Tim Perry
@pimterry.fyi
Builder of https://httptoolkit.com (🦋 @httptoolkit.com), Node.js core collaborator, tech speaker, drummer, mountain biker and dad.
🇬🇧/🇨🇦 living in 🇪🇸
🇬🇧/🇨🇦 living in 🇪🇸
Barcelona is the first city in the world to commit to the UN's #opensource principles: ajuntament.barcelona.cat/digital/en/a... (specifically, these: unite.un.org/en/news/osi-..., including OSS by default, open participation & interoperability)
Glad to be building HTTP Toolkit here! Great city.
Glad to be building HTTP Toolkit here! Great city.
Barcelona is the first city in the world to endorse the UN Open Source Principles | Barcelona Digital City | Barcelona City Council
Barcelona is the first city in the world to publicly endorse the UN Open Source Principles, a commitment to promote open, safe and sustainable technologies, accessible to all.
ajuntament.barcelona.cat
November 3, 2025 at 10:41 AM
Barcelona is the first city in the world to commit to the UN's #opensource principles: ajuntament.barcelona.cat/digital/en/a... (specifically, these: unite.un.org/en/news/osi-..., including OSS by default, open participation & interoperability)
Glad to be building HTTP Toolkit here! Great city.
Glad to be building HTTP Toolkit here! Great city.
Reposted by Tim Perry
i write to you with solemn news. i am in paris, writing my life’s only masterwork. i spend my days drinking good espresso and smoking inexpensive cigarettes, writing clear and hard about what hurts. as such, i cannot ‘Log On’ - and friend - i will not attend your ‘laser-focused mesh network webinar’
October 29, 2025 at 9:25 PM
i write to you with solemn news. i am in paris, writing my life’s only masterwork. i spend my days drinking good espresso and smoking inexpensive cigarettes, writing clear and hard about what hurts. as such, i cannot ‘Log On’ - and friend - i will not attend your ‘laser-focused mesh network webinar’
Reposted by Tim Perry
It's time to make HTTPS the web's default, and reap the full security benefit from years worth of HTTPS adoption!
security.googleblog.com/2025/10/http...
security.googleblog.com/2025/10/http...
HTTPS by default
One year from now, with the release of Chrome 154 in October 2026, we will change the default settings of Chrome to enable “Always Use Secu...
security.googleblog.com
October 28, 2025 at 5:17 PM
It's time to make HTTPS the web's default, and reap the full security benefit from years worth of HTTPS adoption!
security.googleblog.com/2025/10/http...
security.googleblog.com/2025/10/http...
Reposted by Tim Perry
tired: it's always DNS
inspired: ICANN feel it coming in the air tonight
inspired: ICANN feel it coming in the air tonight
September 29, 2025 at 11:02 AM
tired: it's always DNS
inspired: ICANN feel it coming in the air tonight
inspired: ICANN feel it coming in the air tonight
Curious to see if after yesterday's AWS shitshow (a major outage, sure it happens, but also very poor communication & extremely slow recovery) anybody is considering alternatives?
I'm honestly surprised by the level of dominance of AWS, there are plenty of other interesting options out there.
I'm honestly surprised by the level of dominance of AWS, there are plenty of other interesting options out there.
October 21, 2025 at 10:57 AM
Curious to see if after yesterday's AWS shitshow (a major outage, sure it happens, but also very poor communication & extremely slow recovery) anybody is considering alternatives?
I'm honestly surprised by the level of dominance of AWS, there are plenty of other interesting options out there.
I'm honestly surprised by the level of dominance of AWS, there are plenty of other interesting options out there.
After the recent npm attacks, really feels like the wind is in the sails of passkeys. Unphishable auth suddenly seems like a core requirement!
Currently going through providers to make sure I've got my yubikeys everywhere... Surprisingly limited options even in pure infra providers like @bunny.net.
Currently going through providers to make sure I've got my yubikeys everywhere... Surprisingly limited options even in pure infra providers like @bunny.net.
October 16, 2025 at 2:52 PM
After the recent npm attacks, really feels like the wind is in the sails of passkeys. Unphishable auth suddenly seems like a core requirement!
Currently going through providers to make sure I've got my yubikeys everywhere... Surprisingly limited options even in pure infra providers like @bunny.net.
