What are the most upvoted users of Hacker News commenting on? Powered by the /leaders top 50 and updated every thirty minutes. Made by @jamespotterdev.
As if compliance had such a great success rate.
Slop is not about the quality of the rendering, it's about the lack of effort involved in generation. Generation is to creation as bubblegum is to food.
I think I saw this quote somewhere else on HN about a post lamenting how difficult it can be to make new friends after age 30 or so:
Finding new friends as an adult can be exceedingly difficult, but becoming a friend to someone is surprisingly easy.
Lots of people (and if I'm being honest I'm one of them, so no judgement) just sort of expect friendships to come to them. But if you actually do the hard (and somewhat socially risky) work of inviting people to do things, offering to help unsolicited, organizing gatherings, etc. new friendships are much easier to come by.
> I thought the reason for this to be a visa is because their fields' activities were in-person (acting in movies/plays/shows, academic life & research, sports training & leagues, etc). A streamer / OF worker is not like that as far as I know (but e-sports is).
Just like film work (which it is a kind of, in a sense), any place can be an OF set, but you need a set and, for performances with more than one performer, you generally need the performers at the same set. Physical proximity to both sets that you want to use and other performers who you might do recurring joint performances with seem to have obvious utility.
How fast you fire is a function of your savings and burn rate. The more you save and the lower your burn rate, the faster you fire.
https://www.mrmoneymustache.com/2012/01/13/the-shockingly-si...
Yeah, we've already seen that over the past few decades. It's both a limitation and a benefit, but until recently it was the only thing we had (well that, and just hiring another person to act as an LLM for us). LLMs are an upgrade.
Corporate wants you to find the difference...
Point being, in broad enough scope, search and compression and learning are the same thing. Learning can be phrased as efficient compression of input knowledge. Compression can be phrased as search through space of possible representation structures. And search through space of possible X for x such that F(x) is minimized, is a way to represent any optimization problem.
This German Twitch streamer desribes the concept as "Lemmings meets Settlers": https://www.twitch.tv/steinwallen
If it breaks the law in the EU, then the European employees staffing the data center refuse, because they don't want to go to jail or pay fines.
That's the entire point of setting it up like this.
Think of it like fast-food franchises. They have to sell the same food and use the same branding and charge the same prices. But if McDonald's tells you to start selling cocaine on the side, you tell them nope, that's not in the contract and I don't feel like going to prison.
@ u/tick_tock_tick
Maybe s/marriage/stable marriage/, then we can talk about growing population of multi-ringers.
Humans think this way. This isn't a cultural thing, it's human nature. We like positive people and dislike negative people. Ignoring the fact that political capital is a thing won't make it go away.
Not sure if this an AI generated post but the bullet points in groups of three make it look like one.
> How would nuclear deterrence work for small entities like Denmark or Taiwan against huge entities like US or China? it only works at similar sizes
It works as long as the harm that can be threatened is sufficient to outweigh any perceived gain of winning. Small states may not be able to sustain as large of an arsenal, but they also rarely offer as much value to a victor.
2022, https://www.internetsociety.org/resources/doc/2020/fact-shee...
> Client-side scanning reduces overall security and privacy for law-abiding users while running the risk of failing to meet its stated law enforcement objective... Client-side scanning in E2E encrypted communications services is not a solution for filtering objectionable content. Nor is any other method that weakens the core of the trusted and private communications upon which we all rely.
2023, https://www.internetsociety.org/wp-content/uploads/2023/12/C...
“Client-side-scanning, despite the claims of its proponents, does seem to involve some kind of level of access, some kind of ability to sort and scan, and therefore there's no way of confining that to good use by lawful credible authorities and liberal democracies.”
— Ciaran Martin, former chief executive of the UK National Cyber Security CentreQuite true, usually it comes from fortunate people that got good in life, or live in world regions where they can leave one job and walk the next one right in front.
Even if we reduce this to the supposedly lucky ones to work in technology, in many countries that is associated as any other kind of office job, very very far away from SV culture.
Worry not, you can't change the US but you can leave for a developed country.
This is my Substack newsletter which bundles several posts together into a weekly-ish email - the original post for this one was https://simonwillison.net/2026/Jan/12/claude-cowork/
> It’s possible to simultaneously believe that ICE has a clear and ethical mandate while also believing that they are going about fulfilling that mandate via bad methods that need to change.
