off-topic

dpsutton 2026-03-31T04:50:38.897019Z

https://x.com/feross/status/2038807290422370479?s=20 axios exploit. npm package has since been pulled. but > The latest axios@1.14.1 now pulls in plain-crypto-js@4.2.1, a package that did not exist before today. This is a live compromise.

👀 1
🙏 3
seancorfield 2026-03-31T14:56:26.428719Z

For once I'm glad that our JS codebase has a lot of outdated dependencies (unlike our Clojure codebase)!

😅 1
ray 2026-03-31T08:27:54.859599Z

https://notes.zachmanson.com/copilot-edited-an-ad-into-my-pr/

đŸĻ… 2
💩 1
🙏 3
🤖 2
â˜šī¸ 2
john 2026-03-31T14:06:31.403949Z

Yeah that makes me want to throw up a little

seancorfield 2026-03-31T14:53:23.059159Z

The backlash has been loud and swift: GitHub has since removed "tips" (as they called ads) from AI PRs.

mloughlin 2026-03-31T16:01:07.637959Z

I imagine that "feature" will be on the back burner until our collective standards have been sufficiently lowered in ~18 months time

👍 1
➕ 1
seancorfield 2026-03-31T16:13:32.687149Z

wonders if Kalshi or Polymarket have open bets on that? 🤔

seancorfield 2026-03-31T16:13:41.935759Z

(that's a joke BTW)

john 2026-03-31T16:17:15.361369Z

Turboquant is supposed to reduce model sizes 6X in memory. I don't see openAI surviving when things start shifting local.

henrik 2026-04-01T13:29:49.042689Z

Standard Microsoft, nothing new. My gaming PC is pleading with me to switch to SteamOS