Show HN: The World's Worst Factoring Algorithm – It Kind of Works (worldsworstfactoringalgorithm.com)

In my opinion it's a tragedy there are so few resources in using "Propositions as Types"/"Curry–Howard correspondence"[0] in didactics in tandem with teaching functional programming to teach structured proof-writing.

Many students do not feel comfortable with proof-writing and cannot dispatch/discharge implications or quantifications correctly when writing proofs and I believe that a structured approach using the Curry-Howard correspondence could help.

[0]: https://en.wikipedia.org/wiki/Curry%E2%80%93Howard_correspon...

jerf · 3h ago

While I am first in line to say that programming is math whether you like it or not, it is certainly the case that few programmers are using that sort of math in their heads when they are programming. I suspect that if, oh, about 60-70 years of trying to change that has not had any headway that there is little reason to suspect that's going to change in the next 30.

But you can sort of backdoor the idea with something like this: https://jerf.org/iri/post/2025/fp_lessons_types_as_assertion... I won't claim it is exactly the same, but it is certainly similar. Tell a programmer, "Hey, you can build a type that carries certain guarantees with it, so that the rest of the program doesn't need to be constantly validating it", a problem any 5+ year dev ought to be very familiar with, and I think you make more progress in the direction of this notion than a paper full of logic diagrams in a notation even most computer scientist undergrads will never encounter.

(I'm not even certain if I directly encountered that in my Master's degree. It's been a while. I think I did, but I think it was only one class, and not a huge part of it. I'm not sure because I know I did more with it on my own, so I can't remember if I was formally taught it or if I picked it up entirely myself.)

skybrian · 1h ago

While I generally agree with defining new types to assert that validation has been done, I think your blog post could have explained more about what kinds of validation are practical to do. For example:

> Address that represents a “street address” that has been validated by your street address to exist

What does it even mean to verify that a street address exists? Verifying real-world relationships is complex and error-prone. I’m reminded of the genre of articles starting with “Falsehoods programmers believe about names” [1].

In practice, the rules that can be enforced are often imposed by the system itself. It simply doesn’t accept data that isn’t in correct format or isn’t consistent with other data it already has. And we need to be cautious about what harm might be caused by these rejections.

Having the validation logic in one place will certainly help when fixing mistakes, but then what do you do about data that’s already been accepted, but is no longer “valid?” This sort of thing makes long-running systems like databases hard to maintain.

[1] https://www.kalzumeus.com/2010/06/17/falsehoods-programmers-...

fmbb · 1h ago

Far too many programmers forget that time passes.

js8 · 34m ago

I would recommend https://lean-lang.org/theorem_proving_in_lean4/, especially the first few chapters, if you're willing to use Lean.

mietek · 3h ago

One of the best modern resources is "Programming language foundations in Agda", co-authored by Wen Kokke and the same Philip Wadler, and used for teaching at multiple universities.

https://plfa.github.io/

ndriscoll · 2h ago

I've been thinking the same thing and mentioned it the other day[0]. When I was learning proofs, I saw people struggle with the idea of needing to choose a "generic" element to prove a forall statement, for example. I suspect it might make more sense if you taught things in terms of needing to write a function x=>P(x). I think in some cases, thinking in terms of programming might also change how we think about structuring things. e.g. define a data structure for a "point with error tolerance" (x, epsilon), then continuity says given a toleranced-point y* at f(x), I can find a toleranced-point x* at x such that f(x*) is "compatible" (equal at the base point and within tolerance) with y*. This factoring lets you avoid shocking new students with quantifier soup. Likewise the chain rule is just straightforward composition when you define a "derivative at a point" data structure Df((x,m))=(f(x), m*f'(x)).

This is not at all new, but I suppose it's currently a lot to ask students to learn proof mechanics while also unwinding multiple layers of definitions for abstractions. Computers can help do the unwinding (or lifting) automatically to make it easier to make small "quality of life" definitions that otherwise wouldn't be hugely useful when pen-and-paper-proofs would always be unwinding them anyway.

Basically, math education could look a lot like software engineering education. The concerns and solution patterns are basically the same. e.g. typeclasses are pretty much how mathematics does polymorphism, and are probably usually the right way to do it in programming too.

[0] https://news.ycombinator.com/item?id=43875101

talkingtab · 2h ago

The connection to intuitionism (see https://en.wikipedia.org/wiki/Intuitionism) gives this kind of thinking much broader appeal and application. It seems to me we live in a time so dominated by analytical thinking that we completely ignore other useful and effective modes.

johnnyjeans · 1h ago

Intuitionism in this context just means the proofs have to be constructive. (no proof-by-contradiction, or other half-assed academic hacks)

AnimalMuppet · 1h ago

Why do you say that proof-by-contradiction is a "half-assed academic hack"?

In particular, if someone isn't already an intuitionist or constructivist, what reason can you give that would be valid in their frame of reference?

johnnyjeans · 1h ago

Because they explain nothing and aren't useful for building new insights. It's not a direct verification of the existence or lack-of-existence of a thing with given properties. It relies on rules lawyering in a very specific logic to say something with basically no substance. Allowing it causes more problems for automated proofs than they solve, so long as your domain only deals with finites (which all real-world domains do exclusively.)