Yes, that it is a set of things that it is possible one could believe.
That is not an argument for it being a set of things that one ought to believe, as opposed to that ICE has a legal mandate that it isn't actually pursuing, and the mandate which it is pursuing is both intentionally murky, unethical to the extent that evidence suggests what it is, and also pursued by methods that are illegal and inhumane even irrespective of the bad ends that they are directed at.
> It’s possible to simultaneously believe that people shouldn’t be marked as intrinsically “illegal” while also believing that an immigration queue should exist and skipping it is immoral and should be illegal.
Again, that it is certainly a set of things it is possible to believe, but it seems pretty silly to believe. A queue is at best an undesirable consequences of particular choices about how to manage concerns about quantitative levels of immigration and particular impacts those levels might have, not an ideal to be pursued.
> Nuance is possible.
“X is possible” is not an argument is that X is, factually or morally as appropriate to the shape of the proposition at issue, justified. And an extended argument that sets of beliefs are possible is something people only engage in when they recognize that they are unable to make the case that they are justified, but nevertheless want to suggest that people are bad for failing to adopt them.
"We have the problem" and "it's not a problem" aren't the same thing.
https://www.cnn.com/2026/01/08/tech/elon-musk-xai-digital-un...
> Publicly, Musk has long advocated against “woke” AI models and against what he calls censorship. Internally at xAI, Musk has pushed back against guardrails for Grok, one source with knowledge of the situation at xAI told CNN. Meanwhile, his xAI’s safety team, already small compared to its competitors, lost several staffers in the weeks leading up to the explosion of “digital undressing.”
Suspended Ford worker ends fundraisers after topping $800,000 in 1 day - https://www.mlive.com/news/2026/01/suspended-ford-worker-end... - January 15th, 2026
This movie
based on the work of Robert Putnam is an essential backgrounder on the topic.
Yet, if you're concerned about Gen Z, 2-4 are aspirational at best. Churches, clubs, live music events, and every other group my son attends have a lot of people who are 35+ and children that tag along but the 18-30 demo is almost absolutely absent at events away from the local colleges and universities. [1] It's quite depressing for someone his age who is looking to connect with his cohort in person.
Leaders of groups are somewhere between outright hostile, completely indifferent, or well-meaning but unable to do anything about the "cold start" problem.
I'm sympathetic to the argument of Ancient Wisdom Tradition (AWT) practitioners that secularism is to blame, but my consistent advice to anyone is you can control what you can control and that secularism would not have encroached as much as it has if AWT organizations weren't asleep at the switch if not doing the devil's work for him.
Personally in the last year I've found a lot of meaning being an event photographer for this group
https://fingerlakesrunners.org/
where I know you can find some people in the 18-30 hole because I read their age off their bibs.
My son is doing all the ordinary things and I am supporting him in all the ordinary ways but I do believe extraordinary times require extraordinary methods.
I can't advise that anyone follow my path but I felt a calling to shamanism two years ago which recently became real, I "go out" as
https://mastodon.social/@UP8/115901190470904729
who is a "kidult" and who embodies [2] the wisdom, calm and presence of a 1000-year old fox who's earned his nine tails. In one of the worlds I inhabit I'd call this a "platform" for gathering information and making interventions as it builds rapport and bypasses barriers and the social isolation of Gen Z is my top priority for activism in my circle of influence.
[1] ... and our data there seems to indicates that Asian students seem to be OK and white kids, if they do anything at all, drink.
[2] ... at least aspires to
Lifetime curve is something they can control. If they can predict replacement rate, makes sense to make chips go bad on the same schedule, saving on manufacturing costs.
Because it turns out we need lettuce, too?
> If the government has already been disrupted, then who is taking down the Internet?
A disrupted regime can still be a dangerous regime. The Islamic State largely couldn't govern, but they could certainly get organized enough to wreck shit.
> It only works if the government has a separate sufficient infrastructure, or completely controls routing on shared infrastructure. Neither of those are true in the U.S.
Maybe it's hopelessly optimistic of me, but I like to think the giant organization that includes FEMA has some plans for what to do if the internet isn't available.
> To pick just one recent newsworthy example, the federal government does not have a way to deny Signal messaging to their opponents, while preserving their own use of it.
But could they survive without it? Probably. The protocol is open source.
