Modern social media is nothing like social media in early days (myspace, early Facebook and even early Instagram). Back then it was a platform to communicate with friends, and maybe even find new friends to meet up with.
Today social media is more like a drug, to keep the user engaged and to push content to them. The content must either be addictive/engaging or paid advertisements. Quality of the content doesn't matter at all. Connecting people to do stuff outside of the virtual world would actually hurt their business model. People turn off their devices and go outside, instead of watching ads.
So it's probably fine to just block the big platforms. Forums or messengers (without ads and public channels) are probably fine. Probably even Reddit - which does have an algorithm to show specific content - is not as bad.
Broadly agree but, as is most things, the devil is in the details!
- Xcode. A really rough ide that has a hard time at scale, choking on package refreshes, many targets, and more. It has a special entitlement so you can't even binary patch it if you want to fix it!
- Build systems. Cargo is _much_ easier to work with than SPM.
- Macros support, codegen is still largely done outside of the macro system, which should indicate its use.
- Linter / format support. Yeah, it exists, last I checked it's just a good bit worse.
- Performance. There are MANY performance cliffs in Swift; most can be fixed by a sufficiently determined compiler developer, but at this point we've kinda departed talking about the language as-is.
- Type inference time. Swift's bidirectional type inference causes a ton of choking on complex expressions, which is a real problem with its number one use case, SwiftUI.
- An exacerbating factor on the above, imports are all implicitly module-scoped, meaning that changing a single file means recomputing the types for all files in the module. And because SPM and Xcode have such a rough time with multiple targets, that usually means that a single change can lead to recompiling all Swift files.
- Weirdness around classes and structs? I understand that they had to do it for objc compatibility, but I would've found it much cleaner if they'd just from the start had something replacing class, like a fully-sugared `final class Box<T>` that replaces all uses of class.
I agree that for the most part it _could_ be an easier rust, but between including bidirectional type inference without a cut operator and poor tooling I struggle to find where it's actually easier in cases that you can't just use typescript and dodge all the non-typecheck compilation headaches entirely.
Reminds of a neighbor I had back when I was renting in a big city. He didn’t seem to understand what’s wrong with keeping his TV on for very long periods broadcasting the sleaziest (at least at the time) reality show on full volume.
I tried talking to him multiple times to no avail. He’d basically say “yeah I’ll pay attention no problem” but nothing changed for weeks.
Coincidentally at that time I was working morning shifts at a radio station. Those start really early so you gotta wake up at around 4am.
I decided one day to change my alarm (triggered on my Sony Vaio) from the peaceful iPhone-like tunes to System of a Down’s “Chop Suey”. I also decided to forget it on, on repeat, full volume, while leaving the apartment.
I don’t think 3 days passed before he knocked loudly at my door, moaning and complaining.
I told him: “you gotta understand, your TV was so loud I couldn’t sleep for nights on end, the old tune wouldn’t wake me up anymore. I had to change it. I’m so tired that I even forget to turn it off.
* People using it as a tool, aware of its limitations and treating it basically as intern/boring task executor (whether its some code boilerplate, or pooping out/shortening some corporate email), or as tool to give themselves summary of topic they can then bite into deeper.
* People outsourcing thinking and entire skillset to it - they usually have very little clue in the topic, are interested only in results, and are not interested in knowing more about the topic or honing their skills in the topic
The second group is one that thinks talking to a chatbot will replace senior developer
Reddit has been a cesspit of recycled pablum, populist image macros and low effort reply comments for more than a decade. Enthusiast subreddits are astroturfed to hell and back by people with a Shopify storefront and a dream trying to growth hack their way to a hockey stick. The low barrier to entry to each community means that this vapid culture eventually diffuses itself across subreddits that might otherwise be good. It's a postmodern toilet that flushes into its own tank.
I don't care if I sound old and salty when I say this: I miss phpBB and Invision forums. Even those are being bought up by marketing companies to sell ads and transformed with social media features... Xenforo (which everybody uses now) allows liking posts and supports Instagram-style content feeds.