They're also generally much easier to create than constructive proofs, which makes them a convenient go-to for lazy academics.

ndriscoll · 39m ago

Proof by contradiction is fine for lack-of-existence (indeed, ¬P is defined in type theory as P -> false). It's not clear to me though whether LEM is actually okay in the "fast and loose reasoning is morally correct" sense (i.e. if it's okay as long as you don't cheat and do something like use a non-terminating loop or exception to make your ¬¬P) though? Are there cases where you didn't "obviously" cheat where it's "wrong" to use it?

mrkeen · 2h ago

This may not go over as well as you'd think.

I took Haskell in the same uni course with FSAs, Turing machines, Lambda calculus, natural deduction, Hoare logic and structural induction.

So I was exposed to the "base case & step case" of structural induction at the same time as learning about it in Haskell. And for whatever reason it didn't leave a good impression. Implementing it formally was harder and more error-prone than shooting from the hip in an IDE. What was the point!?

Now I smash out Haskell code daily as the quickest way to end up with little binaries that just-work-if-they-compile. It took me a while to realise that the upside of all this formality/mathiness is that other people did the proofs so that you don't need to. I get to take for granted that a boolean is true or false (and not some brilliant third value!) and that (map f . map g) is (map (f . g)).

edef · 45m ago

> I get to take for granted that a boolean is true or false (and not some brilliant third value!)

  [True, False, undefined] :: [Bool]

AnimalMuppet · 2h ago

“A man is rich in proportion to the number of things which he can afford to let alone.” ― Henry David Thoreau, Walden or, Life in the Woods

If I have to do the proof, then as you say, it's probably harder and (in many cases) more error prone than if I didn't use a proof. If the language can do it for me, and I get the lack of errors without having to do the work (and without the chance of me making the mistakes)? Yeah, now we're talking. (Yes, I am aware that I still have to design the types to fit what the program is doing.)

If a tool introduces complexity, it has to make up for it by eliminating at least that much complexity somewhere else. If it doesn't, the tool isn't worth using.

indyjo · 1h ago

As much as the concept blew me away when I first heard of it, I can't shake the feeling that the Curry-Howard correspondence is somehow mis-marketed as something that would immediately cater to programmers. The idea to encode propositions into types sounds enticing for programmers, because there are indeed a lot of cases where something needs to be conveyed that can't be conveyed using type systems (or other features) of common programming languages.

Examples include the famous "the caller of this function guarantees that the argument is a non-empty list" but also "the caller guarantees that the argument object has been properly locked against concurrent access before using the function".

However, in my experience, the community is more interested in mathematics than in programming and I don't know if anybody is really working to provide propositions-as-types to mainstream programmers. This is certainly because it is hard enough to prove soundness of a strict functional programming language as Agda or Rocq, much more for anything imperative, stateful, "real-world", non-strict, non-pure, concurrent, ill-defined, you name it.

So, for me the promise of "showing programmers that what they do is actually mathematics" is not really kept as long as the definition of "programmer" is so narrow that it excludes the vast majority of people who define themselves as programmers.

What I'm trying to say: I wish there were more efforts to bring more powerful formal methods, especially as powerful as dependent types, to existing mainstream programming languages where they could be useful in an industrial context. Or at least try to come up with new programming languages that are more pragmatic and do not force the programmer into some narrow paradigm.

Am I wrong? I hope so :)

ndriscoll · 1h ago

Programmers regularly do this stuff under various names/phrases. "Make illegal states unrepresentable", "parse, don't validate", "resource acquisition is initialization", etc. It's all about encoding the fact that your structure isn't just data, but also represents some proof of provenance that guarantees some property. Scala is an industrial language that gives more tools than you might usually find for this while also letting you be pragmatic and integrate with Java's massive ecosystem (though you quickly learn you'd rather not because Java code tends to not do a good job of leveraging types in a sane way).

AnimalMuppet · 1h ago

No, you're not wrong. I mean, in some circles, it's a battle to get programmers to use types at all. And, while not every proposition can currently be usefully encoded in a type, every type currently encodes a proposition. So if we can get the people who don't use types to start using them, that's probably the lowest-hanging fruit.

From there, every step to improve the expressiveness of types allows you to encode more within the type system. For example, one could think about encoding that non-empty requirement in C++ or Java collection types. It would be nontrivial - a number of things would need adjusting - but you could think about doing it. (Or rather, it would be nontrivial to do with static types. You could more easily make it throw if the condition was not satisfied.)

Your "properly locked" example is much harder. It would require telling the type system what the definition of "properly locked" is. Even at that, I can't see any way to do it as a static type. And that's a bummer, because I far prefer static types. I prefer my proofs to fail at compile time.

But my main point is, "proving" is not binary. Every incremental advance in what types can check proves more things, and therefore leaves the programmers having to prove less in their heads.

zmgsabst · 39m ago

Programmers use it all the time!

They turn diagrams representing the logic of the business domain into expressions in their type system of choice.

