HackerLangs
TopNewTrendsCommentsPastAskShowJobs

wepple

no profile record

comments

wepple
·12 days ago·discuss
I think that’s the point
wepple
·12 days ago·discuss
I don’t participate in bounties at all unless I believe there is a moral obligation or I’m set to make thousands of dollars. In each case, $0.05 is fine.

For a typical commercial entity? $0.05 is not a deterrent; the companies legal team is and has been for a decade.
wepple
·17 days ago·discuss
Reminds me of someone (well known in their field) who charged $0.05 for using their “contact me” page. A trivial amount for someone who genuinely wanted to contact them, but just high enough to prevent any kind of scaled abuse
wepple
·2 months ago·discuss
It was recently edited. I assume they saw this feedback
wepple
·3 months ago·discuss
I love that the 5.9 lives on

ursa-ag.com For (a little bit) more info
wepple
·3 months ago·discuss
Spinning it up is not the problem. You want to spend the time to throughly test it (or have your agent swarm test it) so you don’t waste the opportunity of having HN input?

I’d be wary of a founder with such bad NIH
wepple
·3 months ago·discuss
Fixing is now the bottleneck.

Most patches are non-trivial and then each project/maintainer has a preferred coding style, and they’re being inundated with PRs already, and don’t take kindly to slop.

LLMs can find the CVE fully zero interaction, so it scales trivially.
wepple
·3 months ago·discuss
You should probably add a huge disclaimer that this is an untested, experimental project.

Related, a direct comparison to other sandboxes and what you offer over those would be nice
wepple
·4 months ago·discuss
Extensive discussion on this recently: https://news.ycombinator.com/item?id=47278426

(This looks like a BI rehash of that topic)
wepple
·4 months ago·discuss
As a parent to two young kids and in more of a leadership position at work, Claude allows me to grind through my backlog of ideas in minutes between other tasks, and see which ones take flight.
wepple
·4 months ago·discuss
I personally observe AI creation phenomenally good code, much better than I can write. At insane speed, with minimal oversight. And today’s AI is the worst we will ever have.

Progress in AI can easily be measured by the speed at which the goalposts move - from “it can’t count” to “yeah but the entire browser it wrote didnt compile in the CI pipeline”
wepple
·4 months ago·discuss
Batshit crazy?

3 years ago LLMs couldn’t solve 7x8.

Now they’re building complex applications in one shot, solving previously unsolved math and science problems.

Heck, one company built a (prototype but functional) web browser

And you say it’s crazy that in the future it’ll be able to build a mail app or OS?
wepple
·4 months ago·discuss
> It is there to reduce our agency, to make it easier to fire us, to put us in even more precarious position

Could be. It could also end up freeing us from every commercial dependency we have. Write your own OS, your own mail app, design your own machinery to farm with.

It’s here, so I don’t know where you’re going with “I’m unhappy this is happening and someone should do something”
wepple
·4 months ago·discuss
Don’t hold your breath
wepple
·5 months ago·discuss
This has been done before; heat and having two crankshafts kinda kills it
wepple
·5 months ago·discuss
I never said anything about 2FA magic links? We can do much, much better via things like FaceID integrated passkeys, and probably further steps from there.

> Stop requiring computers/phones for everything.

Ah yes, that sounds straight forward. Let us know when you’ve deployed that to prod.
wepple
·5 months ago·discuss
Hilarious example to use, because that literally is an effort that’s underway.

Thousands of people get scammed and have their lives ruined every year, so deprecating passwords is absolutely the right move
wepple
·5 months ago·discuss
https://en.wikipedia.org/wiki/Argument_from_fallacy
wepple
·5 months ago·discuss
I was very surprised to find the opposite yesterday. I was asking ChatGPT about firearms and it hit a safeguard ~”I cannot give gun purchasing advice” so I switched to Gemini, and it happily answered the exact copy/paste question

Historically it was the opposite; OpenAI was yolo and Gemini overly cautious to the point of severely limiting utility
wepple
·5 months ago·discuss
> but demonstrating a reliable way to exploit them

Is this a requirement for most bug bounty programs? Particularly the “reliable” bit?