🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

You know, this ChatGPT thing is actually pretty good!

I have to pay for OpenAI API calls but they get to ingest my data sources via this new plugins for free? Naa they should be paying us for data too.

ENTROPY DU JOUR The ideal Mediterranean food is minimum entropy for maximal taste, that is, the smallest number of (fresh) ingredients possible, usually 3-6. Salad bars are a modern abomination. The Poké bowl had ~20 ingredients (salad +rice "base", 4 "protein", 5 "mixed ins", 5

Famous prognosticators in Twitter: XYZ is “potentially” a “warning” that ABC might happen. No matter whether ABC happens they are always right. The Oracle in Delfi in Greece taught this trick 2000 years ago.

I know iOS/macOS ChatGPT apps are all the rage at the moment but looks like at least 50% of them are leaking their private OpenAI API keys through their property lists/app binaries. (n=10) I've sent emails to the developers, but here's a quick thread: 👇🏻

I often hear: "Developers don't care about security and security teams must drive them". Wrong!! Reality is, engineering teams execute on priorities and deadlines. It is Product Managers that don't care about security. Fix the real problem!

When product managers cannot prioritise and try to satisfy every user request. Building features rather than products

The forest moon of Endor is heating up! Thank you CRN for recognizing Endor Labs as one of the hottest cybersecurity startups of 2023! hubs.ly/Q01TQrgq0

Getting GPUs these days is like looking for toilet paper at the start of Covid.

Thank you to our customers, team and investors for helping us reach this milestone: endorlabs.com/blog/series-a-…

🚨Endor Labs raises a $70M series A!🚨 Things are heating up on our little forest moon as we set our sights on eliminating the dev productivity tax across AppSec! Read the full story from our CEO: hubs.ly/Q01ZXPhP0

We haven’t seen so much excitement for silicon for twenty years or so. May be the investors in “silicon valley” will re-discover their roots now. The time to product though has probably doubled in the mean time.

By assuming that technical talent is fungible and interchangeable, a previously-successful engineering company will be run into the ground... ...along with a few of its own products and everyone on board. It's astonishing how certain types of managers will prefer

Don’t teach the xz attack to AI. This is how the AGI will escape :)

Now that we've all had the chance to freak out about xz, we can think about what we can learn from it, and what we can do about it. Our CTO, Dimitri Stiliadis, thinks is a wake up call for software security. hubs.ly/Q02rprP90

The threats posed by AI are miniscule compared to the threats posed by the people developing them.

Unpopular opinion: you should copy/fork/DIY your dependencies for everything but the most complicated or sensitive functionality (GUI, crypto, networking, etc.). Blindly depending on trivial functionality or having a deep dependency tree causes more problems than it solves.

Imagine a world where the operating system is secure by design and you don’t need security agents in the first place. Nobody should need an EDR agent in their machines to begin with. This outage today exposes the decades of wrongs in our industry.