I've noticed a huge gap between AI use on greenfield projects and brownfield projects. The first day of working on a greenfield project I can accomplish a week of work. But the second day I can accomplish a few days of work. By the end of the first week I'm getting a 20% productivity gain.
I think AI is just allowing everyone to speed-run the innovator's dilemma. Anyone can create a small version of anything, while big orgs will struggle to move quickly as before.
The interesting bit is going to be whether we see AI being used in maturing those small systems into big complex ones that account for the edge cases, meet all the requirements, scale as needed, etc. That's hard for humans to do, and particularly while still moving. I've not see any of this from AI yet outside of either a) very directed small changes to large complex systems, or b) plugins/extensions/etc along a well define set of rails.
Similar comments also come up in the [now regular] "I don't want to see political articles on HN" threads, and I think the response is similar: Asking for "no politics" is itself a strong political view: One in support/service of whatever the current status quo is. Trying to set oneself apart from (or above) politics is itself political. If you're lucky enough to be one of the fortunate people on earth who are not under attack by political forces or who benefit from status quo politics, I'd encourage you to simply reflect on that good luck and try to ignore the "politics" that others are deeply affected by and care about.
OP here. Appreciate your perspective but I don't really accept the framing, which feels like it's implying that I've been caught out for writing and coding with AI.
I don't make any attempt to hide it. Nearly every commit message says "Co-Authored-By: Claude Opus 4.5". You correctly pointed out that there were some AI smells in the writing, so I removed them, just like I correct typos, and the writing is now better.
I don't care deeply about this code. It's not a masterpiece. It's functional code that is very useful to me. I'm sharing it because I think it can be useful to other people. Not as production code but as a reference or starting point they can use to build (collaboratively with claude code) functional custom software for themselves.
I spent a weekend giving instructions to coding agents to build this. I put time and effort into the architecture, especially in relation to security. I chose to post while it's still rough because I need to close out my work on it for now - can't keep going down this rabbit hole the whole week :) I hope it will be useful to others.
BTW, I know the readme irked you but if you read it I promise it will make a lot more sense where this project is coming from ;)
I have mentioned this in a few comments: for my CS classes I have gone from a historical 60-80% projects / 40-20% quizzes grade split, to a 50/50 split, and have moved my quizzes from being online to being in-person, pen-on-paper with one sheet of hand-written notes
Rather than banning AI, I'm showing students how to use it effectively as a personalized TA. I'm giving them this AGENTS.md file:
And showing them how to use AI to summarize the slides into a quiz review sheet, generate example questions with answer walk throughs, etc.
Of course I can't ensure they aren't just having AI do the projects, but I tell them that if they do that they are cheating themselves: the projects are designed to draw them into the art of programming and give them decent, real-world coding experience that they will need, even if they end up working at a higher level in the future.
AI can be a very effective tool for education if used properly. I have used it to create a ton of extremely useful visualizations (e.g. how twos complement works) that I wouldn't have otherwise. But it is obviously extremely dangerous as well.
"It is impossible to design a system so perfect that no one needs to be good."
If I remember correctly, the original version of wordle used a word list that was run past the creator's wife, who had learned English later in life. The result was a really accessible game - none of the words felt like ones you wouldn't know. It probably makes sense to reuse words than risk losing that accessibility.
(I kept a copy of original wordle, and it seems to have 2,315 words that are possible answers.)
We didn't review the entire source code, only the cryptographic core. That said, the main issue we found was that the WhatsApp servers ultimately decide who is and isn't in a particular chat. Dan Goodin wrote about it here: https://arstechnica.com/security/2025/05/whatsapp-provides-n...
These dongles used to be ubiquitous and they broke all the time.
As a young intern, I arrived early one morning to find the PCB layout software (PADS PowerPCB) on our "design PC" wasn’t working. (I use quotes because it was just the beefiest machine we had, naturally our boss’s PC, which he kindly shared)
Obviously the dongle. I tried unplugging and replugging it, with and without the printer daisy-chained. Nothing.
So I begrudgingly asked my colleague who’d just arrived. He looked at the dongle, looked at me, looked at the dongle again, and started laughing.