Currently going through providers to make sure I've got my yubikeys everywhere... Surprisingly limited options even in pure infra providers like @bunny.net.
Reposted by Tim Perry
Another year of paying #opensource maintainers for their hard work 🦾 alongside the rest of the OpenSourcePledge.com businesses, and to celebrate: we're back up on the NASDAQ tower in Times Square!
October 9, 2025 at 5:21 PM
Another year of paying #opensource maintainers for their hard work 🦾 alongside the rest of the OpenSourcePledge.com businesses, and to celebrate: we're back up on the NASDAQ tower in Times Square!
Very interesting to see engineering.fb.com/2025/10/07/o... but a bit sad. I'm yearning for a world where React simplifies down again and focuses on a core base, but it definitely feels like expansion & adding complexity is the name of the game right now. No change here.
Introducing the React Foundation: The New Home for React & React Native
Meta open-sourced React over a decade ago to help developers build better user experiences. Since then, React has grown into one of the world’s most popular open source projects, powering over 50 m…
engineering.fb.com
October 9, 2025 at 10:03 AM
Very interesting to see engineering.fb.com/2025/10/07/o... but a bit sad. I'm yearning for a world where React simplifies down again and focuses on a core base, but it definitely feels like expansion & adding complexity is the name of the game right now. No change here.
Reposted by Tim Perry
I gave a talk today at @nordicjs.com about shipping Node.js packages in 2025...or how to transition from shipping dual/faux-ESM/CommonJS to shipping ESM directly!
Slides at github.com/joyeecheung/...
Slides at github.com/joyeecheung/...
github.com
October 3, 2025 at 9:33 AM
I gave a talk today at @nordicjs.com about shipping Node.js packages in 2025...or how to transition from shipping dual/faux-ESM/CommonJS to shipping ESM directly!
Slides at github.com/joyeecheung/...
Slides at github.com/joyeecheung/...
Reposted by Tim Perry
messenger.abeto.co
This is freaking insane. The level of polish necessary for this visual fidelity and it all runs flawlessly on mobile. Hats off.
This is freaking insane. The level of polish necessary for this visual fidelity and it all runs flawlessly on mobile. Hats off.
Messenger
It's a small planet, but someone's gotta make the deliveries.
messenger.abeto.co
October 2, 2025 at 9:49 AM
messenger.abeto.co
This is freaking insane. The level of polish necessary for this visual fidelity and it all runs flawlessly on mobile. Hats off.
This is freaking insane. The level of polish necessary for this visual fidelity and it all runs flawlessly on mobile. Hats off.
Reposted by Tim Perry
RFC 9842 is HTTP Compression Dictionary Transport -- this is a big one!
Congrats @Yoav and @PatMeenan ! https://www.rfc-editor.org/rfc/rfc9842.html
Congrats @Yoav and @PatMeenan ! https://www.rfc-editor.org/rfc/rfc9842.html
October 1, 2025 at 6:10 AM
RFC 9842 is HTTP Compression Dictionary Transport -- this is a big one!
Congrats @Yoav and @PatMeenan ! https://www.rfc-editor.org/rfc/rfc9842.html
Congrats @Yoav and @PatMeenan ! https://www.rfc-editor.org/rfc/rfc9842.html
Reposted by Tim Perry
i wrote about atproto and why it matters
Open Social — overreacted
The protocol is the API.
overreacted.io
September 26, 2025 at 3:33 PM
i wrote about atproto and why it matters
What if GraphQL leaned harder on straight JSON without the magic query & schema language, integrated effortlessly with TypeScript, worked bidirectionally, and supported full pipelining for transparently chaining queries & operations?
This looks neat: blog.cloudflare.com/capnweb-java...
This looks neat: blog.cloudflare.com/capnweb-java...
Cap'n Web: A new RPC system for browsers and web servers
Cap'n Web is a new open source, JavaScript-native RPC protocol for use in browsers and web servers. It provides the expressive power of Cap'n Proto, but with no schemas and no boilerplate.
blog.cloudflare.com
September 22, 2025 at 2:23 PM
What if GraphQL leaned harder on straight JSON without the magic query & schema language, integrated effortlessly with TypeScript, worked bidirectionally, and supported full pipelining for transparently chaining queries & operations?
This looks neat: blog.cloudflare.com/capnweb-java...
This looks neat: blog.cloudflare.com/capnweb-java...