I'm betting this is on the front page today (as opposed to any other day; Juice is very neat and doesn't need us to hype it) because of our Sprites post, which goes into some detail about how we use Juice (for the time being; I'm not sure if we'll keep it this way).
The TL;DR relevant to your comment is: we tore out a lot of the metadata stuff, and our metadata storage is SQLite + Litestream.io, which gives us fast local read/write, enough systemwide atomicity (all atomicity in our setting runs asymptotically against "someone could just cut the power at any moment"), and preserves "durably stored to object storage".
I'm not entirely convinced by the anecdote here where Claude wrote "bad" React code:
> But in context, this was obviously insane. I knew that key and id came from the same upstream source. So the correct solution was to have the upstream source also pass id to the code that had key, to let it do a fast lookup.
I've seen Claude make mistakes like that too, but then the moment you say "you can modify the calling code as well" or even ask "any way we could do this better?" it suggests the optimal solution.
My guess is that Claude is trained to bias towards making minimal edits to solve problems. This is a desirable property, because six months ago a common complaint about LLMs is that you'd ask for a small change and they would rewrite dozens of additional lines of code.
I expect that adding a CLAUDE.md rule saying "always look for more efficient implementations that might involve larger changes and propose those to the user for their confirmation if appropriate" might solve the author's complaint here.
You will need the CEO to watch over the AI and ensure that the interests of the company are being pursued and not the interests of the owners of the AI.
That's probably the biggest threat to the long-term success of the AI industry; the inevitable pull towards encroaching more and more of their own interests into the AI themselves, driven by that Harvard Business School mentality we're all so familiar with, trying to "capture" more and more of the value being generated and leaving less and less for their customers, until their customer's full time job is ensuring the AIs are actually generating some value for them and not just the AI owner.
In practice, that's a form of censorship since it inhibits the ability of people in Denmark to discover domestic news articles through search.
> they purposefully named themselves after a super villains magical spy apparatus…
Worse, that spy apparatus inherently corrupts its users.
Pick the items you want to mirror and seed them via their torrent file.
https://help.archive.org/help/archive-bittorrents/
https://github.com/jjjake/internetarchive
https://archive.org/services/docs/api/internetarchive/cli.ht...
u/stavros wrote a design doc for a system (codename "Elephant") that would scale this up: https://news.ycombinator.com/item?id=45559219
(no affiliation, I am just a rando; if you are a library, museum, or similar institution, ask IA to drop some racks at your colo for replication, and as always, don't forget to donate to IA when able to and be kind to their infrastructure)
There are a number of little projects like that but I'm not aware of any that have attained liftoff.
Javascript was a weird exception, being rigidly the only thing available in the browser for so long and thus the only acceptable "compile target" for anything you want to run in the browser. In general I can't name very many instances of "write in X and compile it to Y", for some Y that isn't something you are forced to use by a platform, being all that successful. (See also assembler itself.) The Javascript world gives a false signal of this being a viable approach to a project; in general it doesn't seem to be.
(Note this is a descriptive claim, not a normative one. I'm not saying this is how it "should" be. It just seems to be the reality. I love people trying to buck the trend but I am a big believer in realizing you are trying to buck a trend, so you can make decisions sensibly.)
> Make a social network that is centered around people who live in a 1 kilometer radius…
Don't know if they still do, but Nextdoor required address verification via a postcard early on. I was pretty shocked at what some people in my area would post under their real names and locations.
(And well outside the realm of political nonsense. Someone posted a pic of their toddler's first poop in the potty.)
I think the power of shame has reduced significantly in recent years.
As Steinbeck is often slightly misquoted:
> Socialism never took root in America because the poor see themselves not as an exploited proletariat, but as temporarily embarrassed millionaires.
Same deal here, but everyone imagines themselves as the billionaire CEO in charge of the perfectly compliant and effective AI.
Stay tuned, I have an idea to soak up global capital for these projects.
@MS Folks: Can the Internet Archive get the physical media?
> The point being that food is more and less than chemistry. It's more and less than thermodynamics or heat transfer. It's art.
It differs from chemical process engineering in that the latter actually cares about consistency and quality of outcome.
Kitchens are rarely even equipped properly for cooking to be anything other than art. Fortunately, humans aren't particularly discerning about taste either :).
On macOS with current OBS, "Screen Capture" will include the system audio automatically, while "Window Capture" will not.
In the 2000s, in the tech world, the open source successes that were being talked about was always Apache and Linux.
