pypi Download Statistics for Discord.py Forks and Related Projects
@advaith1
advaith1 / top bots.md
Last active June 25, 2026 15:01
The top Discord bots ranked by server count
Rank Bot Approximate Server Count Library
1 MEE6 21,300,000 Custom Python
2 Rythm 14,900,000 JDA
3 carl-bot 🅱️ 12,100,000 Pycord
4 Dyno 10,600,000 Eris
5 Midjourney Bot
@samsch
samsch / stop-using-jwts.md
Last active July 8, 2026 04:28
Stop using JWTs

Stop using JWTs!

TLDR: JWTs should not be used for keeping your user logged in. They are not designed for this purpose, they are not secure, and there is a much better tool which is designed for it: regular cookie sessions.

If you've got a bit of time to watch a presentation on it, I highly recommend this talk: https://www.youtube.com/watch?v=pYeekwv3vC4 (Note that other topics are largely skimmed over, such as CSRF protection. You should learn about other topics from other sources. Also note that "valid" usecases for JWTs at the end of the video can also be easily handled by other, better, and more secure tools. Specifically, PASETO.)

A related topic: Don't use localStorage (or sessionStorage) for authentication credentials, including JWT tokens: https://www.rdegges.com/2018/please-stop-using-local-storage/

The reason to avoid JWTs comes down to a couple different points:

  • The JWT specification is specifically designed only for very short-live tokens (~5 minute or less). Sessions
@qoomon
qoomon / conventional-commits-cheatsheet.md
Last active July 12, 2026 07:29
Conventional Commits Cheatsheet