I think it’s a failure of pedagogy to focus on the abstract “prove stuff” sense, rather than the applied “domain diagram logic to types” at the core of what SDEs actually do. But turning a business domain diagram into a systems diagram into code is translating a category into another via embedding before translating into a type theory.

My opinion is that you need to start with that core and explain how the other features make that better, eg, how does polynomial monads address the weirdness between logging and errors (and errors in logging errors, etc)?

js8 · 40m ago

I really recommend [56] M. H. Sørensen and P. Urzyczyn. Lectures on the Curry-Howard isomorphism. Elsevier, 2006 on this topic. I found it online.

It is very self-contained and explains some interesting topics such as relation of intuitionist and classical logic.

aatd86 · 1h ago

Could have written further into set theory and set theoretic interpretation of types.

A proposition being a set intension.

marcusb · 3h ago

The author has given a few talks built around the same concept: https://www.youtube.com/watch?v=IOiZatlZtGU

Show HN: Clippy – 90s UI for local LLMs (felixrieseberg.github.io)

Show HN: Plexe – ML Models from a Prompt (github.com)

Show HN: Sheet Music in Smart Glasses

Show HN: Reverse Pac-Man (reverse-pacman.staticrun.app)

Show HN: Real-time AI Voice Chat at ~500ms Latency (github.com)

Show HN: Outpost – OSS infra for outbound webhooks and event destinations (github.com)

Show HN: The World's Worst Factoring Algorithm – It Kind of Works (worldsworstfactoringalgorithm.com)

Show HN: VectorVFS, your filesystem as a vector database (vectorvfs.readthedocs.io)

Show HN: PageQL – Embed SQL directly in HTML (pageql.dev)

Show HN: TextQuery – Query CSV, JSON, XLSX Files with SQL (textquery.app)

Show HN: FileKey – Encrypt files with passkeys, locally. No servers or accounts (github.com)

Show HN: Tkintergalactic - Declarative Tcl/Tk UI Library for Python (github.com)

Show HN: I built a 7-day calendar app – no months or years, just the next 7 days (weeklong.life)

Show HN: Klavis AI – Open-source MCP integration for AI applications (github.com)

Show HN: Paladin – An AI trigger to fix your sh*t production bugs

Show HN: Bracket – selfhosted tournament system (github.com)

Show HN: ProcASM – A general purpose, visual programming lanugage (procasm.temware.site)

Show HN: My AI Native Resume (ai.jakegaylor.com)

Show HN: Journelly for iOS: like tweeting but for your eyes only (in plain text) (xenodium.com)

Show HN: Driverless print server for legacy printers, profit goes to open-source (printserver.ink)

Show HN: CodeCafé – A real-time collaborative code editor in the browser (github.com)

Show HN: Storage Buddy – For efficient storage organization and retrieval (apps.apple.com)

Show HN: Free, in-browser PDF editor (breezepdf.com)

Show HN: API Testing and Security with AI (qodex.ai)

Show HN: Pinggy – A free RSS reader for the web (pinggy.com)

Show HN: Tired of bloated time trackers? Here's a dead-simple, free one I built (apps.apple.com)

Show HN: OpenRouter Model Price Comparison (compare-openrouter-models.pages.dev)

Show HN: I taught AI to commentate Pong in real time (github.com)

Show HN: Claity AI – An AI Aggregator with Smart Prompt Routing (Join Waitlist) (claity.netlify.app)

Show HN: Use Third Party LLM API in JetBrains AI Assistant (github.com)

Show HN: McPoogle: Search Engine for MCP Servers (mcpoogle.com)

Show HN: I built a synthesizer based on 3D physics (anukari.com)

Show HN: Low Fidelity Wireframe Powered by AI for Dashboard and UI Mockups (wireframes.org)

Show HN: MP3 File Editor for Bulk Processing (cjmapp.net)

Show HN: X-Terminate, a Chrome extension to remove politics from your X feed

Show HN: OSle – A 510 bytes OS in x86 assembly (github.com)

Show HN: Pipask – safer pip without compromising convenience (github.com)

Show HN: VoltAgent – Open-Source Observability-First TS AI Agent Framework (github.com)

Show HN: I built a mini macOS app to reveal my yearly subscription spending (appps.od.ua)

Show HN: Kubetail – Real-time log search for Kubernetes (github.com)

Show HN: Roons – Mechanical Computer Kit (whomtech.com)

Show HN: GPT-2 implemented using graphics shaders (github.com)

Show HN: Open source SVG icons made for UI design (glowui.com)

Show HN: Create your own finetuned AI model using Google Sheets (promptrepo.com)

Show HN: DistilKitPlus, a distillation framework between any LLMs (github.com)

Show HN: I built a hardware processor that runs Python (runpyxl.com)

Show HN: Hyperparam: OSS tools for exploring datasets locally in the browser (hyperparam.app)

Show HN: ART – a new open-source RL framework for training agents (github.com)

Show HN: Oci2git – Convert OCI container images into Git repositories (github.com)

Show HN: Sim Studio – Open-Source Agent Workflow GUI (github.com)

Propositions as Types (2014) [pdf]

Comments (22)