When Wikipedia started gaining a bit of traction, everyone made fun of it. It was the butt of jokes in all the prime time comedy shows. And I always felt like telling the critics - "Don't you see what is happening? People all over the world are adding their own bits of knowledge and creating this huge thing way beyond what we've seen till now. It's cooperation on an international scale! By regular people! This is what the internet is all about. People, by the thousands, are contributing without asking for anything else in return. This is incredible! "
A few years later, Encyclopedia Britannica, stopped their print edition. A few years after that I read that Wikipedia had surpassed even that.
The amount of value Wikipedia brings to the world is incalculable.
And I'm very fortunate to be alive at a time where I can witness something at this scale. Something that transcends borders and boundaries. Something that goes beyond our daily vices of politics and religion. Something that tries to bring a lot of balance and objectivity in today's polarized world.
Thank you, Wikipedia.
I wish I'd had more space to write about the global orchestrator design, because it's fun.
The Fly Machines orchestrator goes through some trouble to keep the source of truth for each VM decentralized, owned by the physical it runs on. But there's still global state --- apps, organizations, services. That stuff is all on Postgres. Postgres keeps up with it just fine but I'd be lying if I didn't say we're always looking out the corner of our eyes on metrics.
The global state for Sprites is on object storage. Each organization gets a separate SQLite database, and that database is synchronized to object storage with Litestream.io (Lightstream is load bearing in a bunch of places here; solid as a rock for us).
I think people really still sleep on the "multiple SQLite database" backing store design.
Same thing happened to Sears.
https://www.versobooks.com/blogs/news/4385-failing-to-plan-h...
> He radically restructured operations, splitting the company into thirty, and later forty, different units that were to compete against each other. Instead of cooperating, as in a normal firm, divisions such as apparel, tools, appliances, human resources, IT and branding were now in essence to operate as autonomous businesses, each with their own president, board of directors, chief marketing officer and statement of profit or loss. An eye-popping 2013 series of interviews by Bloomberg Businessweek investigative journalist Mina Kimes with some forty former executives described Lampert’s Randian calculus: “If the company’s leaders were told to act selfishly, he argued, they would run their divisions in a rational manner, boosting overall performance.”
I would assert that Microsoft's management always behaved as if they repented to have added F# to VS 2010, with all the maintenance guarantees it implies, throughout the years they have searched how to sell it.
Nowadays CLR has effectively changed meaning to C# Language Runtime, and ironically the JVM is more lively as the original goal of the CLR back in 2001.
I saw a "web browser" that was AI generated in maybe 2k lines of python based on tkinter that tried to support CSS and probably was able to render some test cases but didn't at all have the shape of a real web browser.
It reminds of having AI write me an MUI component the other day that implemented the "sx" prop [1] with some code that handles all the individual properties that were used by the component in that particular application, it might have been correct, the component at all was successful and well coded... but MUI provides a styled() function and a <Box> component, either one of which could have been used to make this component handle all the properties that "sx" is supposed to handle with as little as one line of code. I asked the agent "how would I do this using the tools that MUI provides to support sx" and had a great conversation and got a complete and clear understanding about the right way to do it but on the first try it wrote something crazy overcomplicated to handle the specific case as opposed to a general-purpose solution that was radically simple. That "web browser" was all like that.
[1] you can write something like sx={width: 4} and MUI multiplies 4 by the application scale and puts on, say, a width: 20px style
The US has done this historically for allies, too, a small deployment along with a public reiteration of a defense commitment isn't saying the troops are intended to be sufficient to resist a threat, it is intended to show that going from threat to war means war with not just the territory attacked, but the power deploying (even small) forces, and potentially all of their available capabilities.
This is especially the case when the tripwire force is deployed by a nuclear power on the territory of a non-nuclear power facing a conventional threat from a nuclear power.
I surely did not find fun programming MIPS vs 68000/80x86, given how limited the Assembly and macro Assemblers were.
RISC-V seems equally bad in this regard.
Intentionally choose community and the effort it takes to build and cultivate it [1] [2] [3] [4] [5]. People are work, but you cannot live without community [6].
[1] https://web.archive.org/web/20250212233145/https://www.hhs.g...
[1] https://thepeoplescommunity.substack.com/
[3] https://www.tiktok.com/@amandalitman/video/75927501854034854...
