Just did this. Deleted all app passwords, will recreate as-needed

Please check your app passwords ASAP - accounts are getting compromised by scam networks.

Toward the end of the last US administration, CISA started to talk about security in commercial software as a product quality / liability issue, which was a promising change. Unfortunately I don’t think that’s continued

This reporting is extremely thorough and the allegations are horrific. Swalwell’s attorney is trying to undermine this woman’s credibility by saying she kept working for him afterward. It’s tired victim-blaming rhetoric. She was 21 when it started. I believe her and I hope she is okay.

That's the polyfill I use, yeah.

Now that it's finally landing, I hope environments that haven't stabilized support yet do so officially soon.

Keeping my eye on the Node issue for it 👀

Ugh the marketing angle is so frustrating. K8s is right IMO to disallow stuff that would enable "endorsed by Kubernetes" statements based on Git metadata, but ugh it's annoying to have to be proactively defensive like this.

The JavaScript Temporal API is *so much* better than Date, it's amazing

AIUI the gap has been getting steadily larger for years

I’m not sure what you’re trying to say

Yeah, just reading that you think: "wow that's a highly speculative and not at all diversified investment from someone for whom that amount is likely substantial relative to other investments."

That's the wrong analogy. It's not an orbital laser, it's a vulnerability finder. Giving preferential access to defenders to shore up weaknesses before releasing the vulnerability finder more broadly (or before someone else releases an equivalent one) is reasonable.

I wonder what disclosures employees received throughout their stock ownership which may have explained the speculative nature of the investment and that it did not guarantee a return.

I feel bad for employees being misled, especially since I expect many are financially unsophisticated and didn't know how to assess the value of the stock.

In tech I generally think folks mentally zero out stock/options/RSUs they get in their employer because they know how hard a payout actually is

Holders of common stock in a private company, meaning they're generally going to be employees or former employees. I believe Philz leadership made assertions about expected payout or at least being "taken care of" in the private equity sale, which helps explain at least some of the anger.

“You shouldn't transition to post-quantum because you are confident quantum computing will happen; you should only avoid transitioning because you are confident quantum computing will not happen, and none of the experts are confident in that anymore.”

Remembering back to high school and how textbooks studiously refused to say we lost the Vietnam War.

They described all the *events* that happen when you lose, but never actually said we lost, just that the war ended.

This reality is why I'm not sympathetic to "put the toothpaste back in the tube" arguments, or "be angry at the people who built it" arguments, especially when directed at Anthropic, who have been the most careful of the major players at building and deploying their frontier models.

I'm not the first to make the analogy to nuclear fission. Once Hahn and Strassmann proved fission was possible, nuclear scientists quickly realized a powerful bomb could and would be built by *someone* using it.

Once the transformer architecture was published it was clear to everyone with relevant expertise what could be built. The question became who would build it and when.

These models were inevitable after that.

I'm gonna do it. I'm gonna start calling game teams "kei" and "midi" and not "iii" or "indie" and you're gonna hate it but I'm right to do it, until we have better terms, sorry bro, this is not discourse, this is praxis

newsletter.hushcrasher.com/p/taxonomy-o...

I don't think Mekka's point was community-led moderation should be used as an exclusive alternative to automated moderation, but rather that for cases outside of the obviously unacceptable (CSAM, videos of violence, etc.) community moderation ought to be preferred to top-down at-scale moderation.

Belated post, but I went to the Saturday game on opening weekend. Cool to see a new MiLB team, the new stadium is beautiful, and it's a big love letter to Dodgers history!

Signal lets you configure notification text on iOS so notifications don't include the sender name or message content.

That feels basically true. It's funny, I feel like Reddit provides a nice case study here. Smaller subreddits have (IME) better / more effective / less controversial moderation than larger ones.

I'd be really curious to compare subreddit sizes to moderator counts, to see how they scale together.

Yeah, that's pretty much the point Kissane is making. The dream of "composable moderation" is that you can have more context-sensitive moderators for particular communities.

Saw it in 4DX and honestly, it did add to the experience to feel like you're on a rollercoaster

Trump Administration's Arrival on Bluesky Highlights Growing Pains for Open Networks The administration’s antagonistic entry to the platform is best understood as a game of chicken, writes Erin Kissane.

I’m reminded of @kissane.myatproto.social’s writing on “high-context moderation” in the context of Bluesky, a moderation style which tries to incorporate context like you’re describing, and which is fundamentally incompatible with global top-down moderation like Bluesky’s Trust and Safety provides.

I really wish more websites would just adopt passkeys.