- > There was a reliance on visual cues for too long and ironically the accident would probably have never happened if the visibility had been poor.
Ironic indeed.
The incident reconstruction video a bit further down the article is well done:
- "Popular kids game Roblox faces pressure over allegations of child predators on its platform":
https://www.google.com/amp/s/www.msnbc.com/msnbc/amp/shows/t...
I read your comment carefully to see whether you've taken the GP's joke further, but alas :)
- I thought they have accidentally "responsibly disclosed" the vulnerability directly into a public mailing list, but the attached pdf is dated >3 months ago.
So assume it's a bit of an inaccurate phrasing.
EDIT: nope, the email itself seeks disclosure coordination etc. So yeah, oops.
- > the number of new sign ups went up 8x overnight.
What's the number if you adjust for quality of signups? E.g. how many people convert and how many people stay on and convert later.
- > The findings exposes a troubling asymmetry: at 0.1% vulnerability rates, attackers achieve an on-chain scanning profitability at a $6000 exploit value, while defenders require $60000, raising fundamental questions about whether AI agents inevitably favor exploitation over defense.
Seems not that good of thing on the balance :)
- I see some rough edges typical to LLM-powered products, but this is still a fantastic tool!
I think it needs push-to-talk mode, because it's picking up every surrounding noise.
- The sibling comment from M4v3R covered this well.
- This is the website of the presented project for those who prefer text:
An interesting and somewhat inspiring bit of trivia from the video: the creator barely understands modern image compression techniques (from their own words), but this hasn't stopped them from coming up with that impressive result.
- Would you mind explicitly indicating whether you have reviewed the submitted materials? And if so, why is it inferior to the material you linked?
Not trying to catch you, genuine interest.
- The article says they phish people into linking adversarial devices to their Signal:
> [...] threat actors have resorted to crafting malicious QR codes that, when scanned, will link a victim's account to an actor-controlled Signal instance. If successful, future messages will be delivered synchronously to both the victim and the threat actor in real-time, [...]
- > Google could, for example, make a _huge_ splash with the Pixel 10 by presenting this with the option of after-the-fact optical zoom...
Pardon my ignorance, but isn't this just an inferior version of after-the-fact photo capture?
On a serious note, what do you really mean by this? I have trouble imagining how that would work.
- From what I can remember, the overseeing bodies (whatever they are) are not convinced that requiring helmets would reduce serious incident rates, and in fact convinced that this would decrease overall bike ridership.
I'd speculate that the metric of "injuries per kilometer cycled" wouldn't budge because of a helmets requirement.
Can't find a good summary of this now, but some bits of this are googleable.
- If you squint hard enough, this is an implementation of a higher order garbage collection: MarkNothingAndSweepEverything.
There, formalized the approach, so you can't call it terrible anymore.
- He caveats this in the post, so he's not really dichotomizing.
IIUC, he implores educators to optimize for productive "workout" rather than fun. From my point of view, "workouts" must be rewarding on average, but need not be fun.
- They don't claim it's clearer than jQuery. The pitch, as I understand it: if you only need a few of those operations, it may be better to forego adding jQuery dependency.
- > I mean balance is a good skill to have, but could exceptional balance lead to some non-mechanical (less falls) longevity-inducing benefits?
I'd speculate that movement in general is conducive to better longevity. And I wouldn't underestimate the effect of "less falls". In my understanding, both injuries and lack of movement due to lifestyle begets even less mobility and other health problems.
And it's a steep downward spiral at an old age for an average person.
- That's a neat vulnerability chain and a great writeup. Appreciated the breakdown of the vulnerable code as well!
I'm always impressed by the simplicity of tricks like "Press F12 to try again", this is just so naughty :)
- Interesting, though wouldn't playback require a preinstalled codec in this case?
- Can't help but reminisce and think how wild those times were! Running a random executable downloaded over plain http/ftp just to play a song :exploding_head:.
Surprised there wasn't an MP3 to MS Office macros converter :D
- Thanks for sharing! Got an answer to my question about updates there in the FAQ:
> How exactly does the two years work?
> The two year timeframe applies to each software version that is made available. Methods of making software available include pushing a Git commit, publishing a package to a repository, or mailing out a CD in a tin. For example, one could clone a repo, run git checkout `git rev-list -n 1 --before="2 years ago" master`, and—if LICENSE.md is FSL—use that version under MIT or Apache 2.0.
- In the 5 or so videos I watched they were all rescued!
The app seems to be timing your response relative to response of a lifeguard: negative seconds if you noticed before a lifeguard jumps into the water, otherwise positive.
- From the linked article from this blogpost:
> There's also the question of ethical considerations around using AI for mass personalized outreach. While my experiment yielded positive results, with recipients appreciating the personalized touch, there's a potential slippery slope.
Unbelievable... I'm not a philosopher, but in my understanding, being ethical doesn't mean walking the line just fine so as people don't call you out on your bullshit.
The ethics of an action is of consideration both BEFORE and after executing it, and on the merit of the action itself!
- Not GP, but when I looked at the examples, I thought that those already look pretty useable in comic book-like storytelling to set the mood. I.e. in settings where smaller details of the scene are not relevant and are not taking away from the "larger product".
- Are all these companies still as successful in alternative universes where BVP did invest in them?
I guess in part it depends on whether BVP just gets on the cap table and stays the f out of the company direction :D
- > And why is palette not palette bar?
My guess that's because palette, the real world object, is something close to a bar itself, so it would be a bit of tautology. From the dictionary:
Palette: a thin board or slab on which an artist lays and mixes colours.
- I'm slightly skeptical as to whether these are the only (big) things that made researchers at the Xerox PARC so successful.
Doesn't societal, economic and political environment play a big role? (e.g. housing costs)
On another note, I do see "funding people, not projects" to be reflected in the bend of YC. I heard multiple times they would fund the founders even if they felt meh about their project in the current shape.
- There are a lot of people in the EU and other countries that don't need visas, so I'm not sure that's the right dial to use.
- Yep, exactly my thought. Start raising prices (via taxes or touristic accommodation quotas or whatever) and find that goldilocks zone balancing revenue and pressure on the environment/locals.
This illustrates the textbook argument for why mass surveillance is bad: these tools can quickly end up in the wrong hands.
Play silly games, win silly prizes.