[4] https://boingboing.net/2015/12/21/a-survivalist-on-why-you-s...
[5] https://boingboing.net/2008/07/13/postapocalypse-witho.html
[6] How A Decline In Churchgoing Led To A Rise In ‘Deaths Of Despair’ - https://news.ycombinator.com/item?id=46408406 - December 2025 (2 comments)
> I want to present the side that they are in fact doing exactly what many people in our society thinks needs to be done (i.e. they are not immoral).
The Nazis were doing what many people in their society thought needed to be done.
It is a rather uncommon position (though, ironically, frequently a strawman position falsely attributed to their opponents to mock them by roughly the same political faction that backs the current ICE action) that “morality” is just whatever a sufficiently large number of people currently prefer.
I'm seeing this in a lot of places nowadays.
I'm too old for this: not only am I not going to get called up, I also remember the Cold War, where everyone really did think there was a significant risk of a nuclear exchange at any time.
Mind you, the logic of MAD was a lot more .. logical? The canonical example of a cold game theoretic perspective leading combined with enough irrational paranoia to make an unstable situation.
We're more likely to have a war over a dumb tweet.
You can see in this threat that confronting people with the ramifications of their actions causes them to double down. They'll just come up with more and more justifications of why the victims deserve it. Same as every mass atrocity.
Well, someone is tasting a bit of their own medicine.
Today, I am revising Portuguese grammar and so I've mostly been exploring the things I can remember well and those that I can't. Portuguese has a lot of verb forms that I need to get right. But it also has really interesting constructions like "ir ter com" which literally means "to go to have with" but is an idiomatic way of saying "to meet up" (with someone) and I keep remembering and forgetting it.
https://en.wikipedia.org/wiki/Safety-critical_system
A lot of people in the space just drop the “systems” when talking about it.
There's a reason why I'm not on X...
I didn't: no traffic before sharing, none since.
The main reason for Protonmail's existence is that they are not hosted in the USA.
And it's aiming to go further back.
Near ore deposits the map resolution needs to go up considerable beyond the 'few KB of data' to keep it working. Nautical charts are simpler because there is as a rule a bit more distance between the compass and any anomalies but in certain mineral rich areas of the world that definitely is not the case.
"well, if public transit documentation suddenly starts being terrible, will it lead to an immediate, noticeable drop in revenue? Doubt it."
First, I understand what you're saying and generally agree with it, in the sense that that is how the organization will "experience" it.
However, the answer to "will it lead to a noticeable drop in revenue" is actually yes. The problem is that it won't lead to a traceable drop in revenue. You may see the numbers go down. But the numbers don't come with labels why. You may go out and ask users why they are using your service less, but people are generally very terrible at explaining why they do anything, and few of them will be able to tell you "your documentation is just terrible and everything confuses me". They'll tell you a variety of cognitively available stories, like the place is dirty or crowded or loud or the vending machines are always broken, but they're terrible at identifying the real root causes.
This sort of thing is why not only is everything enshittifying, but even as the entire world enshittifies, everybody's metrics are going up up up. It takes leadership willing to go against the numbers a bit to say, yes, we will be better off in the long term if we provide quality documentation, yes, we will be better off in the long term if we use screws that don't rust after six months, yes, we will be better off in the long term if we don't take the cheapest bidder every single time for every single thing in our product but put a bit of extra money in the right place. Otherwise you just get enshittification-by-numbers until you eventually go under and get outcompeted and can't figure out why because all your numbers just kept going up.
The problem with the OpenSSL 3 codebase isn't security; many organizations, including the OpenSSL team itself, have been responsible for pulling out of the security rut OpenSSL was in when Heartbleed happened. The OpenSSL 3 problem is something else.
An Electrical Engineering course, or a book on practical circuit design.
I've been a farmer and I've been a software developer, and farming was just a "this is work that puts money on the table", whereas software development is what I really find fulfilling. I entirely agree with you that it's idolized too much (together with carpentry), and yes, do whatever makes you happy, for some people it's one, for some it's the other.
There used to be a site "postcodeine" which would overlay the prefixes onto a map as you typed, so you could enter "SW" or "KY" etc and watch it narrow down the area by keystroke.
Given that the senate just voted against the bill to limit Trump's power in Venezuela I think it is clear that the brakes are failing. The two that defected gave some handwaving reasons for doing so (apparently Rubio will swing by and explain everything) so now Trump is even more emboldened than before.