Turns out our Boss had stayed late the previous night processing customer complaints. One customer had sent back a "broken" dongle for the product we were selling. Boss tested it on his PC, found it worked fine, and mailed it back on his way home.
Except he didn’t send our dongle back. He had sent my PowerPCB dongle. More fun was had when the rest of the team and finally our boss arrived. Luckily he took it with good humor.
"and notify the user when such attempts are made to their device."
We aren't going to remove the security state. We should make all attempts to, but it won't happen. What needs to happen is accountability. I should be able to turn off sharing personal information and if someone tries I should be notified and have recourse. This should also be retroactive. If I have turned off sharing and someone finds a technical loophole and uses it, there should be consequences. The only way to stop the rampant abuse is to treat data like fire. If you have it and it gets out of control you get burned, badly.
I think these days if I’m going to be actively promoting code I’ve created (with Claude, no shade for that), I’ll make sure to write the documentation, or at the very least the readme, by hand. The smell of LLM from the docs of any project puts me off even when I like the idea of the project itself, as in this case. It’s hard to describe why - maybe it feels like if you care enough to promote it, you should care to try and actually communicate, person to person, to the human being promoted at. Dunno, just my 2c and maybe just my own preference. I’d rather read a typo-ridden five line readme explaining the problem the code is there to solve for you and me,the humans, not dozens of lines of perfectly penned marketing with just the right number of emoji. We all know how easy it is to write code these days. Maybe use some of that extra time to communicate with the humans. I dunno.
If you're interacting with stateful systems (which you usually are with this kind of command), --dry-run can still have a race condition.
The tool tells you what it would do in the current situation, you take a look and confirm that that's alright. Then you run it again without --dry-run, in a potentially different situation.
That's why I prefer Terraform's approach of having a "plan" mode. It doesn't just tell you what it would do but does so in the form of a plan it can later execute programmatically. Then, if any of the assumptions made during planning have changed, it can abort and roll back.
As a nice bonus, this pattern gives a good answer to the problem of having "if dry_run:" sprinkled everywhere: You have to separate the planning and execution in code anyway, so you can make the "just apply immediately" mode simply execute(plan()).
My friend was going through a pretty massive depression after his mom passed. He'd been with my wife and I at our house for a number of hours talking through it, and apparently not texting his sisters back. They called in a welfare check.
We live in a reasonably dense suburb. Police showed up at our front door and asked to speak with him. They just wanted to make sure he was doing OK. He asked them "how did you find me?" and their response was just "we pinged your phone".
Watching my security camera, they did not stop at any of my neighbors houses first. It was very direct to my front door. This leads me to believe whatever sort of coordinates they had were pretty spot on. His car was parked well down the block and not in front of our house so that was no give away.
This was five years ago and always struck me as a "Huh"
> It appears this moment of pushback has resonated with internal teams: According to people familiar with Microsoft’s plans, the company is now reevaluating its AI strategy on Windows 11 and plans changes to streamline or even remove certain AI features where they don’t make sense.
Obviously this is a complete failure of governance. The very first thing they should have considered was whether or not these features made sense in the ways that they were being added. There should not be any necessary work to "rollback" features that do not make sense, because they should have not built them in the first place.
Even if we accept at face value that AI has made generation of code significantly cheaper, that doesn't justify the existence of worthless code. Taste comes from knowing what not to build.
Right now Windows is an unstable mess, filled with things that shouldn't have been built. The question Microsoft should ask themselves is why they built them in the first place, and how they will prevent this from happening again.
> For each of my emails, I got a reply, saying that they "sincerely apologize" and "@Dalibor Topic Can you please review...", with no actual progress being made.
then
> Sorry to hear this. .... @Dalibor Topic <dalibor.topic at oracle.com>, can we get this prioritized?
Many a crack back in the day was even more simple still, we'd just find and alter the right JE or JNE into a JMP and we're off to the races. As the author found, the tough part is just finding and interpreting where and how the protection was implemented. If throwing the exe in a hex editor gave you access to String Data References (not always the case, but more common than not) then you'd just fail the check you were trying to skip, find that string, hop over into assembly to see what triggered loading that, and then just alter the logic to jump over it when the time comes.
