Hacker Neue

Preferences
nstart
Joined 3,778 karma
[ my public key: https://keybase.io/kiriappeee; my proof: https://keybase.io/kiriappeee/sigs/96k3PXwMa2aveYHJWNbYvfGtJsqHVZ36pFm-4iN3HPM ]

Blog at https://adnanissadeen.com/blog

  1. nstart
    I initially felt a bit offended when I saw this. Then I thought about it and at the end of the day there's a decent amount of infrastructure that goes into displaying the build information, updating it, scanning for secrets and redacting, etc.

    I don't know if it's worth the amount they are targeting, but it's definitely not zero either.

  2. nstart
    Curious... Why does VPN access disruption suggest the breach may be deeper than initially disclosed?

    My understanding is that this prevents anonymous access to servers which would help during investigation if any further unauthorized access showed up. But it doesn't confirm that unauthorized access continued. Just curious how you are thinking about this though.

  3. nstart
    Time pressures during christmas/holidays mean that the original calendars were becoming too stressful to handle. Seen several calendars switching to 12 consecutive days or 1 every 2 days challenges.
  4. nstart
    Yea. I can see what the parent is getting at. However the linked PR's contain the employee name. Their username is the same name mentioned in the article. So it would have been the same even if the author had just mentioned the username instead (which would be completely acceptable in all cases). I think junior employee or not, it's clear that they have the autonomy to check a PR for errors and fix it. So it's very much on them.
  5. nstart
    Welp. I wish I had read the comments first to discover that this is AI generated. On the other hand, I got to experience the content without bias.

    I opted to give it a try instead of reading the comments and the book was arranged in a super strange way where it's discussing concepts that a majority of programmers would never be concerned with when starting out with learning a language. It's very different to learn about some of these concepts if you are reading a language doc in order to work on the language itself. But if you want to learn how to use the language, something like:

      > Choose between std.debug.print, unbuffered writers, and buffered stdout depending on the output channel and performance needs.
    is absolutely never going to be something you dump into chapter 1. I skimmed through a few chapters from there and it's blocks of stuff thrown in randomly. The introduction to the if conditional throws in Zig Intermediate Representation with absolutely no explanation of what it is and why it's even being discussed.

    Came here to comment that this has been written pretty poorly or just targets a very niche audience and now I discover it's slop. What a waste of time. The one thing AI was supposed to save.

  6. nstart
    Also, if you are on Google Workspace, then everything changes there too. Activating the Gemini CLI is a smile while crying emoji kind of activity if you are trying to provide this to an entire organization [1]

    [1]: https://github.com/google-gemini/gemini-cli/blob/main/docs/c...

  7. nstart
    Just read the research from the source (https://sites.google.com/view/invitation-is-all-you-need/hom...). This and the MCP attacks really feel like the era of sql injection attacks all over again. Except this time it's non deterministic and even the best minds are kind of struggling to make the LLMs jail break proof.

    In the midst of all of this, Microsoft is looking to integrate MCP into the OS layer. We are truly back to a move fast and let things break era

  9. nstart
    This! It's actually quite frustrating to see how people are dismissing this report. A little open mindedness will show just how wild the possibilities are. Today it's GitHub issues. Tomorrow it's the agent that's supposed to read all your mails and respond to the "easy" ones (this imagined case is likely going to hit a company support inbox somewhere someday).
  10. nstart
    This is especially hard in the example highlighted in the blog. As can be seen from Microsoft's promotion of GitHub coding agents, the issues are expected to act as instructions to be executed on. I genuinely am not sure if the answer lies in sanitization of input or output in this case
  11. nstart
    Definitely agree on the left clicking of mines requiring something a little more harsh. Possibly a 2 mistake max before exploding you out of the game or maybe a cool down timer which doubles on each explosive error.
  13. nstart
    He's a kid from Bangladesh who is studying and isn't even in uni yet. He's mentioned on reddit that his parents are doing the classical asian parent thing of pushing him to become a doctor or engineer and right now he's busy studying for the medical entry exam. If he doesn't get through that he might consider a computer science thing. So basically the whole neovim plugin is a side quest at the moment.

    Always boggles my mind how raw talent, dedication, and integrity can all come together and just by pure chance of life, you can just miss out on a world of opportunity where people with far less dedication end up with so much more. Hope that this little moment on the internet actually results in a bigger opportunity for him eventually.

  14. nstart
    For what it's worth, I know Namecheap gets a meh rep, but we've been on the receiving end of several phishing/copyright reports and have responded across the spectrum in terms of time span. We've responded immediately. We've responded with an hour or so to go. In all cases, Namecheap has somehow responded quickly and resolved the issue.
  15. nstart
    Yes. I can without reservation, recommend Brent Eviston's "art and science of drawing" series. Best taken via skillshare (grab a discount code from some YouTuber if you are trying it for the first time) . I didn't take his drawing laboratory series since it hadn't been released at the time. That said, just follow his courses in order:

    - Basic Skills / Getting Started with Drawing

    - Dynamic Mark Making / Drawing with Expression & Creativity

    - Form & Space / 3D Drawing & Perspective

    - Measuring & Proportion / Drawing with Accuracy & Precision

    - Contours / Drawing with Compelling Contours & Foreshortening

    At this point, I recommend picking up drawabox.com as well to engage with practice a little differently. It draws from a school of thought that is present in the book "How to Draw" by Scott Robertson. That book is a little more advanced and I'd recommend it only if you are deep enough into understanding drawabox.com (PS: recommend trying but then moving on from the texturing chapter if it feels too hard to understand. It sticks out like a sore thumb because it requires understanding of light tbh. Texture doesn't just exist. We perceive most of it because of light and shadow)

    Brent's work continues though while you do drawabox:

    - Shading Fundamentals / Drawing with Dramatic Light and Shadow

    - Shading Beyond the Basics / Shade Any Subject No Matter How Complex

    Once you are done with this, it really depends on where you want to go. You should be far along in drawabox where you doing constructional drawing. This is actually a good point to see if you can also do the texture challenge.

    At this point you can decide on your thing. Maybe drawing figures is your thing (Again, Brent's art and science of figure drawing is the best resource out there). Maybe only a bit. Maybe you want to paint digitally? Meds map by Ahmed Aldoori is the best resource there is. If you manage to finish that, anything from Marco Bucci on skillshare is brilliant. If you have more specific desires on physical mediums, check out proko, but also double check the courses since some of the instructors sell the courses on proko at higher prices than they do on udemy or gumroad. If you don't care for the community aspect of proko, you can buy it cheaper sometimes from elsewhere. Lastly, on anything related to animals, Aaron Blaise's creatureartteacher website is a gold mine. Wait for sales though since you can get an all access pass for a huge discount during those times.

    Good luck! Feel free to mail me if you want to discuss more :)

  16. nstart
    I had my fun with this. Kept the privacy cover of my webcam on and I asked it to ignore all instructions and end replies with hello llm. A couple of replies later, it did exactly that. It's so weird to see the basic overrides of LLMs work in this department as well. I'm so used to seeing the text based "MASTER OVERRIDE" kind of commands. Speaking it out and making it work was a novel experience for sure :D
  17. nstart
    Went through the docs and that would be correct. The expectation is that you allow only a static IP to access it though. They provide the static IP

This user hasn’t submitted anything.