Surprised “F1” doesn’t show up in this article.
It struck me that a killer use would be riding shotgun with your favorite driver.
It wasn't a philosophical disagreement, they needed some geo info from the DNS server to route requests so they could prevent spam and Cloudflare wasn't providing it citing privacy reasons. The admin decided to block Cloudflare rather than deal with the spam.
Same, whenever I try to dictate something I always umm and ahhh and go back a bunch of times, and it's faster to just type. I guess it's just a matter of practice, and I'm fine when I'm talking to other people, it's only dictation I'm having trouble with.
The goal seems to be to create essentially the geopolitics of 1984 (the Orwell novel, not the historical year), with the superstates of Oceania, Eurasia, and Eastasia replaced (for now) with three imperial zones of influence whose metropoles are the US, Russia, and China (this is the real substance of the “Donroe Doctrine”, though the overt part of that focuses on only the US-centered zone of control), though these imperial zones of control becoming de facto or de jure superstates isn't out of the question.
As in 1984, visible geopolitical conflict with a sufficient perceived degree of real kinetic threat between the empires serves the rulers of each empire by providing the external threat to maintain the apparent need for strong internal control, it also facilitates the transition from the current international status quo to the desired end state by providing a set of threats intended to coerce lesser powers to accede to the dominion of their respective regional overlords.
>I think stuff like this, is trying to recreate a world that doesn't exist anymore
And that's fine. We should build the world as we want it to be, not accept whatever shit our era gives us.
This includes changes to some things to how they were in the past (if they were better) and changes to other things to how we envision the future.
Yes, (HT|X)ML have a semantic model that that can be represented in Lisp syntax, but so does everything else (well, every programming and data representation language, at least.) They don't do it with the same (or simple parallel) single simple syntactic fiundaton as Lisp, but with something more complex.
>If he needed his app to be 30% faster he would have made it so
That still validates "In short, the maximum possible speed is the same (+/- some nitpicks), but there can be significant differences in typical code" the parent wrote
It would be marginally useful even at $500, annoying to use for long stretches, and very expensive.
In this economy it's dead in the water as anything other than a niche product for specific uses or an expensive geek toy. As is, it's not getting anywhere near iPod/iPhone status.
I wish we would see it less, https://owasp.org/Top10/2025/
5th place.
It is... surprisingly readable, if you have any experience with QR code generation.
MS started aggressively using AI to generate their documentation a year or two ago. It did not make things better at all, and in fact quite the contrary. Awkwardly verbose wording, contradictory sentences in different paragraphs of the same article, etc. That said, they were already on a trajectory of decline.
People need to take the name Chicago out of their mouths. If a message board thread is a poker game, bet the bank when someone tries to make a political argument using "Chicago" that they've never set foot here. Someone who grew up in Brussels would be approximately as safe in Chicago as they would anywhere in the United States --- less safe than in Brussels, because of overall automobile and firearms deaths in America, but no less safe than in any major city.
(In fact, your life expectancy in Cook County is several years higher than in the rural south.)
The gun violence in Chicago is tightly constrained to places and populations unfamiliar to the median Belgian. Chicago is a city of neighborhoods and structurally segregated by almost a century of redlining and "urban renewal" that created hyperconcentrated pockets of crime. It's a human tragedy and fully worth dunking on, but it has nothing whatsoever to do with how safe a visitor would be to the city.
(Chicago is also not even in the top 10 in US cities by index crimes, but whatever).
https://zackofalltrades.com (personal blog)
> The midterms are this year. If the public don't like the status quo the Democrats will gain majorities and things should change.
Only the House is fully elected every two years, only 1/3 of the Senate is, and the swing states in Class II (the set up in 2026) are already held by Dems.
Further, switching control of one or both Houses of Congress doesn't give the power to pass laws without also controlling the White House; it does give the power to block laws, but that may not do much to constrain an executive that is already flagrantly violating the law even with a partisan trifecta. And, while impeachment requires a simple a majority in the House, conviction and removal on impeachment charges takes 2/3 of the Senate, so even winning a majority wouldn't put that in reach.
Because it's impossible for fundamental reasons, period. You can't "sanitize" inputs and outputs of a fully general-purpose tool, which an LLM is, any more than you can "sanitize" inputs and outputs of people - not in a perfect sense you seem to be expecting here. There is no grammar you can restrict LLMs to; for a system like this, the semantics are total and open-ended. It's what makes them work.