Reposted by Tim Perry
Today is the 30th anniversary of Hackers
September 15, 2025 at 11:56 PM
Today is the 30th anniversary of Hackers
> For context, I was using HTTP Toolkit to [briefly explain your intended use, e.g., testing API traffic during a penetration test engagement / debugging my application]
Ah, thank you, yes that does indeed add some very useful context to your email.
Ah, thank you, yes that does indeed add some very useful context to your email.
September 9, 2025 at 9:00 AM
> For context, I was using HTTP Toolkit to [briefly explain your intended use, e.g., testing API traffic during a penetration test engagement / debugging my application]
Ah, thank you, yes that does indeed add some very useful context to your email.
Ah, thank you, yes that does indeed add some very useful context to your email.
Conclusion after playing around with this for a few months: it's still very rough and still quite immature sadly.
Testing out Fly.io nowadays as an equivalent for testserver.host (which needs anycast + global distribution + persistence + easy automatic deploy/scaling) and it's going well so far 🤞
Testing out Fly.io nowadays as an equivalent for testserver.host (which needs anycast + global distribution + persistence + easy automatic deploy/scaling) and it's going well so far 🤞
Just discovered Bunny's new magic containers feature and I've immediately stopped trying to learn Kubernetes, this honestly looks fantastic: https://bunny.net/magic-containers/
Proper docker container deployments, raw TCP/UDP support, automatic anycast, autoscaling, pay for what you use. Wow.
Proper docker container deployments, raw TCP/UDP support, automatic anycast, autoscaling, pay for what you use. Wow.
Magic Containers - Forget edge complexity. Run anything. Anywhere. Like magic.
Seamlessly deploy any application, exactly where your users need it—with just a few clicks. No DevOps. No scaling struggles. No complexity.
bunny.net
August 29, 2025 at 1:40 PM
Conclusion after playing around with this for a few months: it's still very rough and still quite immature sadly.
Testing out Fly.io nowadays as an equivalent for testserver.host (which needs anycast + global distribution + persistence + easy automatic deploy/scaling) and it's going well so far 🤞
Testing out Fly.io nowadays as an equivalent for testserver.host (which needs anycast + global distribution + persistence + easy automatic deploy/scaling) and it's going well so far 🤞
Reposted by Tim Perry
Is more funding possible for open source maintainers in Europe? 🇪🇺 A new study commissioned by GitHub explores why creating an EU Sovereign Tech Fund could provide sustainable resources for critical OS projects.
Learn how you can help make it a reality.👇
github.blog/open-source/...
Learn how you can help make it a reality.👇
github.blog/open-source/...
We need a European Sovereign Tech Fund
With a new feasibility study, GitHub’s developer policy team is building a coalition of policymakers and industry to close the maintenance funding gap.
github.blog
August 5, 2025 at 10:57 PM
Is more funding possible for open source maintainers in Europe? 🇪🇺 A new study commissioned by GitHub explores why creating an EU Sovereign Tech Fund could provide sustainable resources for critical OS projects.
Learn how you can help make it a reality.👇
github.blog/open-source/...
Learn how you can help make it a reality.👇
github.blog/open-source/...
New milestone, first person being threatened with legal action for using HTTP Toolkit 😬
www.reddit.com/r/Avvocati/c...
www.reddit.com/r/Avvocati/c...
From the Avvocati community on Reddit
Explore this post and more from the Avvocati community
www.reddit.com
August 1, 2025 at 11:41 AM
New milestone, first person being threatened with legal action for using HTTP Toolkit 😬
www.reddit.com/r/Avvocati/c...
www.reddit.com/r/Avvocati/c...
Started exploring Meshtastic recently (meshtastic.org).
It's... surprisingly mature? I expected something much rougher, but it's basically a very functional text/gps-only whatsapp that just doesn't need an internet connection. Feels like magic.
It's... surprisingly mature? I expected something much rougher, but it's basically a very functional text/gps-only whatsapp that just doesn't need an internet connection. Feels like magic.
Meshtastic
An open source, off-grid, decentralized, mesh network built to run on affordable, low-power devices
meshtastic.org
July 29, 2025 at 3:57 PM
Started exploring Meshtastic recently (meshtastic.org).
It's... surprisingly mature? I expected something much rougher, but it's basically a very functional text/gps-only whatsapp that just doesn't need an internet connection. Feels like magic.