Is anyone else entirely unimpressed / bored with this? It's just AI mimicking reddit... I really don't see the big deal or technical innovations, if any.
"Noftsker also shared the hacker aversion to cigarette smoke, and would sometimes express his displeasure by shooting a jet of pure oxygen from a canister he kept for that purpose; the astonished smoker would find his or her cigarette bursting into a fierce orange blur."
I had my GCP quota algorithmically set to 0 after spending 6 months working with them to launch a startup.
I went through a ton of hoops to get approval for our quota. We sent them system diagrams, code samples, financial reports, growth predictions, etc. It was months of back and forth. I'll also add that it was very annoying because they auto-reject your quota request if you don't respond to their emails within 48 hours but their responses take 1-3 weeks. In any case, after 6 months, they eventually approved us for our quota, we launched, and they shut us down to 0 quota across all services the instant our production app got traffic.
We contacted them again asking for help. We never got any human response. We got a boiler plate template a few times, but that was it.
I will never ever ever again use a cloud service where I can't guarantee that I can get good customer service. Unfortunately for a small business that means no big clouds like AWS, GCP, etc.
My neighbor is smoking on the balcony, and smoke goes to my home with little kids. I talked with him several times, didn't help. It's his territory, so not much I can do, besides closing the doors. But at least i can use this fake smoke detector with VERY ANNOYING random buzzer. It starts buzzing when i connect to it my iPhone via BLE. Makes it not as relaxing to smoke on the balcony as it planned to be for him. I'm going to train this mofo with reinforcement learning like a fkn Pavlov Dog.
Methodology is one thing; I can't really agree that deploying an LLM to do sums is great. Almost as hilarious as asking "What's moon plus sun?"
But phenomenon is another thing. Apple's numerical APIs are producing inconsistent results on a minority of devices. This is something worth Apple's attention.
If you really care about something, screen addiction does not interfere. A friend of mine has a terrible Instagram addiction, yet has developed for himself a certain degree of cinephilia lately -- we've watched long movies together in theaters and not once has he been on his phone during the screenings. When one has faith that sustained attention might hold more value than that gained by interruption, they tend to prioritize the former.
But the article points out that the students here don't even watch movies themselves -- "students have struggled to name any film" they recently watched. Why are these people even studying film? The inattention is clearly caused by disinterest.
The phenomenon observed here must be caused by a combination of the general loss of discipline (which is the fallback attentive mechanism when interest is absent) and students' disinterest in the field they chose to study. The former has been well known; the latter is worth considering more.
So, let me get this straight. If I've been lazy, postponed updates and I'm still on 8.5.8 (Oct 2023) - it turns out I'm actually...safer?
Anyway, I hope the author can be a bit more specific about what actually has happened to those unlucky enough to have received these malicious updates. And perhaps a tool to e.g. do a checksum of all Notepad++ files, and compare them to the ones of a verified clean install of the user's installed version, would be a start? Though I would assume these malicious updates would be clever enough to rather have dropped and executed additional files, rather than doing something with the Notepad++ binaries themselves.
And I agree with another comment here. With all those spelling mistakes that notification kind of reads like it could have been written by a state-sponsored actor. Not to be (too) paranoid here, but can we be sure that this is the actual author, and that the new version isn't the malicious one?
A hundred times this. It's fine until it isn't. And jacking these Claws into shared conversation spaces is quite literally pushing the afterburners to max on simonw's lethal trifecta. A lot of people are going to get burned hard by this. Every blackhat is eyes-on this right now - we're literally giving a drunk robot the keys to everything.
Today social media is more like a drug, to keep the user engaged and to push content to them. The content must either be addictive/engaging or paid advertisements. Quality of the content doesn't matter at all. Connecting people to do stuff outside of the virtual world would actually hurt their business model. People turn off their devices and go outside, instead of watching ads.
So it's probably fine to just block the big platforms. Forums or messengers (without ads and public channels) are probably fine. Probably even Reddit - which does have an algorithm to show specific content - is not as bad.