Base + bonus + annual refresher should be in the 700s annually. Likely the way this gets to $1M is with stocks going up and stacked refreshers (getting a couple annual refreshers while the initial grant is still vesting).

But they shouldn't be reporting stocks going up or refreshers to Levels

They should be reporting offer letters that get verified by Levels admins

So its $1,000,000

At https://www.levels.fyi/addcomp.html I see someone could upload an offer letter, or a W2.

I see

So its likely heavily factoring in stock price appreciation as the RSUs vest and have a portion withheld for taxes based on current value.

Wouldn't checking for remote jobs around your area sort of defeat the purpose?

Stocks (and therefore RSUs) are up. I joined a FANG in 2019 with $500k RSUs. Now I have $740k in unvested RSUs, including $600k remaining from the initial grant.

Jesus that's unreal. You devs make so freaking much (coming from a penniless non-dev trying to remain at peace with his rsu package)

Yup, if you’re a dev and not a millionaire after 10 years you did it wrong IMO.

I feel you, and I spent most of my time at non-FANG earning much less.

The PDF doesn't mention trading rules. You can refer to tournament rules or Monopoly computer games for what is or is not allowed -- and these types of trades are not allowed.

If your object IDs are 1, 2, 3... then attacker can check all the IDs. If instead each object ID is a 256-bit UUID, then the attacker can't make a query for every possible object ID.

I'm not sure I understand the concern here. Typically there is a logged-in user, and server asks Zanzibar if the user can or cannot access some document. Whether a certain document exists or not isn't typically a secret i.e. you might get HTTP 403 (forbidden) or 404 depending on whether or not the document exists.

Please see my other comment: https://news.ycombinator.com/item?id=26983342

My concern isn't access to single objects, but rather filtering of complex search results.

This very much depends. GitHub for example will return 404 for a private repository when you are logged out. The idea is balancing HTTP semantics with information leaking.

Does the 404 a logged out repo return in the same amount of time as a repo that doesn't truly exist?

Even though FANG and startups are giving similar whiteboard interviews, they are evaluating on different dimensions to select candidates that fit their respective companies and the specific position. Reducing the Leetcode skill to a single number would not work well for this reason.

The difference is that what you can learn on StackOverflow might actually be useful on the job.

Also don't forget all the blog posts about how hiring is broken, particularly because high school dropouts are able to put hundreds of hours into the game while senior swe are busy with their jobs and families.

A majority of the time is spent on the "LeetCode grind." You can evaluate your own progress while you solve practice problems by checking time and checking how many solutions are correct on the first submit. Most likely 1 week would barely be enough to establish your baseline performance per category (DP, trie, etc.).