It's... surprisingly mature? I expected something much rougher, but it's basically a very functional text/gps-only whatsapp that just doesn't need an internet connection. Feels like magic.
Reposted by Tim Perry
For 20 years Mozilla has developed one of the most useful tools for web devs.
developer.mozilla.org/en-US/blog/m...
Congrats to the MDN team on an awesome milestone. I'm happy that we've played a small part in its history and I'm excited to see it continue to be at the core of every web dev's job.
developer.mozilla.org/en-US/blog/m...
Congrats to the MDN team on an awesome milestone. I'm happy that we've played a small part in its history and I'm excited to see it continue to be at the core of every web dev's job.
Celebrating 20 years of MDN | MDN Blog
MDN turns 20! Let's look at how we started, how MDN became the most trusted resource for web developers, the impact it's had on the open web, and yes, there's cake, too.
developer.mozilla.org
July 25, 2025 at 7:59 AM
For 20 years Mozilla has developed one of the most useful tools for web devs.
developer.mozilla.org/en-US/blog/m...
Congrats to the MDN team on an awesome milestone. I'm happy that we've played a small part in its history and I'm excited to see it continue to be at the core of every web dev's job.
developer.mozilla.org/en-US/blog/m...
Congrats to the MDN team on an awesome milestone. I'm happy that we've played a small part in its history and I'm excited to see it continue to be at the core of every web dev's job.
I've been doing some ridiculously neat reverse engineering recently.
Check this out: github.com/httptoolkit/...
That code is modifying functions inside Flutter apps, without debug info, by *fingerprinting known chunks of assembly* for each CPU architecture, and then scanning memory to find them 🤯
Check this out: github.com/httptoolkit/...
That code is modifying functions inside Flutter apps, without debug info, by *fingerprinting known chunks of assembly* for each CPU architecture, and then scanning memory to find them 🤯
github.com
July 24, 2025 at 5:31 PM
I've been doing some ridiculously neat reverse engineering recently.
Check this out: github.com/httptoolkit/...
That code is modifying functions inside Flutter apps, without debug info, by *fingerprinting known chunks of assembly* for each CPU architecture, and then scanning memory to find them 🤯
Check this out: github.com/httptoolkit/...
That code is modifying functions inside Flutter apps, without debug info, by *fingerprinting known chunks of assembly* for each CPU architecture, and then scanning memory to find them 🤯
Love to see parody this good being delivered with a working Python implementation: robertheaton.com/minor-miner/
MinorMiner: we turn your kid's maths homework into Bitcoin | Robert Heaton
Hello! Hello! Welcome, welcome. My name is Hobert Reaton, and I’m here in this shabby motel conference room to present you with yet another once-in-a-lifetime investment opportunity.
robertheaton.com
May 17, 2025 at 10:52 AM
Love to see parody this good being delivered with a working Python implementation: robertheaton.com/minor-miner/
An exciting milestone: I just received my first "You must've removed/broken this feature, because ChatGPT said this would work but it doesn't" bug report, for a feature that has never existed 🤦
May 5, 2025 at 10:02 AM
An exciting milestone: I just received my first "You must've removed/broken this feature, because ChatGPT said this would work but it doesn't" bug report, for a feature that has never existed 🤦
Reposted by Tim Perry
🚀 Help shape the future of Node.js!
If you're a contributor or maintainer, the Next 10 Survey is your chance to make your voice heard. 🗳️ Take the survey + make a difference: linuxfoundation.research.net/r/2025nodene...
If you're a contributor or maintainer, the Next 10 Survey is your chance to make your voice heard. 🗳️ Take the survey + make a difference: linuxfoundation.research.net/r/2025nodene...
Node.js Next 10 Survey - 2025
Shape the future of Node.js by sharing your feedback!
linuxfoundation.research.net
May 1, 2025 at 4:17 PM
🚀 Help shape the future of Node.js!
If you're a contributor or maintainer, the Next 10 Survey is your chance to make your voice heard. 🗳️ Take the survey + make a difference: linuxfoundation.research.net/r/2025nodene...
If you're a contributor or maintainer, the Next 10 Survey is your chance to make your voice heard. 🗳️ Take the survey + make a difference: linuxfoundation.research.net/r/2025nodene...