HackerTrans
TopNewTrendsCommentsPastAskShowJobs

driftnode

no profile record

Submissions

[untitled]

1 points·by driftnode·4 maanden geleden·0 comments

[untitled]

1 points·by driftnode·4 maanden geleden·0 comments

Convicted spyware chief hints that Greece's government was behind phone hacks

techcrunch.com
5 points·by driftnode·4 maanden geleden·0 comments

[untitled]

1 points·by driftnode·4 maanden geleden·0 comments

CISA warns max-severity n8n bug is being exploited in the wild

theregister.com
4 points·by driftnode·4 maanden geleden·0 comments

[untitled]

1 points·by driftnode·4 maanden geleden·0 comments

We scanned 900 MCP configs on GitHub. 75% had security problems

orchesis.ai
1 points·by driftnode·4 maanden geleden·0 comments

comments

driftnode
·4 maanden geleden·discuss
So Claude repos are statistically more likely to have stars than the average GitHub repo. Not the conclusion the headline was going for.
driftnode
·4 maanden geleden·discuss
The pattern you found between reversible and irreversible decisions is interesting. Did writing them down change how you made decisions going forward or did you just keep making the same mistakes with better documentation? Asking because I have tried something similar and found that knowing my pattern did not actually fix it. I still agonize over the wrong things.
driftnode
·4 maanden geleden·discuss
The phone number muscle memory example is perfect. There is a whole category of knowledge you only have if your hands did the work.
driftnode
·4 maanden geleden·discuss
The sad part is you're right that we can't assume secure operation of components anymore, but the tooling hasn't caught up to that reality. Chroot jails help with runtime isolation but the attack here happened at build time, the malicious code was already in the package before any test could run. And the supply chain is deep. Trivy gets compromised, which gives CI access, which gives PyPI access. Even if you jail your own builds you're trusting that every tool in your pipeline wasn't the entry point. 97 million monthly downloads means a lot of people's "secure" pipelines just ran attacker code with full access.
driftnode
·4 maanden geleden·discuss
Yes and the scary part is you might never know the full extent. A credential stealer grabs whatever is in memory or env during the build, ships it out, and the attacker uses those creds weeks later from a completely different IP. The compromised package gets caught and reverted, everyone thinks the incident is over, meanwhile the stolen tokens are still valid. I wonder how many teams who installed 1.82.7 actually rotated all their CI secrets after this, not just uninstalled the bad version.
driftnode
·4 maanden geleden·discuss
the requests.post advice is right but its also kind of depressing that the state of the art recommendation for using llm apis safely in 2026 is to just write the http call yourself. we went from dont reinvent the wheel to actually maybe reinvent it because the wheel might steal your ssh keys. the abstraction layer that was supposed to save you time just cost an unknown number of people every credential on their machine
driftnode
·4 maanden geleden·discuss
whats new isnt the shortcuts, its the cascading. one compromised trivy instance led to kics led to litellm led to dspy and crewai and mlflow and hundreds of mcp servers downstream. the attacker didnt need to find five separate vulnerabilities, they found one and rode the dependency graph. thats a fundamentally different threat model than what most security tooling is built around
driftnode
·4 maanden geleden·discuss
the chain here is wild. trivy gets compromised, that gives access to your ci, ci has the pypi publish token, now 97 million monthly downloads are poisoned. was the pypi token scoped to publishing only or did it have broader access? because the github account takeover suggests something wider leaked than just the publish credential
driftnode
·4 maanden geleden·discuss
someone in that office knew exactly what they were doing with that date
driftnode
·4 maanden geleden·discuss
a security scanner that cant secure its own credentials. at this point the irony writes itself
driftnode
·4 maanden geleden·discuss
oauth is the one area where I genuinely trust the LLM more than myself. not because it gets it right but because at least it reads all the docs instead of rage-quitting after the third wrong scope
driftnode
·4 maanden geleden·discuss
how bad is the bot rate on bounties now? feels like the moment you put a dollar amount on an issue the signal to noise ratio would collapse completely
driftnode
·4 maanden geleden·discuss
this is the approach that actually makes sense to me. gradual trust not yolo from day one. curious though, can you see what it learned about your patterns or is it a black box? like if it starts auto-archiving something you actually wanted, how do you debug that
driftnode
·4 maanden geleden·discuss
honestly sorting email is the one thing that should have been solved five years ago. the tech is fine for classification. the problem is nobody wants to build a boring email sorter when you can announce an autonomous life assistant
driftnode
·4 maanden geleden·discuss
The circular drag ones are genuinely worse than most of the joke submissions. At least the joke ones fail immediately. The knob UI works just well enough that you keep trying for 30 seconds before giving up.
driftnode
·4 maanden geleden·discuss
I think it's the fluency. Other tools fail visibly. A bad search result looks like a bad search result. A hallucinated quote reads exactly like a real one. There's no signal in the output itself that something is wrong. You have to go back to the source to check, and the whole point of using the tool was to not have to do that.
driftnode
·4 maanden geleden·discuss
[dead]
driftnode
·4 maanden geleden·discuss
The real issue is that L2/L3 barely exists anymore. L1 scripts I can deal with. But when escalation just loops you back to the same script read by someone else, that's where it breaks.
driftnode
·4 maanden geleden·discuss
[dead]
driftnode
·4 maanden geleden·discuss
The author posted a Polars version in the comments and almost nobody noticed. Meanwhile the top comments are still asking for it. Building something useful and having people ignore what you made to request what you already made is a special kind of frustration.