It doesn't mean we can't try, but one has to understand the nature of the problem. Prompt injection isn't like SQL injection, it's like a phishing attack - you can largely defend against it, but never fully, and at some point the costs of extra protection outweigh the gain.
And metric containers and recipes.
In metric countries, a small kitchen scale is very common. The US seems to run on volume, rather than weight.
So the drama.
What do I read to find out what this is about? And should I care?
Because we've judged it to be worth it!
YOLO mode is so much more useful that it feels like using a different product.
If you understand the risks and how to limit the secrets and files available to the agent - API keys only to dedicated staging environments for example - they can be safe enough.
Is it a restriction or just a disclaimer? "Not intended" doesn't necessarily mean "prohibited".
Inhaling large quantities of any type of fiber is not good, cotton included: https://en.wikipedia.org/wiki/Byssinosis
But if anything I'd think plastic fibers are less likely to have any effects, because they're inert.
Burry has been predicting another bubble every two weeks since the big short.
Congrats! It's insane to me that you'd have to defend any of this. I hope the visit went well.
Neat. Similar to https://www.suncalc.org, which also lets you zoom to the neighborhood level. Very useful to figure out when/where sunlight will hit your house.
Never cared much for either. Both are just insanely overpriced "maker" crap that ultimately comes from China anyway. You can get cheaper at AliExpress, LCSC etc.
What makes you think this anonymous 13 year old is going to get good advice from anonymous strangers on the internet?
> Now kids can't have these accounts, so they can only access youtube without signing in. Meaning zero parental controls and monitoring
This sounds like a device-control problem. Banning social media and then regulating devices in school should go a long way towards defusing the challenge.
Even with anonymous log-in, the new status quo is a release from algorithmic targeting. (If YouTube is building shadow profiles and knowingly serving under-16-year olds, that can be fixed with enforcement.) I suspect this group of kids will grow up fitter despite the reduced opportunities for helicopter parenting. There are lots of parents who never try, or try and fail, to control and monitor their kids’ online activities. Way more than those who effectively do so.
Meh, if you want access to the API then pay for the API. It's as simple as that.
Unfortunately, prompt injection isn't like SQL injection - it's like social engineering. It cannot be solved, because at a fundamental level, this "vulnerability" is also the very thing that makes the language models tick, and why they can be used as general purpose problem solvers. Can't have one without the other, because "code" and "data" distinction does not exist in reality. Laws of physics do not recognize any kind of "control band" and "data band" separation. They cannot, because what part of a system is "code" and what is "data" depends not on the system, but the perspective through which one looks at it.
There's one reality, humans evolved to deal with it in full generality, and through attempts at making computers understand human natural language in general, LLMs are by design fully general systems.
That's like saying "a lot of Silicon Valley's success is attributable to people." It's not a useful statement without specificity.
Key Silicon Valley companies like Fairchild and Hewlett-Packard were founded during the highly restrictive immigration policy that prevailed between the 1924 Johnson-Reed Act and the 1965 Hart-Cellar Act. Intel was founded just a few years after. A lot of golden age Silicon Valley companies were founded around or shortly after 1970, when the U.S. foreign-born population hit the lowest point in American history, under 5%.
Of course, even during that period, we allowed in German scientists, leading professors, etc. It's a handful of people. The highly selective immigration policy that prevailed from 1924-1965 is likely a key reason why so many Silicon Valley companies were founded by immigrants. That has very little to do with this story, which is about reversing mass immigration.
> "This attack is not dependent on the injection source - other injection sources include, but are not limited to: web data from Claude for Chrome, connected MCP servers, etc."
Oh, no, another "when in doubt, execute the file as a program" class of bugs. Windows XP was famous for that. And gradually Microsoft stopped auto-running anything that came along that could possibly be auto-run.
These prompt-driven systems need to be much clearer on what they're allowed to trust as a directive.
> SCOOP: Thinking Machines has terminated its CTO, Barret Zoph, due to unethical conduct according to two sources familiar with the matter. CEO Mira Murati announced the news at an all-hands with employees today. Soumith Chintala will be taking over as CTO.
https://bsky.app/profile/kylierobison.com/post/3mcg7imhrq22s
How are you going to store up memories if you're spending the whole time working to satisfy the demands of your financial overlords?